cjoint

Publicité


Publicité

Commentaire : Fichier complémentaire analyse FRST

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x86) Version: 20-08-2017
Exécuté par Administrateur (01-09-2017 16:57:53)
Exécuté depuis C:\Users\Administrateur\Desktop
Microsoft Windows 10 Famille Version 1607 (X86) (2016-09-28 13:35:23)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Admin123 (S-1-5-21-3050573959-3967027285-3135605386-1009 - Administrator - Enabled) => C:\Users\Admin123
Administrateur (S-1-5-21-3050573959-3967027285-3135605386-500 - Administrator - Enabled) => C:\Users\Administrateur
ASPNET (S-1-5-21-3050573959-3967027285-3135605386-1005 - Limited - Enabled)
DefaultAccount (S-1-5-21-3050573959-3967027285-3135605386-503 - Limited - Disabled)
Eric & Sophie (S-1-5-21-3050573959-3967027285-3135605386-1010 - Limited - Enabled) => C:\Users\Eric & Sophie
Eric et Sophie (S-1-5-21-3050573959-3967027285-3135605386-1001 - Administrator - Enabled) => C:\Users\Eric et Sophie
HomeGroupUser$ (S-1-5-21-3050573959-3967027285-3135605386-1008 - Limited - Enabled)
Invité (S-1-5-21-3050573959-3967027285-3135605386-501 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

.NET Utilities (HKLM\...\{7FC9DC19-9C2F-4A32-BE0E-92AB9AB4A8D0}) (Version: 128.0.0 - Manufacturer)
7-Zip 9.22beta (HKLM\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-3050573959-3967027285-3135605386-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-3050573959-3967027285-3135605386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859606\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{3C4AF931-D0B4-D0AF-24EE-37D5D5FA0908}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.29.32 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM\...\{7990b9d3-2da3-4eef-bf20-73a05086fd12}) (Version: 1.2.92.32157 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM\...\{E972AE5C-71B3-4D35-8193-BC4CC2F1FA20}) (Version: 1.2.92.32157 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Canon MP990 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP990_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform)
Citrix Online Launcher (HKLM\...\{A08A6B7D-1F21-4843-85A3-77B8D15FAE0E}) (Version: 1.0.244 - Citrix)
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM\...\Diablo III) (Version: 1.0.3.10235 - Blizzard Entertainment)
Drakensang Online (HKLM\...\Drakensang Online) (Version: - )
EPSON XP-312 313 315 Series Printer Uninstall (HKLM\...\EPSON XP-312 313 315 Series) (Version: - SEIKO EPSON Corporation)
Galerie de photos (HKLM\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GameSpy Arcade (HKLM\...\GameSpy Arcade) (Version: - )
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Heroes of the Storm (HKLM\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
iCloud (HKLM\...\{8D9592B4-7E22-4D1F-B2CB-B5F0F2F619CB}) (Version: 4.0.3.56 - Apple Inc.)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.30 - Irfan Skiljan)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
JMicron JMB36X Driver (HKLM\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMicron Technology Corp.)
La Bataille pour la Terre du Milieu(tm) (HKLM\...\{3F290582-3F4E-4B96-009C-E0BABAA40C42}) (Version: - )
La Bataille pour la Terre du Milieu™ II (HKLM\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
L'Avènement du Roi-sorcier™ (HKLM\...\{B931FB80-537A-4600-00AD-AC5DEDB6C25B}) (Version: - )
League of Legends (HKLM\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
Logiciel Logitech Unifying 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Malwarebytes version 3.2.2.2018 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3050573959-3967027285-3135605386-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3050573959-3967027285-3135605386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859606\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3050573959-3967027285-3135605386-1010\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3050573959-3967027285-3135605386-1010-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859966\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3050573959-3967027285-3135605386-500\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3050573959-3967027285-3135605386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113900231\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x86) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - FRA) (Version: 10.0.50701 - Microsoft Corporation)
Movie Maker (HKLM\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 55.0.3 (x86 fr) (HKLM\...\Mozilla Firefox 55.0.3 (x86 fr)) (Version: 55.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.3.6445 - Mozilla)
Mozilla Thunderbird 45.8.0 (x86 fr) (HKLM\...\Mozilla Thunderbird 45.8.0 (x86 fr)) (Version: 45.8.0 - Mozilla)
Mumble 1.2.3 (HKLM\...\{E1019541-10A2-464F-A23E-A4F23DA65160}) (Version: 1.2.3 - Thorvald Natvig)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIA ForceWare Network Access Manager (HKLM\...\InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7313 - NVIDIA Corporation)
Origin (HKLM\...\Origin) (Version: 8.1.2.444 - Electronic Arts, Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7464 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
Rome - Total War(TM) (HKLM\...\{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}) (Version: 1.0 - Nom de votre société) Hidden
Rome - Total War(TM) (HKLM\...\InstallShield_{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}) (Version: 1.0 - Nom de votre société)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-3050573959-3967027285-3135605386-1010\...\Spotify) (Version: 1.0.60.492.gbb40dab8 - Spotify AB)
Spotify (HKU\S-1-5-21-3050573959-3967027285-3135605386-1010-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859966\...\Spotify) (Version: 1.0.60.492.gbb40dab8 - Spotify AB)
Star Wars: The Old Republic (HKLM\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
StarCraft II (HKLM\...\StarCraft II) (Version: 1.5.3.23260 - Blizzard Entertainment)
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls Online (HKLM\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
Total War Battles: KINGDOM (HKLM\...\Steam App 300080) (Version: - Creative Assembly)
Total War: ATTILA (HKLM\...\Steam App 325610) (Version: - Creative Assembly)
Total War: ROME II - Emperor Edition (HKLM\...\Steam App 214950) (Version: - Creative Assembly)
Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version: - Creative Assembly)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Warcraft III (HKLM\...\Warcraft III) (Version: - Blizzard Entertainment)
Windows 10 Update and Privacy Settings (HKLM\...\{542CC2C2-ABAF-4604-8723-DA296AF74540}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows Live (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WolfTeam-FR (HKLM\...\WolfTeam-FR) (Version: - )
World of Warcraft (HKLM\...\World of Warcraft) (Version: - Blizzard Entertainment)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-04-18] (Igor Pavlov)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.dll [2014-08-14] (Apple Inc.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\AntiVir Desktop\shlext.dll [2017-08-09] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-04-18] (Igor Pavlov)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2013-04-24] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\AntiVir Desktop\shlext.dll [2017-08-09] (Avira Operations GmbH & Co. KG)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {009FBA14-A832-4721-A904-CD834EA40936} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0108A964-3E82-4BFA-9362-9004441CFB24} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {0322F4C1-C24E-498B-BAAB-B7B23DD0CCCF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0AB71775-8C37-4C90-B082-0492B4EFA1DB} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1762EDC5-80E7-4489-9A2A-CE0561C24D9D} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {19D563D4-D9DF-4955-85C9-B126699A127E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {1B70AAE8-8954-496B-BEDE-EF50B88F95FA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1DC35774-144D-4E6F-8931-355996D0A075} - System32\Tasks\{A374D883-6190-4334-91E3-B132395F6042} => C:\Program Files\Mumble\mumble.exe [2012-01-15] (Thorvald Natvig)
Task: {25ACCCEA-1C30-4E85-BE0D-8A86BDEDDF17} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {29AB870F-1CE8-4987-95FB-AB6B95D69BF7} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3223FD29-6DA5-438C-8CBF-A21B5562CCD0} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {399FE5DD-6DEC-4B2E-8CF4-9DC3F097B7F3} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3B5CBDE4-F2D3-4E17-9B29-D74271A6F376} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {42BAC22C-2043-4AB5-A242-FBE940279F14} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {4B1B559F-3E8F-4922-9D76-7B664F371671} - System32\Tasks\{05F15481-B7B9-4484-BF28-9DE4BDCB24C2} => C:\Program Files\Sunflowers\ParaWorld\Bin\Paraworld.exe
Task: {4E57010E-F8D6-4B53-AF5D-9E136F9FBD53} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {59B9922B-C856-405A-B57A-87B66F29F404} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-20] (Adobe Systems Incorporated)
Task: {5B2E9D50-C2CE-4669-8A69-F2888DCA3A9A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6536EAEF-916B-4AD6-AA45-E8F935A28EED} - System32\Tasks\{9580783B-774C-46FC-A9EF-62DCEB40239D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\ZHPDiag\ZHPFix\ZHPhep.exe" -d "C:\Program Files\ZHPDiag\ZHPFix"
Task: {65572E68-FCE1-4813-A243-C09F542A7C6D} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {671DFE6A-6D52-4805-860E-505268AA6BFA} - System32\Tasks\{D98E5150-9CFD-4C62-9CB9-0479206AF08C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\ZHPDiag\ZHPhep.exe" -d "C:\Program Files\ZHPDiag"
Task: {67C11CB0-922D-4F85-BDB3-E36D23ED7574} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6BBAE429-6EFE-4996-8A0D-0E9F8453F5E7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7041D2C7-A734-4CE9-884E-779B10F7089E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {70439A89-E99A-441A-9681-AA790AC53101} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7EAEE366-BBF9-4A1F-8A0F-F702BB407428} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {87E7E63B-C39A-4B78-853F-C813E1DEBC2A} - System32\Tasks\{64E8DD2F-D4D2-4B4D-82C9-A139F72EE78C} => C:\Program Files\Mumble\mumble.exe [2012-01-15] (Thorvald Natvig)
Task: {8A480167-95D6-4B2A-ADB4-E50FA4E6A43E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {8B44A7D7-5913-4AD8-A47F-1C01E78C32DE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {9073499A-46F3-42DE-BB04-67A95FCDA91F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {A0BAFBA5-B61E-4C63-B00D-AEE71D4DC104} - System32\Tasks\{2A27DF28-2247-4BB0-B211-5375DAD63838} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\
Task: {A4A94899-553E-4948-BEE9-E897AF70DCC8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {AEAC3E5F-318F-44FB-9C86-73357C4E4F8A} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {B7228831-E2CC-4BB6-80A1-1D477864B373} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {BE67A9FD-A054-40E7-BEF2-41E16878873F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {C98E8201-4BFD-488B-8268-4ADCD2B20E8B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {D1265104-9251-4370-B326-C046535C28C1} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {D206A579-3BE1-4A9B-AF92-905680DEA80C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {D925D25C-F4CB-43E3-A387-635CCA13A8C9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {E4C491EE-626C-47F4-8F76-723ED2A3623A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {EBB03F3F-1CF6-4EE7-8C84-AFBC017875AD} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F668B204-B085-4A8F-9E61-743D4CAA0DFA} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {FBD25FB3-E643-4E98-A3D1-3897CCF665B6} - System32\Tasks\{F96957A3-B0EE-4650-8AC9-0A6720FE5AE4} => C:\Program Files\Mumble\mumble.exe [2012-01-15] (Thorvald Natvig)
Task: {FF22F444-DA73-48F2-8240-3D1454184679} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2016-07-16 10:25 - 2016-07-16 10:25 - 000190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-08-08 20:48 - 2017-06-21 09:39 - 002048496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2009-07-23 18:23 - 2009-07-23 18:23 - 000387616 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
2009-07-23 18:23 - 2009-07-23 18:23 - 000068128 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll
2009-07-23 18:23 - 2009-07-23 18:23 - 000436768 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll
2017-08-30 13:39 - 2017-08-24 11:27 - 001724368 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2009-07-23 18:23 - 2009-07-23 18:23 - 000178720 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
2016-07-16 10:25 - 2016-07-16 10:25 - 000108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-17 12:56 - 2017-03-04 08:24 - 000321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-17 12:54 - 2017-03-04 08:04 - 006726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-08-08 20:48 - 2017-08-01 18:29 - 001150464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-28 15:51 - 2016-09-28 15:51 - 000526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-08-08 20:48 - 2017-08-01 18:30 - 000779776 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-08-08 20:48 - 2017-03-04 07:58 - 001724928 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-08-08 20:48 - 2017-08-01 18:34 - 003158016 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-08-25 20:44 - 2017-08-25 20:53 - 000064512 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x86__kzf8qxf38zg5c\SkypeHost.exe
2017-08-25 20:44 - 2017-08-25 20:53 - 000171008 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-08-25 20:44 - 2017-08-25 20:53 - 027734016 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x86__kzf8qxf38zg5c\SkyWrap.dll
2017-08-25 20:44 - 2017-08-25 20:53 - 001660928 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x86__kzf8qxf38zg5c\skypert.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMChameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMChameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-3050573959-3967027285-3135605386-1001\...\aeriagames.com -> hxxp://aeriagames.com
IE trusted site: HKU\S-1-5-21-3050573959-3967027285-3135605386-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE restricted site: HKU\S-1-5-21-3050573959-3967027285-3135605386-1001\...\awesomehp.com -> hxxp://www.awesomehp.com
IE trusted site: HKU\S-1-5-21-3050573959-3967027285-3135605386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859606\...\aeriagames.com -> hxxp://aeriagames.com
IE trusted site: HKU\S-1-5-21-3050573959-3967027285-3135605386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859606\...\aeriagames.com -> hxxps://aeriagames.com
IE restricted site: HKU\S-1-5-21-3050573959-3967027285-3135605386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859606\...\awesomehp.com -> hxxp://www.awesomehp.com

==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2009-07-14 04:04 - 2009-06-10 23:39 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859341\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859450\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3050573959-3967027285-3135605386-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3050573959-3967027285-3135605386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859606\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3050573959-3967027285-3135605386-1009\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-3050573959-3967027285-3135605386-1009-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859778\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-3050573959-3967027285-3135605386-1010\Control Panel\Desktop\\Wallpaper -> C:\Users\Eric & Sophie\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{7ec28d8e-4b85-491b-9117-e87b902aa126}.JPG
HKU\S-1-5-21-3050573959-3967027285-3135605386-1010-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859966\Control Panel\Desktop\\Wallpaper -> C:\Users\Eric & Sophie\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{7ec28d8e-4b85-491b-9117-e87b902aa126}.JPG
HKU\S-1-5-21-3050573959-3967027285-3135605386-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3050573959-3967027285-3135605386-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113900231\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113900622\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 212.27.40.241 - 212.27.40.240
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Eric et Sophie^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 - Capture d'écran et lancement.lnk => C:\Windows\pss\OneNote 2007 - Capture d'écran et lancement.lnk.Startup
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Eric et Sophie\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: Arc => C:\Program Files\Perfect World Entertainment\Arc\ArcLauncher.exe /autorun
MSCONFIG\startupreg: iCloudServices => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: Pando Media Booster => C:\Program Files\Pando Networks\Media Booster\PMB.exe
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files\Steam\steam.exe" -silent
HKU\S-1-5-21-3050573959-3967027285-3135605386-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3050573959-3967027285-3135605386-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09012017113859606\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{389E873A-14AD-46CD-B293-717FB252ACD7}] => (Allow) C:\Program Files\Steam\steamapps\common\Total War Attila\launcher\launcher.exe
FirewallRules: [{FEAEAFE3-E6D3-4C7D-9257-B55BA04F395B}] => (Allow) C:\Program Files\Steam\steamapps\common\Total War Attila\launcher\launcher.exe
FirewallRules: [UDP Query User{B76B53BD-9BA8-4EE0-87D5-516E9FBDFA0C}C:\program files\steam\steamapps\common\total war attila\attila.exe] => (Block) C:\program files\steam\steamapps\common\total war attila\attila.exe
FirewallRules: [TCP Query User{A06B5F96-2675-4E8D-ABB6-306D48C0578B}C:\program files\steam\steamapps\common\total war attila\attila.exe] => (Block) C:\program files\steam\steamapps\common\total war attila\attila.exe
FirewallRules: [UDP Query User{BD7CE415-14B3-446D-949B-C9D8B2F37A61}C:\program files\heroes of the storm\versions\base41810\heroesofthestorm.exe] => (Allow) C:\program files\heroes of the storm\versions\base41810\heroesofthestorm.exe
FirewallRules: [TCP Query User{E7262DA1-8FF5-458E-B9FA-3B1182E659A2}C:\program files\heroes of the storm\versions\base41810\heroesofthestorm.exe] => (Allow) C:\program files\heroes of the storm\versions\base41810\heroesofthestorm.exe
FirewallRules: [{0C696C1E-E0CB-40B9-B30C-381AEA69D050}] => (Allow) C:\Program Files\Steam\steamapps\common\Total War Battles KINGDOM\TWB_Kingdom.exe
FirewallRules: [{E5FA46DC-7F2B-43B0-8F61-3319E7AA409D}] => (Allow) C:\Program Files\Steam\steamapps\common\Total War Battles KINGDOM\TWB_Kingdom.exe
FirewallRules: [{0BEF0A3F-5498-4FEE-909A-FCBEC89F84FD}] => (Allow) C:\Program Files\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{3BF74005-B80E-4D89-A061-F645AB227EA1}] => (Allow) C:\Program Files\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [UDP Query User{0FB38CD8-970A-4BEA-BE9E-8C855A33FD07}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{BB4D32ED-B742-409B-957F-5F97ADC37C34}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [{B7F77442-E439-483B-928A-06E1763C73AF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{6FA7E256-3B68-489C-8687-BF38B5628E5D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3A204377-C6F5-4807-90A3-53BA024AEE1A}] => (Allow) LPort=1900
FirewallRules: [{70C1FCFD-3AD3-4FD5-B4D5-09BCA944C09A}] => (Allow) LPort=2869
FirewallRules: [{F930F306-5FE4-4849-A575-0E92EA2A868C}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{42901420-1255-421F-A2F9-1EF06C14C2A5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{C2A0CA13-241D-494D-B22F-FE88C8B12529}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{999207F1-83F6-4866-804C-A145D31727FB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{7946C116-D3D2-48B9-B453-9C80AF11FCDC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{27DE4506-46EE-4236-B189-06945CDF8436}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [UDP Query User{28EC394E-7BD8-4E71-AF9C-3AE5589D1C50}C:\program files\ea games\la bataille pour la terre du milieu(tm)\game.dat] => (Block) C:\program files\ea games\la bataille pour la terre du milieu(tm)\game.dat
FirewallRules: [TCP Query User{4F043CDD-BD32-449A-ABA8-978D69A39752}C:\program files\ea games\la bataille pour la terre du milieu(tm)\game.dat] => (Block) C:\program files\ea games\la bataille pour la terre du milieu(tm)\game.dat
FirewallRules: [{EE3DBC22-3508-463E-9334-97452611A9FD}] => (Allow) C:\Program Files\Electronic Arts\La Bataille pour la Terre du Milieu II\game.dat
FirewallRules: [{3AB81F23-AD34-4A55-BA3C-AA0943F026B6}] => (Allow) C:\Program Files\Electronic Arts\La Bataille pour la Terre du Milieu II\game.dat
FirewallRules: [UDP Query User{BDA85B72-ACF4-4E8A-8934-6861CB789E39}C:\program files\starcraft ii\versions\base23260\sc2.exe] => (Allow) C:\program files\starcraft ii\versions\base23260\sc2.exe
FirewallRules: [TCP Query User{CE6722CB-3B7D-4F99-B4F3-A96D03491CE1}C:\program files\starcraft ii\versions\base23260\sc2.exe] => (Allow) C:\program files\starcraft ii\versions\base23260\sc2.exe
FirewallRules: [UDP Query User{E95E2CE9-A9B8-48ED-A928-956FDDD860C0}C:\warcraft iii\war3.exe] => (Block) C:\warcraft iii\war3.exe
FirewallRules: [TCP Query User{58A3D9E4-CABC-4941-9312-DD514B6B7C38}C:\warcraft iii\war3.exe] => (Block) C:\warcraft iii\war3.exe
FirewallRules: [{BE23CBD9-A2C2-44DE-A1EF-1941AC6EC773}] => (Allow) C:\Program Files\Electronic Arts\L'Avènement du Roi-sorcier\game.dat
FirewallRules: [{9F72EC40-ECBC-47C7-B3D8-242BD59832DD}] => (Allow) C:\Program Files\Electronic Arts\L'Avènement du Roi-sorcier\game.dat
FirewallRules: [{970FF21D-5AEB-4F17-B85E-CAECA7002CE1}] => (Allow) C:\Program Files\GameSpy Arcade\Aphex.exe
FirewallRules: [{702AC05B-01C4-4EC3-AF43-2C9DA1F2BE30}] => (Allow) C:\Program Files\GameSpy Arcade\Aphex.exe
FirewallRules: [{E92542C2-019F-4BD6-951B-7ADD183605DB}] => (Allow) C:\Program Files\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{E59B5456-5EAC-44A5-99BC-815147F058A5}] => (Allow) C:\Program Files\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [UDP Query User{8EE7B987-0127-4ACB-A2D4-1115CA3EC705}C:\program files\starcraft ii\starcraft ii.exe] => (Allow) C:\program files\starcraft ii\starcraft ii.exe
FirewallRules: [TCP Query User{4C175CA6-F202-4B21-9BDE-9A2F878090F6}C:\program files\starcraft ii\starcraft ii.exe] => (Allow) C:\program files\starcraft ii\starcraft ii.exe
FirewallRules: [UDP Query User{BBEFAA0C-BAF3-481D-9A31-3A333966BF82}C:\program files\guild wars 2\gw2.exe] => (Allow) C:\program files\guild wars 2\gw2.exe
FirewallRules: [TCP Query User{105AF922-AC52-46FA-88C6-03C19EBCF4DA}C:\program files\guild wars 2\gw2.exe] => (Allow) C:\program files\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{AF6350A8-DDC0-4570-A1FA-A815B9D1B10D}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{32613010-F052-422F-ADD7-C15BEE4BE949}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{3C8E8F3A-AB5A-486B-B1AD-3AC23FA8E222}C:\program files\diablo iii\diablo iii.exe] => (Block) C:\program files\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{DBEE1CB5-4612-43D5-B501-C7F940B19394}C:\program files\diablo iii\diablo iii.exe] => (Block) C:\program files\diablo iii\diablo iii.exe
FirewallRules: [{E3310E6D-C289-46C3-A263-3A2B4E536AEA}] => (Allow) C:\Program Files\Diablo III\Diablo III.exe
FirewallRules: [{1DE28D3F-1C07-4C66-B810-7DC0116800E6}] => (Allow) C:\Program Files\Diablo III\Diablo III.exe
FirewallRules: [UDP Query User{9167511C-6F15-4247-BBDC-58F5D083F838}C:\program files\electronic arts\l'avènement du roi-sorcier\patchget.dat] => (Block) C:\program files\electronic arts\l'avènement du roi-sorcier\patchget.dat
FirewallRules: [TCP Query User{A6FB0925-F32E-4444-BDC5-ACEF8A1AA60D}C:\program files\electronic arts\l'avènement du roi-sorcier\patchget.dat] => (Block) C:\program files\electronic arts\l'avènement du roi-sorcier\patchget.dat
FirewallRules: [{BF03140D-3904-4FE0-ADC6-61631C479314}] => (Allow) C:\Program Files\StarCraft II\Versions\Base21029\SC2.exe
FirewallRules: [{259EFA2F-ABAB-421A-8214-027651777A81}] => (Allow) C:\Program Files\StarCraft II\Versions\Base21029\SC2.exe
FirewallRules: [{2EB2D70F-2890-4FC3-A7F5-CE5C9AD9C755}] => (Allow) C:\Program Files\StarCraft II\StarCraft II.exe
FirewallRules: [{A032F9E8-091A-4DE6-8203-AD3EA1142EB7}] => (Allow) C:\Program Files\StarCraft II\StarCraft II.exe
FirewallRules: [UDP Query User{7531910A-9D6A-4642-9257-971DB37A403F}C:\users\eric et sophie\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\eric et sophie\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{0F6BCBAC-535C-4295-B696-763D563870DB}C:\users\eric et sophie\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\eric et sophie\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{5D113E05-FCCB-4E58-BB6E-2DA99F9D7A66}C:\aeriagames\wolfteam-fr\wolfteam.bin] => (Block) C:\aeriagames\wolfteam-fr\wolfteam.bin
FirewallRules: [TCP Query User{E1AA0B40-99B9-4F1C-A53A-C04049E7CC40}C:\aeriagames\wolfteam-fr\wolfteam.bin] => (Block) C:\aeriagames\wolfteam-fr\wolfteam.bin
FirewallRules: [UDP Query User{19CF70B8-4DFA-46E8-AC47-B775006F7891}C:\users\eric et sophie\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\eric et sophie\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{C261A0A8-B9A0-45FA-92AE-97ADB9E6B1A0}C:\users\eric et sophie\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\eric et sophie\appdata\local\akamai\netsession_win.exe
FirewallRules: [{6100CF56-1AFB-4B9B-8E86-88E1A3CDF83E}] => (Allow) C:\Program Files\EA GAMES\La Bataille pour la Terre du Milieu(tm)\game.dat
FirewallRules: [{C8C95199-2635-4DB0-8C6C-535E9072CD99}] => (Allow) C:\Program Files\EA GAMES\La Bataille pour la Terre du Milieu(tm)\game.dat
FirewallRules: [{51735A84-6061-40F4-95C2-4638A483F961}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{6960E853-17B8-49B5-AA3D-6734E593B40B}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{54BFCFFF-11C9-42EB-9E5C-91549094AACB}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{026F623A-B45E-40D2-A0F6-6643C50D26B7}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{25B5A97F-E743-449A-B484-A3794233FDCE}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\swtor\retailclient\swtor.exe
FirewallRules: [{1D4B5240-A5D9-4F0C-B79F-E6EA0695BE80}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\swtor\retailclient\swtor.exe
FirewallRules: [{2B23A276-6BAA-493E-B3B4-D6957421D48E}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\swtor\retailclient\swtor.exe
FirewallRules: [{E76FDD8A-3514-4F47-BB6F-6EBCE24F1DE0}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\swtor\retailclient\swtor.exe
FirewallRules: [{9B0C705C-2626-4904-ACF9-4A4CB3D01B40}] => (Allow) C:\Program Files\Electronic Arts\L'Avènement du Roi-sorcier\game.dat
FirewallRules: [{786D1E0E-E88A-45BD-9F1E-B925FC36DC28}] => (Allow) C:\Program Files\Electronic Arts\L'Avènement du Roi-sorcier\game.dat
FirewallRules: [{43DC885B-CE9B-45A2-AB6C-44433BFE42E9}] => (Allow) C:\Program Files\Electronic Arts\La Bataille pour la Terre du Milieu II\game.dat
FirewallRules: [{B314319B-19B9-4C81-9A7F-00ACA3E47016}] => (Allow) C:\Program Files\Electronic Arts\La Bataille pour la Terre du Milieu II\game.dat
FirewallRules: [{F7A1A674-D232-4723-A89B-EB7BCC3AC615}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{7B886650-1382-4E73-9E0E-530C383334B8}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{B919712D-0FBC-47CD-97A5-6F94AE1C8BD5}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{8EE91750-8262-43DC-9C3A-AE00DF534A71}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{82149249-04FC-414A-99B6-D5B409232817}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{60CA6DD6-D3EA-43A3-B394-94A80EFCC18D}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{E73D3A93-889D-474E-B329-7BD93AE27085}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{8DF5964F-09F4-470D-9FEE-FF0593BF3F3D}C:\games\launcher\bethesda.net_launcher.exe] => (Allow) C:\games\launcher\bethesda.net_launcher.exe
FirewallRules: [UDP Query User{5B75D635-DAF8-4AC8-8FF1-647D41D797E3}C:\games\launcher\bethesda.net_launcher.exe] => (Allow) C:\games\launcher\bethesda.net_launcher.exe
FirewallRules: [TCP Query User{B6036E6E-8C34-4A5E-AEA5-8311B39F29E3}C:\program files\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{DCE3C522-22BE-4F71-9542-9DAA0A8FAD5B}C:\program files\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{2F5144D5-FD6A-4DD8-A48B-FCFEA9CF1888}C:\users\eric & sophie\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\eric & sophie\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{FCC09821-4A7D-4FC8-8BD7-B2A5E3BAD78C}C:\users\eric & sophie\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\eric & sophie\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{871B5D82-279F-4092-A51E-D15B5F9D5775}C:\users\eric & sophie\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\eric & sophie\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{ACFF5BB6-0756-4D45-BC8E-1B5683D6A8EE}C:\users\eric & sophie\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\eric & sophie\appdata\roaming\spotify\spotify.exe
FirewallRules: [{563EC92D-2F71-480E-859F-0E666A5978CB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Points de restauration =========================

30-08-2017 13:01:24 Windows Update
01-09-2017 10:42:57 Removed Bonjour

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (09/01/2017 04:06:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante CCC.exe, version : 3.5.0.0, horodatage : 0x4f2058ba
Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.1532, horodatage : 0x5965adf7
Code d’exception : 0xe0434352
Décalage d’erreur : 0x000c2522
ID du processus défaillant : 0x168c
Heure de début de l’application défaillante : 0x01d3232b8b5e3164
Chemin d’accès de l’application défaillante : C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 6f3a31a3-0b2e-4ab9-a840-083cc8e1832e
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (09/01/2017 04:06:45 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : CCC.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.UnauthorizedAccessException
à System.IO.__Error.WinIOError(Int32, System.String)
à System.IO.FileStream.Init(System.String, System.IO.FileMode, System.IO.FileAccess, Int32, Boolean, System.IO.FileShare, Int32, System.IO.FileOptions, SECURITY_ATTRIBUTES, System.String, Boolean, Boolean, Boolean)
à System.IO.FileStream..ctor(System.String, System.IO.FileMode, System.IO.FileAccess, System.IO.FileShare)
à System.Xml.XmlDocument.Save(System.String)
à ATI.ACE.CLI.Foundation.MergeManifest.ReadManifest()
à ATI.ACE.CLI.Foundation.XManifestation.ReadManifest()
à ATI.ACE.CCC.Implementation.Manifest.GetXManifest()
à ATI.ACE.CCC.Implementation.CCC_Main.Run()
à ATI.ACE.CCC.Implementation.CCC.Main(System.String[])

Informations sur l'exception : System.Reflection.TargetInvocationException
à System.RuntimeMethodHandle.InvokeMethod(System.Object, System.Object[], System.Signature, Boolean)
à System.Reflection.RuntimeMethodInfo.UnsafeInvokeInternal(System.Object, System.Object[], System.Object[])
à System.Reflection.RuntimeMethodInfo.Invoke(System.Object, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object[], System.Globalization.CultureInfo)
à System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
à ATI.ACE.CCC.EXE.CCC.Main(System.String[])

Error: (09/01/2017 04:05:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante CCC.exe, version : 3.5.0.0, horodatage : 0x4f2058ba
Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.1532, horodatage : 0x5965adf7
Code d’exception : 0xe0434352
Décalage d’erreur : 0x000c2522
ID du processus défaillant : 0x25f8
Heure de début de l’application défaillante : 0x01d3232b67b7e38d
Chemin d’accès de l’application défaillante : C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 7d8ce0a7-b6ee-4921-8342-6667fa96144d
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (09/01/2017 04:05:46 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : CCC.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.UnauthorizedAccessException
à System.IO.__Error.WinIOError(Int32, System.String)
à System.IO.FileStream.Init(System.String, System.IO.FileMode, System.IO.FileAccess, Int32, Boolean, System.IO.FileShare, Int32, System.IO.FileOptions, SECURITY_ATTRIBUTES, System.String, Boolean, Boolean, Boolean)
à System.IO.FileStream..ctor(System.String, System.IO.FileMode, System.IO.FileAccess, System.IO.FileShare)
à System.Xml.XmlDocument.Save(System.String)
à ATI.ACE.CLI.Foundation.MergeManifest.ReadManifest()
à ATI.ACE.CLI.Foundation.XManifestation.ReadManifest()
à ATI.ACE.CCC.Implementation.Manifest.GetXManifest()
à ATI.ACE.CCC.Implementation.CCC_Main.Run()
à ATI.ACE.CCC.Implementation.CCC.Main(System.String[])

Informations sur l'exception : System.Reflection.TargetInvocationException
à System.RuntimeMethodHandle.InvokeMethod(System.Object, System.Object[], System.Signature, Boolean)
à System.Reflection.RuntimeMethodInfo.UnsafeInvokeInternal(System.Object, System.Object[], System.Object[])
à System.Reflection.RuntimeMethodInfo.Invoke(System.Object, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object[], System.Globalization.CultureInfo)
à System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
à ATI.ACE.CCC.EXE.CCC.Main(System.String[])

Error: (09/01/2017 03:29:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PCFixe)
Description: Échec de l’activation de l’application Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (09/01/2017 03:26:55 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PCFixe)
Description: Échec de l’activation de l’application Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (09/01/2017 02:59:15 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PCFixe)
Description: Échec de l’activation de l’application Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (09/01/2017 02:55:22 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PCFixe)
Description: Échec de l’activation de l’application Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (09/01/2017 02:55:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PCFixe)
Description: Échec de l’activation de l’application Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (09/01/2017 02:54:56 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PCFixe)
Description: Échec de l’activation de l’application Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.


Erreurs système:
=============
Error: (09/01/2017 04:00:05 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (09/01/2017 09:34:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Protection logicielle s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.

Error: (09/01/2017 09:30:53 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (09/01/2017 09:27:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur :
Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé.

Error: (09/01/2017 09:27:27 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 23:29:03 le ‎31/‎08/‎2017 n’était pas prévu.

Error: (08/31/2017 11:02:46 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: AUTORITE NT)
Description: 0xc000014d38\??\C:\Users\Administrateur\ntuser.dat

Error: (08/31/2017 11:02:32 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: AUTORITE NT)
Description: 0xc000014d35\SystemRoot\System32\Config\DEFAULT

Error: (08/31/2017 09:54:08 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (08/31/2017 08:17:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Protection logicielle s’est terminé de façon inattendue pour la 3ème fois.

Error: (08/31/2017 06:39:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Protection logicielle s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 300000 millisecondes : Redémarrer le service.


CodeIntegrity:
===================================
Date: 2017-09-01 09:34:19.767
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-01 09:34:19.641
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-08-31 20:17:28.982
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-08-31 20:17:28.889
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-08-31 18:39:12.001
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-08-31 18:39:11.376
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-08-31 17:21:48.740
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-08-31 17:21:48.139
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-08-24 14:24:35.853
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2017-08-24 14:24:35.811
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM)2 Quad CPU Q9300 @ 2.50GHz
Pourcentage de mémoire utilisée: 60%
Mémoire physique - RAM - totale: 3071.09 MB
Mémoire physique - RAM - disponible: 1204.3 MB
Mémoire virtuelle totale: 6143.09 MB
Mémoire virtuelle disponible: 3232.32 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:297.65 GB) (Free:35.47 GB) NTFS
Drive p: (Data) (Fixed) (Total:297.99 GB) (Free:262.01 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 27E05B7A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 27E05B72)
Partition 1: (Not Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==================== Fin de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité