OTL Extras logfile created on: 06/08/2015 21:23:10 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\BlackBip\Desktop 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.10240.16384) Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy 7,93 Gb Total Physical Memory | 4,15 Gb Available Physical Memory | 52,35% Memory free 9,80 Gb Paging File | 4,39 Gb Available in Paging File | 44,78% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 540,79 Gb Total Space | 503,64 Gb Free Space | 93,13% Space Free | Partition Type: NTFS Drive D: | 931,51 Gb Total Space | 818,97 Gb Free Space | 87,92% Space Free | Partition Type: NTFS Drive E: | 97,66 Gb Total Space | 85,72 Gb Free Space | 87,78% Space Free | Partition Type: NTFS Drive F: | 292,97 Gb Total Space | 114,67 Gb Free Space | 39,14% Space Free | Partition Type: NTFS Computer Name: BLACKBIP | User Name: BlackBip | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- Reg Error: Key error. htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- Reg Error: Key error. htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = B1 3C 9E EE 3D CA D0 01 [binary data] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade] "UpgradeTime" = [binary data] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade] "UpgradeTime" = Reg Error: Unknown registry data type -- File not found [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0AA17724-421B-4A54-9C48-C1BC56512B07}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{03CD26D8-226C-45AE-BF32-61EA179C3D5F}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\timeclickers\timeclickers.exe | "{0AE48C35-A3AF-4868-8478-BDD030EF39F2}" = dir=in | name=@{microsoft.bingnews_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} | "{0AF6BFF8-D5E5-4DBD-83DB-A07AD8C9EE30}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{0B46AE09-9F50-4124-8388-7677B82E97E1}" = dir=out | name=@{microsoft.windowsmaps_4.1506.50715.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} | "{0B4E5FC4-59D0-41AC-AB56-34F9667D878E}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\timeclickers\timeclickers.exe | "{0D322B31-91EA-4870-9796-264EDCD63383}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\unturned\unturned.exe | "{0D7CAE28-2A59-4FBE-A7EC-52B943B8C58D}" = protocol=6 | dir=in | app=c:\program files (x86)\tunngle\tunngle.exe | "{104905E8-5BF8-4CF9-AD4A-CC8F9ED3F473}" = dir=out | name=@{microsoft.windowsstore_2015.8.3.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} | "{13548F60-C41D-4566-933F-3E4DFDA55079}" = dir=out | name=@{microsoft.bingweather_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} | "{181EB91D-8E8A-4235-A84C-71207B3770D1}" = dir=out | name=@{microsoft.zunemusic_3.6.12101.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} | "{1853D854-51B6-4EAF-BBBF-8847F2FCA44D}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\warface\live\nw.exe | "{1912AFBB-DD9B-4A65-B151-DCA91198202B}" = dir=in | name=onenote | "{1D7422A7-0EDC-416D-9DB1-231D26759FC0}" = dir=out | name=@{microsoft.windows.photos_15.803.16240.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} | "{20AC5DCB-3217-44AF-BCC1-C0532E1011A4}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\speedrunners\speedrunners.exe | "{2258D81D-E054-4879-98DE-827256B2FAB9}" = dir=out | name=@{microsoft.microsoftofficehub_17.6029.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} | "{233D8BC4-F325-4937-8B64-2D81667203AC}" = dir=in | name=@{microsoft.windows.photos_15.803.16240.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} | "{2AE48834-AD6B-4127-AE8B-DCAAF5067A33}" = dir=out | name=onenote | "{30FA818A-6B5C-4ED5-A4BB-60EE3EDF3BFF}" = dir=in | name=@{microsoft.microsoftofficehub_17.6029.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} | "{35D89340-A4DA-4721-A98B-D6FE92FA486C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\gunz 2 the second duel\gunz2_steam.exe | "{371BE8D9-EA6E-4B11-9620-36F447264176}" = dir=out | name=@{microsoft.people_1.10241.0.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} | "{38B1661D-EF33-4E9E-AC59-CB602E71AE5E}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | "{3EEB112C-B636-4665-82A3-F7F23A8B84FD}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} | "{446F3981-7F07-490C-87F3-5EF31CE7BADF}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\warface\live\nw.exe | "{453B35F7-0CAA-4EC4-987B-066598BA9548}" = dir=out | name=microsoft solitaire collection | "{47FE9596-22D9-4FCA-9EC4-31F76981603A}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | "{4970D32B-FBB7-4787-B098-7190DE41701B}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} | "{4B90A641-02BC-4A1C-B24E-CB9A64F0B93D}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} | "{4D7FC95A-D3E9-4B66-9D41-262D95551B73}" = dir=out | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} | "{518DCA56-1CD3-4B84-8A73-8D9CBE179949}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\fistful of frags\sdk\hl2.exe | "{53935854-CB72-4868-8742-B076388598FC}" = dir=out | name=@{microsoft.getstarted_2.2.7.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} | "{5B30F5F5-B2D2-4573-987D-928CFB6AC914}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\tom clancy's ghost recon phantoms - eu\launcher.exe | "{5C749CC4-3FCC-4D8C-B6E1-F0E9E67229EC}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} | "{5DE75D48-949B-4E20-86FE-3DBFE3275983}" = dir=out | app=c:\program files\eslwire\wire.exe | "{5FFE9D6E-5843-4E86-BE61-EC43212F3DBB}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} | "{6286324E-9213-4A06-A660-AB881BA5263A}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe | "{6DFB4102-9FF8-4425-ACE9-702B2AE3621C}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\speedrunners\speedrunners.exe | "{6ED5EFA4-80D3-46C2-8605-CFC2B65B951D}" = protocol=17 | dir=in | app=c:\program files (x86)\tunngle\tnglctrl.exe | "{6F38971F-B840-4FAC-A059-03E2F6E3DAE1}" = dir=in | name=xbox | "{6F8961E0-5686-473C-8665-B4480B11A9DD}" = dir=out | name=xbox | "{70126546-1383-45F6-B9B3-3C296134C2C9}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\tom clancy's ghost recon phantoms - eu\launcher.exe | "{76427CC1-1F0A-4F31-8726-406AEFA40BB7}" = dir=in | name=@{microsoft.windowsstore_2015.8.3.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} | "{7B442EDE-E618-453C-B25D-78457EA0023B}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | "{86FBF74D-C297-4C3E-939F-D7D23E98C1DD}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\hazard ops\unrealengine3\binaries\win32\infernumlogin.exe | "{88AC58AA-E5AD-4BD1-89A4-98A92FC477C3}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10240.16384.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} | "{8919C20C-CDE2-43C1-81F7-23862BE4E148}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\payday 2\payday2_win32_release.exe | "{8A013382-BC2F-435F-99E2-9DA02FE747BE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe | "{8C0BB22C-2D0D-4CA7-B8E9-C11245180899}" = dir=in | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} | "{96398499-B472-4011-94B2-0A65F8F9CE5C}" = dir=out | name=@{microsoft.accountscontrol_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} | "{997971FE-5074-4943-85F9-5225C4A5FA78}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} | "{99DC760C-0B23-4ECF-9411-5BAB9D09F2E5}" = dir=in | name=@{microsoft.bingweather_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} | "{9BDED9B3-B358-41B0-99BA-9D56403976B6}" = dir=in | name=@{microsoft.bingfinance_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} | "{A24F65B1-52F2-4DD9-96FB-84D539A949D5}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6020.42011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} | "{A9AD9F8D-E2CE-4F1D-A9AA-4E2D6842D1AF}" = dir=out | name=@{microsoft.bingnews_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} | "{AD08D047-8921-4EFE-9B83-E5C6AFE4185A}" = dir=out | name=@{microsoft.bingsports_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} | "{AFC97310-3357-45F7-B9D2-4406D16F4F3D}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} | "{B3B40E8A-B3F8-4688-A00E-C04DEE405D76}" = dir=in | app=c:\program files\eslwire\wire.exe | "{B461D2F9-8811-47AA-9202-04CB457921AF}" = dir=out | name=@{microsoft.3dbuilder_10.1.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} | "{B7651F52-13E0-4524-9273-E0437A71C451}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6020.42011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} | "{BB87BD46-B0C2-4F46-B97D-E649409A5DAA}" = dir=out | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} | "{BF9E5F99-5984-4472-B3DF-75FE4905A050}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\fistful of frags\sdk\hl2.exe | "{C22DEF01-2EA2-4DDA-94B3-E49281B48C10}" = dir=out | name=@{microsoft.zunevideo_3.6.12101.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} | "{C4609551-05A3-477D-AAF7-666BF6A9202A}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\team fortress 2\hl2.exe | "{C5F2038F-2FA3-4D0B-8D18-D928BA5AEF38}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\unturned\unturned.exe | "{CB5D31E9-17B7-4E57-A508-98D2ACD5D3F7}" = dir=out | name=@{microsoft.windowsphone_10.1507.17010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} | "{D2C957F3-C588-4BEA-A77B-E4A37AAD14AF}" = protocol=6 | dir=in | app=f:\windows\steamapps\common\team fortress 2\hl2.exe | "{D2E7B7BF-1590-4DC9-9950-7D9F297476DC}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\hazard ops\unrealengine3\binaries\win32\infernumlogin.exe | "{D47D78CA-1EAC-454F-83A5-6B5A5BADB4DA}" = dir=out | name=@{microsoft.bingfinance_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} | "{DB85E761-4B44-4E78-9CD5-3B16AA05534C}" = dir=in | name=@{microsoft.bingsports_4.4.200.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} | "{DCC90982-164D-4C3C-9C32-1506865EE0B8}" = dir=in | name=@{microsoft.windows.cortana_1.4.8.152_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} | "{DD17E3A9-C9CC-4364-B912-10497CEC352D}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe | "{DD6CA06B-999A-402C-AC10-DD61CF454E26}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{DD8CD489-B5FF-4ED4-9EAC-111EB0CE0B77}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} | "{DEC6D1AB-B7A8-471D-9208-ED02E6DD477A}" = dir=out | name=@{microsoft.lockapp_10.0.10240.16384_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} | "{E00E013E-5184-488E-8C6D-AFDA8E9C5BAC}" = dir=in | name=@{windows.contactsupport_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} | "{E657BE4D-8766-493A-99E9-6A85CB63A02B}" = protocol=6 | dir=in | app=c:\program files (x86)\tunngle\tnglctrl.exe | "{E84AA53C-CADC-4042-9F60-2A7BCA3B747F}" = protocol=17 | dir=in | app=f:\windows\steamapps\common\payday 2\payday2_win32_release.exe | "{EC9EC3C7-47F4-4C82-9C76-F4F927BA0D4C}" = protocol=17 | dir=in | app=c:\program files (x86)\tunngle\tunngle.exe | "{EF11ED2B-E678-4164-A3B1-0B1D8F179772}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} | "{F88631D4-2C64-4B2F-8B60-655C88623C13}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{FA00BA0B-65DC-4006-B04E-89730A6BD98A}" = dir=out | name=@{microsoft.microsoftedge_20.10240.16384.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} | "{FA8E9308-D7E3-4A82-B38B-2EB2E6EB25D6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\gunz 2 the second duel\gunz2_steam.exe | "{FAA4A010-B304-4CDC-AA33-4078ABE6F532}" = dir=in | name=microsoft solitaire collection | "{FC83AE64-3591-4515-9CB0-0B4192BF8482}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe | "TCP Query User{2184DAB8-8FF2-4052-B02B-C7D3B76B8A3E}C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | "TCP Query User{377B98CC-4E2E-43E2-83BE-106BB926477E}C:\program files\logitech gaming software\lcore.exe" = protocol=6 | dir=in | app=c:\program files\logitech gaming software\lcore.exe | "TCP Query User{9A936B23-C8FB-4A31-AA29-E7C91E9461B0}C:\program files (x86)\utorrent plus v3.4.2 build 33023 stable\utorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent plus v3.4.2 build 33023 stable\utorrent.exe | "TCP Query User{AB5F8EB0-918C-4CDE-A44D-ACE2AFBD526D}E:\utorrent plus v3.4.2 build 33023 stable\utorrent.exe" = protocol=6 | dir=in | app=e:\utorrent plus v3.4.2 build 33023 stable\utorrent.exe | "UDP Query User{644DC39E-6119-49D7-A875-14BE1ABD0F19}C:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe | "UDP Query User{83EFB727-3CD2-4CCF-B412-79DE4DA2601D}C:\program files (x86)\utorrent plus v3.4.2 build 33023 stable\utorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent plus v3.4.2 build 33023 stable\utorrent.exe | "UDP Query User{D274C0D1-8D96-4D7C-AC52-88565019DC2C}C:\program files\logitech gaming software\lcore.exe" = protocol=17 | dir=in | app=c:\program files\logitech gaming software\lcore.exe | "UDP Query User{EAA790EB-8220-42EB-8AFA-59DBDBEEC7B2}E:\utorrent plus v3.4.2 build 33023 stable\utorrent.exe" = protocol=17 | dir=in | app=e:\utorrent plus v3.4.2 build 33023 stable\utorrent.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software "{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 "{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 "{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 "{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 "{E2078C11-E9EC-BD96-037C-A3423082F2BF}" = AMD Catalyst Install Manager "ESL Wire_is1" = ESL Wire 1.18.0 "Logitech Gaming Software" = Logitech - Assistant pour jeux vidéo 8.70 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{03EB717E-7AF5-1D59-CD9B-CA7A6DBAA9AF}" = Catalyst Control Center Graphics Previews Common "{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 "{0921F489-493D-D0DA-2D45-FDE6C97362FA}" = CCC Help Hungarian "{11087D24-567D-7D88-69C6-D7A08B5F4C47}" = Catalyst Control Center - Branding "{1421F102-2BDA-39D6-CCF0-9F4B3D6564E4}" = CCC Help German "{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 "{17BAD009-B4B2-8320-9159-AF7DD087D672}" = CCC Help Czech "{17D0F297-2B7C-E59F-4B62-5E505CF3159B}" = Catalyst Control Center Localization All "{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 "{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.7 "{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 "{391CC42A-6DAC-D0D9-C155-3B275A731D67}" = CCC Help Swedish "{39E1C2BE-D6DB-608F-D28F-ECE143F858E3}" = CCC Help Greek "{3A4967AE-66AB-FDA6-7C44-FA56A4E65BFA}" = AMD Catalyst Control Center "{3A6E64DC-A067-0C8A-B794-F0E9CD0DA537}" = CCC Help Russian "{41ED8BA7-FC73-25DD-037E-8F8BDD645228}" = CCC Help Japanese "{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper "{73B373AE-228C-DA67-82FC-8B9618E61216}" = CCC Help Dutch "{7A4DBF6C-F182-7A08-7143-553DBB396E5F}" = CCC Help Portuguese "{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver "{8B130A5A-C724-7BE4-3B4D-4CB06FDC891E}" = CCC Help Korean "{8FA6AFC5-8DCD-7C04-C0DF-A9769336EFEC}" = CCC Help Finnish "{904FC5BA-57A0-47AD-4669-BE3F5D9457C8}" = CCC Help Polish "{B5BE6E09-9120-A176-CB43-6B488797468A}" = CCC Help English "{C79C2FE1-0702-6128-8DCB-5B623601DACC}" = CCC Help Danish "{CE1798D0-E5CC-B5A9-FAD5-94B30F6ADAFC}" = CCC Help Spanish "{D93841F5-E1E4-A3E5-67E1-981A2247AE25}" = CCC Help Chinese Traditional "{E1A2E051-585A-D7B1-A461-79424494ACF9}" = CCC Help Turkish "{E3763D79-64F2-7CD2-06E6-D8BCE6390613}" = CCC Help Norwegian "{E3E0C380-EBCE-8872-5C82-E977214B000F}" = CCC Help Thai "{EDDC46EA-DF0A-E6CB-4C1A-285B40A72339}" = CCC Help Italian "{EE2E5B41-C4BF-99E5-9DA6-488D36FF0D41}" = CCC Help Chinese Standard "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F1596E55-74AC-C362-905A-8E5F079DAF6C}" = CCC Help French "{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 "Adobe Flash Player NPAPI" = Adobe Flash Player 17 NPAPI "Google Chrome" = Google Chrome "Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.1.8.1057 "Razer Comms" = Razer Comms "Steam" = Steam "Steam App 242720" = GunZ 2: The Second Duel "Steam App 620" = Portal 2 "Steam App 730" = Counter-Strike: Global Offensive "TeamSpeak 3 Client" = TeamSpeak 3 Client "The Binding of Isaac Rebirth 1.0" = The Binding of Isaac Rebirth 1.0 "Tunngle_is1" = Tunngle "VLC media player" = VLC media player "WinRAR archiver" = WinRAR 5.21 (32-bit) [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "MyComGames" = My.com Game Center "skyforge_mycom" = skyforge_mycom [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 02/08/2015 20:58:59 | Computer Name = BlackBip | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error - 03/08/2015 22:08:58 | Computer Name = BlackBip | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error - 04/08/2015 16:36:40 | Computer Name = BlackBip | Source = Application Hang | ID = 1002 Description = Le programme Skype.exe version 7.7.0.102 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : b94 Heure de début : 01d0cebc14279350 Heure de fin : 4294967295 Chemin d'accès de l'application : C:\Program Files (x86)\Skype\Phone\Skype.exe ID de rapport : 810c64e9-3ae8-11e5-9bc6-448a5b5c8378 Nom complet du package défaillant : ID de l'application relative au package défaillant : Error - 04/08/2015 21:16:57 | Computer Name = BlackBip | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error - 05/08/2015 16:35:40 | Computer Name = BlackBip | Source = Microsoft-Windows-CAPI2 | ID = 513 Description = Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error - 05/08/2015 18:05:13 | Computer Name = BlackBip | Source = Software Protection Platform Service | ID = 8198 Description = Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent Error - 05/08/2015 21:31:02 | Computer Name = BlackBip | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error - 06/08/2015 10:07:05 | Computer Name = BlackBip | Source = Software Protection Platform Service | ID = 8198 Description = Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=7 Error - 06/08/2015 10:07:11 | Computer Name = BlackBip | Source = Software Protection Platform Service | ID = 8198 Description = Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error - 06/08/2015 10:07:16 | Computer Name = BlackBip | Source = Software Protection Platform Service | ID = 8198 Description = Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable [ System Events ] Error - 04/08/2015 21:16:56 | Computer Name = BlackBip | Source = Service Control Manager | ID = 7031 Description = Le service Accès aux données utilisateur_Session5 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error - 04/08/2015 21:16:57 | Computer Name = BlackBip | Source = DCOM | ID = 10010 Description = Error - 05/08/2015 21:31:00 | Computer Name = BlackBip | Source = Service Control Manager | ID = 7031 Description = Le service Hôte de synchronisation_Session6 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error - 05/08/2015 21:31:00 | Computer Name = BlackBip | Source = Service Control Manager | ID = 7031 Description = Le service Données de contacts_Session6 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error - 05/08/2015 21:31:00 | Computer Name = BlackBip | Source = Service Control Manager | ID = 7031 Description = Le service Stockage des données utilisateur_Session6 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error - 05/08/2015 21:31:00 | Computer Name = BlackBip | Source = Service Control Manager | ID = 7031 Description = Le service Accès aux données utilisateur_Session6 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error - 05/08/2015 21:31:02 | Computer Name = BlackBip | Source = DCOM | ID = 10010 Description = Error - 05/08/2015 21:31:10 | Computer Name = BlackBip | Source = Service Control Manager | ID = 7032 Description = Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Stockage des données utilisateur_Session6, mais cette action a échoué en raison de l’erreur suivante : %%1056 Error - 05/08/2015 21:31:10 | Computer Name = BlackBip | Source = Service Control Manager | ID = 7009 Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Stockage des données utilisateur_Session6. Error - 05/08/2015 21:31:10 | Computer Name = BlackBip | Source = Service Control Manager | ID = 7009 Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Hôte de synchronisation_Session6. < End of report >