Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20.02.2019 02 Exécuté par yoyo (24-02-2019 11:16:48) Exécuté depuis C:\Users\yoyo\Desktop Windows 10 Home Version 1803 17134.590 (X64) (2018-05-20 14:10:29) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-52327773-123919948-3119270321-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-52327773-123919948-3119270321-503 - Limited - Disabled) Invité (S-1-5-21-52327773-123919948-3119270321-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-52327773-123919948-3119270321-504 - Limited - Disabled) yoyo (S-1-5-21-52327773-123919948-3119270321-1001 - Administrator - Enabled) => C:\Users\yoyo ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) 64 Bit HP CIO Components Installer (HKLM\...\{C788B026-20BD-4E96-B698-533F1D6C5013}) (Version: 7.2.4 - Hewlett-Packard) Hidden Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated) AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.13 - ASUSTeK Computer Inc.) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.24.0 - Asmedia Technology) Assassin's Creed Odyssey (HKLM-x32\...\Uplay Install 5059) (Version: - Ubisoft) Blood and Wine (HKLM-x32\...\1441620909_is1) (Version: 1.32 - GOG.com) CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform) CPUID ASUS CPU-Z 1.72.1 (HKLM\...\CPUID ASUS CPU-Z_is1) (Version: 1.72.1 - CPUID, Inc.) Discord (HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\Discord) (Version: 0.0.304 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden Fraps (HKLM-x32\...\Fraps) (Version: - ) Free DLC program (16 DLC) (HKLM-x32\...\1430743168_is1) (Version: 1.32 - GOG.com) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Gwent (HKLM-x32\...\1971477531_is1) (Version: 1.0.0.15 - GOG.com) Hearts of Stone (HKLM-x32\...\1441355562_is1) (Version: 1.32 - GOG.com) KLIM SKILL Mouse Driver v1.0.8 (HKLM-x32\...\{31C4A254-10A5-411C-A139-6ED7CB83C1D3}_is1) (Version: - ) Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation) Mises à jour NVIDIA 33.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 33.2.0.0 - NVIDIA Corporation) Hidden Mozilla Firefox 65.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 65.0.1 (x64 fr)) (Version: 65.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.2 - Mozilla) MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD) Nego Facturation version 2.01 (HKLM-x32\...\Nego Facturation_is1) (Version: - PMEtool Sàrl) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.15.0.186 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.186 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.34 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Pilote graphique 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Overlay (HKLM-x32\...\1430742867_is1) (Version: 1.32 - GOG.com) paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC) Panneau de configuration NVIDIA 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.34 - NVIDIA Corporation) Hidden PDFCreator version 1.7.3 (HKLM-x32\...\PDFCreator_is1) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.24.1208.2017 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7786 - Realtek Semiconductor Corp.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com) The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com) The Witcher 3: Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.32 - GOG.com) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C99F4AFA-B32C-4063-865C-D7B5CC0A78FB}) (Version: 2.54.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 47.0 - Ubisoft) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN) Winamax Installer (HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\Winamax Installer 2.0) (Version: 2.0 - Winamax) WinZip 22.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24119}) (Version: 22.0.12706 - Corel Corporation) X'nStop 2.5 (HKLM-x32\...\X'nStop_is1) (Version: - Graphys © 2001-2006) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-52327773-123919948-3119270321-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\WINDOWS\system32\shell32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-52327773-123919948-3119270321-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\yoyo\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\amd64\FileSyncShell64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-52327773-123919948-3119270321-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\yoyo\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\amd64\FileSyncShell64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-52327773-123919948-3119270321-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\yoyo\AppData\Local\Microsoft\OneDrive\17.3.7294.0108\amd64\FileSyncShell64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-52327773-123919948-3119270321-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll () ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL -> Pas de fichier ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-12-14] (Corel Corporation -> WinZip Computing, S.L.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-12-14] (Corel Corporation -> WinZip Computing, S.L.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-12-14] (Corel Corporation -> WinZip Computing, S.L.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {073289ED-7AF7-4FB8-AAA3-74A006558216} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {0A40D3D0-3844-4A74-B4C9-E050B748C492} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_142_pepper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {1FD0C9C9-2D8D-4306-99A7-7DE63564EF5C} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) Task: {2B9F09B2-A16A-4292-95FF-416E85530955} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe Task: {38699533-EDF6-4399-A53D-4EC63F8B9D85} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {3CBA86DA-37D8-425F-AFF5-60D88C043A42} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {41E34DCC-118D-4524-BC62-44FA9E3D76E6} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {471026F7-8DFB-419D-BFEF-4FBDE8872641} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {489727E6-5353-453A-B95C-33CADFAC8FDE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {4B9BD111-7DF7-459B-95F3-B74615544B2E} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe Task: {4E3646BE-D56C-4E99-AF25-C212913353CB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {4E74F66C-6026-49DB-A2EB-47074309EB39} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {621E605E-889F-4327-A6C4-7C5C011232D0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {69D456B4-BF69-49D1-8D46-51B3F9A8EC32} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation) Task: {75D29346-DB0C-42B3-9CD9-DCA81E536893} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {76A707FA-9FB1-41E4-9CD2-5DE34A51E514} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {777B3528-07EA-4587-8C34-CC6576DDD588} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-52327773-123919948-3119270321-1001 Task: {81A63C6B-BEE2-4093-864C-87A26116EC49} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (ASUSTeK Computer Inc. -> ) Task: {984395C5-64E2-4751-BA09-F870DBD5CB51} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {9F0205FB-F4DC-4034-8241-A16A1A6090C2} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {A0C95533-C37F-4073-BC74-759B9C4BB923} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {A385CED2-040F-4B29-B4A6-BF057FD47694} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) Task: {A7892D70-1E08-4235-98BA-174D678A67EC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {A982096B-FC84-4A47-90E0-C9A43A8AB5D6} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {AF8C301F-8A88-430A-B0F5-2D29F2D2E26B} - System32\Tasks\WinZip Update Notifier => C:\Program Files\WinZip\WZUpdateNotifier.exe (Corel Corporation -> WinZip) Task: {B0664657-4B7B-4DAE-A7ED-111ECF9F2042} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd -> Piriform Ltd) Task: {B479297E-6726-430E-9F22-F453E9B5A69A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {B93901F1-9E6B-4610-A799-2A8410E54ACD} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-O92205D-yoyo DESKTOP-O92205D => C:\Program Files\Microsoft Office\Office15\MsoSync.exe (Microsoft Corporation -> Microsoft Corporation) Task: {C8B0E8E4-5508-4F16-9F33-CAF419C96B19} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe (ASUSTeK Computer Inc. -> TODO: ) Task: {CF3CD9CF-97B0-4C3A-AC87-1E36CE17602E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe (Microsoft Corporation -> Microsoft Corporation) Task: {DC96EE23-A35E-4719-A354-20440825092F} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe Task: {DE004BCC-6FDA-4733-84C2-631E1388E950} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {E2976837-D91F-4455-88F6-327CE942881A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe (Microsoft Corporation -> Microsoft Corporation) Task: {E74AECC5-00D4-442C-ADD0-62719EED93E0} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {E87221D0-CC8E-465B-9CE5-73FA926832C4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {EABF4FC8-E976-4ED1-8B7A-FF0C375D51E3} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-O92205D-yoyo => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated) Task: {F93F67D4-F527-4A01-8929-A66BAFE498CF} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {FF540D12-3EA0-4AE8-A212-B703D963D663} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2018-02-06 12:17 - 2017-06-21 04:22 - 001360016 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe 2018-08-28 09:59 - 2018-10-10 21:04 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-09-01 12:15 - 2017-09-01 12:15 - 000495872 _____ () C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe 2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll 2018-02-04 02:55 - 2018-10-11 00:10 - 000154152 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2018-03-05 21:58 - 2018-01-12 14:59 - 001448408 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe 2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-12-12 13:07 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2019-02-13 21:13 - 2019-02-06 03:25 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2019-02-22 09:37 - 2019-02-22 09:38 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 2018-10-23 08:45 - 2018-10-23 08:49 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll 2019-02-22 09:37 - 2019-02-22 09:38 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\ChakraBridge.dll 2019-01-30 08:57 - 2019-01-30 08:58 - 000282624 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll 2018-11-06 22:12 - 2018-11-06 22:12 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2019-01-30 08:57 - 2019-01-30 08:58 - 001757696 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll 2019-02-12 19:39 - 2019-02-12 19:40 - 000017408 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe 2019-02-12 19:39 - 2019-02-12 19:40 - 016974848 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.dll 2019-01-21 20:00 - 2019-01-21 20:00 - 005391752 _____ () C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe\Microsoft.Advertising.dll 2017-09-30 15:42 - 2017-09-30 15:42 - 000291328 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2018-12-04 21:46 - 2018-12-04 21:48 - 003464192 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe 2018-12-04 21:46 - 2018-12-04 21:48 - 001073152 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\TelemetryUWP.dll 2018-12-04 21:46 - 2018-12-04 21:48 - 000016384 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\SharedMemoryUWP.dll 2018-12-04 21:46 - 2018-12-04 21:48 - 000816640 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\Utils.CX.dll 2018-04-12 17:24 - 2018-04-12 17:24 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-12-04 21:46 - 2018-12-04 21:48 - 008004096 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\PaintStudio.ViewElements.dll 2018-12-04 21:46 - 2018-12-04 21:48 - 009120768 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\PaintStudio.ViewModel.dll 2018-12-04 21:46 - 2018-12-04 21:48 - 000506880 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\ConfigurationManager.dll 2018-12-04 21:46 - 2018-12-04 21:48 - 000626176 _____ () C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1811.20017.0_x64__8wekyb3d8bbwe\MSASignIn.dll 2019-02-07 12:23 - 2019-02-07 12:24 - 028028416 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe 2019-02-07 12:23 - 2019-02-07 12:24 - 000305152 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\SharedUI.dll 2018-02-04 02:45 - 2018-02-04 02:55 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll 2018-11-29 17:46 - 2018-11-29 17:47 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2019-02-07 12:23 - 2019-02-07 12:24 - 006033408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntCommon.dll 2018-12-18 19:31 - 2018-12-18 19:35 - 001436760 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll 2018-02-06 12:16 - 2017-12-26 14:26 - 000081368 _____ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\ATKEX.dll 2018-02-06 12:16 - 2017-12-26 14:26 - 000229848 _____ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\ASUS_WMI.dll 2018-02-06 12:16 - 2019-02-23 18:55 - 000041768 _____ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\PEbiosinterface32.dll 2018-02-06 12:17 - 2017-12-05 02:25 - 000229848 _____ () C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\ASUS_WMI.dll 2018-03-05 21:58 - 2017-11-24 08:48 - 000882136 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll 2018-03-05 21:58 - 2018-01-12 14:59 - 000975832 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll 2018-03-05 21:58 - 2017-11-24 08:48 - 000940504 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll 2018-03-05 21:58 - 2017-12-11 16:26 - 000911832 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll 2018-03-05 21:58 - 2017-11-24 08:48 - 001628632 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\UsbPowerManager.dll 2018-03-05 21:58 - 2017-11-24 08:48 - 000082432 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\IccHelper.dll 2018-03-04 18:22 - 2018-10-10 21:04 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\acrotray.fra ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-02-04 00:43 - 2018-02-04 00:42 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-52327773-123919948-3119270321-1001\Control Panel\Desktop\\Wallpaper -> c:\users\yoyo\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\photo portable 003.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. HKLM\...\StartupApproved\StartupFolder: => "Notifications de Mises à jour.lnk" HKLM\...\StartupApproved\StartupFolder: => "WinZip Préchargeur.lnk" HKLM\...\StartupApproved\Run: => "WinZip PreLoader" HKLM\...\StartupApproved\Run: => "WinZip UN" HKLM\...\StartupApproved\Run32: => "ASUS AiChargerPlus Execute" HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\StartupApproved\Run: => "Wargaming.net Game Center" HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\StartupApproved\Run: => "OneDriveSetup" HKU\S-1-5-21-52327773-123919948-3119270321-1001\...\StartupApproved\Run: => "CCleaner Monitoring" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{9C4F5CA3-FC22-4919-AE62-632D37E50351}F:\steam\steamapps\common\hellblade\hellbladegame\binaries\win64\hellbladegame-win64-shipping.exe] => (Allow) F:\steam\steamapps\common\hellblade\hellbladegame\binaries\win64\hellbladegame-win64-shipping.exe Pas de fichier FirewallRules: [TCP Query User{0BA1D7D3-A3FC-44B5-A0D2-30437D02FF67}F:\steam\steamapps\common\hellblade\hellbladegame\binaries\win64\hellbladegame-win64-shipping.exe] => (Allow) F:\steam\steamapps\common\hellblade\hellbladegame\binaries\win64\hellbladegame-win64-shipping.exe Pas de fichier FirewallRules: [{5CF9F4A6-D167-42B5-A60F-40F0FCBCA1CC}] => (Allow) F:\Steam\steamapps\common\Total War Saga Thrones of Britannia\launcher\launcher.exe Pas de fichier FirewallRules: [{42CB49DB-D542-4A21-AF67-3E95A39FD25C}] => (Allow) F:\Steam\steamapps\common\Total War Saga Thrones of Britannia\launcher\launcher.exe Pas de fichier FirewallRules: [UDP Query User{74D5CB0B-30C6-49A0-9589-EB0FDE1DE87D}F:\steam\steamapps\common\total war saga thrones of britannia\thrones.exe] => (Allow) F:\steam\steamapps\common\total war saga thrones of britannia\thrones.exe Pas de fichier FirewallRules: [TCP Query User{D1F8F858-C9A4-4ED0-96A8-BBF50BC6180A}F:\steam\steamapps\common\total war saga thrones of britannia\thrones.exe] => (Allow) F:\steam\steamapps\common\total war saga thrones of britannia\thrones.exe Pas de fichier FirewallRules: [{38CC9A0E-EE6C-4090-BB49-ED2CEAA0A211}] => (Allow) F:\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{EE3AC772-02B2-4C38-AE38-627925F28B65}] => (Allow) F:\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{13AA8E1B-9F4D-46A0-995D-8A4EE637C603}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd) FirewallRules: [{962864BA-CDFE-4B2A-A4EF-D3BA03CFDD2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd) FirewallRules: [UDP Query User{23336C3C-C064-4811-8468-892962820C79}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe Pas de fichier FirewallRules: [TCP Query User{8005FDBC-EC04-43F4-AD7D-95CBDC7188EE}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe Pas de fichier FirewallRules: [UDP Query User{59B700C0-B3D3-45A0-9E04-6BCCB4294246}C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe (SEGA EUROPE LIMITED -> The Creative Assembly Ltd) FirewallRules: [TCP Query User{BC2A9CFC-EE55-43FA-80F8-25D52FCF2C20}C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe (SEGA EUROPE LIMITED -> The Creative Assembly Ltd) FirewallRules: [{8A76588B-1139-41A7-9367-8C35EA5EB590}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe Pas de fichier FirewallRules: [{9967B129-C96F-4007-861F-AA532D564600}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe Pas de fichier FirewallRules: [{B4FE95B2-2CEE-4424-946F-36C2AB6D4A7C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{80AF0FA6-7450-494E-B8E2-CA8D62B1BF72}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5679A576-2A11-4546-B6DB-7AEDE894DCD6}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{32147994-4153-4019-9EE2-9328B6918C2E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{3C5680D0-0A7D-4135-B226-45FAD5091351}C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe (SEGA EUROPE LIMITED -> The Creative Assembly Ltd) FirewallRules: [TCP Query User{B3B2FD6E-0944-4A7A-83EC-C3EB07D7652D}C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war attila\attila.exe (SEGA EUROPE LIMITED -> The Creative Assembly Ltd) FirewallRules: [UDP Query User{03B45767-2407-4384-BF71-5054FBC6D20B}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{CDF1E40B-2B59-4CC4-AB61-FB3A4CE9D561}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{2146C92F-51E8-4976-A355-514563DDE440}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steel Division\SteelDivision.exe (Eugen Systems -> ) FirewallRules: [{37DF6A29-2478-4D01-B6DE-B7ADA0315B32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steel Division\SteelDivision.exe (Eugen Systems -> ) FirewallRules: [{95277858-253C-46EA-BF73-A75F6A5A99A9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{4F4F90F3-069B-4678-A782-F28A1823131F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{99A1143D-95DD-4C79-9CA3-AB9D30048B19}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [{B9ACFD27-F5FF-4FF7-B186-65A2B9F2E506}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [UDP Query User{1E1C0211-5156-4D2E-B195-9DED72971036}F:\program files\mozilla firefox\firefox.exe] => (Allow) F:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{C24A6327-638F-4C66-913B-4B5253238E72}F:\program files\mozilla firefox\firefox.exe] => (Allow) F:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{2AAAA9C9-1404-4AE8-A791-C1C3A15B431B}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe Pas de fichier FirewallRules: [{EF440286-4355-42C8-9C69-8E30573281F9}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe Pas de fichier FirewallRules: [{AEF73A36-9F06-4B44-8FFA-6CE1D796861A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{A9A6FEAA-615F-4178-B1BA-3C7B4290DF92}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{BBB093CE-941B-41C3-A467-DB791BB41020}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{0A8804CE-5178-4AF6-8904-0EA350EFC12F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{FBA0745A-43F2-49B6-B285-A3063AD2B892}] => (Allow) C:\Users\yoyo\AppData\Local\Temp\7zS6521\hppiw.exe Pas de fichier FirewallRules: [{68B9F15D-C1BF-4D83-959D-B2EE98BADD43}] => (Allow) C:\Users\yoyo\AppData\Local\Temp\7zS6521\hppiw.exe Pas de fichier FirewallRules: [{8AAF5AA9-687F-497D-91E7-22F2EDB72D18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Attila\launcher\launcher.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [{420FD727-5FE4-41A1-8B57-F91C47C7EC47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Attila\launcher\launcher.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [{52AC9751-15D3-4F9C-88A3-683FAD02AB57}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{AE5D5DEB-17CE-45B7-A129-447AB2D0EDD2}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{1B28C34B-88F6-454A-9021-B3FF88BCE50D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{78F891FC-D960-4268-B712-5FB2A8222BDD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{940725CC-DA18-43AF-AA74-82962349440B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{2625AA28-1B0F-42A0-8056-8BEC15FDE231}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{B65C0D6F-B65C-48F1-91E2-839C076D5383}C:\program files (x86)\wondershare\drfone\addins\recovery\drfonerecovery.exe] => (Allow) C:\program files (x86)\wondershare\drfone\addins\recovery\drfonerecovery.exe Pas de fichier FirewallRules: [UDP Query User{0DDF2F70-43F2-4476-B066-D50C14A7812E}C:\program files (x86)\wondershare\drfone\addins\recovery\drfonerecovery.exe] => (Allow) C:\program files (x86)\wondershare\drfone\addins\recovery\drfonerecovery.exe Pas de fichier FirewallRules: [{C3464670-8374-4E01-BB6A-79AA90CF1C85}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe Pas de fichier FirewallRules: [{AC75F948-B0EB-486A-8FE3-597F4DEA667B}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe Pas de fichier FirewallRules: [{9C9B5F31-0ADD-43C3-A5BA-EB63B36960FD}] => (Allow) F:\Program Files (x86)\ubisoft\Assassin's Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> ) FirewallRules: [{87E246E1-62DF-404D-A67C-A1519EFD33D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8166607B-4686-45BB-ADF1-EB242D2C7EDF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{88CBE93C-6E65-47A6-872D-EC9813F7B3D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{DEFAA66F-9B25-4D74-8C41-DD1A480E5947}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FDC8309E-37B6-4846-8A28-B44C91F73C08}] => (Allow) F:\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{DE2C1BF5-7F0D-46FC-B4B4-EB218272EC8D}] => (Allow) F:\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{436898C8-2A99-41DF-A756-960E9C5DDDF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Attila\launcher\launcher.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [{E056F53D-0257-4264-92FB-F195D0CCCE60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Attila\launcher\launcher.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) ==================== Points de restauration ========================= 13-02-2019 21:11:50 Windows Update 23-02-2019 12:52:25 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (02/24/2019 09:06:32 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (02/23/2019 12:38:09 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-O92205D) Description: httphttp-2147467263 Error: (02/23/2019 08:22:07 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (02/22/2019 09:25:24 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (02/21/2019 09:30:32 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (02/20/2019 06:51:00 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-O92205D) Description: httphttp-2147467263 Error: (02/20/2019 02:06:25 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme Microsoft.Photos.exe version 2019.18114.17710.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : 4f0 Heure de début : 01d4c8f72606acc2 Heure de fin : 4294967295 Chemin d'accès de l'application : C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe ID de rapport : d958bab1-2f33-4c5c-a06f-8911e43c2ba6 Nom complet du package défaillant : Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe ID de l'application relative au package défaillant : App Error: (02/20/2019 09:43:01 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-O92205D) Description: httphttp-2147467263 Erreurs système: ============= Error: (02/23/2019 11:55:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O92205D) Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (02/23/2019 11:55:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O92205D) Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (02/23/2019 10:54:45 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-O92205D) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} et l’APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} au SID DESKTOP-O92205D\yoyo de l’utilisateur (S-1-5-21-52327773-123919948-3119270321-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (02/23/2019 06:57:03 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID Windows.SecurityCenter.WscDataProtection et l’APPID Non disponible au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (02/23/2019 06:57:03 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID Windows.SecurityCenter.WscBrokerManager et l’APPID Non disponible au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (02/23/2019 06:55:13 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-O92205D) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} et l’APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} au SID DESKTOP-O92205D\yoyo de l’utilisateur (S-1-5-21-52327773-123919948-3119270321-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (02/23/2019 06:54:52 PM) (Source: Microsoft-Windows-EnhancedStorage-EhStorTcgDrv) (EventID: 10) (User: AUTORITE NT) Description: A TCG Command has returned an error. Desc: AuthenticateSession Param1: 0x1 Param2: 0x60000001c Param3: 0x900000006 Param4: 0x0 Status: 0x12 Error: (02/23/2019 12:15:20 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-O92205D) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} et l’APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} au SID DESKTOP-O92205D\yoyo de l’utilisateur (S-1-5-21-52327773-123919948-3119270321-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2019-02-24 10:58:12.760 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {36183C7E-8B6C-4A9C-AFA1-EC7BD8DA57DC} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-02-15 13:18:20.563 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {37AC816E-8816-4383-8096-D4BB26EB0AA0} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-02-06 17:48:43.356 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {018CBA2A-CA3E-47AB-B848-410B63EDFEAF} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-02-03 21:03:17.423 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {A18AC310-1A63-47A9-B6DB-535E1323E9FB} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-01-30 09:07:16.269 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Vigram.A&threatid=232718&enterprise=0 Nom : Program:Win32/Vigram.A ID : 232718 Gravité : Grave Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\yoyo\AppData\Local\Microsoft\Windows\INetCache\IE\TTWAE9FB\PDFCreator[1].exe; file:_C:\Users\yoyo\AppData\Local\Nego\PDFCreator.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-O92205D\yoyo Nom du processus : F:\Program Files (x86)\Nego\Nego.exe Version de la signature : AV: 1.285.432.0, AS: 1.285.432.0, NIS: 1.285.432.0 Version du moteur : AM: 1.1.15600.4, NIS: 1.1.15600.4 CodeIntegrity: =================================== Date: 2019-02-23 18:54:56.813 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\drivers\rsdrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-02-23 08:16:00.972 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\drivers\rsdrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-02-22 09:22:18.100 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\drivers\rsdrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-02-21 18:07:01.996 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\drivers\rsdrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-02-21 09:27:25.024 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\drivers\rsdrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-02-20 01:52:05.038 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\drivers\rsdrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-02-19 00:17:23.104 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\drivers\rsdrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-02-18 19:17:20.846 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\drivers\rsdrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-5820K CPU @ 3.30GHz Pourcentage de mémoire utilisée: 37% Mémoire physique - RAM - totale: 8104.32 MB Mémoire physique - RAM - disponible: 5072.41 MB Mémoire virtuelle totale: 9384.32 MB Mémoire virtuelle disponible: 4666.36 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:255.57 GB) (Free:41.36 GB) NTFS Drive e: (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive f: () (Fixed) (Total:589.12 GB) (Free:322.19 GB) NTFS Drive g: (disque local (G:)) (Fixed) (Total:341.8 GB) (Free:169.09 GB) NTFS \\?\Volume{9c4d9de9-2932-4c66-8f43-0741f17d6582}\ (Récupération) (Fixed) (Total:0.49 GB) (Free:0.09 GB) NTFS \\?\Volume{b6c959f9-0000-0000-0000-504e93000000}\ () (Fixed) (Total:0.49 GB) (Free:0.11 GB) NTFS \\?\Volume{1ca8ad13-b9cb-4dc2-b3b0-b13af0c29771}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: B6C959F9) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=589.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=500 MB) - (Type=27) Partition 4: (Not Active) - (Size=341.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Protective MBR) (Size: 256.2 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt ============================