cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02-07-2016
Exécuté par evil_ (2016-07-07 14:25:05)
Exécuté depuis C:\Users\evil_\Desktop
Windows 10 Pro Version 1511 (X64) (2015-12-11 02:14:44)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-1657638429-3295118081-4253339948-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1657638429-3295118081-4253339948-503 - Limited - Disabled)
evil_ (S-1-5-21-1657638429-3295118081-4253339948-1001 - Administrator - Enabled) => C:\Users\evil_
Invité (S-1-5-21-1657638429-3295118081-4253339948-501 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
AIDA64 Extreme v5.70 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.70 - FinalWire Ltd.)
Canon MX450 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX450_series) (Version: 1.00 - Canon Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Français - Clavier Apple avec Pavé Numérique (HKLM\...\{17D51E9F-D14C-428D-9E47-37A4126796C0}) (Version: 1.0.3.40 - Jean-Michel Paris)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter version 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Herramientas de corrección de Microsoft Office 2016: español (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Hurtworld (HKLM\...\Steam App 393420) (Version: - Bankroll Studios)
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version: - Valve)
Mad Max (HKLM\...\Steam App 234140) (Version: - Avalanche Studios)
Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: - )
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Mises à jour NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 47.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 fr)) (Version: 47.0 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MyHarmony (HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\036a0e4fc6a247ec) (Version: 1.0.1.257 - Logitech)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 368.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.69 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Pilote graphique 368.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.69 - NVIDIA Corporation)
Office 2016 KMS Activator Ultimate v1.1 Final (HKLM\...\Office 2016 KMS Activator Ultimate v1.1 Final_is1) (Version: v1.1 Final - )
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
Outils de vérification linguistique 2016 de Microsoft Office - Français (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Panneau de configuration NVIDIA 368.69 (Version: 368.69 - NVIDIA Corporation) Hidden
PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
R.O.W Beta version 2.2 (HKLM-x32\...\{3454E611-7FC4-4322-ADBD-55F3C2F68765}_is1) (Version: 2.2 - ROW PROJECT)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Rocket League (HKLM\...\Steam App 252950) (Version: - Psyonix, Inc.)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Taalprogramma's voor Microsoft Office 2016 - Nederlands (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
The Forest (HKLM\...\Steam App 242760) (Version: - Endnight Games Ltd)
Total Uninstall 6.16.0 (HKLM\...\Total Uninstall 6_is1) (Version: 6.16.0 - Gavrila Martau)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115087) 64-Bit Edition (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{C48D0508-2A21-42EA-8BC9-D387768F54F4}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 20.1 - Ubisoft)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-1657638429-3295118081-4253339948-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\evil_\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {052B7F65-DA29-41D7-80BD-736CCD585111} - System32\Tasks\AutoPico Daily Restart => C:\Users\evil_\AppData\Local\Temp\RarSFX0\AutoPico.exe <==== ATTENTION
Task: {1FC6F93A-D74D-40DE-979A-CAB1703196B1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-16] (Adobe Systems Incorporated)
Task: {51D7D69C-FF5F-449E-8F25-2EEE015A2367} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-21] (Google Inc.)
Task: {6CB428AE-6A75-47B0-B0D7-ED6E812AD977} - System32\Tasks\CTF Host => C:\Users\evil_\AppData\Roaming\Steam\Ctfhost\ctfhost.exe
Task: {800591FA-B06E-4BA9-AE47-1ADB09D3EDFA} - System32\Tasks\{134487F3-C1CD-4C66-981C-79198253BEA7} => pcalua.exe -a "C:\Monster Hunter Online\QQPCMgr\11.5.17480.801\Uninst.exe" -d "C:\Monster Hunter Online\QQPCMgr\11.5.17480.801"
Task: {8E4E1669-9E16-4BB2-B735-78A019605BBF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-06-14] (Microsoft Corporation)
Task: {AC60A9D5-20E5-4723-AC17-D284510F609D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-21] (Google Inc.)
Task: {B8A0805E-425D-45BB-9A94-309BC9F29776} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {C5C6759B-290F-48AF-BB4A-57D86D9E1F61} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {E5E17014-A06D-4B79-B3E0-AFD7E8258E7F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {F8955015-47B6-4DE8-9691-6F2862244C29} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

==================== Modules chargés (Avec liste blanche) ==============

2016-06-30 13:54 - 2016-06-14 22:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-06-30 13:40 - 2016-06-14 22:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-06-30 13:54 - 2016-06-14 22:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-06-30 13:54 - 2016-06-14 22:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-06-30 13:54 - 2016-06-14 22:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-06-30 13:54 - 2016-06-14 22:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-06-30 13:54 - 2016-06-14 22:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-06-30 13:54 - 2016-06-14 22:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-11 04:09 - 2016-06-29 19:50 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-04-12 19:42 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-12 19:42 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-28 13:53 - 2016-05-28 13:53 - 00959168 _____ () C:\Users\evil_\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2015-12-18 16:52 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-11 14:16 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-06-14 21:28 - 2016-05-28 05:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-06-14 21:28 - 2016-05-28 05:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-06-14 21:29 - 2016-05-28 05:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-06-14 21:29 - 2016-05-28 05:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-02-19 19:25 - 2014-02-19 19:25 - 00103424 _____ () C:\Program Files\Supercopier\libgcc_s_sjlj-1.dll
2014-02-19 19:25 - 2014-02-19 19:25 - 01062912 _____ () C:\Program Files\Supercopier\libstdc++-6.dll
2014-02-19 19:25 - 2014-02-19 19:25 - 01071616 _____ () C:\Program Files\Supercopier\qt-plugins\platforms\qwindows.dll
2016-06-29 23:33 - 2016-06-27 13:38 - 00075776 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2016-06-30 13:54 - 2016-06-14 22:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-06-30 13:54 - 2016-06-14 22:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-04-19 11:08 - 2016-04-19 11:57 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-06-03 16:28 - 2016-06-03 16:30 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-06-03 16:28 - 2016-06-03 16:30 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-03 16:28 - 2016-06-03 16:30 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-03-04 21:01 - 2016-03-04 21:33 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-06-28 12:45 - 2016-06-28 12:45 - 03790336 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1605.1582.0_x64__8wekyb3d8bbwe\Calculator.exe
2015-12-15 19:07 - 2015-12-15 19:08 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1605.1582.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-09-14 13:09 - 2015-09-14 13:09 - 00035792 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-09-14 13:09 - 2015-09-14 13:09 - 00445904 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2015-09-14 13:09 - 2015-09-14 13:09 - 00115664 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll
2016-01-18 21:52 - 2016-06-14 22:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\acrotray.fra
2016-04-19 11:08 - 2016-04-19 11:57 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 11:08 - 2016-04-19 11:57 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-06-18 04:56 - 2016-06-15 11:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-18 04:56 - 2016-06-15 11:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\ProgramData\Reprise:qylgldjulgxlcefubdife`efnp`4euwqmbzifh [0]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)


==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\aeriagames.com -> hxxp://aeriagames.com

==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-05-23 15:06 - 2016-01-23 15:49 - 00000861 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 activation.acronis.com

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\evil_\OneDrive\Images\wall\great-white-shark-wallpapers-mobile.jpg
DNS Servers: 212.27.40.240 - 212.27.40.241
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "Diamondback"
HKLM\...\StartupApproved\Run32: => "Aeria Ignite"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_87A3FC79D4F19D40BABB57ED1E3F16A7"
HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\StartupApproved\Run: => "Plex Media Server"
HKU\S-1-5-21-1657638429-3295118081-4253339948-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{23783204-1A6E-42DD-A572-D5E66E8649B3}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{F6AA6A55-97F6-467B-8C6F-9B869E153C5B}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{01FE110A-DD6C-4D60-8769-ED27311C3366}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{35AB3CC9-1DFB-41D6-8BD7-6C12A67D4300}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{C6B0197C-4F23-43CA-B8A3-100A9C3964C6}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{0A5433DB-8D37-451C-8A1F-1AC024E27AE5}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{EFEEBB5F-16EF-438F-B890-317574A56AE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{5EEDA300-1ED4-4AEF-A195-361D27FCE251}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{5AED1A42-9E50-4B81-98AE-2B502EF46150}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{1A49AB78-1F88-406F-AF38-51BE23821E82}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [UDP Query User{41FC8528-E974-4AB0-8511-47E15F3C993A}D:\jeux\kings quest chapter 1\binaries\win\kingsquest.exe] => (Block) D:\jeux\kings quest chapter 1\binaries\win\kingsquest.exe
FirewallRules: [TCP Query User{2B88D9F6-B620-4DBD-BE43-9F3EF7F86F90}D:\jeux\kings quest chapter 1\binaries\win\kingsquest.exe] => (Block) D:\jeux\kings quest chapter 1\binaries\win\kingsquest.exe
FirewallRules: [{D6E5FA10-B793-44D2-93DD-6770536A8683}] => (Block) C:\users\evil_\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{72C7A7FA-2099-4A8E-99FE-50FB3F061690}] => (Block) C:\users\evil_\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{560C1934-F3B4-428E-8B98-C380E41756D3}C:\users\evil_\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\evil_\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{44FCB909-462D-48C1-BE85-3B890F70FF47}C:\users\evil_\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\evil_\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{9D9A118E-068F-4C17-A3D6-BD5A41A60B1F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{46124245-63B7-430C-AC5F-5EEBD5E66E2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{3E8B0CB4-E369-482E-962F-67CEAD074160}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{48B81914-62EE-4AD7-86FE-23A1A89E5F8C}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{35394005-62F9-494A-96C6-DAEAAA6A8E8F}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{FB5351D3-82D2-49A1-827C-83041F17ADA7}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{4EBD593F-F93A-46B1-8CE2-5AF5C4B879CC}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{6768A721-25C7-46F1-887F-9963C23F2115}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2944EDF8-3DAD-4AA9-B57E-FBF51B53CF0C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AB83881F-2113-46FE-B697-40B54C27B3C0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A1141A4F-1BCD-4E87-932F-243E92C87ECF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9FF95852-11FB-4C37-AF64-704A8E1CF8E8}] => (Allow) C:\Users\evil_\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{512D397E-C95A-47E5-B52F-AB9CCE0B201B}] => (Allow) C:\Users\evil_\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B9D59957-DF9B-4822-AE6E-2AF0E116972F}] => (Allow) C:\Users\evil_\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F55AEA16-9FDE-4321-ABB8-7589677B5A47}] => (Allow) C:\Users\evil_\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2D9207D8-0EA0-4728-9290-EE38DF8567DB}] => (Allow) C:\Users\evil_\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{557B05AF-9A34-47E7-8B4F-3C99A5F6EC12}] => (Allow) C:\Users\evil_\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1CB6E998-C90E-4909-9F17-3A09BC199BA5}] => (Allow) C:\AeriaGames\DragomonHunter-FR\Game.bin
FirewallRules: [{23F45B2B-E462-4721-81E3-ADBB1B6761BC}] => (Allow) C:\AeriaGames\DragomonHunter-FR\Game.bin
FirewallRules: [TCP Query User{77BF2D53-FC23-4F19-8FA8-29AB83CFA2E2}E:\windows client\wezee-disk-v1.0.8.4.exe] => (Allow) E:\windows client\wezee-disk-v1.0.8.4.exe
FirewallRules: [UDP Query User{AA62D4D4-B392-44ED-B285-FFD5F11DE60A}E:\windows client\wezee-disk-v1.0.8.4.exe] => (Allow) E:\windows client\wezee-disk-v1.0.8.4.exe
FirewallRules: [TCP Query User{E8708CD5-2772-4559-BE35-9AB5945DE5C1}C:\users\evil_\desktop\wezee-disk-v1.0.8.4.exe] => (Allow) C:\users\evil_\desktop\wezee-disk-v1.0.8.4.exe
FirewallRules: [UDP Query User{039D8B04-08A0-45FF-A606-C5185F138E0A}C:\users\evil_\desktop\wezee-disk-v1.0.8.4.exe] => (Allow) C:\users\evil_\desktop\wezee-disk-v1.0.8.4.exe
FirewallRules: [{955F476D-6115-45E3-919E-38B9E498512E}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{D8F83143-248C-47B0-B334-E5D075CD8436}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{53689E81-C8CA-41E1-BCE9-2277FBCAC249}] => (Allow) D:\Jeux\Life Is Strange\steam_api64.exe
FirewallRules: [{DA1DD4E3-6526-4B60-BD55-1385BA6F171F}] => (Allow) D:\Jeux\Life Is Strange\steam_api64.exe
FirewallRules: [{57BC1292-288F-42BF-A087-66D50B4C999F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A23D54EA-889F-49B9-A3C5-D02860A3FED0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{98944D61-11E8-4CC0-AEA3-A174978BC5CD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{BA9F3A04-0F43-4F01-9982-7DC4F0899ABE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6803398C-0694-43D5-AAA1-9D17DB400618}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{D773362F-4856-4656-9779-EDDECE1B0C8D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0B2F811F-6372-4861-8969-935552D3A6D4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{AE97F8FA-D686-401C-AC29-5DB5645E5A0C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B4AB8815-1F4D-4209-86AC-36EA1CE90D02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{59CCD3D4-AAD9-4D81-8489-A15D54ED5CAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [TCP Query User{DEF60F1C-2E89-40E3-81E6-8AC56FB79634}D:\jeux\dying light the following enhanced edition\dyinglightgame.exe] => (Allow) D:\jeux\dying light the following enhanced edition\dyinglightgame.exe
FirewallRules: [UDP Query User{0AF05ED2-FFFF-44C6-B163-2B86D1C144BF}D:\jeux\dying light the following enhanced edition\dyinglightgame.exe] => (Allow) D:\jeux\dying light the following enhanced edition\dyinglightgame.exe
FirewallRules: [TCP Query User{766C452C-C6AD-43F5-964C-6885EAB36C54}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{DBC0B84D-FF9A-42BD-BDEF-2762BBD364C0}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{AB840A90-4788-4E31-92CE-E065AF9FE740}D:\jeux\kings quest chapter 2\binaries\win\kingsquest.exe] => (Allow) D:\jeux\kings quest chapter 2\binaries\win\kingsquest.exe
FirewallRules: [UDP Query User{0BC6DD38-06A5-4FDA-9126-AAC035BFC808}D:\jeux\kings quest chapter 2\binaries\win\kingsquest.exe] => (Allow) D:\jeux\kings quest chapter 2\binaries\win\kingsquest.exe
FirewallRules: [{240CCC30-F816-40E4-9A30-4D9386C18B1B}] => (Allow) D:\Jeux\steam\steamapps\common\Mad Max\MadMax.exe
FirewallRules: [{F0D3AF7A-3371-4BBB-B6AF-4AF6435E218C}] => (Allow) D:\Jeux\steam\steamapps\common\Mad Max\MadMax.exe
FirewallRules: [{359C9A73-9A55-4598-A184-78A4796F716D}] => (Allow) D:\Jeux\steam\steamapps\common\Remember Me\Binaries\Win32\RememberMe.exe
FirewallRules: [{280497EC-E523-4D94-871D-7B36EB90CFB5}] => (Allow) D:\Jeux\steam\steamapps\common\Remember Me\Binaries\Win32\RememberMe.exe
FirewallRules: [{1374FF88-87D2-4214-AC79-C733441BEBA3}] => (Allow) D:\Jeux\steam\steamapps\common\Resident Evil 4\Bin32\bio4.exe
FirewallRules: [{4FB7E37D-7794-44BC-A513-C0B7E6D91004}] => (Allow) D:\Jeux\steam\steamapps\common\Resident Evil 4\Bin32\bio4.exe
FirewallRules: [{D03CCF9B-48F5-482E-A51F-C809015D4966}] => (Allow) D:\Jeux\steam\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [{00D3A333-9D24-4C54-A831-A2EE147D554D}] => (Allow) D:\Jeux\steam\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe
FirewallRules: [TCP Query User{0074DE6F-4C88-4585-B4CD-A6AB1614D0F2}C:\program files (x86)\r.o.w beta\bin\openvpn.exe] => (Allow) C:\program files (x86)\r.o.w beta\bin\openvpn.exe
FirewallRules: [UDP Query User{E2E9C2A1-6028-4CF7-A9AA-F8486F07FA9C}C:\program files (x86)\r.o.w beta\bin\openvpn.exe] => (Allow) C:\program files (x86)\r.o.w beta\bin\openvpn.exe
FirewallRules: [TCP Query User{FE7333A3-D4B3-4F8F-AF58-5F1E09EB32EC}D:\jeux\dragonball xenoverse\dbxv.exe] => (Allow) D:\jeux\dragonball xenoverse\dbxv.exe
FirewallRules: [UDP Query User{2B5DB7E9-C585-4D37-ACD0-BE4FD644A725}D:\jeux\dragonball xenoverse\dbxv.exe] => (Allow) D:\jeux\dragonball xenoverse\dbxv.exe
FirewallRules: [{F32CA45C-A352-49C1-93B6-68EE06CB97D3}] => (Allow) C:\Users\evil_\AppData\Local\Temp\QQVipDownloader\mhfc_1461726964_48688\MiniQQDL.exe
FirewallRules: [{B93ADA72-C0DE-4C1E-8BF8-2D15BD65A4C0}] => (Allow) C:\Users\evil_\AppData\Local\Temp\QQVipDownloader\mhfc_1461726964_48688\MiniQQDL.exe
FirewallRules: [TCP Query User{8EBBA9DE-60EA-4E86-B3F3-013B813479FC}C:\users\evil_\appdata\local\temp\qqvipdownloader\mhfc_1461726964_48688\teniodl.exe] => (Allow) C:\users\evil_\appdata\local\temp\qqvipdownloader\mhfc_1461726964_48688\teniodl.exe
FirewallRules: [UDP Query User{632D29D9-1D62-4FF6-9362-B7CD7B57FD40}C:\users\evil_\appdata\local\temp\qqvipdownloader\mhfc_1461726964_48688\teniodl.exe] => (Allow) C:\users\evil_\appdata\local\temp\qqvipdownloader\mhfc_1461726964_48688\teniodl.exe
FirewallRules: [{C72B6305-9FAC-46BF-8B0E-5A4BD961F154}] => (Allow) C:\Users\evil_\AppData\Roaming\youku\..\ytmediacenter\ikuacc.exe
FirewallRules: [{3ECDDA91-A564-441A-B47B-67FA2AC6C992}] => (Allow) C:\Users\evil_\AppData\Roaming\youku\..\ytmediacenter\ikuacc.exe
FirewallRules: [TCP Query User{DE0FEA07-968E-4632-8830-FA3151F553D1}C:\monster hunter online\monster hunter online\tcls\tenprotect\tensafe_1.exe] => (Allow) C:\monster hunter online\monster hunter online\tcls\tenprotect\tensafe_1.exe
FirewallRules: [UDP Query User{7C7ECA7D-CF22-475A-82D4-4F0219A0FA5D}C:\monster hunter online\monster hunter online\tcls\tenprotect\tensafe_1.exe] => (Allow) C:\monster hunter online\monster hunter online\tcls\tenprotect\tensafe_1.exe
FirewallRules: [{BBCF25B5-ED63-4714-AA8C-C0CC25476C4C}] => (Allow) C:\Users\evil_\AppData\Roaming\youku\..\ytmediacenter\ikuacc.exe
FirewallRules: [TCP Query User{E22209A6-E140-470F-B0E2-98EDF6E927CC}C:\monster hunter online\monster hunter online\bin\client\bin32\mhoclient.exe] => (Allow) C:\monster hunter online\monster hunter online\bin\client\bin32\mhoclient.exe
FirewallRules: [UDP Query User{7045F36E-B4A0-4760-A78B-D20B01B82AD3}C:\monster hunter online\monster hunter online\bin\client\bin32\mhoclient.exe] => (Allow) C:\monster hunter online\monster hunter online\bin\client\bin32\mhoclient.exe
FirewallRules: [{0F7BF1B0-F08D-43CA-9974-C3F9B35DEC6E}] => (Allow) C:\Monster Hunter Online\Monster Hunter Online\Bin\Client\Bin32\Cross\crossproxy.exe
FirewallRules: [{B758EA51-AD28-4C90-A42B-9C509E87ECC9}] => (Allow) C:\Monster Hunter Online\Monster Hunter Online\Bin\Client\Bin32\Cross\crossproxy.exe
FirewallRules: [{94F14A94-E691-402C-BCA3-7EA4AF215840}] => (Allow) C:\Monster Hunter Online\Monster Hunter Online\Bin\Client\Bin32\Cross\crossproxy.exe
FirewallRules: [{6AC629F9-1A20-47E4-8052-D652DD27767D}] => (Allow) C:\Monster Hunter Online\Monster Hunter Online\Bin\Client\Bin32\Cross\crossproxy.exe
FirewallRules: [{36E5BC0C-6379-4363-907D-8A7FA60C3CFB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{27A577EC-0801-4380-91A3-DCD21BD4EC4F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C818FBF5-ED45-4D1F-97CE-D36BD7B54FA3}] => (Allow) D:\Jeux\steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{21254A13-C9B7-4F5E-9C01-E1B2C4A57AC8}] => (Allow) D:\Jeux\steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{C13638F7-3A42-4678-9946-C64F0D2178D3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{21C8B4EB-FCCA-4FCF-9AA4-7E42C75D7B3A}] => (Allow) D:\Jeux\steam\steamapps\common\Hurtworld\Hurtworld.exe
FirewallRules: [{8C4052E1-704B-40E5-B5FD-B31A5157A724}] => (Allow) D:\Jeux\steam\steamapps\common\Hurtworld\Hurtworld.exe
FirewallRules: [{A450371C-4E37-4E75-9FE4-36A782084E52}] => (Allow) D:\Jeux\steam\steamapps\common\Hurtworld\HurtworldClient.exe
FirewallRules: [{4626FB8A-E3A4-4D22-9DF8-6481A91AF5DE}] => (Allow) D:\Jeux\steam\steamapps\common\Hurtworld\HurtworldClient.exe
FirewallRules: [{20A43D61-D3B1-4B58-9D5E-F72B825916F3}] => (Allow) D:\Jeux\steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{07A3C7B2-BEDC-4CDB-9469-8BEB1394047B}] => (Allow) D:\Jeux\steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C99E0196-2173-4856-89C2-A5EFE13FCE42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ryse Son of Rome\Bin64\Ryse.exe
FirewallRules: [{B54CE726-0E3A-494F-A78D-9DE598DDEB2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ryse Son of Rome\Bin64\Ryse.exe
FirewallRules: [{4F57C7B5-9C76-4E8D-BBB7-476454339E33}] => (Allow) D:\Jeux\steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{07133093-E72F-45B4-938E-061A2CB3D70C}] => (Allow) D:\Jeux\steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{E4D94DC9-70B1-440F-BD3C-B97C4CA5E14E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B0377E66-82D9-4CA1-841B-8B01163C0B58}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8C01D767-9653-428D-8D2E-B1E5FB5D7D7A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B0A75237-D8CB-4FCE-9080-BCE256CD42B0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{4CA5FFD4-8D85-4677-9506-3063526F778A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{5717F874-82B4-49C4-80BF-4D20F81F3605}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{34403ED6-14A5-4C9E-8E09-311D6B863CA1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{99E61DAE-84C7-402F-82AE-8BBB17BAD1F4}] => (Allow) D:\Jeux\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{220EC7B8-3043-4898-9AE0-F17462AF2406}] => (Allow) D:\Jeux\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe

==================== Points de restauration =========================

27-06-2016 18:22:48 Point de contrôle planifié
06-07-2016 13:31:18 Point de contrôle planifié

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: Intel(R) HD Graphics 4600
Description: Intel(R) HD Graphics 4600
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: igfx
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (07/07/2016 01:34:01 PM) (Source: Acronis Scheduler) (EventID: 1) (User: NEOSQUALL)
Description: Scheduler failed to run task with GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' because of error 2 (Failed to find the file (folder) or the key (value) in the registry.).

Error: (07/07/2016 12:39:35 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333

Error: (07/07/2016 12:05:28 AM) (Source: Acronis Scheduler) (EventID: 1) (User: NEOSQUALL)
Description: Scheduler failed to run task with GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' because of error 2 (Failed to find the file (folder) or the key (value) in the registry.).

Error: (07/06/2016 10:08:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbam.exe, version : 2.3.173.0, horodatage : 0x56e065b4
Nom du module défaillant : ntdll.dll, version : 10.0.10586.306, horodatage : 0x571afb7f
Code d’exception : 0xc0000374
Décalage d’erreur : 0x000dc7c9
ID du processus défaillant : 0x1580
Heure de début de l’application défaillante : 0xmbam.exe0
Chemin d’accès de l’application défaillante : mbam.exe1
Chemin d’accès du module défaillant: mbam.exe2
ID de rapport : mbam.exe3
Nom complet du package défaillant : mbam.exe4
ID de l’application relative au package défaillant : mbam.exe5

Error: (07/06/2016 10:04:41 PM) (Source: Acronis Scheduler) (EventID: 1) (User: NEOSQUALL)
Description: Scheduler failed to run task with GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' because of error 2 (Failed to find the file (folder) or the key (value) in the registry.).

Error: (07/06/2016 10:02:37 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: NEOSQUALL)
Description: Le package Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy+CortanaUI a été interrompu, car sa suspension a été trop longue.

Error: (07/06/2016 10:02:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: NEOSQUALL)
Description: Le package Microsoft.Windows.ShellExperienceHost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy+App a été interrompu, car sa suspension a été trop longue.

Error: (07/06/2016 02:59:37 PM) (Source: Acronis Scheduler) (EventID: 1) (User: NEOSQUALL)
Description: Scheduler failed to run task with GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' because of error 2 (Failed to find the file (folder) or the key (value) in the registry.).

Error: (07/06/2016 02:54:01 PM) (Source: Acronis Scheduler) (EventID: 1) (User: NEOSQUALL)
Description: Scheduler failed to run task with GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' because of error 2 (Failed to find the file (folder) or the key (value) in the registry.).

Error: (07/06/2016 01:31:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.

System Error:
Accès refusé.
.


Erreurs système:
=============
Error: (07/07/2016 04:22:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Accès aux données utilisateur_5f14a s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.

Error: (07/07/2016 04:22:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Stockage des données utilisateur_5f14a s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.

Error: (07/07/2016 04:22:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Données de contacts_5f14a s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.

Error: (07/07/2016 04:22:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_5f14a s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.

Error: (07/07/2016 04:22:57 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible

Error: (07/06/2016 10:10:54 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NEOSQUALL)
Description: 0x8000002a119\??\C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\S-1-5-21-1657638429-3295118081-4253339948-1001-0-UsrClass.dat

Error: (07/06/2016 10:10:50 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NEOSQUALL)
Description: 0x8000002a119\??\C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\S-1-5-21-1657638429-3295118081-4253339948-1001-0-UsrClass.dat

Error: (07/06/2016 10:08:48 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NEOSQUALL)
Description: 0x8000002a119\??\C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\S-1-5-21-1657638429-3295118081-4253339948-1001-0-UsrClass.dat

Error: (07/06/2016 10:05:29 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: AUTORITE NT)
Description: 0x8000002a63\??\C:\Users\evil_\AppData\Local\Microsoft\Windows\UsrClass.dat

Error: (07/06/2016 10:04:55 PM) (Source: DCOM) (EventID: 10010) (User: NEOSQUALL)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}


CodeIntegrity:
===================================
Date: 2016-07-06 22:28:50.185
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-06 22:05:26.515
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\AppleFR.dll that did not meet the Windows signing level requirements.

Date: 2016-07-01 02:55:23.443
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-30 13:38:21.324
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\AppleFR.dll that did not meet the Windows signing level requirements.

Date: 2016-06-20 23:00:04.164
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-20 20:10:14.398
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\AppleFR.dll that did not meet the Windows signing level requirements.

Date: 2016-06-20 16:25:31.588
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-20 11:54:54.185
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\AppleFR.dll that did not meet the Windows signing level requirements.

Date: 2016-06-20 03:06:32.791
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-16 14:39:14.809
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Pourcentage de mémoire utilisée: 15%
Mémoire physique - RAM - totale: 16277.23 MB
Mémoire physique - RAM - disponible: 13746.29 MB
Mémoire virtuelle totale: 17301.23 MB
Mémoire virtuelle disponible: 14657.71 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:476.5 GB) (Free:129.16 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)]
Drive d: (Download/Videos) (Fixed) (Total:1863.01 GB) (Free:262.63 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 476.9 GB) (Disk ID: 530893FD)
Partition 1: (Active) - (Size=476.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: D9B5485A)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité