Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 22-09-2019
Exécuté par maxim (23-09-2019 05:09:30)
Exécuté depuis C:\Users\maxim\Downloads
Windows 10 Home Version 1903 18362.356 (X64) (2019-08-25 16:49:18)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-4085822958-4239461056-2293560423-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4085822958-4239461056-2293560423-503 - Limited - Disabled)
Invité (S-1-5-21-4085822958-4239461056-2293560423-501 - Limited - Disabled)
maxim (S-1-5-21-4085822958-4239461056-2293560423-1001 - Administrator - Enabled) => C:\Users\maxim
WDAGUtilityAccount (S-1-5-21-4085822958-4239461056-2293560423-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.0.1.1233 - Advanced Micro Devices, Inc.)
Apple Application Support (32 bits) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
AutoHotkey 1.1.30.03 (HKLM\...\AutoHotkey) (Version: 1.1.30.03 - Lexikos)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
Discord (HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
iTunes (HKLM\...\{C61D1957-6534-4B61-AB35-1F115D41CFD5}) (Version: 12.9.5.7 - Apple Inc.)
Logiciel de base du périphérique HP DeskJet 2600 series (HKLM\...\{D515AD5F-004D-4B21-80BD-5F21DD33C039}) (Version: 43.3.2478.18107 - HP Inc.)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: - Logitech)
Malwarebytes version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft Office Standard 2016 - fr-fr (HKLM\...\StandardRetail - fr-fr) (Version: 16.0.11929.20300 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0008 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mises à jour NVIDIA 38.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.0.0 - NVIDIA Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Pilote graphique 436.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.02 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 436.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 436.02 - NVIDIA Corporation) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\PhotoFiltre 7) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.36.701.2019 - Realtek)
Rustangelo (HKLM-x32\...\{9BF0999E-EF7B-4655-B212-4963C33D91D6}) (Version: 2.0.3000 - JaviteSoft)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
UnknownSkill (HKLM-x32\...\{8697F792-6C3B-465B-BD05-587500019EC1}) (Version: 7.2.4 - UnknownSkill)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Packages:
=========
Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-25] (Microsoft Corporation) [MS Ad]
Farm Heroes Saga -> C:\Program Files\WindowsApps\king.com.FarmHeroesSaga_5.25.5.0_x86__kgqvnymyfvs32 [2019-09-20] (king.com)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_100.1.581.0_x64__v10z8vjag6ke6 [2019-09-06] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-25] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-08-30] (Microsoft Studios) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-08-16] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Users\maxim\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\maxim\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
Il y a 7943 plus de sites.
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\123simsen.com -> www.123simsen.com
Il y a 7943 plus de sites.
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-03-19 06:49 - 2019-09-13 16:57 - 000454790 ____R C:\Windows\system32\drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Il y a 15610 plus de lignes.
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\Control Panel\Desktop\\Wallpaper -> c:\users\maxim\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img0.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{A01B2666-A1B8-4B52-8028-0DFFEF8D400E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F30A1EC0-E3C2-4AD9-BF27-D387709581A9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F8A84B4F-2578-4E3E-AD80-BE27E0C3E67D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier
FirewallRules: [{E94A98EF-B61D-4931-93D6-2BEBEBB98591}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier
FirewallRules: [{8223E055-ABF1-425F-AEE5-C7CAE6101823}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{BE952C2B-B23F-49A2-A655-6B74A00A8394}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{CB057C72-2121-4919-BBD1-57E1C9FA6669}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9792F47F-8E28-4D8F-82B5-A3AE3B30C2F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7056ACE1-D199-45E9-921A-D3F7FF7B20C0}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{65BED203-2C42-42C3-882B-4464B8395BFD}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{4EBC9B49-F2E2-49B3-8B77-5C55770B98C0}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{01B6B8C0-A9EA-4E48-8DBB-AFF3FA7FFA29}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C1C589DE-40EF-43A4-9CA5-736D11E426E2}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{B1D5B981-4C00-4F58-8621-888A9E5C3B2F}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{A5DA7F43-E961-47D5-A91D-4DFF5844DDA9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{602AD556-09E8-493A-B267-B9823B50A9F8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1BE278FF-B854-432E-8C98-7CE98448A3A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E348C6EF-19C9-4399-87A6-E4A7A922F634}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F919CDAB-64DF-458F-A98A-68149E65AF80}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{84ABBE3C-8B42-4A89-931E-8621BC26AF1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EC9F66F1-9268-4961-86DE-53034CED4186}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4106D042-5EB1-4294-8BC1-30B286476CEE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{58CB8235-FABE-404C-9795-2657EDFCE95D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1010532B-C3F5-48EE-A96E-91D61B6DC724}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{025E67D1-FB66-4FCA-BF07-2D970C23945B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{85D2A8F3-6889-4B3D-BBE0-D424ABAA03D5}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5186C825-E579-4E41-8749-D1BA8A3DB267}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{60EF589C-347D-45D8-A976-BC1256CB8C28}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\Buoyancy\Buoyancy.exe () [Fichier non signé]
FirewallRules: [{E7BC92F2-FFFF-4143-B230-18D89E219582}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\Buoyancy\Buoyancy.exe () [Fichier non signé]
FirewallRules: [{7379B402-1A77-4C25-9466-1C56E47A92D8}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé]
FirewallRules: [{5443ED9C-596F-4013-9A08-538720D2C896}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé]
FirewallRules: [{C1B4CFBC-7EEB-4097-BC27-2017CD632778}] => (Allow) D:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () [Fichier non signé]
FirewallRules: [{E4A961A0-1795-4A03-9CF1-3D0A1CD31D50}] => (Allow) D:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () [Fichier non signé]
FirewallRules: [TCP Query User{231EBA3A-3859-4325-B483-33FDDC0F4B64}E:\téléchargements\office_kms_activator_2017_ultimate_1\office kms activator 2017 ultimate (1)\office kms activator 2017 ultimate\files\bin\kmss.exe] => (Allow) E:\téléchargements\office_kms_activator_2017_ultimate_1\office kms activator 2017 ultimate (1)\office kms activator 2017 ultimate\files\bin\kmss.exe Pas de fichier
FirewallRules: [UDP Query User{FAD7CBE0-198E-49E2-92AA-3D8BD0D1C284}E:\téléchargements\office_kms_activator_2017_ultimate_1\office kms activator 2017 ultimate (1)\office kms activator 2017 ultimate\files\bin\kmss.exe] => (Allow) E:\téléchargements\office_kms_activator_2017_ultimate_1\office kms activator 2017 ultimate (1)\office kms activator 2017 ultimate\files\bin\kmss.exe Pas de fichier
FirewallRules: [{A7A90646-0D61-42C0-A80D-A64D47E9F179}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
FirewallRules: [{CD6DFA12-0ED1-429C-9C97-A32E3452F6FF}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
FirewallRules: [{72EC5B26-2908-4913-B47F-46A5BB9135DA}] => (Allow) C:\Users\maxim\AppData\Local\Temp\7zS6770\HP.EasyStart.exe Pas de fichier
FirewallRules: [{A767566F-E930-43A4-8636-3FAFBA311352}] => (Allow) C:\Users\maxim\AppData\Local\Temp\7zS68B7\HP.EasyStart.exe Pas de fichier
FirewallRules: [{3FA56052-7C01-4B70-ACAC-318F6B09BB0F}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{C8486232-4838-49BB-AC82-42A550DC9D02}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{71DFBB61-0411-4E2C-A1B1-D90FD9EE16AB}] => (Allow) LPort=5357
FirewallRules: [{2157146C-87C2-45F4-BF5A-D78E6DFEE0E4}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{D8677A2D-9DDA-4844-99FB-BD1FF0C45BC4}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé]
FirewallRules: [{BC0DC1DC-6A61-4397-B3DE-E97664B67F7A}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé]
FirewallRules: [{BC91FF93-E209-4C12-B033-A39C7808A340}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{16E410C3-A99C-4B41-941F-2A7218165C67}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [TCP Query User{22900B27-064F-4357-A755-013E5CE7A3EE}E:\jeux\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\jeux\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{24A5A4E0-99CE-4E41-A50C-1A69E3436BF2}E:\jeux\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\jeux\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{E38B90B2-E72A-4E35-907E-6442D68B6F5A}] => (Allow) D:\SteamLibrary\steamapps\common\FORTIFY\Fortify.exe () [Fichier non signé]
FirewallRules: [{B7F2DEEE-AE18-40C3-BE15-40E898AF78E7}] => (Allow) D:\SteamLibrary\steamapps\common\FORTIFY\Fortify.exe () [Fichier non signé]
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Points de restauration =========================
06-09-2019 12:44:30 Windows Update
10-09-2019 13:36:22 Installed Rustangelo
22-09-2019 14:37:30 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: Périphérique PCI
Description: Périphérique PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Périphérique PCI
Description: Périphérique PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (09/23/2019 05:08:01 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme farbar-recovery-scan-tool-64-bits_18-09-2019_fr_432987_64.exe version 22.9.2019.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance.
ID de processus : 17a8
Heure de début : 01d571bbe1cdf89a
Heure d'arrêt : 4294967295
Chemin d'accès à l'application : C:\Users\maxim\Downloads\farbar-recovery-scan-tool-64-bits_18-09-2019_fr_432987_64.exe
ID de rapport : 838b0a14-e35a-459f-a48c-874a8ab8a51f
Nom complet du package défectueux :
ID de l'application relative à un package défectueux :
Type de blocage : Top level window is idle
Error: (09/23/2019 05:06:07 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {92a3758a-c52d-4d8c-a3e6-50bb328c6fba}
Error: (09/23/2019 01:07:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3687
Error: (09/23/2019 01:07:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3687
Error: (09/23/2019 01:07:59 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/23/2019 01:07:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2515
Error: (09/23/2019 01:07:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2515
Error: (09/23/2019 01:07:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Erreurs système:
=============
Error: (09/19/2019 10:10:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (09/19/2019 10:10:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service.
Error: (09/16/2019 10:50:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (09/16/2019 10:50:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service.
Error: (09/14/2019 12:50:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EVEL2AU)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (09/14/2019 12:50:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EVEL2AU)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (09/14/2019 12:50:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EVEL2AU)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (09/14/2019 12:50:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EVEL2AU)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Windows Defender:
===================================
Date: 2019-09-23 05:00:54.724
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0
Nom : Trojan:Win32/Azden.B!cl
ID : 2147723291
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\maxim\Downloads\ZHPDiag3.exe; webfile:_C:\Users\maxim\Downloads\ZHPDiag3.exe|https://www.nicolascoolman.com/fr/download/zhpdiag/?wpdmdl=803&refresh=5d88340734a3a1569207303|pid:13228,ProcessStart:132136802306884598
Origine de la détection : Internet
Type de détection : Chemin rapide
Source de détection : Téléchargements et pièces jointes
Utilisateur : DESKTOP-EVEL2AU\maxim
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.301.1996.0, AS: 1.301.1996.0, NIS: 1.301.1996.0
Version du moteur : AM: 1.1.16300.1, NIS: 1.1.16300.1
Date: 2019-09-23 04:56:54.973
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0
Nom : Trojan:Win32/Azden.B!cl
ID : 2147723291
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\maxim\Downloads\ZHPDiag3.exe; webfile:_C:\Users\maxim\Downloads\ZHPDiag3.exe|https://www.nicolascoolman.com/fr/download/zhpdiag/?wpdmdl=803&refresh=5d88340734a3a1569207303|pid:13228,ProcessStart:132136802306884598
Origine de la détection : Internet
Type de détection : Chemin rapide
Source de détection : Téléchargements et pièces jointes
Utilisateur : DESKTOP-EVEL2AU\maxim
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.301.1996.0, AS: 1.301.1996.0, NIS: 1.301.1996.0
Version du moteur : AM: 1.1.16300.1, NIS: 1.1.16300.1
Date: 2019-09-20 22:29:56.525
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {722F9B29-397C-421E-9DDB-2D3AED8E7F49}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2019-09-15 21:50:30.213
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {2BD2DA22-6AB6-4794-AA07-B6DFD3C6FA6C}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2019-09-15 21:44:22.379
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {153E1FE9-203F-459E-BAC5-C066257A6CFA}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2019-09-06 12:49:18.126
Description:
Antivirus Windows Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.301.623.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.16300.1
Code d’erreur : 0x80070643
Description de l’erreur : Erreur irrécupérable lors de l’installation.
CodeIntegrity:
===================================
Date: 2019-09-23 05:09:30.209
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-09-23 05:09:30.208
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-09-23 05:09:29.663
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-09-23 05:09:29.662
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-09-23 05:07:54.818
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-09-23 05:07:54.818
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-09-23 05:07:54.258
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-09-23 05:07:54.257
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. 1607 06/17/2019
Motherboard: ASUSTeK COMPUTER INC. TUF B450-PLUS GAMING
Processeur: AMD Ryzen 5 3600 6-Core Processor
Pourcentage de mémoire utilisée: 33%
Mémoire physique - RAM - totale: 16312.45 MB
Mémoire physique - RAM - disponible: 10917.34 MB
Mémoire virtuelle totale: 26552.45 MB
Mémoire virtuelle disponible: 19156.54 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:232.25 GB) (Free:173.63 GB) NTFS
Drive d: (SSD 128) (Fixed) (Total:111.79 GB) (Free:71.46 GB) NTFS
Drive e: (Données) (Fixed) (Total:931.51 GB) (Free:582.87 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive f: (ESD-ISO) (Removable) (Total:15 GB) (Free:11.05 GB) NTFS
\\?\Volume{e5c97f11-2b26-49b1-a8ec-0dad154509e5}\ (Récupération) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{9d3e0fd4-7f4d-424f-b8f3-9fbccb5d38f6}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 52C52F7D)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 62AD42AD)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 232.9 GB) (Disk ID: 29E8CE02)
Partition: GPT.
========================================================
Disk: 3 (Size: 15 GB) (Disk ID: 0994C00D)
Partition 1: (Active) - (Size=15 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================