Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 08-05-2017
Exécuté par hugh (14-05-2017 14:44:43)
Exécuté depuis C:\Users\hugh\Desktop
Windows 10 Pro Version 1703 (X64) (2017-05-14 09:22:06)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-747639878-2919449812-546594808-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-747639878-2919449812-546594808-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-747639878-2919449812-546594808-1002 - Limited - Enabled)
hugh (S-1-5-21-747639878-2919449812-546594808-1001 - Administrator - Enabled) => C:\Users\hugh
Invité (S-1-5-21-747639878-2919449812-546594808-501 - Limited - Disabled)
sandrine (S-1-5-21-747639878-2919449812-546594808-1004 - Limited - Enabled) => C:\Users\sandrine.hugh-PC
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Ansel (Version: 382.05 - NVIDIA Corporation) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Application Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Arma 3 (HKLM\...\Steam App 107410) (Version: - Bohemia Interactive)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Burnout Paradise: The Ultimate Box (HKLM\...\Steam App 24740) (Version: - Criterion Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Dropbox (HKLM-x32\...\Dropbox) (Version: 25.4.28 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
EaseUS Partition Master 12.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
f.lux (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\Flux) (Version: - )
FileZilla Client 3.25.1 (HKLM-x32\...\FileZilla Client) (Version: 3.25.1 - Tim Kosse)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
iTunes (HKLM\...\{6C01A0A7-7440-4D48-93C6-2927A1E93FE6}) (Version: 12.6.0.100 - Apple Inc.)
LibreOffice 5.2.6.2 (HKLM-x32\...\{443795BA-BBA0-46CF-A07F-DB5B461785F7}) (Version: 5.2.6.2 - The Document Foundation)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
LSPD First Response (HKLM-x32\...\LSPD First Response) (Version: 0.3.1 - G17 Media)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProplusRetail - fr-fr) (Version: 16.0.8067.2032 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Project Professionnel 2016 - fr-fr (HKLM\...\ProjectProRetail - fr-fr) (Version: 16.0.8067.2032 - Microsoft Corporation)
Microsoft Visio Professionnel 2016 - fr-fr (HKLM\...\VisioProRetail - fr-fr) (Version: 16.0.8067.2032 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{8DD62FB6-083D-40B9-9D7D-48449FDDDED5}) (Version: 7601 - Microsoft)
Mises à jour NVIDIA 25.0.0.0 (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Motion Time Lapser version 1.1 (HKLM-x32\...\{118CA2E6-3C8B-4E20-BBD9-7C29D9556027}_is1) (Version: 1.1 - Motion Time Lapser, Inc.)
Mozilla Firefox 53.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 53.0.2 (x86 fr)) (Version: 53.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2 - Mozilla)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Pilote graphique 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.8067.2032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.8067.2032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
OpenVPN 2.4.2-I601 (HKLM\...\OpenVPN) (Version: 2.4.2-I601 - OpenVPN Technologies, Inc.)
Panneau de configuration NVIDIA 382.05 (Version: 382.05 - NVIDIA Corporation) Hidden
PBO Manager v.1.4 beta (HKLM\...\{127B5371-1802-4EDD-A25A-A43BF761D383}) (Version: 1.4.0 - )
PuTTY release 0.68 (64-bit) (HKLM\...\{DB149DDE-903A-4B5E-93C4-46BBEC48F0C2}) (Version: 0.68.0.0 - Simon Tatham)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
ROBLOX Player for hugh (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.0 - Samsung)
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
SketchUp 2017 (HKLM\...\{7B8F376D-7D82-41A4-A14E-6DAAA426CBD9}) (Version: 17.2.2555 - Trimble Navigation Limited)
Skype™ 7.34 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.34.103 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\Spotify) (Version: 1.0.54.1079.g3809528e - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.3 - TeamSpeak Systems GmbH)
Telegram Desktop version 1.0.29 (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.0.29 - Telegram Messenger LLP)
Time-Lapse Tool (HKLM-x32\...\{38DA0FF4-2A1C-42A2-8761-4DE84E05F5F9}) (Version: 2.2.2671 - AI Devs)
Train Simulator (HKLM\...\Steam App 24010) (Version: - Dovetail Games)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 32.1 - Ubisoft)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WinDirStat 1.1.2 (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\WinDirStat) (Version: - )
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-747639878-2919449812-546594808-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\hugh\AppData\Local\Roblox\Versions\version-6a65e85da5fe4a75\RobloxProxy64.dll (ROBLOX Corporation)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0B93C8B4-3CF2-4AD2-B96A-777A99DFD5C3} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {1015F413-BB11-4820-BCAD-0E54E226FE0F} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {110AF49F-8835-49AC-BE6C-2BB845865E40} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {1A904F41-6237-42F7-927F-C01518D47E9B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {2294C257-A7C2-423F-8931-91CA90FD984B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-04-11] (Dropbox, Inc.)
Task: {23EA4CAC-87D3-4A82-B9AC-C585CFAD69B1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {26B05098-6C6B-4853-8892-EC6BFFCAC1C5} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {34977378-D9B9-43F7-862E-1EE1116A3D22} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-11] (Google Inc.)
Task: {3AA8593C-2669-4A98-832E-D6F5F6DD74B6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {42D84543-8CBC-4A13-A728-4A8CE5DF8115} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd)
Task: {4494012A-401F-4E81-B8AF-DA83DEDBE954} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {461613A0-6754-4409-B197-DC6D5564FC4B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-11] (Google Inc.)
Task: {48AEECB9-E35E-4124-BC5A-764FBF37C4D7} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {4AA917AC-9C9F-42DC-B6B2-51861E54F833} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {4D9DE29D-F4C8-4D03-AD70-6DD29745DAB1} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {53BB13FE-16DC-41C4-955A-113B92543C4D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {5576D2C2-502C-4807-B435-0F339F407F05} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-04-28] (Microsoft Corporation)
Task: {59C78DF5-41CB-4FC1-8884-D2383CD89763} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {651A2561-D73B-475E-986D-A4655A35CA1A} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {6673D0AA-A3B1-4B90-8249-DD99069ECB7B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-04-21] (Microsoft Corporation)
Task: {6B449EEA-0A90-4F48-AD7E-52FFECE42812} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {6C55C314-6069-4D94-8A2D-FAF4F9DCB4F9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {703529E7-19E9-42B2-B8B2-4FCE5AF5AA98} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-04-11] (Dropbox, Inc.)
Task: {748B9326-7B87-4326-8E83-72AC3923828F} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {75950050-2942-4311-B10C-265E799D4B2F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {8216BED3-7874-41C8-99D4-0A92E4F10634} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {86932D56-39AB-496D-9FBD-0484F7C80238} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {8EEFE098-0A61-4B5D-B0C4-AB091C62900D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {934B5A31-221C-4427-97DD-6BBC4CB40FCE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {AA521CFC-7132-4A37-90E4-4126ED16D6E1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-04-21] ()
Task: {B0AD5636-8F25-48DB-ABB9-A8B3F606C8F2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
Task: {B6D55FB4-11F5-4F4C-AD84-CD77F437F9A8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {BAF4E890-5C33-4747-9B2D-FC531FF09C18} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-04-21] ()
Task: {C9970E19-EF66-4F9B-9026-4C4ADA5DB201} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {CD0B5B97-80BE-41C1-8CCD-E91F0BDF4592} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-04-28] (Microsoft Corporation)
Task: {CE83C4B1-829B-4493-82B2-ED0F7D3ED6F6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
Task: {DF4D97A0-2B0D-4B53-89A1-51A2774C5C51} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {E4239B62-0CDF-4317-A21E-6AEE41F65D84} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-04-21] (Microsoft Corporation)
Task: {EDB343E8-3E97-471D-AB1D-95A1831DF9B0} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {EF7058C6-5CC1-421F-807F-6D88C0E863DA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {F0A5B481-91AA-4D39-99A8-ADEFC44B550D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {F4922E51-1BC0-4516-9F64-39E928BEFD24} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {FA22445F-E31E-4E3E-B41E-F95C0DA343C3} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\hugh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Bureau à distance Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\hugh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\hugh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Nimbus Screenshot App.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=aecjogkncpbkjfobfnoaiepipllcadhe
==================== Modules chargés (Avec liste blanche) ==============
2017-03-16 16:08 - 2017-03-16 16:08 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-03-16 16:08 - 2017-03-16 16:08 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-04-08 08:50 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 07:12 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-27 12:20 - 2017-03-27 12:20 - 00092472 _____ () C:\Program Files\iTunes\zlib1.dll
2017-03-27 12:20 - 2017-03-27 12:20 - 01354040 _____ () C:\Program Files\iTunes\libxml2.dll
2017-05-11 08:44 - 2017-05-11 08:44 - 00632448 _____ () C:\Program Files\OpenVPN\bin\openvpn-gui.exe
2017-05-12 15:36 - 2017-05-12 15:37 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-05-12 15:36 - 2017-05-12 15:37 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-05-12 15:36 - 2017-05-12 15:37 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-04-08 08:50 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-11 10:15 - 2017-03-10 02:13 - 00674592 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-03-11 10:15 - 2016-09-01 03:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-03-11 10:15 - 2017-04-26 01:55 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2017-03-11 10:15 - 2016-09-01 03:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-03-11 10:15 - 2016-09-01 03:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2017-03-11 10:15 - 2017-04-26 01:55 - 00848672 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-03-11 10:15 - 2016-07-05 00:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-03-11 10:16 - 2017-01-30 23:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-03-11 10:15 - 2017-04-26 01:55 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
2017-03-11 16:16 - 2017-05-12 21:50 - 00116848 _____ () C:\Users\hugh\AppData\Roaming\Spotify\SpotifyWinRT.dll
2017-03-11 16:16 - 2017-05-12 21:50 - 67117168 _____ () C:\Users\hugh\AppData\Roaming\Spotify\libcef.dll
2017-03-11 16:16 - 2017-05-12 21:50 - 02253424 _____ () C:\Users\hugh\AppData\Roaming\Spotify\libglesv2.dll
2017-03-11 16:16 - 2017-05-12 21:50 - 00086640 _____ () C:\Users\hugh\AppData\Roaming\Spotify\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2009-07-14 04:34 - 2017-05-01 17:57 - 00000851 _____ C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 respawne.3cx.eu
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-747639878-2919449812-546594808-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hugh\AppData\Roaming\Microsoft\Windows Photo Viewer\Papier peint de la Visionneuse de photos Windows.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\StartupApproved\Run: => "Skype"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{26EF9661-44D6-4888-8E3D-6EA4E2822765}E:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{CE3F8A51-4D16-40B8-BD90-F730D7E406C5}E:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{6ECB1621-696B-4686-846C-446A31A75F9D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{7A1686E8-1828-4837-99CC-8A95B387D215}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{0E04E4EA-59F1-49F6-BD01-BE6A5C32BD74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{64BE10E6-95E8-4B87-A7F8-0E429DBCAF31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{9B2D8FED-A52A-4717-9FBB-686EDD4AB184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{AFD8CAD6-70BA-4E52-A925-E0DA90AE7336}] => (Allow) E:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{A7B90FF0-1DC3-4C10-8ED1-94127CBF3A49}] => (Allow) E:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{862BE10F-3F43-4CEB-AAD7-2EAFC95F7448}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{9BEAC74A-0D87-4405-A8AF-47E069B98AA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{128860E1-12B4-4FD8-82C8-E9396F7524E4}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [UDP Query User{DFE1168E-E0C6-453E-B320-20255D64F51C}C:\users\hugh\desktop\sipinside.exe] => (Allow) C:\users\hugh\desktop\sipinside.exe
FirewallRules: [TCP Query User{45080643-C651-4F01-8306-2A7FF5FB89E1}C:\users\hugh\desktop\sipinside.exe] => (Allow) C:\users\hugh\desktop\sipinside.exe
FirewallRules: [{14F9786D-2680-4802-B5CC-11DE12B2AC2C}] => (Allow) LPort=5001
FirewallRules: [{56E436E0-AE87-4D8C-BBCE-7FC2C9B9BBE1}] => (Allow) LPort=5000
FirewallRules: [{CCC9CEFB-EB9A-4F3E-84C2-20CB3D000534}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8FD34BA6-9204-48CB-9946-F8AB745A7E90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A27C430A-699F-4FC7-9966-47891E7BE6C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{1ECCF2E4-46A1-4F1E-BA14-02CD56E00F0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{A911F9FB-27EC-42B5-AFAB-2CBA5A9EBA7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{961B61E0-13D4-453D-BC00-AA027EACC374}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [UDP Query User{205CCC73-F52B-49FB-929D-91B2BCDD85C0}C:\users\hugh\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\hugh\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{C9F4986E-38F4-45BE-9931-7049FDB5C230}C:\users\hugh\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\hugh\appdata\roaming\spotify\spotify.exe
FirewallRules: [{3CAFB264-19DE-478E-957C-5F9142294C1D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{37302109-DC05-4BC1-AAE8-C1D831772E80}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C95746D8-EFF7-42AE-8987-177F39766E46}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8024E696-C657-4A72-823C-800133C05170}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{14509EAD-D172-46BB-8B32-50978CE86CBB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CF1AF5EE-9B42-4493-BB6D-162E05B19BE9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E72471F7-1F00-4865-93A5-1EB1A79ED50A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{88698525-8A39-4B4F-9A0A-F5284CE43563}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{C7613F4C-91F9-45BF-AFD1-02A8D3C96731}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [TCP Query User{340FA34E-665C-448F-A25A-84FB96AF2C99}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [{535F7141-0383-4F25-AFF7-CE5A7C019DA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{570FC327-CCFD-4D28-9C32-264DC69E6B3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{38969D9E-6592-4286-983A-C2306230B63D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{045557DB-B8BE-4FC1-92CE-3CFBA9C8651C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B00B2DE5-E8BA-4C22-8B23-12CCA52DC8C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C71F2BC7-A996-45BE-9047-C70BBFB70670}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{40CFF419-8490-4203-AE3D-9391C7DA16F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AE016209-28F1-4C6A-87F4-C569AA1E3FC1}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
FirewallRules: [{2EC88443-8056-4DE5-A121-3C8A1698BD2A}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
FirewallRules: [{6885709F-B83B-4A1A-9F69-B286F4B91C2B}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
FirewallRules: [{44A1E177-C642-4871-AFC2-D080276DEFEB}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
FirewallRules: [UDP Query User{DD704A6A-63AB-4DE8-9F88-9AF5DABD241E}C:\users\hugh\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hugh\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{310B4E8B-9C48-47CB-BD71-95BBADFB15C7}C:\users\hugh\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hugh\appdata\roaming\spotify\spotify.exe
FirewallRules: [{17FFDE85-C96A-4304-BD99-D3F4E685FB74}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{318DA424-795C-43F8-99DA-A57385F5798B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{7A00508B-805C-486A-86F2-B9BB1CF6754D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5A125FEC-9350-47F3-9F56-06216AD7DDA3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{62A91D19-6CC8-4730-86DF-F6E990617D7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RailWorks\RailWorks.exe
FirewallRules: [{A6CC8E57-C6D9-4FE3-9116-7B9C6B63B94A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RailWorks\RailWorks.exe
FirewallRules: [{4E304015-5813-434C-8F9C-ED9532D3635E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{B2C20DF6-C9DE-4C4D-8A1D-7BAF8420A26A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{611EBEBA-6061-49B4-9C01-2379C8433721}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{80DE76BE-7524-4F64-AE37-3C1D6CDBF82C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (05/14/2017 11:19:13 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A
Error: (05/14/2017 11:17:57 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A
Error: (05/14/2017 11:17:57 AM) (Source: MSDTC 2) (EventID: 4104) (User: )
Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A
Error: (05/14/2017 11:17:57 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A
Error: (05/14/2017 11:17:40 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Erreurs système:
=============
Error: (05/14/2017 11:38:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et l’APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/14/2017 11:38:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/14/2017 11:38:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et l’APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/14/2017 11:38:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/14/2017 11:25:28 AM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: Event-ID 14
Error: (05/14/2017 11:22:37 AM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: Event-ID 14
Error: (05/14/2017 11:21:12 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Le service BranchCache s’est arrêté avec l’erreur spécifique au service suivante :
Ce programme est bloqué par une stratégie de groupe. Pour plus d’informations, contactez votre administrateur système.
Error: (05/14/2017 11:21:08 AM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Cet ordinateur est configuré en tant que membre d’un groupe de travail,
et non en tant que membre d’un domaine. Il n’est pas nécessaire
d’exécuter le service Accès réseau dans cette configuration.
Error: (05/14/2017 11:20:21 AM) (Source: WinRM) (EventID: 10142) (User: )
Description: Le service Gestion à distance de Windows ne peut pas migrer l’écouteur avec l’adresse * et le transport HTTP. Un écouteur ayant une configuration d’adresse et de transport identique existe déjà.
Error: (05/14/2017 11:17:40 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur :
Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé.
CodeIntegrity:
===================================
Date: 2017-05-14 14:45:31.566
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:45:31.564
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:44:08.392
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:44:08.390
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:43:09.379
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:43:09.378
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:42:54.070
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:42:54.068
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:42:53.482
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:42:53.481
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
Pourcentage de mémoire utilisée: 70%
Mémoire physique - RAM - totale: 4095.11 MB
Mémoire physique - RAM - disponible: 1211.08 MB
Mémoire virtuelle totale: 8191.11 MB
Mémoire virtuelle disponible: 4377.59 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:232.33 GB) (Free:63.82 GB) NTFS
Drive e: (DD1) (Fixed) (Total:931.07 GB) (Free:858.69 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 7B55F657)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=468 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 590A19C2)
Partition 1: (Not Active) - (Size=931.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Fin de Addition.txt ============================
Exécuté par hugh (14-05-2017 14:44:43)
Exécuté depuis C:\Users\hugh\Desktop
Windows 10 Pro Version 1703 (X64) (2017-05-14 09:22:06)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-747639878-2919449812-546594808-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-747639878-2919449812-546594808-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-747639878-2919449812-546594808-1002 - Limited - Enabled)
hugh (S-1-5-21-747639878-2919449812-546594808-1001 - Administrator - Enabled) => C:\Users\hugh
Invité (S-1-5-21-747639878-2919449812-546594808-501 - Limited - Disabled)
sandrine (S-1-5-21-747639878-2919449812-546594808-1004 - Limited - Enabled) => C:\Users\sandrine.hugh-PC
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Ansel (Version: 382.05 - NVIDIA Corporation) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Application Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Arma 3 (HKLM\...\Steam App 107410) (Version: - Bohemia Interactive)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Burnout Paradise: The Ultimate Box (HKLM\...\Steam App 24740) (Version: - Criterion Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Dropbox (HKLM-x32\...\Dropbox) (Version: 25.4.28 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
EaseUS Partition Master 12.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
f.lux (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\Flux) (Version: - )
FileZilla Client 3.25.1 (HKLM-x32\...\FileZilla Client) (Version: 3.25.1 - Tim Kosse)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
iTunes (HKLM\...\{6C01A0A7-7440-4D48-93C6-2927A1E93FE6}) (Version: 12.6.0.100 - Apple Inc.)
LibreOffice 5.2.6.2 (HKLM-x32\...\{443795BA-BBA0-46CF-A07F-DB5B461785F7}) (Version: 5.2.6.2 - The Document Foundation)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
LSPD First Response (HKLM-x32\...\LSPD First Response) (Version: 0.3.1 - G17 Media)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProplusRetail - fr-fr) (Version: 16.0.8067.2032 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Project Professionnel 2016 - fr-fr (HKLM\...\ProjectProRetail - fr-fr) (Version: 16.0.8067.2032 - Microsoft Corporation)
Microsoft Visio Professionnel 2016 - fr-fr (HKLM\...\VisioProRetail - fr-fr) (Version: 16.0.8067.2032 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{8DD62FB6-083D-40B9-9D7D-48449FDDDED5}) (Version: 7601 - Microsoft)
Mises à jour NVIDIA 25.0.0.0 (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Motion Time Lapser version 1.1 (HKLM-x32\...\{118CA2E6-3C8B-4E20-BBD9-7C29D9556027}_is1) (Version: 1.1 - Motion Time Lapser, Inc.)
Mozilla Firefox 53.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 53.0.2 (x86 fr)) (Version: 53.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2 - Mozilla)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Pilote graphique 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.8067.2032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.8067.2032 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
OpenVPN 2.4.2-I601 (HKLM\...\OpenVPN) (Version: 2.4.2-I601 - OpenVPN Technologies, Inc.)
Panneau de configuration NVIDIA 382.05 (Version: 382.05 - NVIDIA Corporation) Hidden
PBO Manager v.1.4 beta (HKLM\...\{127B5371-1802-4EDD-A25A-A43BF761D383}) (Version: 1.4.0 - )
PuTTY release 0.68 (64-bit) (HKLM\...\{DB149DDE-903A-4B5E-93C4-46BBEC48F0C2}) (Version: 0.68.0.0 - Simon Tatham)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
ROBLOX Player for hugh (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.0 - Samsung)
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
SketchUp 2017 (HKLM\...\{7B8F376D-7D82-41A4-A14E-6DAAA426CBD9}) (Version: 17.2.2555 - Trimble Navigation Limited)
Skype™ 7.34 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.34.103 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\Spotify) (Version: 1.0.54.1079.g3809528e - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.3 - TeamSpeak Systems GmbH)
Telegram Desktop version 1.0.29 (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.0.29 - Telegram Messenger LLP)
Time-Lapse Tool (HKLM-x32\...\{38DA0FF4-2A1C-42A2-8761-4DE84E05F5F9}) (Version: 2.2.2671 - AI Devs)
Train Simulator (HKLM\...\Steam App 24010) (Version: - Dovetail Games)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 32.1 - Ubisoft)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WinDirStat 1.1.2 (HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\WinDirStat) (Version: - )
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-747639878-2919449812-546594808-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\hugh\AppData\Local\Roblox\Versions\version-6a65e85da5fe4a75\RobloxProxy64.dll (ROBLOX Corporation)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0B93C8B4-3CF2-4AD2-B96A-777A99DFD5C3} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {1015F413-BB11-4820-BCAD-0E54E226FE0F} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {110AF49F-8835-49AC-BE6C-2BB845865E40} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {1A904F41-6237-42F7-927F-C01518D47E9B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {2294C257-A7C2-423F-8931-91CA90FD984B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-04-11] (Dropbox, Inc.)
Task: {23EA4CAC-87D3-4A82-B9AC-C585CFAD69B1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {26B05098-6C6B-4853-8892-EC6BFFCAC1C5} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {34977378-D9B9-43F7-862E-1EE1116A3D22} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-11] (Google Inc.)
Task: {3AA8593C-2669-4A98-832E-D6F5F6DD74B6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {42D84543-8CBC-4A13-A728-4A8CE5DF8115} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd)
Task: {4494012A-401F-4E81-B8AF-DA83DEDBE954} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {461613A0-6754-4409-B197-DC6D5564FC4B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-11] (Google Inc.)
Task: {48AEECB9-E35E-4124-BC5A-764FBF37C4D7} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {4AA917AC-9C9F-42DC-B6B2-51861E54F833} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {4D9DE29D-F4C8-4D03-AD70-6DD29745DAB1} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {53BB13FE-16DC-41C4-955A-113B92543C4D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {5576D2C2-502C-4807-B435-0F339F407F05} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-04-28] (Microsoft Corporation)
Task: {59C78DF5-41CB-4FC1-8884-D2383CD89763} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {651A2561-D73B-475E-986D-A4655A35CA1A} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {6673D0AA-A3B1-4B90-8249-DD99069ECB7B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-04-21] (Microsoft Corporation)
Task: {6B449EEA-0A90-4F48-AD7E-52FFECE42812} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {6C55C314-6069-4D94-8A2D-FAF4F9DCB4F9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {703529E7-19E9-42B2-B8B2-4FCE5AF5AA98} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-04-11] (Dropbox, Inc.)
Task: {748B9326-7B87-4326-8E83-72AC3923828F} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {75950050-2942-4311-B10C-265E799D4B2F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {8216BED3-7874-41C8-99D4-0A92E4F10634} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {86932D56-39AB-496D-9FBD-0484F7C80238} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {8EEFE098-0A61-4B5D-B0C4-AB091C62900D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {934B5A31-221C-4427-97DD-6BBC4CB40FCE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {AA521CFC-7132-4A37-90E4-4126ED16D6E1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-04-21] ()
Task: {B0AD5636-8F25-48DB-ABB9-A8B3F606C8F2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
Task: {B6D55FB4-11F5-4F4C-AD84-CD77F437F9A8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {BAF4E890-5C33-4747-9B2D-FC531FF09C18} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-04-21] ()
Task: {C9970E19-EF66-4F9B-9026-4C4ADA5DB201} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {CD0B5B97-80BE-41C1-8CCD-E91F0BDF4592} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-04-28] (Microsoft Corporation)
Task: {CE83C4B1-829B-4493-82B2-ED0F7D3ED6F6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
Task: {DF4D97A0-2B0D-4B53-89A1-51A2774C5C51} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {E4239B62-0CDF-4317-A21E-6AEE41F65D84} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-04-21] (Microsoft Corporation)
Task: {EDB343E8-3E97-471D-AB1D-95A1831DF9B0} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {EF7058C6-5CC1-421F-807F-6D88C0E863DA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {F0A5B481-91AA-4D39-99A8-ADEFC44B550D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {F4922E51-1BC0-4516-9F64-39E928BEFD24} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {FA22445F-E31E-4E3E-B41E-F95C0DA343C3} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\hugh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Bureau à distance Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\hugh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\hugh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Nimbus Screenshot App.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=aecjogkncpbkjfobfnoaiepipllcadhe
==================== Modules chargés (Avec liste blanche) ==============
2017-03-16 16:08 - 2017-03-16 16:08 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-03-16 16:08 - 2017-03-16 16:08 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-04-08 08:50 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 07:12 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-27 12:20 - 2017-03-27 12:20 - 00092472 _____ () C:\Program Files\iTunes\zlib1.dll
2017-03-27 12:20 - 2017-03-27 12:20 - 01354040 _____ () C:\Program Files\iTunes\libxml2.dll
2017-05-11 08:44 - 2017-05-11 08:44 - 00632448 _____ () C:\Program Files\OpenVPN\bin\openvpn-gui.exe
2017-05-12 15:36 - 2017-05-12 15:37 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-05-12 15:36 - 2017-05-12 15:37 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-05-12 15:36 - 2017-05-12 15:37 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-04-08 08:50 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-11 10:15 - 2017-03-10 02:13 - 00674592 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-03-11 10:15 - 2016-09-01 03:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-03-11 10:15 - 2017-04-26 01:55 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2017-03-11 10:15 - 2016-09-01 03:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-03-11 10:15 - 2016-09-01 03:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2017-03-11 10:15 - 2016-01-27 09:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2017-03-11 10:15 - 2017-04-26 01:55 - 00848672 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-03-11 10:15 - 2016-07-05 00:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-03-11 10:16 - 2017-01-30 23:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-03-11 10:15 - 2017-04-26 01:55 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
2017-03-11 16:16 - 2017-05-12 21:50 - 00116848 _____ () C:\Users\hugh\AppData\Roaming\Spotify\SpotifyWinRT.dll
2017-03-11 16:16 - 2017-05-12 21:50 - 67117168 _____ () C:\Users\hugh\AppData\Roaming\Spotify\libcef.dll
2017-03-11 16:16 - 2017-05-12 21:50 - 02253424 _____ () C:\Users\hugh\AppData\Roaming\Spotify\libglesv2.dll
2017-03-11 16:16 - 2017-05-12 21:50 - 00086640 _____ () C:\Users\hugh\AppData\Roaming\Spotify\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2009-07-14 04:34 - 2017-05-01 17:57 - 00000851 _____ C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 respawne.3cx.eu
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-747639878-2919449812-546594808-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hugh\AppData\Roaming\Microsoft\Windows Photo Viewer\Papier peint de la Visionneuse de photos Windows.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-747639878-2919449812-546594808-1001\...\StartupApproved\Run: => "Skype"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{26EF9661-44D6-4888-8E3D-6EA4E2822765}E:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{CE3F8A51-4D16-40B8-BD90-F730D7E406C5}E:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{6ECB1621-696B-4686-846C-446A31A75F9D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{7A1686E8-1828-4837-99CC-8A95B387D215}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{0E04E4EA-59F1-49F6-BD01-BE6A5C32BD74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{64BE10E6-95E8-4B87-A7F8-0E429DBCAF31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{9B2D8FED-A52A-4717-9FBB-686EDD4AB184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{AFD8CAD6-70BA-4E52-A925-E0DA90AE7336}] => (Allow) E:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{A7B90FF0-1DC3-4C10-8ED1-94127CBF3A49}] => (Allow) E:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{862BE10F-3F43-4CEB-AAD7-2EAFC95F7448}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{9BEAC74A-0D87-4405-A8AF-47E069B98AA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{128860E1-12B4-4FD8-82C8-E9396F7524E4}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [UDP Query User{DFE1168E-E0C6-453E-B320-20255D64F51C}C:\users\hugh\desktop\sipinside.exe] => (Allow) C:\users\hugh\desktop\sipinside.exe
FirewallRules: [TCP Query User{45080643-C651-4F01-8306-2A7FF5FB89E1}C:\users\hugh\desktop\sipinside.exe] => (Allow) C:\users\hugh\desktop\sipinside.exe
FirewallRules: [{14F9786D-2680-4802-B5CC-11DE12B2AC2C}] => (Allow) LPort=5001
FirewallRules: [{56E436E0-AE87-4D8C-BBCE-7FC2C9B9BBE1}] => (Allow) LPort=5000
FirewallRules: [{CCC9CEFB-EB9A-4F3E-84C2-20CB3D000534}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8FD34BA6-9204-48CB-9946-F8AB745A7E90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A27C430A-699F-4FC7-9966-47891E7BE6C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{1ECCF2E4-46A1-4F1E-BA14-02CD56E00F0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{A911F9FB-27EC-42B5-AFAB-2CBA5A9EBA7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{961B61E0-13D4-453D-BC00-AA027EACC374}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [UDP Query User{205CCC73-F52B-49FB-929D-91B2BCDD85C0}C:\users\hugh\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\hugh\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{C9F4986E-38F4-45BE-9931-7049FDB5C230}C:\users\hugh\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\hugh\appdata\roaming\spotify\spotify.exe
FirewallRules: [{3CAFB264-19DE-478E-957C-5F9142294C1D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{37302109-DC05-4BC1-AAE8-C1D831772E80}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C95746D8-EFF7-42AE-8987-177F39766E46}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8024E696-C657-4A72-823C-800133C05170}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{14509EAD-D172-46BB-8B32-50978CE86CBB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CF1AF5EE-9B42-4493-BB6D-162E05B19BE9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E72471F7-1F00-4865-93A5-1EB1A79ED50A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{88698525-8A39-4B4F-9A0A-F5284CE43563}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{C7613F4C-91F9-45BF-AFD1-02A8D3C96731}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [TCP Query User{340FA34E-665C-448F-A25A-84FB96AF2C99}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [{535F7141-0383-4F25-AFF7-CE5A7C019DA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{570FC327-CCFD-4D28-9C32-264DC69E6B3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{38969D9E-6592-4286-983A-C2306230B63D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{045557DB-B8BE-4FC1-92CE-3CFBA9C8651C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B00B2DE5-E8BA-4C22-8B23-12CCA52DC8C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C71F2BC7-A996-45BE-9047-C70BBFB70670}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{40CFF419-8490-4203-AE3D-9391C7DA16F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AE016209-28F1-4C6A-87F4-C569AA1E3FC1}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
FirewallRules: [{2EC88443-8056-4DE5-A121-3C8A1698BD2A}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
FirewallRules: [{6885709F-B83B-4A1A-9F69-B286F4B91C2B}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
FirewallRules: [{44A1E177-C642-4871-AFC2-D080276DEFEB}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
FirewallRules: [UDP Query User{DD704A6A-63AB-4DE8-9F88-9AF5DABD241E}C:\users\hugh\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hugh\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{310B4E8B-9C48-47CB-BD71-95BBADFB15C7}C:\users\hugh\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hugh\appdata\roaming\spotify\spotify.exe
FirewallRules: [{17FFDE85-C96A-4304-BD99-D3F4E685FB74}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{318DA424-795C-43F8-99DA-A57385F5798B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{7A00508B-805C-486A-86F2-B9BB1CF6754D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5A125FEC-9350-47F3-9F56-06216AD7DDA3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{62A91D19-6CC8-4730-86DF-F6E990617D7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RailWorks\RailWorks.exe
FirewallRules: [{A6CC8E57-C6D9-4FE3-9116-7B9C6B63B94A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RailWorks\RailWorks.exe
FirewallRules: [{4E304015-5813-434C-8F9C-ED9532D3635E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{B2C20DF6-C9DE-4C4D-8A1D-7BAF8420A26A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{611EBEBA-6061-49B4-9C01-2379C8433721}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{80DE76BE-7524-4F64-AE37-3C1D6CDBF82C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (05/14/2017 11:19:13 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A
Error: (05/14/2017 11:17:57 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A
Error: (05/14/2017 11:17:57 AM) (Source: MSDTC 2) (EventID: 4104) (User: )
Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A
Error: (05/14/2017 11:17:57 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A
Error: (05/14/2017 11:17:40 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Erreurs système:
=============
Error: (05/14/2017 11:38:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et l’APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/14/2017 11:38:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/14/2017 11:38:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et l’APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/14/2017 11:38:36 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/14/2017 11:25:28 AM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: Event-ID 14
Error: (05/14/2017 11:22:37 AM) (Source: nvlddmkm) (EventID: 14) (User: )
Description: Event-ID 14
Error: (05/14/2017 11:21:12 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Le service BranchCache s’est arrêté avec l’erreur spécifique au service suivante :
Ce programme est bloqué par une stratégie de groupe. Pour plus d’informations, contactez votre administrateur système.
Error: (05/14/2017 11:21:08 AM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Cet ordinateur est configuré en tant que membre d’un groupe de travail,
et non en tant que membre d’un domaine. Il n’est pas nécessaire
d’exécuter le service Accès réseau dans cette configuration.
Error: (05/14/2017 11:20:21 AM) (Source: WinRM) (EventID: 10142) (User: )
Description: Le service Gestion à distance de Windows ne peut pas migrer l’écouteur avec l’adresse * et le transport HTTP. Un écouteur ayant une configuration d’adresse et de transport identique existe déjà.
Error: (05/14/2017 11:17:40 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur :
Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé.
CodeIntegrity:
===================================
Date: 2017-05-14 14:45:31.566
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:45:31.564
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:44:08.392
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:44:08.390
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:43:09.379
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:43:09.378
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:42:54.070
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:42:54.068
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:42:53.482
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-14 14:42:53.481
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz
Pourcentage de mémoire utilisée: 70%
Mémoire physique - RAM - totale: 4095.11 MB
Mémoire physique - RAM - disponible: 1211.08 MB
Mémoire virtuelle totale: 8191.11 MB
Mémoire virtuelle disponible: 4377.59 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:232.33 GB) (Free:63.82 GB) NTFS
Drive e: (DD1) (Fixed) (Total:931.07 GB) (Free:858.69 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 7B55F657)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=468 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 590A19C2)
Partition 1: (Not Active) - (Size=931.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Fin de Addition.txt ============================