cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 07/03/2016 09:20:16 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\NHAGA100081.ORANGE-SONATEL\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17501)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,88 Gb Total Physical Memory | 1,40 Gb Available Physical Memory | 48,39% Memory free
5,77 Gb Paging File | 3,67 Gb Available in Paging File | 63,63% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139,83 Gb Total Space | 60,24 Gb Free Space | 43,09% Space Free | Partition Type: NTFS
Drive E: | 1,99 Gb Total Space | 1,97 Gb Free Space | 99,15% Space Free | Partition Type: FAT32
Drive G: | 20,24 Gb Total Space | 3,07 Gb Free Space | 15,17% Space Free | Partition Type: NTFS
Drive H: | 135,72 Gb Total Space | 34,32 Gb Free Space | 25,28% Space Free | Partition Type: NTFS

Computer Name: NHAGA-PC | User Name: NHAGA100081 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = BaiduSparkHTML] -- C:\Program Files\baidu\Baidu Browser43.19.1000.90.1\Spark.exe ()
.js [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
.txt [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\baidu\Baidu Browser43.19.1000.90.1\Spark.exe" -- "%1" ()
https [open] -- "C:\Program Files\baidu\Baidu Browser43.19.1000.90.1\Spark.exe" -- "%1" ()
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
jsfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
"PolicyVersion" = 534

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
"EnableFirewall" = 0
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\FirewallRules]
"FPS-LLMNR-In-UDP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\system32\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28548|Desc=@FirewallAPI.dll,-28549|EmbedCtxt=@FirewallAPI.dll,-28502|
"FPS-ICMP6-ERQ-In" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=128:*|Name=@FirewallAPI.dll,-28545|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|
"FPS-ICMP4-ERQ-In" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=1|ICMP4=8:*|Name=@FirewallAPI.dll,-28543|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|
"FPS-RPCSS-In-TCP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=RPC-EPMap|Svc=Rpcss|Name=@FirewallAPI.dll,-28539|Desc=@FirewallAPI.dll,-28542|EmbedCtxt=@FirewallAPI.dll,-28502|
"FPS-SpoolSvc-In-TCP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=RPC|App=%SystemRoot%\system32\spoolsv.exe|Svc=Spooler|Name=@FirewallAPI.dll,-28535|Desc=@FirewallAPI.dll,-28538|EmbedCtxt=@FirewallAPI.dll,-28502|
"FPS-NB_Datagram-In-UDP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=138|App=System|Name=@FirewallAPI.dll,-28527|Desc=@FirewallAPI.dll,-28530|EmbedCtxt=@FirewallAPI.dll,-28502|
"FPS-NB_Name-In-UDP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=137|App=System|Name=@FirewallAPI.dll,-28519|Desc=@FirewallAPI.dll,-28522|EmbedCtxt=@FirewallAPI.dll,-28502|
"FPS-SMB-In-TCP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=445|App=System|Name=@FirewallAPI.dll,-28511|Desc=@FirewallAPI.dll,-28514|EmbedCtxt=@FirewallAPI.dll,-28502|
"FPS-NB_Session-In-TCP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=139|App=System|Name=@FirewallAPI.dll,-28503|Desc=@FirewallAPI.dll,-28506|EmbedCtxt=@FirewallAPI.dll,-28502|
"WMI-ASYNC-In-TCP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=%systemroot%\system32\wbem\unsecapp.exe|Name=@FirewallAPI.dll,-34256|Desc=@FirewallAPI.dll,-34257|EmbedCtxt=@FirewallAPI.dll,-34251|
"WMI-WINMGMT-In-TCP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=%SystemRoot%\system32\svchost.exe|Svc=winmgmt|Name=@FirewallAPI.dll,-34254|Desc=@FirewallAPI.dll,-34255|EmbedCtxt=@FirewallAPI.dll,-34251|
"WMI-RPCSS-In-TCP" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=135|App=%SystemRoot%\system32\svchost.exe|Svc=rpcss|Name=@FirewallAPI.dll,-34252|Desc=@FirewallAPI.dll,-34253|EmbedCtxt=@FirewallAPI.dll,-34251|
"{CE9DB582-FB94-4AB0-B83E-F6C40AB4AF5B}" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|LPort=1433|LPort=4022|Name=WSUS port|
"{5B60DF19-FD29-44F4-A1C1-7A54BA52EB08}" = v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=135|Name=TCP:135|
"{310C0FFE-4692-4BCC-BF65-BF1F7B292C60}" = v2.10|Action=Allow|Active=TRUE|Dir=In|App=%systemroot%\system32\Raserver.exe|Name=RASServer|
"{45B0504B-200B-4491-847E-A0735646526F}" = v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Private|Profile=Public|LA4=192.168.70.0/255.255.255.0|Name=Réseau privé|

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile\AuthorizedApplications]
"Enabled" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile\AuthorizedApplications\List]
"æ%%WINDIR%\SYSTEM32\Sessmgr.exe:*:Enabled:Assistance à distance" = ?%WINDIR%\SYSTEM32\Sessmgr.exe:*:Enabled:Assistance à distance
"æ%%WINDIR%\PCHealth\HelpCtr\Binaries\Helpsvc.exe:*:Enabled:Proposer une assistance à distance" = ?%WINDIR%\PCHealth\HelpCtr\Binaries\Helpsvc.exe:*:Enabled:Proposer une assistance à distance
"æ%%WINDIR%\PCHealth\HelpCtr\Binaries\Helpctr.exe:*:Enabled:Assistance à distance - Windows Messenger et voix" = ?%WINDIR%\PCHealth\HelpCtr\Binaries\Helpctr.exe:*:Enabled:Assistance à distance - Windows Messenger et voix

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile\GloballyOpenPorts]
"Enabled" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile\GloballyOpenPorts\List]
"135:TCP:*:Enabled:Proposer une assistance à distance" = 135:TCP:*:Enabled:Proposer une assistance à distance

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Driver Updater\DriverUpdater.exe" = C:\Program Files\Driver Updater\DriverUpdater.exe:*:Enabled:Driver Updater -- (TODO: <Company name>)


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1BB1930A-A143-4CE6-BF8C-D1797AAB209D}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{8EDE7EE9-4CAA-4E86-A121-3C3FD5FF2683}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{953D8C00-C3CB-41DE-965F-FB6E4C83C663}" = lport=48114 | protocol=6 | dir=in | name=maconfig_tcptls |
"{B21C0BBC-E721-445A-9FFE-3741937FD706}" = lport=2701 | protocol=6 | dir=in | app=c:\windows\ccm\remctrl\cmrcservice.exe |
"{BCC0598C-A7D7-47A7-B7BA-7F6F683D8E07}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CB6AB0DF-6A42-445C-AF02-4BDD7D4C16BD}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E6B48718-E5D5-4185-91EF-6EB17FA7A4F2}" = lport=48113 | protocol=6 | dir=in | name=maconfig_tcp |
"{EA378DB0-7D04-448A-8430-55AFC6FC4C9A}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02989277-A746-4E3E-A3AC-8628F11C648C}" = protocol=17 | dir=in | app=c:\program files\baidu\baidu browser\spark.exe |
"{03C33D1F-1968-41F1-A031-A4FCB1C14999}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{07DFB77A-7716-46AB-9C34-A323D010E997}" = dir=in | app=c:\program files\formatfactory\formatfactory.exe |
"{15CA8DE5-6F23-457F-8832-D742A2DC682E}" = protocol=6 | dir=in | app=c:\program files\java\jre1.6.0_07\bin\java.exe |
"{1666038D-00DA-4EB8-8AD8-AF464930D653}" = protocol=6 | dir=in | app=c:\program files\baidu\baidu browser43.19.1000.90.1\spark.exe |
"{1727460B-A2F7-44D7-8E65-EA5363D79F9D}" = protocol=17 | dir=in | app=c:\programdata\emailnotifier\emailnotifier.exe |
"{1D4ADFBA-87DA-44EA-94D9-6E1B680A2D2B}" = protocol=17 | dir=in | app=c:\program files\movies app\datamngr\srtool~1\ie\dtuser.exe |
"{2459168C-84D8-4125-9BC2-E6E7281203CE}" = protocol=6 | dir=in | app=c:\program files\rsyslog\agent\rsyslogcl.exe |
"{2DED1E75-B364-45B5-A1D8-36CB9B1D2E39}" = protocol=6 | dir=in | app=c:\program files\teamviewer\teamviewer_service.exe |
"{35C46C23-3921-4686-A53C-D6C2FBB38532}" = protocol=17 | dir=in | app=c:\program files\dlsecuretb\dtuser.exe |
"{403452EE-2311-4DBC-902F-10AFCD4E44A4}" = dir=out | app=c:\program files\apowersoft\mkv converter studio\mkv converter studio.exe |
"{497DDB31-FA57-4E9A-846C-C1274B3F6ADF}" = protocol=6 | dir=in | app=c:\program files\baidu\baidu browser\spark.exe |
"{506B3EE3-9CD1-444C-9C79-A67D8EF0DF94}" = protocol=17 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{5C401E26-AE9F-410C-9CD9-E220AB1D2CF1}" = dir=in | app=c:\program files\apowersoft\mkv converter studio\mkv converter studio.exe |
"{5DB8C82F-91DD-499F-A1B6-EABAAB94C713}" = protocol=6 | dir=in | app=c:\program files\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{68994024-889F-41A1-BDA3-739B3C2A9D83}" = protocol=17 | dir=in | app=c:\program files\teamviewer\teamviewer.exe |
"{700081A3-4163-4826-8045-8AB7C05EFD5A}" = dir=in | app=c:\program files\nsclient++\nscp.exe |
"{71A8F612-4D32-47F8-9827-91AD0829B152}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{71E1075E-309B-440D-8DE8-66DFC089C050}" = dir=in | app=c:\program files\formatfactory\ffmodules\package\pfinstonline.exe |
"{79C011BE-9AA4-4C29-97C1-34DD1F2EB6D4}" = protocol=17 | dir=in | app=c:\program files\teamviewer\teamviewer_service.exe |
"{803E02FD-671B-4042-9920-AA376C36F196}" = dir=in | app=c:\program files\formatfactory\ffmodules\package\ptinstonline.exe |
"{85206498-4149-4440-BF30-CE6334844665}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{86F4B65D-C6AD-4B40-8D6F-ADD6556045D1}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{8F2163EC-93A9-4123-8512-69FA87F03EAF}" = protocol=17 | dir=in | app=c:\program files\baidu\baidu browser43.19.1000.90.1\spark.exe |
"{94AE1FB7-0329-4604-B16C-16B02B8666CD}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{A0640676-C3F2-4CD9-A5C5-BB1EF1D3819C}" = protocol=6 | dir=in | app=c:\program files\ma-config.com\maconfigagent.exe |
"{A2B90CE1-06F7-4D0C-AEE3-213318F71CB1}" = protocol=6 | dir=in | app=c:\program files\movies app\datamngr\srtool~1\ie\dtuser.exe |
"{A3208B37-EBD3-4491-8DAF-9642BEE39A36}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{A33C607A-98E3-467B-AD97-FD17DB2F3101}" = protocol=6 | dir=in | app=c:\program files\real\realplayer\rpds\bin\rpdsvc.exe |
"{A4FAD645-203E-44C9-8EA0-8FC4E2229B49}" = dir=in | app=c:\program files\formatfactory\formatfactory.exe |
"{A99BC762-29A7-4002-8FE4-A3C3A558FE54}" = protocol=17 | dir=in | app=c:\program files\rsyslog\agent\rsyslogcl.exe |
"{B755A35E-F312-4B1E-B0A7-BC7E438AF437}" = dir=in | app=c:\program files\formatfactory\formatfactory.exe |
"{B83E9406-F293-4F77-9FAB-924F0B0E0CDC}" = dir=in | app=c:\program files\formatfactory\ffmodules\encoder\doc\ebookcodec.exe |
"{C425AEC4-1FAD-4EC1-98F2-1A3A98F60CB6}" = dir=in | app=c:\program files\formatfactory\ffmodules\encoder\doc\ebookcodec.exe |
"{C78F7DBD-5B42-4C3B-9F3A-FA26A73828F7}" = protocol=6 | dir=in | app=c:\programdata\emailnotifier\emailnotifier.exe |
"{CEA1A1EE-C3EF-47C4-B029-2FB007B9B304}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{DA9BF157-21D7-4B2F-B862-BD4BA3D290D9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{DAB78CC0-A138-459B-84A3-F74D1187BC1A}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{E12B4AF9-A603-4E81-9649-872BFB7254E6}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{ED417D35-1ACD-489A-AB60-1A8E262419F4}" = protocol=6 | dir=in | app=c:\program files\teamviewer\teamviewer.exe |
"{F0D896CB-DFF5-4DB5-8A57-D01FC0CF0D6A}" = protocol=17 | dir=in | app=c:\program files\java\jre1.6.0_07\bin\java.exe |
"{F0F2B474-564C-46A4-B2B7-47B3A2C211D5}" = protocol=17 | dir=in | app=c:\program files\ma-config.com\maconfigagent.exe |
"{F4504B45-A22A-4EA5-AC02-7CFEB0E19924}" = protocol=6 | dir=in | app=c:\program files\dlsecuretb\dtuser.exe |
"TCP Query User{38962245-2E06-45B6-8301-8FB42AB89A75}C:\program files\huawei\ensp\ensp_client.exe" = protocol=6 | dir=in | app=c:\program files\huawei\ensp\ensp_client.exe |
"TCP Query User{4C617D72-E13D-42E5-9D59-A78AD5EB1F4B}C:\program files\huawei\ensp\simserver\ensp_simserver.exe" = protocol=6 | dir=in | app=c:\program files\huawei\ensp\simserver\ensp_simserver.exe |
"TCP Query User{64239F9D-2092-4795-943F-0678ADA7BCD6}C:\program files\java\jre1.6.0_07\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.6.0_07\bin\java.exe |
"TCP Query User{8A1ADCB4-D68D-4DD8-927E-56BFD72B8A59}C:\program files\huawei\ensp\vboxserver\ensp_vboxserver.exe" = protocol=6 | dir=in | app=c:\program files\huawei\ensp\vboxserver\ensp_vboxserver.exe |
"TCP Query User{8A7C3E3B-5761-4E40-9E22-5CC01403065C}C:\program files\formatfactory\ffmodules\package\ptinstonline.exe" = protocol=6 | dir=in | app=c:\program files\formatfactory\ffmodules\package\ptinstonline.exe |
"TCP Query User{B8B99373-7C16-4337-B377-DFF47CA4D062}C:\program files\microsoft office\office14\outlook.exe" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"TCP Query User{BA0522D3-8C39-40E3-919C-28FC5402B10C}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{D61F96BA-5DC5-4BB9-BB28-0A7E4D185F20}F:\ctipexplorer.exe" = protocol=6 | dir=in | app=f:\ctipexplorer.exe |
"TCP Query User{DB56EAF2-E519-4F0E-B29B-AE7620E498A7}C:\program files\filezilla ftp client\filezilla.exe" = protocol=6 | dir=in | app=c:\program files\filezilla ftp client\filezilla.exe |
"TCP Query User{F3E2492B-311C-4FB2-A235-06FF166A4180}C:\program files\huawei\ensp\consoleserver\ensp_server.exe" = protocol=6 | dir=in | app=c:\program files\huawei\ensp\consoleserver\ensp_server.exe |
"UDP Query User{493A684C-4988-422F-B701-6E610516FFC1}F:\ctipexplorer.exe" = protocol=17 | dir=in | app=f:\ctipexplorer.exe |
"UDP Query User{669823EB-4CCE-4BEA-9AA0-1C3F4959F83C}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{7C281C2D-D6B1-4741-BC4E-D8B50E411411}C:\program files\huawei\ensp\simserver\ensp_simserver.exe" = protocol=17 | dir=in | app=c:\program files\huawei\ensp\simserver\ensp_simserver.exe |
"UDP Query User{ABCBB4D2-97FB-4002-A7FC-988E31C260E5}C:\program files\huawei\ensp\ensp_client.exe" = protocol=17 | dir=in | app=c:\program files\huawei\ensp\ensp_client.exe |
"UDP Query User{B8498607-4047-47E4-9B6A-A8CBFBD1042D}C:\program files\microsoft office\office14\outlook.exe" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"UDP Query User{C29800AB-5584-46B9-BFAF-247D999B50DD}C:\program files\formatfactory\ffmodules\package\ptinstonline.exe" = protocol=17 | dir=in | app=c:\program files\formatfactory\ffmodules\package\ptinstonline.exe |
"UDP Query User{DECA861B-E2E6-46E8-A591-8704E2C2207A}C:\program files\filezilla ftp client\filezilla.exe" = protocol=17 | dir=in | app=c:\program files\filezilla ftp client\filezilla.exe |
"UDP Query User{E17EB5F9-7AAC-4DB1-A28A-DD48E0ECC435}C:\program files\java\jre1.6.0_07\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.6.0_07\bin\java.exe |
"UDP Query User{F57EA1E8-8CBB-4430-874B-3465A37D4165}C:\program files\huawei\ensp\consoleserver\ensp_server.exe" = protocol=17 | dir=in | app=c:\program files\huawei\ensp\consoleserver\ensp_server.exe |
"UDP Query User{FF14B352-4B14-4FC6-93F0-C57C2340F1CC}C:\program files\huawei\ensp\vboxserver\ensp_vboxserver.exe" = protocol=17 | dir=in | app=c:\program files\huawei\ensp\vboxserver\ensp_vboxserver.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{044035E1-9FBD-4358-B045-91C77888E63E}" = Intel(R) ME UninstallLegacy
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2414" = CanoScan LiDE 110 Scanner Driver
"{12B48DAD-25A7-4861-A6FB-58C237214353}" = MySQL Workbench 5.1 OSS
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{1444B16A-766B-4AD1-8AE8-F0C04C782E2F}" = MySQL Query Browser 1.1
"{14AFE241-FC6E-4FDB-BCA0-7AD6F4974171}" = Adobe Setup
"{14E81687-998C-4E74-AC7B-E5338743E18C}" = Oracle VM VirtualBox 4.2.8
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16793295-2366-40F7-A045-A3E42A81365E}" = Bing Bar
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1CEAC85D-2590-4760-800F-8DE5E91F3700}" = Intel(R) Management Engine Components
"{1D7029B7-B42B-3012-B74A-904C81A3662D}" = Microsoft .NET Framework 4.5 FRA Language Pack
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype"! 7.5
"{2F672AB6-053A-4F23-855F-F57F7BFBA163}_is1" = WGA Remover version 1.4
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C8C9FB3-5FDF-40B4-B314-EAD722728C76}" = Macromedia Extension Manager
"{3EE9923D-3045-46AB-9CAA-E375993AEB4A}" = Intel(R) Driver Update Utility 2.2
"{3F011A89-F12F-486F-8CCB-FC31FFC866DD}" = Symantec DLO Desktop Agent
"{437F5BA1-449C-4FF5-B136-8A037B950919}" = SQL Server Browser pour SQL Server 2012
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{5A842CF6-7E61-52D7-C64C-2F20E9D408F1}_is1" = Ashampoo MP3 Cover Finder v.1.0.15
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{6FCD4D5A-20B9-4D79-ABA5-4E7048944025}" = RealDownloader
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{787A349C-82C4-43B2-B639-9A4DC390B290}" = RSyslog Windows Agent 3.1 - Build 134
"{7CCB6F2A-B1BD-4453-A669-C47BF88D53CF}" = MySQL Server 5.6
"{811D5102-2D0B-494E-A5BA-E68AB043BA67}" = Intel(R) Management Engine Components
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{86480C70-BDAB-4C58-B96E-3FF5469A6979}" = pCon.planner STD
"{90140000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2010
"{90140000-0054-040C-0000-0000000FF1CE}" = Microsoft Office Visio MUI (French) 2010
"{90140000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2010
"{90150000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - 'DD:) 'D91(J)
"{90150000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040C-0000-0000000FF1CE}" = Outils de vérification linguistique 2013 de Microsoft Office - Français
"{90150000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Nederlands
"{90150000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2013
"{90150000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2013
"{90150000-012B-040C-0000-0000000FF1CE}" = Microsoft Lync MUI (French) 2013
"{90150000-012C-0000-0000-0000000FF1CE}" = Microsoft Lync 2013
"{91140000-0057-0000-0000-0000000FF1CE}" = Microsoft Office Visio 2010
"{91B33C97-5B38-0A92-D04A-A0F26F3F87D4}_is1" = Ashampoo Burning Studio 15 v.15.0.4
"{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1" = Ashampoo Burning Studio 14 v.14.0.9
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036" = Module linguistique de Microsoft .NET Framework 4.5 - FRA
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{9F612429-4A00-3D44-88CF-146DA2EE1F92}" = Microsoft .NET Framework 4.5
"{9FEFC480-C53D-47DB-A352-77839A925073}" = Advanced IP Scanner 2.3
"{A8D93648-9F7F-407D-915C-62044644C3DA}" = MSI to redistribute MS VS2005 CRT libraries
"{AAC2A4E1-C785-40D1-95FD-643058C950C3}" = Intel(R) Management Engine Components
"{AC76BA86-0804-1033-1959-001824166751}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1036-7B44-AC0F074E4100}" = Adobe Acrobat Reader DC - Français
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{bda3368d-37bf-4e4a-84b3-3cc1b2155e46}" = Intel(R) PRO/Wireless Driver
"{BFDADC41-FDCD-4B9C-B446-8A818D01BEA3}" = Configuration Manager Client
"{C11572B8-A206-4444-AE18-5463BF49B559}" = Multimedia Conference version 4.9.2.0
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{c7e31d24-c0d0-4e7d-905d-2d4f8ca67df2}" = Logiciel Intel® PROSet/Wireless
"{ca4bc3a8-b99c-4416-90d8-351a8ceab458}" = Intel Driver Update Utility
"{CBD5A60A-FF2C-4FEA-8249-3C75FEE23745}" = ActivIdentity SecureLogin x86
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{D7AC932D-297F-46C8-9834-FA23854CC150}_is1" = Apowersoft Convertisseur Vidéo V4.0.8
"{DA37A981-A569-4283-95F2-CDC18216008D}" = NSClient++ (x86)
"{DD1AF090-041E-4403-B27A-AC6FA4B985E8}" = Intel® PROSet/Wireless WiFi Software
"{E3964939-B22A-35A3-B149-477BD630B3B6}" = Google Chrome
"{E3AE96D6-E196-45B4-AF62-2B41998B9E37}" = UpdateService
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F26351A4-13E5-4B1B-B856-F32BC68E1B46}" = PC Token 4.0 (x86)
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FD6F9A89-C5ED-4C5A-B1E5-EC6C935C67ED}" = Intel® Trusted Connect Service Client
"ActiveTouchMeetingClient" = Cisco WebEx Meetings
"ActSys" = ActSys
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 18 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 18 NPAPI
"Adobe_acce07fd2c8fe7f9e3f26243e626578" = Adobe Dreamweaver CS4
"BSPlayerf" = BS.Player FREE
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonSolutionMenuEX" = Canon Solution Menu EX
"CCleaner" = CCleaner
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"EGR-ShellExtension" = EGR-ShellExtension
"FBDBServer_2_1_is1" = Firebird 2.1.1.17910 (Win32)
"FileZilla Client" = FileZilla Client 3.15.0.2
"FormatFactory" = FormatFactory 3.8.0.0
"Free Mp3 Wma Converter_is1" = Free Mp3 Wma Converter V 2.2
"GIMP-2_is1" = GIMP 2.8.14
"GOM Player" = GOM Player
"GOSafer" = GOSafer
"HEXwrite_is1" = HEXwrite
"imeshkoyotesoftmoviestoolbarIE" = Movies Search App for Internet Explorer (Dist. by Koyote-Lab, Inc.)
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"iSafe" = YAC(Yet Another Cleaner!)
"iSkysoft iMedia Converter Deluxe_is1" = iSkysoft iMedia Converter Deluxe(Build 5.8.0.1)
"Mozilla Firefox 44.0.2 (x86 fr)" = Mozilla Firefox 44.0.2 (x86 fr)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
"mRemoteNG" = mRemoteNG
"Netscape Navigator (9.0.0.6)" = Netscape Navigator (9.0.0.6)
"Notepad++" = Notepad++
"Office14.VISIOR" = Microsoft Visio Premium 2010
"Office15.LYNC" = Microsoft Lync 2013
"Opera 32.0.1948.69" = Opera Stable 32.0.1948.69
"Power Data Recovery_is1" = Power Data Recovery 4.1.1
"RealPlayer 12.0" = RealPlayer
"Recuva" = Recuva
"Smart Defrag 4_is1" = Smart Defrag 4
"Spark" = Baidu Browser
"Supercopier" = Supercopier 4.0.1.13
"TeamViewer" = TeamViewer 10
"Tool & Asset Manager 2.0" = Tool & Asset Manager 2.0
"VLC media player" = VLC media player
"WinPcapInst" = WinPcap 4.1.3
"WinRAR archiver" = Logiciel d'archivage WinRAR
"Wireshark" = Wireshark 1.4.3
"Youtube Downloader HD_is1" = Youtube Downloader HD v. 2.9.9.23

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-1648212374-108316283-1031727223-10215\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"HP Photo Creations" = HP Photo Creations

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 05/03/2016 19:09:32 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = RSyslogWindowsAgent | ID = 104
Description = The initialization process failed.

Error - 05/03/2016 19:09:49 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = WinMgmt | ID = 10
Description =

Error - 07/03/2016 04:16:44 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = RSyslogWindowsAgent | ID = 201
Description = RSyslog Windows Agent trial expired. The Service is now disabled. Please
visit http://www.rsyslog.com/windows-agent/ to purchase the product. There is no
need to reinstall the product after purchasing. You just need to enter the registration
key. Your configuration will remain intact.

Error - 07/03/2016 04:16:44 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = RSyslogWindowsAgent | ID = 104
Description = The initialization process failed.

Error - 07/03/2016 04:16:52 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = WinMgmt | ID = 10
Description =

Error - 07/03/2016 05:05:33 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Application Error | ID = 1000
Description = Nom de l application défaillante services.exe, version : 6.1.7600.16385,
horodatage : 0x4a5bbf1b Nom du module défaillant : iSafeSrvMon.dll, version : 6.1.45.23411,
horodatage : 0x5500213d Code d exception : 0xc0000417 Décalage d erreur : 0x00005199
ID
du processus défaillant : 0x244 Heure de début de l application défaillante : 0x01d17849857d3563
Chemin
d accès de l application défaillante : C:\Windows\system32\services.exe Chemin d accès
du module défaillant: C:\Program Files\Elex-tech\YAC\iSafeSrvMon.dll ID de rapport
: bf5447a7-e443-11e5-80d6-a0481cdd7086

Error - 07/03/2016 05:08:08 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = RSyslogWindowsAgent | ID = 201
Description = RSyslog Windows Agent trial expired. The Service is now disabled. Please
visit http://www.rsyslog.com/windows-agent/ to purchase the product. There is no
need to reinstall the product after purchasing. You just need to enter the registration
key. Your configuration will remain intact.

Error - 07/03/2016 05:08:08 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = RSyslogWindowsAgent | ID = 104
Description = The initialization process failed.

Error - 07/03/2016 05:08:18 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = WinMgmt | ID = 10
Description =

Error - 07/03/2016 05:17:41 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Office 2013 Licensing Service | ID = 0
Description =

[ Cisco AnyConnect VPN Client Events ]
Error - 05/03/2016 09:42:59 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67108866
Description = Function: CChangeRouteHelper::AddRouteChange File: .\ChangeRouteHelper.cpp
Line:
1295 Invoked Function: AddRouteChange Return Code: -33095666 (0xFE07000E) Description:
ROUTETABLE_ERROR_DELETEIPFORWARDENTRY_FAILED

Error - 05/03/2016 09:42:59 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67110872
Description = Failed Route change: Action: DelRoute Destination: 192.168.1.255 Netmask:
255.255.255.255 Gateway: 192.168.1.104 Interface: 192.168.1.104 Metric: 256

Error - 05/03/2016 09:42:59 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67108866
Description = Function: CChangeRouteHelper::SetRouteTable File: .\ChangeRouteHelper.cpp
Line:
245 Invoked Function: AddRouteChange Return Code: -33095666 (0xFE07000E) Description:
ROUTETABLE_ERROR_DELETEIPFORWARDENTRY_FAILED

Error - 05/03/2016 09:42:59 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67108866
Description = Function: CChangeRouteHelper::AddRouteChange File: .\ChangeRouteHelper.cpp
Line:
1295 Invoked Function: AddRouteChange Return Code: -33095666 (0xFE07000E) Description:
ROUTETABLE_ERROR_DELETEIPFORWARDENTRY_FAILED

Error - 05/03/2016 09:42:59 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67110872
Description = Failed Route change: Action: DelRoute Destination: 169.254.255.255

Netmask: 255.255.255.255 Gateway: 169.254.127.64 Interface: 169.254.127.64 Metric:
256

Error - 05/03/2016 09:42:59 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67108866
Description = Function: CChangeRouteHelper::SetRouteTable File: .\ChangeRouteHelper.cpp
Line:
245 Invoked Function: AddRouteChange Return Code: -33095666 (0xFE07000E) Description:
ROUTETABLE_ERROR_DELETEIPFORWARDENTRY_FAILED

Error - 05/03/2016 10:09:49 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67108866
Description = Function: CChangeRouteHelper::ClearRouteTable File: .\ChangeRouteHelper.cpp
Line:
413 Invoked Function: AddRoute Return Code: -33095667 (0xFE07000D) Description: ROUTETABLE_ERROR_CREATEIPFORWARDENTRY_FAILED


Error - 05/03/2016 10:09:49 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67108866
Description = Function: CChangeRouteHelper::ClearRouteTable File: .\ChangeRouteHelper.cpp
Line:
413 Invoked Function: AddRoute Return Code: -33095667 (0xFE07000D) Description: ROUTETABLE_ERROR_CREATEIPFORWARDENTRY_FAILED


Error - 05/03/2016 10:09:49 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67108866
Description = Function: CChangeRouteHelper::ClearRouteTable File: .\ChangeRouteHelper.cpp
Line:
404 Invoked Function: DeleteRoute Return Code: -33095666 (0xFE07000E) Description:
ROUTETABLE_ERROR_DELETEIPFORWARDENTRY_FAILED

Error - 05/03/2016 10:09:49 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = vpnagent | ID = 67108866
Description = Function: CChangeRouteHelper::ClearRouteTable File: .\ChangeRouteHelper.cpp
Line:
404 Invoked Function: DeleteRoute Return Code: -33095666 (0xFE07000E) Description:
ROUTETABLE_ERROR_DELETEIPFORWARDENTRY_FAILED

[ Media Center Events ]
Error - 08/06/2015 03:58:29 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 07:58:22 - Erreur de connexion à Internet. 07:58:22 - Impossible
de contacter le service..

Error - 08/06/2015 04:59:19 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 08:59:19 - Erreur de connexion à Internet. 08:59:19 - Impossible
de contacter le service..

Error - 08/06/2015 05:00:11 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 09:00:06 - Erreur de connexion à Internet. 09:00:06 - Impossible
de contacter le service..

Error - 08/06/2015 06:01:02 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 10:01:02 - Erreur de connexion à Internet. 10:01:02 - Impossible
de contacter le service..

Error - 08/06/2015 06:01:55 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 10:01:49 - Erreur de connexion à Internet. 10:01:49 - Impossible
de contacter le service..

Error - 08/06/2015 07:02:44 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 11:02:44 - Erreur de connexion à Internet. 11:02:44 - Impossible
de contacter le service..

Error - 08/06/2015 07:03:36 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 11:03:31 - Erreur de connexion à Internet. 11:03:31 - Impossible
de contacter le service..

Error - 10/06/2015 04:25:07 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 08:25:00 - Erreur de connexion à Internet. 08:25:01 - Impossible
de contacter le service..

Error - 10/06/2015 04:28:00 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 08:26:23 - Erreur de connexion à Internet. 08:26:23 - Impossible
de contacter le service..

Error - 12/06/2015 04:21:26 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = MCUpdate | ID = 0
Description = 08:21:02 - Erreur de connexion à Internet. 08:21:02 - Impossible
de contacter le service..

[ System Events ]
Error - 07/03/2016 05:08:11 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d amorçage suivant n a pas pu se
charger : F06DEFF2-5B9C-490D-910F-35D3A9119622 ssfilterdrv {0bb5bb01-951b-4223-8fcb-b066d3518b73}Gw
{674829ea-f837-40f8-b8e1-613b1b2d47c8}Gw
{674829ea-f837-40f8-b8e1-613b1b2d47c8}w
{b4e11afe-4c35-4044-965f-6641cc18f62e}Gw
{cb70d938-64a3-429a-9de7-76efb8483eb3}Gw
{f4191bb0-3007-4fbd-b83f-cc45648f3845}Gw

Error - 07/03/2016 05:08:30 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = DCOM | ID = 10016
Description =

Error - 07/03/2016 05:17:23 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Microsoft Antimalware | ID = 2001
Description = %%860 a rencontré une erreur lors de la tentative de mise à jour des
signatures. Nouvelle version des signatures : Version précédente des signatures :
1.215.312.0 Source de la mise à jour : %%859 Étape de la mise à jour : %%852 Chemin
d'accès source : http://www.microsoft.com Type de signature : %%800 Type de la mise
à jour : %%803 Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version
précédente du moteur : 1.1.12505.0 Code d'erreur : 0x80072ee2 Description de l'erreur :
Le délai imparti à l opération est dépassé

Error - 07/03/2016 05:17:44 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Microsoft Antimalware | ID = 2001
Description = %%860 a rencontré une erreur lors de la tentative de mise à jour des
signatures. Nouvelle version des signatures : Version précédente des signatures :
1.215.312.0 Source de la mise à jour : %%851 Étape de la mise à jour : %%852 Chemin
d'accès source : http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.12505.0&avdelta=1.215.312.0&asdelta=1.215.312.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094

Type
de signature : %%800 Type de la mise à jour : %%803 Utilisateur : AUTORITE NT\SERVICE
RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.12505.0 Code
d'erreur : 0x80072ee2 Description de l'erreur : Le délai imparti à l opération est
dépassé

Error - 07/03/2016 05:17:44 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Microsoft Antimalware | ID = 2001
Description = %%860 a rencontré une erreur lors de la tentative de mise à jour des
signatures. Nouvelle version des signatures : Version précédente des signatures :
1.215.312.0 Source de la mise à jour : %%851 Étape de la mise à jour : %%852 Chemin
d'accès source : http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.12505.0&avdelta=1.215.312.0&asdelta=1.215.312.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094

Type
de signature : %%801 Type de la mise à jour : %%803 Utilisateur : AUTORITE NT\SERVICE
RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.12505.0 Code
d'erreur : 0x80072ee2 Description de l'erreur : Le délai imparti à l opération est
dépassé

Error - 07/03/2016 05:18:05 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Microsoft Antimalware | ID = 2001
Description = %%860 a rencontré une erreur lors de la tentative de mise à jour des
signatures. Nouvelle version des signatures : Version précédente des signatures :
115.35.0.0 Source de la mise à jour : %%851 Étape de la mise à jour : %%852 Chemin
d'accès source : http://go.microsoft.com/fwlink/?LinkID=260974&clcid=0x409&NRI=true&arch=x86&eng=2.1.11804.0&sig=115.35.0.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094

Type
de signature : %%886 Type de la mise à jour : %%803 Utilisateur : AUTORITE NT\SERVICE
RÉSEAU Version actuelle du moteur : Version précédente du moteur : 2.1.11804.0 Code
d'erreur : 0x80072ee2 Description de l'erreur : Le délai imparti à l opération est
dépassé

Error - 07/03/2016 05:28:13 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Microsoft Antimalware | ID = 2001
Description = %%860 a rencontré une erreur lors de la tentative de mise à jour des
signatures. Nouvelle version des signatures : Version précédente des signatures :
1.215.312.0 Source de la mise à jour : %%859 Étape de la mise à jour : %%852 Chemin
d'accès source : http://www.microsoft.com Type de signature : %%800 Type de la mise
à jour : %%803 Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version
précédente du moteur : 1.1.12505.0 Code d'erreur : 0x80072ee2 Description de l'erreur :
Le délai imparti à l opération est dépassé

Error - 07/03/2016 05:28:34 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Microsoft Antimalware | ID = 2001
Description = %%860 a rencontré une erreur lors de la tentative de mise à jour des
signatures. Nouvelle version des signatures : Version précédente des signatures :
1.215.312.0 Source de la mise à jour : %%851 Étape de la mise à jour : %%852 Chemin
d'accès source : http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.12505.0&avdelta=1.215.312.0&asdelta=1.215.312.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094

Type
de signature : %%800 Type de la mise à jour : %%803 Utilisateur : AUTORITE NT\SERVICE
RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.12505.0 Code
d'erreur : 0x80072ee2 Description de l'erreur : Le délai imparti à l opération est
dépassé

Error - 07/03/2016 05:28:34 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Microsoft Antimalware | ID = 2001
Description = %%860 a rencontré une erreur lors de la tentative de mise à jour des
signatures. Nouvelle version des signatures : Version précédente des signatures :
1.215.312.0 Source de la mise à jour : %%851 Étape de la mise à jour : %%852 Chemin
d'accès source : http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.12505.0&avdelta=1.215.312.0&asdelta=1.215.312.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094

Type
de signature : %%801 Type de la mise à jour : %%803 Utilisateur : AUTORITE NT\SERVICE
RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.12505.0 Code
d'erreur : 0x80072ee2 Description de l'erreur : Le délai imparti à l opération est
dépassé

Error - 07/03/2016 05:28:55 | Computer Name = NHAGA-PC.orange-sonatel.com | Source = Microsoft Antimalware | ID = 2001
Description = %%860 a rencontré une erreur lors de la tentative de mise à jour des
signatures. Nouvelle version des signatures : Version précédente des signatures :
115.35.0.0 Source de la mise à jour : %%851 Étape de la mise à jour : %%852 Chemin
d'accès source : http://go.microsoft.com/fwlink/?LinkID=260974&clcid=0x409&NRI=true&arch=x86&eng=2.1.11804.0&sig=115.35.0.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094

Type
de signature : %%886 Type de la mise à jour : %%803 Utilisateur : AUTORITE NT\SERVICE
RÉSEAU Version actuelle du moteur : Version précédente du moteur : 2.1.11804.0 Code
d'erreur : 0x80072ee2 Description de l'erreur : Le délai imparti à l opération est
dépassé


< End of report >

Publicité


Signaler le contenu de ce document

Publicité