Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:06-05-2016 02 Exécuté par Sandrine (2016-05-06 15:33:53) Exécuté depuis C:\Users\Sandrine\Desktop Windows 10 Home Version 1511 (X64) (2016-02-23 11:04:32) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-507459890-2505061503-464613300-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-507459890-2505061503-464613300-503 - Limited - Disabled) Invité (S-1-5-21-507459890-2505061503-464613300-501 - Limited - Disabled) Sandrine (S-1-5-21-507459890-2505061503-464613300-1000 - Administrator - Enabled) => C:\Users\Sandrine ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Norton 360 (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Norton 360 (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66} FW: Norton 360 (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Acer Arcade Movie (x32 Version: 9.0.6629 - CyberLink Corp.) Hidden Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated) Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated) Adobe Reader 9.1 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated) Apple Application Support (32 bits) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Belkin 54Mbps Wireless Network Adapter (HKLM-x32\...\{F3759A9F-7AFA-4FB4-8DF1-53F26B979DEE}) (Version: 1.00.01 - Belkin) BlueStacks App Player (HKLM-x32\...\{3ED354A3-6E95-4EB3-B6D3-3120FDFAC1F1}) (Version: 2.1.3.5650 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Call of Duty: Black Ops II - Multiplayer (HKLM\...\Steam App 202990) (Version: - Treyarch) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Curse Client (HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse) Économiseur d'écran de League (HKLM-x32\...\LolScreenSaver) (Version: W0.1.19-0.11.13-beta - Riot Games) Epic Games Launcher (HKLM-x32\...\{F9E7706A-FCFE-40D2-9B58-45567B3E1F3F}) (Version: 1.1.69.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.94 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden iTunes (HKLM\...\{BFEAB774-C7DC-4032-B05A-DA5F7CB7B365}) (Version: 12.2.2.25 - Apple Inc.) Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.710 - Oracle) Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Logitech Desktop Messenger (HKLM-x32\...\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}) (Version: - ) Logitech ImageStudio (HKLM-x32\...\{5A24DD7E-7B01-41AC-ADA8-F1776177A3BA}) (Version: 7.30.0000 - Logitech, Inc.) Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.) Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.) LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.422 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.422 - LogMeIn, Inc.) Hidden Ma-Config.com (64 bits) (HKLM\...\{19D411B5-350C-4DEA-BCA3-9E7B632A642D}) (Version: 7.1.3.1 - Cybelsoft) MediaShow Espresso (x32 Version: 5.5.1713_26701 - CyberLink Corp.) Hidden Microsoft Office Professionnel Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft Office XP Media Content (HKLM-x32\...\{9030040C-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2619.0 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Mises à jour NVIDIA 16.13.65 (Version: 16.13.65 - NVIDIA Corporation) Hidden Mozilla Firefox 35.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 fr)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) MPC-HC 1.7.4 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.4 - MPC-HC Team) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Mumble 1.2.13 (HKLM-x32\...\{022319D8-DFB3-4531-8214-EE0E1E9CD4A3}) (Version: 1.2.13 - Thorvald Natvig) My.com Game Center (HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\MyComGames) (Version: 3.175 - My.com B.V.) Norton 360 (HKLM-x32\...\N360) (Version: 22.6.0.142 - Symantec Corporation) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - NVIDIA Corporation) NVIDIA ForceWare Network Access Manager (HKLM-x32\...\InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: - ) NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 353.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.54 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Pilote graphique 353.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.54 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.13.4 - OBS Project) OpenVPN 2.3.2-I003 (HKLM\...\OpenVPN) (Version: 2.3.2-I003 - ) Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.94.19.0 - Overwolf Ltd.) Panneau de configuration NVIDIA 353.54 (Version: 353.54 - NVIDIA Corporation) Hidden Qilive Gaming Keyboard Driver (HKLM-x32\...\{F68B2F5E-F971-4856-9C26-C9C10EA9B0B0}) (Version: 1.0 - LXD Development Inc.) Qilive Gaming Mouse Driver (HKLM-x32\...\{6C4453CD-123A-40FB-8227-E23AF8748C5A}) (Version: - ) QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) Rocket League (HKLM\...\Steam App 252950) (Version: - Psyonix) RomStation (HKLM-x32\...\{223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1) (Version: - RomStation) SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden Skyforge MyCom (HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\Skyforge MyCom) (Version: 1.83 - My.com B.V.) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.1.0.9134 - Microsoft Corporation) Skype Web Plugin (HKLM-x32\...\{34E6C3B4-9354-41C2-9484-25B17F48E7E9}) (Version: 7.13.0.71 - Skype Technologies S.A.) Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.) Software Update Helper (x32 Version: 1.3.25.0 - Google Inc.) Hidden <==== ATTENTION Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - ) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) UltraISO Premium V9.53 (HKLM-x32\...\UltraISO_is1) (Version: - ) Unity Web Player (HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS) Vimicro USB2.0 UVC PC Camera (HKLM-x32\...\{71A51A91-E7D3-11DB-A386-005056C00008}) (Version: 2010.03.02 - Vimicro Corporation) VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN) WinRAR 5.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-507459890-2505061503-464613300-1000_Classes\CLSID\{34BEB704-B055-4D67-9AC1-C852E0E3DFA4}\localserver32 -> C:\Users\Sandrine\AppData\Local\SkypePlugin\7.13.0.71\GatewayVersion-x64.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-507459890-2505061503-464613300-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Sandrine\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-507459890-2505061503-464613300-1000_Classes\CLSID\{79DF62FC-32CA-4F29-A0C2-FBD17AB15D63}\InprocServer32 -> C:\Users\Sandrine\AppData\Local\SkypePlugin\7.13.0.71\GatewayActiveX-x64.dll (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-507459890-2505061503-464613300-1000_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Sandrine\AppData\Local\SkypePlugin\7.13.0.71\EdgeCalling.exe (Skype Technologies S.A.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {020DA3C3-D747-4F89-AEA2-B4DE9ACAC404} - System32\Tasks\Dregol lote => C:\ProgramData\{C9BA2179-9938-F0FF-28BE-807DF83C53F3}\1.17.0.1\f <==== ATTENTION Task: {0E3AAF0E-A2C7-4DAD-88AD-A58356E0BAB7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {16FC261A-8BE7-4087-B8F5-B0BF45141971} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {1E78DDAA-DB69-48BA-A985-9CD4B88F69EF} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {30427D7B-C498-4D8F-BCC9-64E4D26F8B98} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {32981A7A-ACA4-4177-8865-EA3C76FE1D7B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {3456EB89-3B0F-4609-AC01-8FE7C9C98770} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {37C7B6D6-09C1-4DED-AADF-FE04DDCD7027} - System32\Tasks\{F6DA9228-AD38-4343-B084-D5DDD6C9D269} => pcalua.exe -a C:\Users\Sandrine\Downloads\qc848enu.exe -d C:\Users\Sandrine\Downloads Task: {3C144656-6E08-4A43-8284-B0779CF1C50B} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-04-24] (Overwolf LTD) Task: {3E09C461-DBDD-464D-8B57-9C591C5961BD} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {4553FF75-76F5-41EB-BEB0-9DC10A1CEEF5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {47275834-0165-4002-8F97-5A322C13C173} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-08] (Adobe Systems Incorporated) Task: {4D4C336A-DB18-4BEC-BB6D-CB81D543E02C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-04-13] (Microsoft Corporation) Task: {4D523DBC-67EA-45DD-AA70-980503855916} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {55282799-D17C-4CAE-9664-65DE904A9351} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {604956B1-4AF7-4B78-857C-77F427D8D639} - System32\Tasks\Acer Registration - Reminder Recall task => C:\Program Files (x86)\Acer\Registration\GREG.exe Task: {64723C5F-8BA6-4B7D-90C9-F8911E8020E9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {66B9E234-FE5E-41BA-A94C-72143147C157} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe Task: {6BC38463-3093-4CC9-9321-D93BE448D64E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {6ED1C5BE-7FF6-4689-B224-DAA48038151C} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe Task: {74E9ED07-5422-448A-88A8-07A0239E93A2} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {7504271E-6B50-49E4-B274-1644A30418A8} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {76697C6B-8F47-40DB-A826-488FC0A917A3} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {7DE3369E-80F1-45A0-96C6-A4CE43F61E51} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {833752C2-07AE-46A9-8D0B-86850F237B70} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {85DCD5BF-319A-4664-9E0F-73B475E7A910} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {906BC221-C716-40B7-B228-A5126E005086} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-09] (Google Inc.) Task: {952C853D-F1C4-456F-A22B-43C07B6E47C9} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\SymErr.exe [2016-02-10] (Symantec Corporation) Task: {9B485D2C-FE9B-435A-A525-89DB879C52C8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {A0F55D1D-E8FE-42CD-8963-0207245B69D0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {BEB8D555-2835-4A3E-85EE-F74A669C387F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {C049359A-7BFB-4649-93FC-BD0B7F0FB62E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {C49AC774-22DC-47CB-A000-71BF432A74F2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {C578E3A4-2F61-400D-ACB1-BFA3C0710B9E} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2016-02-26] (Symantec Corporation) Task: {CC86DFA6-BD19-4F38-B2F8-EF48783E5637} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\WSCStub.exe [2016-02-26] (Symantec Corporation) Task: {CD8A88AF-4F49-4FD3-BCF9-0B1131796014} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe Task: {D1C5F0A6-D18A-48EF-9B0F-8578A57AD165} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {D2CC69A1-A70C-4649-8738-7EA217DFE519} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {D35D657E-DCCC-4695-A2E2-4C3E7920B07C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {D39F7940-F1DE-419C-85EB-AB717300212B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {D8A68F85-4A61-40DF-A407-101F9DCE9A98} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {DADDCFB7-BEA7-4F60-9F10-7BC325AA40A1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {DBD0929D-E2B6-4E4A-BE09-AE800391D5AF} - System32\Tasks\Norton 360\Norton Autofix => C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\SymErr.exe [2016-02-10] (Symantec Corporation) Task: {DE1D01B9-C275-4B8C-B682-A9F07A81DB45} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {E2EBB4C4-5FD3-46D0-965D-8E454453C694} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-09] (Google Inc.) Task: {E5326846-9897-4511-8A8F-5E1AC5562E83} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe Task: {E89B740C-8129-4AAD-912A-AB36732888AA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {ECE6691D-EA16-47A5-8F87-2C1812DB5A02} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {F005D002-E3FA-4106-870C-9D80DF52A084} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {F76CACB1-E26D-4E0B-931D-A1C3DF598637} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\22.6.0.142\SymErr.exe [2016-02-10] (Symantec Corporation) Task: {F9E6F743-86DD-4C88-9EBA-B46D59E23B2B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Acer Registration - Reminder Recall task.job => C:\Program Files (x86)\Acer\Registration\GREG.exe Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-02-23 12:34 - 2015-07-13 19:37 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-03-30 20:25 - 2016-03-30 20:25 - 00707072 _____ () C:\Riot Games\LolScreenSaver\service\service.exe 2009-04-19 17:34 - 2009-04-19 17:34 - 00207904 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe 2009-04-19 17:34 - 2009-04-19 17:34 - 00070176 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll 2009-04-19 17:34 - 2009-04-19 17:34 - 00578080 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll 2015-05-15 16:26 - 2015-05-15 16:26 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-04-13 10:16 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-13 10:16 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-04-19 13:56 - 2016-04-19 13:56 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-02-23 12:22 - 2016-02-23 12:22 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-04-13 10:14 - 2016-04-02 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-04-13 10:14 - 2016-04-02 05:26 - 00674816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll 2016-04-13 10:15 - 2016-04-02 05:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-04-13 10:14 - 2016-04-02 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-04-13 10:15 - 2016-04-02 04:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-04-13 10:15 - 2016-04-02 05:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-02-02 19:17 - 2015-09-01 10:54 - 00483328 _____ () C:\Program Files (x86)\Qilive Gaming Keyboard\Monitor.EXE 2016-02-02 20:11 - 2015-08-31 17:06 - 00749568 _____ () C:\Program Files (x86)\Qilive Gaming Mouse\Monitor.exe 2016-02-02 19:17 - 2015-08-07 10:59 - 00372736 _____ () C:\Program Files (x86)\Qilive Gaming Keyboard\OSD.exe 2016-05-01 16:33 - 2016-05-01 16:37 - 02132480 _____ () C:\Users\Sandrine\Desktop\bot of legend\BoL Studio.exe 2016-04-19 13:56 - 2016-04-19 13:56 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-19 13:56 - 2016-04-19 13:56 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2009-07-16 15:34 - 2009-07-16 15:34 - 02140944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtCore4.dll 2009-07-16 15:34 - 2009-07-16 15:34 - 00968976 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtNetwork4.dll 2009-07-16 15:34 - 2009-07-16 15:34 - 07704336 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtGui4.dll 2009-07-16 15:34 - 2009-07-16 15:34 - 00475408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtOpenGL4.dll 2009-07-16 15:34 - 2009-07-16 15:34 - 00199952 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtSql4.dll 2009-07-16 15:35 - 2009-07-16 15:35 - 00363792 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtXml4.dll 2009-07-16 15:35 - 2009-07-16 15:35 - 00027408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\SDL.dll 2009-07-16 15:35 - 2009-07-16 15:35 - 11311888 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtWebKit4.dll 2009-07-16 15:34 - 2009-07-16 15:34 - 00291600 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\phonon4.dll 2009-07-16 15:36 - 2009-07-16 15:36 - 00028944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qgif4.dll 2009-07-16 15:36 - 2009-07-16 15:36 - 00035088 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qico4.dll 2009-07-16 15:36 - 2009-07-16 15:36 - 00138000 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qjpeg4.dll 2016-04-02 21:33 - 2016-04-02 21:33 - 00144896 _____ () C:\Users\Sandrine\AppData\Local\MyComGames\zlib1.dll 2016-04-02 21:33 - 2016-04-02 21:33 - 00062464 _____ () C:\Users\Sandrine\AppData\Local\MyComGames\pxd.dll 2016-04-02 21:33 - 2016-04-02 21:33 - 00186224 _____ () C:\Users\Sandrine\AppData\Local\MyComGames\LightUpdate.dll 2016-04-02 21:33 - 2016-04-21 11:08 - 02318192 _____ () C:\Users\Sandrine\AppData\Local\MyComGames\BigUp2.dll 2015-08-26 11:18 - 2015-08-26 11:18 - 50425344 _____ () C:\Users\Sandrine\AppData\Local\MyComGames\Chrome\3.2454.1317\libcef.dll 2016-02-02 19:17 - 2015-08-04 17:21 - 00057344 _____ () C:\Program Files (x86)\Qilive Gaming Keyboard\lan.dll 2016-02-02 19:17 - 2014-07-10 15:46 - 00061440 _____ () C:\Program Files (x86)\Qilive Gaming Keyboard\hiddriver.dll 2016-02-02 20:11 - 2015-08-10 12:24 - 00045056 _____ () C:\Program Files (x86)\Qilive Gaming Mouse\lan.dll 2016-02-02 20:11 - 2012-08-30 15:24 - 00061440 _____ () C:\Program Files (x86)\Qilive Gaming Mouse\hiddriver.dll 2016-04-28 21:03 - 2016-04-28 01:25 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libglesv2.dll 2016-04-28 21:03 - 2016-04-28 01:25 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libegl.dll 2016-05-01 16:33 - 2011-12-12 17:16 - 01142784 _____ () C:\Users\Sandrine\Desktop\bot of legend\qscintilla2.dll 2016-05-01 16:40 - 2016-05-05 11:00 - 07161344 _____ () C:\Users\Sandrine\Desktop\bot of legend\agent.dll 2016-05-01 16:33 - 2011-08-24 03:09 - 00028672 _____ () C:\Users\Sandrine\Desktop\bot of legend\imageformats\qico4.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-507459890-2505061503-464613300-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Sandrine\Desktop\OiHaz.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\...\StartupApproved\Run: => "NvBackend" HKLM\...\StartupApproved\Run32: => "ArcadeMovieService" HKLM\...\StartupApproved\Run32: => "QCDriverInstaller" HKLM\...\StartupApproved\Run32: => "LogitechQuickCamRibbon" HKLM\...\StartupApproved\Run32: => "LogitechGalleryRepair" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\StartupApproved\StartupFolder: => "CurseClientStartup.ccip" HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\StartupApproved\Run: => "LDM" HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\StartupApproved\Run: => "Battle.net" HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\StartupApproved\Run: => "BlueStacks Agent" HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\StartupApproved\Run: => "cacaoweb" HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-507459890-2505061503-464613300-1000\...\StartupApproved\Run: => "Steam" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [{1734EB2E-A2B7-4BDC-BEB2-E8A352963B7C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [UDP Query User{876A858D-AFB6-4A98-BF02-77D425C4EAFE}C:\users\sandrine\appdata\local\skypeplugin\7.13.0.71\pluginhost.exe] => (Allow) C:\users\sandrine\appdata\local\skypeplugin\7.13.0.71\pluginhost.exe FirewallRules: [TCP Query User{4B11E2CA-ABAB-4DFC-975E-519638E806AF}C:\users\sandrine\appdata\local\skypeplugin\7.13.0.71\pluginhost.exe] => (Allow) C:\users\sandrine\appdata\local\skypeplugin\7.13.0.71\pluginhost.exe FirewallRules: [{CDD07DA4-1292-4A46-B6C9-FE712F61FE1F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{1DC4034B-99DE-44A3-81C7-CC73ED6326DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D93C8041-2E4B-4108-838B-AAB395E1F2D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{C4F01264-FAAD-4A93-ACBA-2B764E7F977E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{09E25F9C-8257-4185-A8E3-20DE8A683154}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{DCC94D01-CB5B-47B2-9662-52C9022590B5}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{2A29620F-FD4A-4E8A-833E-8A4A14FD4D50}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{35D9DC22-01C7-4CE1-97E1-362BF492ACEB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{5362F068-488D-46D6-84E7-A99CD5377A85}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{64A4F1D7-547A-4966-BD27-AFD6F50FB180}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [UDP Query User{0AE1453C-664F-48A1-9CDC-26818716A557}C:\hearthstone\hearthstone.exe] => (Allow) C:\hearthstone\hearthstone.exe FirewallRules: [TCP Query User{F2D3EE0A-8D35-4C5F-9876-57CBC00CB17B}C:\hearthstone\hearthstone.exe] => (Allow) C:\hearthstone\hearthstone.exe FirewallRules: [{E3B62A62-9158-45B8-A050-A77B9FD4DD4B}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{847F1BCF-A04B-4EDE-BB41-5205B97C717C}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{FA203CBC-04A7-4CD0-A9B6-6FD313A23F10}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{ED5F46B4-F979-48F8-B6EA-FA3B89115CBB}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\TouchMovie.exe FirewallRules: [{3A96CBBD-0F69-4728-9CC5-0115491695FE}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\TouchMovieService.exe FirewallRules: [{E8B1F69B-317B-464A-8E48-BB444A3B26B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{35A2D2A0-FD15-444B-BFA6-FCDC663D39CB}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{408E93E7-2010-4798-A8A7-DE65CF6047BF}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{26B78418-8FB4-4050-9C68-AAFB34C3AEF0}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{8F98EB44-98FE-4BC0-999D-88869F6CBC70}] => (Allow) LPort=48113 FirewallRules: [{28167ECB-C1CD-4E24-8389-A03D38117528}] => (Allow) LPort=48114 FirewallRules: [{79656694-5006-494E-AFA0-0708B9064A3C}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{EE227A7B-E4C4-455B-93FC-3FB1535FA507}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{DA83C238-6C61-49A0-B3CB-641F20FBAB0F}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe FirewallRules: [{89D2AB67-6ED5-459C-A4EB-E6BC0817B5C2}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe FirewallRules: [TCP Query User{AA585DD8-B9F2-45E4-A358-6A304E4702E5}C:\program files (x86)\logitech\desktop messenger\8876480\program\backweb-8876480.exe] => (Block) C:\program files (x86)\logitech\desktop messenger\8876480\program\backweb-8876480.exe FirewallRules: [UDP Query User{D2C6BD28-E967-4F83-92FE-32D52EE23D92}C:\program files (x86)\logitech\desktop messenger\8876480\program\backweb-8876480.exe] => (Block) C:\program files (x86)\logitech\desktop messenger\8876480\program\backweb-8876480.exe FirewallRules: [TCP Query User{D98BD631-AE31-4970-AEFF-2F1CCFD877E7}C:\program files (x86)\logitech\desktop messenger\8876480\program\backweb-8876480.exe] => (Allow) C:\program files (x86)\logitech\desktop messenger\8876480\program\backweb-8876480.exe FirewallRules: [UDP Query User{AE7EC62A-83DF-4304-A454-208F98B730B1}C:\program files (x86)\logitech\desktop messenger\8876480\program\backweb-8876480.exe] => (Allow) C:\program files (x86)\logitech\desktop messenger\8876480\program\backweb-8876480.exe FirewallRules: [TCP Query User{C7ECFA25-DBCF-4394-8956-8A6F02900C8A}C:\program files (x86)\electronic arts\eadm\core.exe] => (Allow) C:\program files (x86)\electronic arts\eadm\core.exe FirewallRules: [UDP Query User{17AA9599-49CC-4385-AA72-EE823C73DBA9}C:\program files (x86)\electronic arts\eadm\core.exe] => (Allow) C:\program files (x86)\electronic arts\eadm\core.exe FirewallRules: [TCP Query User{B990E408-503C-4D66-A72E-2A33EEDA50C0}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe FirewallRules: [UDP Query User{82C45A80-E2F0-4846-9991-C868E3AAD863}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe FirewallRules: [{D163D21F-C12F-4E8E-A17C-3AFFE6E4CD7A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{4872E687-870A-4A5A-A540-1A81F95DC276}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{AEC05170-087F-4CC9-B298-239C5E0B06E6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{930F1213-1450-438F-94FA-A754A738CCDD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{989B2900-D223-4796-9697-6520D47B9F6B}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{CAA929B1-CB8C-4AC7-A809-04D693E55AD4}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{24477ECC-A2D7-47B7-A3DC-C788BF3F7F35}C:\users\sandrine\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\sandrine\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [UDP Query User{11EA1019-0769-4730-B9C9-6F6633A06D71}C:\users\sandrine\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\sandrine\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [TCP Query User{48B7DAEC-93D3-450D-BFC3-01342EEBAF36}C:\users\sandrine\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\sandrine\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [UDP Query User{6E381AD3-6B19-440D-BB21-166D84BD2ADE}C:\users\sandrine\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\sandrine\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [TCP Query User{391B0E28-F727-48CA-A348-DF39D00B8C4D}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{D10C88CB-A492-4932-9E2B-4C998FA01D57}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [{E3ACF092-8B77-4EC2-A769-8BD80E5BE9A9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{6ABE03E1-8487-476F-820F-77ABF344D6A3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{03B56F3D-6FE0-4CB6-8146-2FBA9B2A50FA}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [UDP Query User{107D8453-259A-43CB-8CDA-70CFAC7AD07A}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [{044F3D22-79A3-41E8-8F68-1262B0AA3452}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{0A5C06E2-4409-468E-A9FD-40A58C2D0853}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [TCP Query User{72A0AA98-FB32-4F48-8923-3C9F0E83BBB3}C:\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) C:\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{98DCFB61-01D7-475F-B37F-FC12E4E54FC4}C:\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Allow) C:\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{D1A27119-7005-460A-832C-6A3842BA2EBA}C:\romstation\games\pc\wolfenstein - enemy territory - 35261\et.exe] => (Allow) C:\romstation\games\pc\wolfenstein - enemy territory - 35261\et.exe FirewallRules: [UDP Query User{D4455DCF-E0A7-404B-901F-D0F68F199239}C:\romstation\games\pc\wolfenstein - enemy territory - 35261\et.exe] => (Allow) C:\romstation\games\pc\wolfenstein - enemy territory - 35261\et.exe FirewallRules: [TCP Query User{FA09A091-31F2-46AC-AFB2-E37A95D0C864}C:\romstation\emulation\playstation portable\ppsspp\ppssppwindows.exe] => (Allow) C:\romstation\emulation\playstation portable\ppsspp\ppssppwindows.exe FirewallRules: [UDP Query User{0DF3D783-E2ED-43F3-BBC9-3596236ADCB7}C:\romstation\emulation\playstation portable\ppsspp\ppssppwindows.exe] => (Allow) C:\romstation\emulation\playstation portable\ppsspp\ppssppwindows.exe FirewallRules: [TCP Query User{50F1E5F9-C3D9-4AD9-B255-93B0E7A25BC3}C:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{4A75F1AF-4C13-47A7-B07A-1917BABC6793}C:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe FirewallRules: [{4BCB10C3-E019-43F6-AF95-6A36026568FD}] => (Block) C:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe FirewallRules: [{95800E91-B9D1-4D91-B0A8-F47C2CE85FBC}] => (Block) C:\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{88F1F5A1-6341-4470-93CC-FE6965695A27}C:\users\sandrine\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\sandrine\appdata\local\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{F1DFD2BF-522A-426C-8FC4-145FE96A0988}C:\users\sandrine\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\sandrine\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{6FEA7524-47BD-4646-AFFE-65ECB74278FC}] => (Block) C:\users\sandrine\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{8C12A3FC-84D9-4297-AB50-F9F244C64D42}] => (Block) C:\users\sandrine\appdata\local\mycomgames\mycomgames.exe FirewallRules: [TCP Query User{1BF2BF1E-A422-40CA-838B-BB15AD872368}C:\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => (Allow) C:\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{FEF2F1D8-91C3-4E33-97F2-CC6525CE756C}C:\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => (Allow) C:\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe FirewallRules: [{A1C80A23-6CEB-4508-B8B1-6548BC80C57E}] => (Block) C:\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe FirewallRules: [{3E1A0B4F-5F44-47A3-AADE-BC2CFF0BABF0}] => (Block) C:\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe FirewallRules: [{0EE54A57-B265-455A-A116-5772E2FAE5CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{3687B01D-1BAD-4746-8215-2DBBBCA7D76B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [TCP Query User{0003ED39-8360-415F-801C-FCCFD7903FCF}C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win32\rocketleague.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win32\rocketleague.exe FirewallRules: [UDP Query User{C25E86A8-F93E-42E9-9135-72C94AC5CA71}C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win32\rocketleague.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rocketleague\binaries\win32\rocketleague.exe FirewallRules: [{30B4BDF3-D7C1-41DD-9A31-A4FFC3288815}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{875241D3-DD2E-4433-A3BD-D554FBF8872E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [TCP Query User{FBEAD959-7688-4CDF-87DC-49727C09C4CD}C:\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe] => (Allow) C:\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{451CE812-B3CD-4E45-81D4-4A21C180EA75}C:\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe] => (Allow) C:\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe FirewallRules: [{BA7612CF-CC4A-4A70-A496-E7C8042C68C7}] => (Block) C:\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe FirewallRules: [{7924813F-9654-461A-B577-8B4B679EA940}] => (Block) C:\heroes of the storm\versions\base42406\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{21DF1434-FCFC-4DFE-9DFD-4458B869AC6A}C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe FirewallRules: [UDP Query User{B133B4CB-9AF7-44DA-BB6E-3CA83D8890AF}C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe FirewallRules: [{2B26013B-FECB-495E-9E82-D766E3583C32}] => (Block) C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe FirewallRules: [{2DFFBFD3-BDA5-49DC-B086-6E25E5C2F426}] => (Block) C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe FirewallRules: [TCP Query User{CA54511C-B761-4EE8-94C9-D67316122779}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [UDP Query User{7AA0F472-9330-469B-8050-AC274C6D928C}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [{7224AB64-CDA6-4BEF-8E5E-4E28E9C9E221}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [{8F41D7FE-B4FF-4AA6-886E-64E3A22A536E}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{D621B191-3FFA-4488-8AE8-23C6E3F181EF}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{2A4DFABF-453F-4E33-BB44-AD226EC4AEB2}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{34712F82-4167-4703-AD55-F17CA89E0BDD}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{FF93DE79-15F7-4F2F-B963-CC64ECC20C2B}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{59C177C9-C8D4-4E1E-8EBB-A023AE201C06}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{918344F9-362D-4112-A8D2-862A9E954157}C:\overwatch\overwatch.exe] => (Allow) C:\overwatch\overwatch.exe FirewallRules: [UDP Query User{F9A4981F-8452-42C8-A5AD-F6B519EE7A44}C:\overwatch\overwatch.exe] => (Allow) C:\overwatch\overwatch.exe ==================== Points de restauration ========================= 03-05-2016 17:15:18 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Souris Microsoft PS/2 Description: Souris Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: NVIDIA GeForce 9200 Description: NVIDIA GeForce 9200 Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: nvlddmkm Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (05/06/2016 11:03:24 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [0] Error: (05/06/2016 11:03:24 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to load Audio DLL [126] Error: (05/06/2016 12:57:25 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante League of Legends.exe, version : 6.9.142.751, horodatage : 0x57229cbd Nom du module défaillant : apphelp.dll, version : 10.0.10586.0, horodatage : 0x5632d677 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0002a136 ID du processus défaillant : 0xc14 Heure de début de l’application défaillante : 0xLeague of Legends.exe0 Chemin d’accès de l’application défaillante : League of Legends.exe1 Chemin d’accès du module défaillant: League of Legends.exe2 ID de rapport : League of Legends.exe3 Nom complet du package défaillant : League of Legends.exe4 ID de l’application relative au package défaillant : League of Legends.exe5 Error: (05/05/2016 10:29:49 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [0] Error: (05/05/2016 10:29:49 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to load Audio DLL [126] Error: (05/04/2016 10:10:22 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (05/04/2016 10:24:38 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [0] Error: (05/04/2016 10:24:38 AM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to load Audio DLL [126] Error: (05/03/2016 05:15:30 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (05/03/2016 01:24:28 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [0] Erreurs système: ============= Error: (05/06/2016 02:44:28 PM) (Source: DCOM) (EventID: 10010) (User: PCDEMACHEWII) Description: {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} Error: (05/06/2016 11:12:58 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Service Bonjour s’est terminé de façon inattendue pour la 1ème fois. Error: (05/06/2016 11:12:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service ForceWare Intelligent Application Manager (IAM) s’est terminé de façon inattendue pour la 1ème fois. Error: (05/06/2016 11:12:04 AM) (Source: DCOM) (EventID: 10016) (User: PCDEMACHEWII) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PCDEMACHEWIISandrineS-1-5-21-507459890-2505061503-464613300-1000LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/06/2016 11:12:04 AM) (Source: DCOM) (EventID: 10016) (User: PCDEMACHEWII) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PCDEMACHEWIISandrineS-1-5-21-507459890-2505061503-464613300-1000LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/06/2016 11:11:36 AM) (Source: DCOM) (EventID: 10016) (User: PCDEMACHEWII) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PCDEMACHEWIISandrineS-1-5-21-507459890-2505061503-464613300-1000LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/06/2016 11:11:36 AM) (Source: DCOM) (EventID: 10016) (User: PCDEMACHEWII) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PCDEMACHEWIISandrineS-1-5-21-507459890-2505061503-464613300-1000LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/06/2016 11:07:55 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Optimisation de livraison est en attente de démarrage. Error: (05/06/2016 11:03:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service BstHdUpdaterSvc n’a pas pu démarrer en raison de l’erreur : %%1053 Error: (05/06/2016 11:03:37 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service BstHdUpdaterSvc. CodeIntegrity: =================================== Date: 2016-05-06 15:32:37.606 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-06 15:32:37.492 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-06 15:31:07.330 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-06 15:31:07.197 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-06 11:22:39.409 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-05 10:41:43.017 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-04 22:08:23.145 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-03 16:19:15.845 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-02 14:50:30.479 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-01 17:44:35.219 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: AMD Athlon(tm) II X2 220 Processor Pourcentage de mémoire utilisée: 59% Mémoire physique - RAM - totale: 3839.23 MB Mémoire physique - RAM - disponible: 1567.46 MB Mémoire virtuelle totale: 7679.23 MB Mémoire virtuelle disponible: 4124.7 MB ==================== Lecteurs ================================ Drive c: (Acer) (Fixed) (Total:148.96 GB) (Free:2.7 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 43A9FDFC) Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================