cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 19-11-2017
Exécuté par Morgan (19-11-2017 14:58:38)
Exécuté depuis C:\Users\nicol\Downloads
Windows 10 Pro Version 1703 15063.726 (X64) (2017-10-08 12:00:54)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3990896486-2732210299-3631312544-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3990896486-2732210299-3631312544-503 - Limited - Disabled)
Invité (S-1-5-21-3990896486-2732210299-3631312544-501 - Limited - Disabled)
Morgan (S-1-5-21-3990896486-2732210299-3631312544-1001 - Administrator - Enabled) => C:\Users\nicol
___VMware_Conv_SA___ (S-1-5-21-3990896486-2732210299-3631312544-1002 - Limited - Enabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.009.20044 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1_1) (Version: 18.1.1 - Adobe Systems Incorporated)
Apple Application Support (32 bits) (HKLM-x32\...\{3D1290E6-1F77-46D5-A715-A56679C8D4E3}) (Version: 6.0.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{D0E45DEC-F4B9-4370-A9DF-66837789C2EF}) (Version: 6.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5}) (Version: 11.0.0.30 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
Backup and Sync from Google (HKLM-x32\...\{604582EB-8259-4ED6-9B1B-6F2494D4B640}) (Version: 3.37.7411.4599 - Google, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform)
Crucial Storage Executive (HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\Crucial Storage Executive 3.46.062017.04) (Version: 3.46.062017.04 - Crucial)
FileZilla Client 3.28.0 (HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\FileZilla Client) (Version: 3.28.0 - Tim Kosse)
Git version 2.14.2.2 (HKLM\...\Git_is1) (Version: 2.14.2.2 - The Git Development Community)
GitKraken (HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\gitkraken) (Version: 3.1.0 - Axosoft, LLC)
GlassFish Server Open Source Edition 4.1.1 (HKLM-x32\...\nbi-glassfish-mod-4.1.1.0.1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
HelpDesk Apixis (HKLM-x32\...\{97E49AB3-DDE6-1DDF-1D6E-13DEAD21570E}) (Version: 7.8.658 - LogMeIn, Inc.)
iCloud (HKLM\...\{7464D896-C63C-412E-8ED3-3261C9F14E21}) (Version: 7.0.1.210 - Apple Inc.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
IntelliJ IDEA 2017.2.5 (HKLM-x32\...\IntelliJ IDEA 2017.2.5) (Version: 172.4343.14 - JetBrains s.r.o.)
iTunes (HKLM\...\{89B08926-B965-43B5-8C71-C10433760B14}) (Version: 12.7.0.166 - Apple Inc.)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 9.0.1 (64-bit) (HKLM\...\{2590B9D6-4310-52BC-808E-1A585861A836}) (Version: 9.0.1.0 - Oracle Corporation)
Java SE Development Kit 8 Update 151 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180151}) (Version: 8.0.1510.12 - Oracle Corporation)
Java(TM) SE Development Kit 9.0.1 (64-bit) (HKLM\...\{4AC8DBB2-1AE5-5156-83F9-D4E2E6DD564B}) (Version: 9.0.1.0 - Oracle Corporation)
KeePass Password Safe 2.36 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.36 - Dominik Reichl)
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8776.0 - Waves Audio Ltd.) Hidden
Microsoft Office Famille et Petite Entreprise 2016 - fr-fr (HKLM\...\HomeBusinessRetail - fr-fr) (Version: 16.0.8625.2127 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mozilla Firefox 56.0 (x64 fr) (HKLM\...\Mozilla Firefox 56.0 (x64 fr)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0 - Mozilla)
NetBeans IDE 8.2 (HKLM-x32\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
Node.js (HKLM\...\{9CB432A8-2DC4-4AA3-BF63-9A2AE489B167}) (Version: 6.11.4 - Node.js Foundation)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.1 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8625.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden
Opera Stable 49.0.2725.39 (HKLM-x32\...\Opera 49.0.2725.39) (Version: 49.0.2725.39 - Opera Software)
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6117 - Realtek Semiconductor Corp.)
Ruby 2.4.2-2-x86 (HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\RubyInstaller-2.4-i386-mingw32_is1) (Version: 2.4.2-2 - RubyInstaller Team)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\Spotify) (Version: 1.0.67.582.g19436fa3 - Spotify AB)
StarUML (HKLM-x32\...\{5463AAE6-82E3-448E-921E-03B876963029}) (Version: 2.8.0 - MKLab)
Sublime Text Build 3143 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VMware vCenter Converter Standalone (HKLM-x32\...\{70487A14-885E-4203-80E6-6FE7AA5FDA8C}) (Version: 6.1.1.3533064 - VMware, Inc.)
XAMPP (HKLM-x32\...\xampp) (Version: 7.1.9-0 - Bitnami)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-3990896486-2732210299-3631312544-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-39A77834DC57}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3990896486-2732210299-3631312544-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-29] ()
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2017-09-18] (Apple Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-11-08] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {24A53DF6-A454-4F01-8F8B-6F141FA2394F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-02] (Microsoft Corporation)
Task: {50CB8819-C166-45B0-AF04-28446560DB2F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-09] ()
Task: {6E2DEAFE-A505-482C-B87D-8FA9DFBAA1FC} - System32\Tasks\Microsoft\Windows\Windows Subsystem for Linux\AptPackageIndexUpdate => C:\Windows\System32\LxRun.exe [2017-10-08] (Microsoft Corporation)
Task: {83BEAD77-0DA3-4D52-9E62-657BFB0F95D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-08] (Google Inc.)
Task: {A9EE2CBD-66AF-4C3F-9BBB-F7D3F6AA0693} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-02] (Microsoft Corporation)
Task: {B6D5E13C-49E0-4F61-9AD9-8F4F67B4DA63} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-09] ()
Task: {DF0E0C2D-1AD9-4011-8CF9-A21CAB96F4DD} - System32\Tasks\Opera scheduled Autoupdate 1507467420 => C:\Program Files\Opera\launcher.exe [2017-11-15] (Opera Software)
Task: {E07FE46E-5325-4FEC-86EF-C0F513535DD5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {E1941F3F-7DB5-4FB2-8359-06C678B3E920} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd)
Task: {F9023E73-4A66-482C-B8AA-66A62DCD4755} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-01-25] (Realtek Semiconductor)
Task: {F9D7087F-705A-4885-B902-D88C6954C067} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-08] (Google Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2017-09-01 01:49 - 2017-09-01 01:49 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-09-01 01:49 - 2017-09-01 01:49 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\Windows\SYSTEM32\inputhost.dll
2017-09-26 01:52 - 2017-09-26 01:52 - 000491600 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2017-08-29 01:43 - 2017-08-29 01:43 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-11-08 00:56 - 2016-11-08 00:56 - 000410608 _____ () C:\Windows\system32\igfxTray.exe
2017-03-18 21:59 - 2017-03-20 06:12 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-11-12 20:12 - 2017-11-12 20:12 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-11-12 20:12 - 2017-11-12 20:12 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-11-12 20:12 - 2017-11-12 20:12 - 025461760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-11-07 08:52 - 2017-11-07 08:52 - 002552832 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\skypert.dll
2017-11-01 05:49 - 2017-11-01 05:49 - 040417680 _____ () C:\Program Files (x86)\Google\Drive\googledrivesync.exe
2017-11-19 14:08 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-11-19 14:08 - 2017-11-01 08:54 - 002358736 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-11-19 14:27 - 2017-11-19 14:27 - 002973056 _____ () C:\Users\nicol\Downloads\ZHPCleaner.exe
2016-02-09 02:43 - 2016-02-09 02:43 - 000191704 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\LIBEXPAT.dll
2016-02-09 02:43 - 2016-02-09 02:43 - 000388824 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\ssoClient.dll
2016-02-09 02:44 - 2016-02-09 02:44 - 000086744 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\mspack.dll
2016-02-09 02:41 - 2016-02-09 02:41 - 001301720 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\libxml2.dll
2016-02-09 02:41 - 2016-02-09 02:41 - 000542936 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\sqlite3.dll
2017-11-19 14:02 - 2017-11-19 14:02 - 000088064 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\_ctypes.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000918528 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\_hashlib.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000098816 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32api.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000110080 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\pywintypes27.dll
2017-11-19 14:02 - 2017-11-19 14:02 - 000364544 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\pythoncom27.dll
2017-11-19 14:02 - 2017-11-19 14:02 - 000686080 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\unicodedata.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000320512 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32com.shell.shell.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 001177088 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\wx._core_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000806912 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\wx._gdi_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000816640 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\wx._windows_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 001067520 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\wx._controls_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000733696 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\wx._misc_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000736256 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\pysqlite2._sqlite.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000119808 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32file.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000108544 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32security.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000007168 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\hashobjs_ext.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000017920 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\thumbnails_ext.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000082432 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\usb_ext.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000013824 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\common.time34.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000018432 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32event.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000027648 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\windows.conditional.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000017408 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\windows.winwrap.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000089088 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\windows.volumes.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000167936 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32gui.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000046080 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\_socket.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 001309696 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\_ssl.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000129536 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\_elementtree.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000127488 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\pyexpat.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000038912 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32inet.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000077824 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\wx._html2.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000036864 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\_psutil_windows.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000524248 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\windows._lib_cacheinvalidation.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000011264 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32crypt.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000218624 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\PIL._imaging.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000027648 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\_multiprocessing.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000020480 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\_yappi.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000035840 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32process.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000024064 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32pipe.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000010240 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\select.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000025600 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32pdh.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000059392 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\windows.device_monitor.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000017408 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32profile.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000022528 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI38482\win32ts.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000088064 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\_ctypes.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000918528 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\_hashlib.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000098816 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32api.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000110080 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\pywintypes27.dll
2017-11-19 14:02 - 2017-11-19 14:02 - 000364544 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\pythoncom27.dll
2017-11-19 14:02 - 2017-11-19 14:02 - 000686080 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\unicodedata.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000320512 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32com.shell.shell.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 001177088 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\wx._core_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000806912 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\wx._gdi_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000816640 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\wx._windows_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 001067520 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\wx._controls_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000733696 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\wx._misc_.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000736256 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\pysqlite2._sqlite.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000119808 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32file.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000108544 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32security.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000007168 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\hashobjs_ext.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000017920 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\thumbnails_ext.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000082432 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\usb_ext.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000013824 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\common.time34.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000018432 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32event.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000027648 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\windows.conditional.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000017408 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\windows.winwrap.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000089088 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\windows.volumes.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000167936 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32gui.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000046080 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\_socket.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 001309696 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\_ssl.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000129536 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\_elementtree.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000127488 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\pyexpat.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000038912 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32inet.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000077824 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\wx._html2.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000036864 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\_psutil_windows.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000524248 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\windows._lib_cacheinvalidation.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000011264 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32crypt.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000218624 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\PIL._imaging.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000027648 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\_multiprocessing.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000020480 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\_yappi.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000035840 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32process.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000024064 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32pipe.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000010240 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\select.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000025600 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32pdh.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000059392 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\windows.device_monitor.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000017408 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32profile.pyd
2017-11-19 14:02 - 2017-11-19 14:02 - 000022528 _____ () C:\Users\nicol\AppData\Local\Temp\_MEI111362\win32ts.pyd
2017-10-25 16:10 - 2017-10-25 16:10 - 000073384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-03-18 22:03 - 2017-11-13 10:14 - 000000943 _____ C:\Windows\system32\Drivers\etc\hosts

192.168.1.19 nexity.dev
192.168.1.19 platform.dev
192.168.1.19 nexity.platform.dev
192.168.1.19 cebfc.platform.dev

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\nicol\Downloads\Bullshits\Moraine Lake Banff National Park Wallpapers HD Wallpapers.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "KeePass 2 PreLoad"
HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-3990896486-2732210299-3631312544-1001\...\StartupApproved\Run: => "iCloudServices"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{A72A2600-845E-496F-9206-B335CF641051}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{DB79B337-6FF7-482D-8B24-3BC59DF3B191}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{5F82811B-522F-47C9-8A0C-9899936CA4E7}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{BE519DBF-25F7-495B-B1D4-C64791B4C6F7}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{E21F219E-5770-486E-A85F-97FC862DFD1A}C:\users\nicol\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\nicol\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{16D56484-ACCE-416C-B264-0BCAF8F6F6C1}C:\users\nicol\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\nicol\appdata\roaming\spotify\spotify.exe
FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [TCP Query User{2266E81B-12DE-4F66-B641-522255C76C02}C:\program files\crucial\crucial storage executive\java\bin\javaw.exe] => (Allow) C:\program files\crucial\crucial storage executive\java\bin\javaw.exe
FirewallRules: [UDP Query User{95F3ABDF-4B11-47E8-B2F1-FA01974CB5DF}C:\program files\crucial\crucial storage executive\java\bin\javaw.exe] => (Allow) C:\program files\crucial\crucial storage executive\java\bin\javaw.exe
FirewallRules: [TCP Query User{2C7C1D32-6AAC-46FD-9CA1-06BD4759E398}C:\program files\crucial\crucial storage executive\java\bin\javaw.exe] => (Allow) C:\program files\crucial\crucial storage executive\java\bin\javaw.exe
FirewallRules: [UDP Query User{AF24D0A7-09F2-4EAB-B604-EA233C06D8BD}C:\program files\crucial\crucial storage executive\java\bin\javaw.exe] => (Allow) C:\program files\crucial\crucial storage executive\java\bin\javaw.exe
FirewallRules: [{D3BC4303-66E1-4E5E-B441-38714236D036}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{DAF41B6D-38B9-46C9-8C7C-27B2B682FBB1}C:\users\nicol\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\nicol\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{C250D718-3ADF-44AF-BB2E-25E93836BBA7}C:\users\nicol\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\nicol\appdata\roaming\spotify\spotify.exe
FirewallRules: [{246825DA-DD8E-40A2-8CAD-673FF843B53E}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{43489FEC-9C5E-4AEA-8CBA-3F27282DD8A1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3AC3336C-A521-455A-A807-7DF40EA678E5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D1A3E09E-6DA8-43CE-B54E-85124F43B25E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{11F8A6C4-1A2C-4D80-861B-B2230CE461AA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{366CA0AF-4648-451A-B11F-FB6747C0F760}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{68AA9465-1330-4563-B326-31D2A49DD98A}] => (Allow) C:\Program Files\Opera\48.0.2685.52\opera.exe
FirewallRules: [TCP Query User{C287FABE-D357-47CB-856A-9DEBC86E8208}C:\programdata\oracle\java\javapath_target_1012340734\javaw.exe] => (Allow) C:\programdata\oracle\java\javapath_target_1012340734\javaw.exe
FirewallRules: [UDP Query User{2213B15E-9B7D-4015-8992-4D1CF51A63FA}C:\programdata\oracle\java\javapath_target_1012340734\javaw.exe] => (Allow) C:\programdata\oracle\java\javapath_target_1012340734\javaw.exe
FirewallRules: [{56D472D4-4EFC-4626-8E2D-22407F76902C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{E72CF0CA-3900-4E80-B33A-02D050ADD4E5}] => (Allow) LPort=9089
FirewallRules: [{EED9B9BE-54A4-4419-9001-7595C0EF9E08}] => (Allow) C:\Program Files\Opera\49.0.2725.39\opera.exe

==================== Points de restauration =========================

19-11-2017 13:36:55 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (11/19/2017 01:49:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ShellExperienceHost.exe, version : 10.0.15063.0, horodatage : 0x58ccbd2e
Nom du module défaillant : Windows.UI.Xaml.dll, version : 10.0.15063.674, horodatage : 0xaf452875
Code d’exception : 0xc000027b
Décalage d’erreur : 0x0000000000443b5f
ID du processus défaillant : 0x16fc
Heure de début de l’application défaillante : 0x01d35fe260811707
Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Chemin d’accès du module défaillant: C:\Windows\System32\Windows.UI.Xaml.dll
ID de rapport : 50540acc-b81b-475f-989a-92e7ab0938d0
Nom complet du package défaillant : Microsoft.Windows.ShellExperienceHost_10.0.15063.675_neutral_neutral_cw5n1h2txyewy
ID de l’application relative au package défaillant : App

Error: (11/18/2017 07:08:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-GHFF4JO.local already in use; will try DESKTOP-GHFF4JO-2.local instead

Error: (11/18/2017 07:08:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-GHFF4JO.local. Addr 192.168.1.21

Error: (11/18/2017 07:08:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.21:5353 16 DESKTOP-GHFF4JO.local. AAAA 2A01:CB19:8879:D300:955A:0225:4D1F:F546

Error: (11/17/2017 10:38:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante SetupHost.Exe, version : 10.0.16299.15, horodatage : 0xb664feec
Nom du module défaillant : SetupPlatform.dll, version : 1.52.16299.64, horodatage : 0x2ccac77d
Code d’exception : 0xc00000fd
Décalage d’erreur : 0x0000000000191224
ID du processus défaillant : 0x1908
Heure de début de l’application défaillante : 0x01d35fe0afa3ecb8
Chemin d’accès de l’application défaillante : C:\$WINDOWS.~BT\Sources\SetupHost.Exe
Chemin d’accès du module défaillant: C:\$WINDOWS.~BT\Sources\SetupPlatform.dll
ID de rapport : 32e55ba4-3ed3-4c21-b5fd-58aface36829
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (11/15/2017 09:39:03 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\microsoft office\root\office16\odbc drivers\salesforce\lib\libcurl32.dlla\libcurl.dll ».
Assembly dépendant OpenSSL.DllA,processorArchitecture="*",type="win32",version="1.0.0.4" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (11/14/2017 09:41:25 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\microsoft office\root\office16\odbc drivers\salesforce\lib\libcurl32.dlla\libcurl.dll ».
Assembly dépendant OpenSSL.DllA,processorArchitecture="*",type="win32",version="1.0.0.4" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (11/12/2017 11:42:22 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GHFF4JO)
Description: Échec de l’activation de l’application Microsoft.SkypeApp_kzf8qxf38zg5c!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (11/09/2017 08:39:31 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\microsoft office\root\office16\odbc drivers\salesforce\lib\libcurl32.dlla\libcurl.dll ».
Assembly dépendant OpenSSL.DllA,processorArchitecture="*",type="win32",version="1.0.0.4" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (11/08/2017 05:32:26 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GHFF4JO)
Description: Échec de l’activation de l’application Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.


Erreurs système:
=============
Error: (11/19/2017 02:01:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur :
Cette demande n’est pas prise en charge.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) Content Protection HECI Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service VMware vCenter Converter Standalone Server s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Adobe Acrobat Update Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service VMware vCenter Converter Standalone Worker s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service VMware vCenter Converter Standalone Agent s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Microsoft Office « Démarrer en un clic » s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Gestion d’ordinateurs virtuels Hyper-V s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service de calcul hôte Hyper-V s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/19/2017 02:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Waves Audio Services s’est terminé de façon inattendue pour la 1ème fois.


CodeIntegrity:
===================================
Date: 2017-11-19 14:48:59.933
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:48:59.924
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:48:59.569
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:48:59.564
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:48:53.124
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:48:53.121
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:27:35.947
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:27:35.944
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:27:35.313
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-19 14:27:35.309
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 48%
Mémoire physique - RAM - totale: 8097 MB
Mémoire physique - RAM - disponible: 4200.02 MB
Mémoire virtuelle totale: 13985 MB
Mémoire virtuelle disponible: 9839.3 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:446.58 GB) (Free:277.83 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 447.1 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité