MiniToolBox by Farbar Version: 17-06-2016 Ran by mcs (administrator) on 02-05-2020 at 18:36:50 Running from "C:\Users\mcs\Downloads" Microsoft Windows 10 Famille (X64) Model: OMEN by HP Laptop Manufacturer: HP Boot Mode: Normal *************************************************************************** ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. ========================= FF Proxy Settings: ============================== ========================= Hosts content: ================================= ========================= IP Configuration: ================================ Intel(R) Dual Band Wireless-AC 7265 = Wi-Fi (Connected) Realtek PCIe GBE Family Controller = Ethernet 2 (Media disconnected) Bluetooth Device (Personal Area Network) = Connexion réseau Bluetooth (Media disconnected) Symantec TAP Driver = Ethernet (Media disconnected) # ---------------------------------- # Configuration du protocole IPv4 # ---------------------------------- pushd interface ipv4 reset set global icmpredirects=enabled taskoffload=disabled set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Connexion au r‚seau local* 3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Connexion r‚seau Bluetooth" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Connexion au r‚seau local* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Connexion au r‚seau local* 13" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled popd # Fin de la configuration du protocole IPv4 Configuration IP de Windows Nom de l'h“te . . . . . . . . . . : PC-MCS Suffixe DNS principal . . . . . . : Type de noeud. . . . . . . . . . : Hybride Routage IP activ‚ . . . . . . . . : Non Proxy WINS activ‚ . . . . . . . . : Non Carte Ethernet Ethernet 2 : Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚ Suffixe DNS propre … la connexion. . . : Description. . . . . . . . . . . . . . : Realtek PCIe GBE Family Controller #2 Adresse physique . . . . . . . . . . . : A0-8C-FD-2B-FD-A3 DHCP activ‚. . . . . . . . . . . . . . : Oui Configuration automatique activ‚e. . . : Oui Carte Ethernet Ethernet : Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚ Suffixe DNS propre … la connexion. . . : Description. . . . . . . . . . . . . . : Symantec TAP Driver Adresse physique . . . . . . . . . . . : 00-FF-F6-78-99-BC DHCP activ‚. . . . . . . . . . . . . . : Oui Configuration automatique activ‚e. . . : Oui Carte r‚seau sans fil Connexion au r‚seau local* 1ÿ: Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚ Suffixe DNS propre … la connexion. . . : Description. . . . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter Adresse physique . . . . . . . . . . . : 48-45-20-E7-4C-E5 DHCP activ‚. . . . . . . . . . . . . . : Oui Configuration automatique activ‚e. . . : Oui Carte r‚seau sans fil Connexion au r‚seau local* 13ÿ: Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚ Suffixe DNS propre … la connexion. . . : Description. . . . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter #2 Adresse physique . . . . . . . . . . . : 4A-45-20-E7-4C-E4 DHCP activ‚. . . . . . . . . . . . . . : Oui Configuration automatique activ‚e. . . : Oui Carte r‚seau sans fil Wi-Fiÿ: Suffixe DNS propre … la connexion. . . : Description. . . . . . . . . . . . . . : Intel(R) Dual Band Wireless-AC 7265 Adresse physique . . . . . . . . . . . : 48-45-20-E7-4C-E4 DHCP activ‚. . . . . . . . . . . . . . : Oui Configuration automatique activ‚e. . . : Oui Adresse IPv6. . . . . . . . . . .ÿ. . .: 2a01:e0a:1ae:4a80:c005:5889:921d:1ae8(pr‚f‚r‚) Adresse IPv6 temporaire . . . . . . . .: 2a01:e0a:1ae:4a80:1d12:f6a2:24ad:9edb(pr‚f‚r‚) Adresse IPv6 de liaison locale. . . . .: fe80::c005:5889:921d:1ae8%2(pr‚f‚r‚) Adresse IPv4. . . . . . . . . . . . . .: 192.168.1.49(pr‚f‚r‚) Masque de sous-r‚seau. . . .ÿ. . . . . : 255.255.255.0 Bail obtenu. . . . . . . . .ÿ. . . . . : samedi 2 mai 2020 11:10:26 Bail expirant. . . . . . . . .ÿ. . . . : dimanche 3 mai 2020 06:30:47 Passerelle par d‚faut. . . .ÿ. . . . . : fe80::3627:92ff:fe4d:9c1a%2 192.168.1.254 Serveur DHCP . . . . . . . . . . . . . : 192.168.1.254 IAID DHCPv6 . . . . . . . . . . . : 38290720 DUID de client DHCPv6. . . . . . . . : 00-01-00-01-1E-DF-62-1D-A0-8C-FD-2B-FD-A3 Serveurs DNS. . . . . . . . . . . . . : 192.168.1.254 NetBIOS sur Tcpip. . . . . . . . . . . : Activ‚ Carte Ethernet Connexion r‚seau Bluetooth : Statut du m‚dia. . . . . . . . . . . . : M‚dia d‚connect‚ Suffixe DNS propre … la connexion. . . : Description. . . . . . . . . . . . . . : Bluetooth Device (Personal Area Network) Adresse physique . . . . . . . . . . . : 48-45-20-E7-4C-E8 DHCP activ‚. . . . . . . . . . . . . . : Oui Configuration automatique activ‚e. . . : Oui Serveur : UnKnown Address: 192.168.1.254 Nom : google.com Addresses: 2a00:1450:4007:809::200e 216.58.215.46 Envoi d'une requˆte 'ping' sur google.com [2a00:1450:4007:809::200e] avec 32 octets de donn‚esÿ: D‚lai d'attente de la demande d‚pass‚. D‚lai d'attente de la demande d‚pass‚. Statistiques Ping pour 2a00:1450:4007:809::200e: Paquetsÿ: envoy‚s = 2, re‡us = 0, perdus = 2 (perte 100%), Serveur : UnKnown Address: 192.168.1.254 Nom : yahoo.com Addresses: 2001:4998:58:1836::11 2001:4998:58:1836::10 2001:4998:c:1023::5 2001:4998:44:41d::3 2001:4998:c:1023::4 2001:4998:44:41d::4 98.137.246.8 98.138.219.231 98.138.219.232 72.30.35.9 98.137.246.7 72.30.35.10 Envoi d'une requˆte 'ping' sur yahoo.com [2001:4998:44:41d::4] avec 32 octets de donn‚esÿ: D‚lai d'attente de la demande d‚pass‚. D‚lai d'attente de la demande d‚pass‚. Statistiques Ping pour 2001:4998:44:41d::4: Paquetsÿ: envoy‚s = 2, re‡us = 0, perdus = 2 (perte 100%), Envoi d'une requˆte 'Ping' 127.0.0.1 avec 32 octets de donn‚esÿ: R‚ponse de 127.0.0.1ÿ: octets=32 temps<1ms TTL=128 R‚ponse de 127.0.0.1ÿ: octets=32 temps<1ms TTL=128 Statistiques Ping pour 127.0.0.1: Paquetsÿ: envoy‚s = 2, re‡us = 2, perdus = 0 (perte 0%), Dur‚e approximative des boucles en millisecondes : Minimum = 0ms, Maximum = 0ms, Moyenne = 0ms =========================================================================== Liste d'Interfaces 8...a0 8c fd 2b fd a3 ......Realtek PCIe GBE Family Controller #2 19...00 ff f6 78 99 bc ......Symantec TAP Driver 6...48 45 20 e7 4c e5 ......Microsoft Wi-Fi Direct Virtual Adapter 16...4a 45 20 e7 4c e4 ......Microsoft Wi-Fi Direct Virtual Adapter #2 2...48 45 20 e7 4c e4 ......Intel(R) Dual Band Wireless-AC 7265 11...48 45 20 e7 4c e8 ......Bluetooth Device (Personal Area Network) 1...........................Software Loopback Interface 1 =========================================================================== IPv4 Table de routage =========================================================================== Itin‚raires actifsÿ: Destination r‚seau Masque r‚seau Adr. passerelle Adr. interface M‚trique 0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.49 55 127.0.0.0 255.0.0.0 On-link 127.0.0.1 331 127.0.0.1 255.255.255.255 On-link 127.0.0.1 331 127.255.255.255 255.255.255.255 On-link 127.0.0.1 331 192.168.1.0 255.255.255.0 On-link 192.168.1.49 311 192.168.1.49 255.255.255.255 On-link 192.168.1.49 311 192.168.1.255 255.255.255.255 On-link 192.168.1.49 311 224.0.0.0 240.0.0.0 On-link 127.0.0.1 331 224.0.0.0 240.0.0.0 On-link 192.168.1.49 311 255.255.255.255 255.255.255.255 On-link 127.0.0.1 331 255.255.255.255 255.255.255.255 On-link 192.168.1.49 311 =========================================================================== Itin‚raires persistantsÿ: Aucun IPv6 Table de routage =========================================================================== Itin‚raires actifsÿ: If Metric Network Destination Gateway 2 311 ::/0 fe80::3627:92ff:fe4d:9c1a 1 331 ::1/128 On-link 2 311 2a01:e0a:1ae:4a80::/64 On-link 2 311 2a01:e0a:1ae:4a80:1d12:f6a2:24ad:9edb/128 On-link 2 311 2a01:e0a:1ae:4a80:c005:5889:921d:1ae8/128 On-link 2 311 fe80::/64 On-link 2 311 fe80::c005:5889:921d:1ae8/128 On-link 1 331 ff00::/8 On-link 2 311 ff00::/8 On-link =========================================================================== Itin‚raires persistantsÿ: Aucun ========================= Winsock entries ===================================== Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784] (Microsoft Corporation) Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation) Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation) Catalog5 04 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog5 05 C:\WINDOWS\SysWOW64\winrnr.dll [23552] (Microsoft Corporation) Catalog5 06 C:\WINDOWS\SysWOW64\NLAapi.dll [70144] (Microsoft Corporation) Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [50688] (Microsoft Corporation) Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) Catalog9 14 C:\WINDOWS\SysWOW64\mswsock.dll [324920] (Microsoft Corporation) x64-Catalog5 01 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation) x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [86528] (Microsoft Corporation) x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86528] (Microsoft Corporation) x64-Catalog5 04 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog5 05 C:\Windows\System32\winrnr.dll [31232] (Microsoft Corporation) x64-Catalog5 06 C:\Windows\System32\NLAapi.dll [93184] (Microsoft Corporation) x64-Catalog5 07 C:\Windows\System32\wshbth.dll [64000] (Microsoft Corporation) x64-Catalog9 01 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 02 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 03 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 04 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 05 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 06 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 07 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 08 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 09 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 10 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 11 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 12 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 13 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) x64-Catalog9 14 C:\Windows\System32\mswsock.dll [407544] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (05/02/2020 05:19:39 PM) (Source: ESENT) (User: ) Description: svchost (2312,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/02/2020 04:24:37 PM) (Source: ESENT) (User: ) Description: svchost (11400,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/02/2020 04:18:23 PM) (Source: ESENT) (User: ) Description: svchost (9336,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/02/2020 03:18:05 PM) (Source: ESENT) (User: ) Description: svchost (212,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/02/2020 02:18:05 PM) (Source: ESENT) (User: ) Description: svchost (11476,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/02/2020 02:09:25 PM) (Source: ESENT) (User: ) Description: svchost (3016,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/02/2020 01:53:46 PM) (Source: ESENT) (User: ) Description: svchost (12552,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/02/2020 11:22:23 AM) (Source: ESENT) (User: ) Description: svchost (4884,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/01/2020 01:09:06 PM) (Source: ESENT) (User: ) Description: svchost (7164,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (05/01/2020 12:46:12 AM) (Source: ESENT) (User: ) Description: svchost (6880,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. System errors: ============= Error: (05/02/2020 02:18:54 PM) (Source: Netwtw04) (User: ) Description: 5007 - TX/CMD timeout (TfdQueue hanged) Error: (05/02/2020 02:18:54 PM) (Source: Netwtw04) (User: ) Description: 5007 - TX/CMD timeout (TfdQueue hanged) Error: (05/02/2020 11:09:44 AM) (Source: Service Control Manager) (User: ) Description: Le service Windows Update ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture. Error: (05/02/2020 11:09:29 AM) (Source: Service Control Manager) (User: ) Description: Le service Service Sécurité Windows ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture. Error: (05/02/2020 11:09:13 AM) (Source: Service Control Manager) (User: ) Description: Le service Malwarebytes Service ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture. Error: (05/02/2020 10:30:36 AM) (Source: Service Control Manager) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service BFE. Error: (05/02/2020 10:30:06 AM) (Source: Service Control Manager) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service BFE. Error: (05/02/2020 10:23:16 AM) (Source: Service Control Manager) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service BFE. Error: (05/02/2020 10:22:46 AM) (Source: Service Control Manager) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service BFE. Error: (05/02/2020 02:13:58 AM) (Source: Service Control Manager) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service BFE. Microsoft Office Sessions: ========================= Error: (05/02/2020 05:19:39 PM) (Source: ESENT)(User: ) Description: svchost2312,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/02/2020 04:24:37 PM) (Source: ESENT)(User: ) Description: svchost11400,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/02/2020 04:18:23 PM) (Source: ESENT)(User: ) Description: svchost9336,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/02/2020 03:18:05 PM) (Source: ESENT)(User: ) Description: svchost212,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/02/2020 02:18:05 PM) (Source: ESENT)(User: ) Description: svchost11476,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/02/2020 02:09:25 PM) (Source: ESENT)(User: ) Description: svchost3016,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/02/2020 01:53:46 PM) (Source: ESENT)(User: ) Description: svchost12552,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/02/2020 11:22:23 AM) (Source: ESENT)(User: ) Description: svchost4884,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/01/2020 01:09:06 PM) (Source: ESENT)(User: ) Description: svchost7164,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) Error: (05/01/2020 12:46:12 AM) (Source: ESENT)(User: ) Description: svchost6880,R,98TILEREPOSITORYS-1-5-18: C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log-1023 (0xfffffc01) CodeIntegrity Errors: =================================== Date: 2020-05-02 11:13:28.868 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.848 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.827 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.806 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.785 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.762 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.739 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.719 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.699 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2020-05-02 11:13:28.678 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.2.57\symamsi.dll that did not meet the Microsoft signing level requirements. =========================== Installed Programs ============================ Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.159 - Adobe Systems, Inc.) Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG) Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team) CCleaner (HKLM\...\CCleaner) (Version: 5.45 - Piriform) Citrix Receiver 4.5 (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.5.0.10018 - Citrix Systems, Inc.) CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.3.6129 - CyberLink Corp.) CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.6.4925 - Nom de votre société) Hidden CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.6.4925 - CyberLink Corp.) DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden Dropbox 25 GB (HKLM-x32\...\{0867A88D-764F-366E-9E21-130DA8B472C3}) (Version: 3.1.18.0 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.295.1 - Dropbox, Inc.) Hidden Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.) FastStone Image Viewer 5.7 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.7 - FastStone Soft) Finale NotePad 2012 (HKLM-x32\...\Finale NotePad 2012) (Version: 2012..r1.5 - MakeMusic) GFExperience.Deployer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.Deployer) (Version: 3.14.0.139 - NVIDIA Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden HP 3D DriveGuard (HKLM-x32\...\{8F183B2E-D21D-4070-8132-DD39C3CBFA5C}) (Version: 6.0.41.1 - HP) HP CoolSense (HKLM-x32\...\{0C723C74-62DF-4B35-9490-A207546D866D}) (Version: 2.21.4 - HP Inc.) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) HP ePrint SW (HKLM-x32\...\{88970959-baf7-4864-a39a-69a58e8ae5cf}) (Version: 5.0.18701 - HP) HP OMEN Mouse X9000 (HKLM-x32\...\{939B7ABC-3664-49B3-BCA9-C87EAB085227}) (Version: 1.0.0.30 - HP) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8318.5320 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}) (Version: 8.8.24.33 - HP) HP Support Solutions Framework (HKLM-x32\...\{C255181E-049B-4B54-A39C-61A94E32C374}) (Version: 12.15.14.3 - HP) HP System Event Utility (HKLM-x32\...\{09D0DB68-90EA-4015-983E-A0BD777D5A02}) (Version: 1.4.10 - HP Inc.) HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.) HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - HP Inc.) Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10605.221 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4749 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) WiDi (HKLM\...\{6B15F1EF-F3A8-4C29-BF9E-18EB3683A83D}) (Version: 6.0.60.0 - Intel Corporation) Intel(R) WiDi Software Asset Manager (HKLM-x32\...\{AC8973AF-7F4C-40F4-BFE1-C02FE95ED2C2}) (Version: 3.2.1184 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{077FD4A3-FE3C-48EE-BFAD-266EC70D87CD}) (Version: 18.1.1605.3087 - Intel Corporation) KeePass Password Safe 2.39.1 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.39.1 - Dominik Reichl) Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes) MediaInfo 18.12 (HKLM\...\MediaInfo) (Version: 18.12 - MediaArea.net) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.12730.20236 - Microsoft Corporation) Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Mises à jour NVIDIA 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.9.1.22 - NVIDIA Corporation) Hidden Mozilla Firefox 61.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 61.0.1 (x64 fr)) (Version: 61.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla) Mozilla Thunderbird 68.7.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 68.7.0 (x86 fr)) (Version: 68.7.0 - Mozilla) MuseScore 2 (HKLM-x32\...\{4F0E15EA-F64C-11E5-9992-E717EA7DB0C8}) (Version: 2.0.3 - Werner Schweer and Others) Norton 360 (HKLM-x32\...\NGC) (Version: 22.20.2.57 - Symantec Corporation) Norton Secure VPN (HKLM-x32\...\Norton Secure VPN) (Version: 2.7.0.630 - Symantec Corporation) Hidden NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12730.20206 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20206 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20206 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.12730.20206 - Microsoft Corporation) Hidden Online Plug-in (HKLM-x32\...\{EADC2DA1-5566-4F3B-8AA3-A2EC15F22760}) (Version: 14.5.0.10018 - Citrix Systems, Inc.) Hidden OpenOffice 4.1.2 (HKLM-x32\...\{DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E}) (Version: 4.12.9782 - Apache Software Foundation) Panneau de configuration NVIDIA 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.36 - NVIDIA Corporation) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21287 - Realtek Semiconduct Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.) Self-Service Plug-in (HKLM-x32\...\{6A23E16C-62CB-466F-BF8F-C5BC2BA930B2}) (Version: 4.5.0.14155 - Citrix Systems, Inc.) Hidden SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.0260 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.9.1.22 - NVIDIA Corporation) Hidden Skype version 8.58 (HKLM-x32\...\Skype_is1) (Version: 8.58 - Skype Technologies S.A.) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.5.10.75 - Synaptics Incorporated) Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F14FB68A-9188-4036-AD0D-D054BC9C9291}) (Version: 2.59.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN) VSDC Free Video Editor version 6.4.2.107 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 6.4.2.107 - Flash-Integro LLC) Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-3) (Version: 1.0.42.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-4) (Version: 1.0.42.0 - LunarG, Inc.) Windows Media Player 64-bit Plug-in Fix (HKLM\...\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb) (Version: - ) Windows Media Player Plus! 2.10 (HKLM-x32\...\{67E4EF06-E0D6-42E0-A2BA-67199B0143FB}_is1) (Version: 2.10 - BM-productions) Zoom (HKCU\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.) ========================= Devices: ================================ ========================= Memory info: =================================== Percentage of memory in use: 33% Total physical RAM: 12177.91 MB Available physical RAM: 8136 MB Total Virtual: 14033.91 MB Available Virtual: 9403.91 MB ========================= Partitions: ===================================== 1 Drive c: (Windows) (Fixed) (Total:118.01 GB) (Free:19.21 GB) NTFS 2 Drive d: (DATA) (Fixed) (Total:918.76 GB) (Free:808 GB) NTFS 3 Drive e: (RECOVERY) (Fixed) (Total:12.75 GB) (Free:1.33 GB) NTFS ========================= Users: ======================================== comptes d'utilisateurs de \\PC-MCS Administrateur DefaultAccount Invit‚ mcs WDAGUtilityAccount La commande s'est termin‚e correctement. ========================= Minidump Files ================================== No minidump file found ========================= Restore Points ================================== **** End of log ****