Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 22-09-2019 Exécuté par maxim (23-09-2019 05:09:30) Exécuté depuis C:\Users\maxim\Downloads Windows 10 Home Version 1903 18362.356 (X64) (2019-08-25 16:49:18) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-4085822958-4239461056-2293560423-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-4085822958-4239461056-2293560423-503 - Limited - Disabled) Invité (S-1-5-21-4085822958-4239461056-2293560423-501 - Limited - Disabled) maxim (S-1-5-21-4085822958-4239461056-2293560423-1001 - Administrator - Enabled) => C:\Users\maxim WDAGUtilityAccount (S-1-5-21-4085822958-4239461056-2293560423-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.0.1.1233 - Advanced Micro Devices, Inc.) Apple Application Support (32 bits) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) AutoHotkey 1.1.30.03 (HKLM\...\AutoHotkey) (Version: 1.1.30.03 - Lexikos) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform) Discord (HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\Discord) (Version: 0.0.305 - Discord Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden iTunes (HKLM\...\{C61D1957-6534-4B61-AB35-1F115D41CFD5}) (Version: 12.9.5.7 - Apple Inc.) Logiciel de base du périphérique HP DeskJet 2600 series (HKLM\...\{D515AD5F-004D-4B21-80BD-5F21DD33C039}) (Version: 43.3.2478.18107 - HP Inc.) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: - Logitech) Malwarebytes version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes) Microsoft Office Standard 2016 - fr-fr (HKLM\...\StandardRetail - fr-fr) (Version: 16.0.11929.20300 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0008 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation) Mises à jour NVIDIA 38.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.0.0 - NVIDIA Corporation) Hidden NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation) NVIDIA Pilote graphique 436.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.02 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 436.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 436.02 - NVIDIA Corporation) Hidden PhotoFiltre 7 (HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\PhotoFiltre 7) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.36.701.2019 - Realtek) Rustangelo (HKLM-x32\...\{9BF0999E-EF7B-4655-B212-4963C33D91D6}) (Version: 2.0.3000 - JaviteSoft) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) UnknownSkill (HKLM-x32\...\{8697F792-6C3B-465B-BD05-587500019EC1}) (Version: 7.2.4 - UnknownSkill) WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) Packages: ========= Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-25] (Microsoft Corporation) [MS Ad] Farm Heroes Saga -> C:\Program Files\WindowsApps\king.com.FarmHeroesSaga_5.25.5.0_x86__kgqvnymyfvs32 [2019-09-20] (king.com) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_100.1.581.0_x64__v10z8vjag6ke6 [2019-09-06] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-25] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-08-30] (Microsoft Studios) [MS Ad] MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad] ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-08-16] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\maxim\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394] AlternateDataStreams: C:\Users\maxim\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com Il y a 7943 plus de sites. IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\123simsen.com -> www.123simsen.com Il y a 7943 plus de sites. ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-03-19 06:49 - 2019-09-13 16:57 - 000454790 ____R C:\Windows\system32\drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com Il y a 15610 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\Control Panel\Desktop\\Wallpaper -> c:\users\maxim\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img0.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "SDTray" HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-4085822958-4239461056-2293560423-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{A01B2666-A1B8-4B52-8028-0DFFEF8D400E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{F30A1EC0-E3C2-4AD9-BF27-D387709581A9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{F8A84B4F-2578-4E3E-AD80-BE27E0C3E67D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{E94A98EF-B61D-4931-93D6-2BEBEBB98591}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{8223E055-ABF1-425F-AEE5-C7CAE6101823}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{BE952C2B-B23F-49A2-A655-6B74A00A8394}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{CB057C72-2121-4919-BBD1-57E1C9FA6669}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{9792F47F-8E28-4D8F-82B5-A3AE3B30C2F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7056ACE1-D199-45E9-921A-D3F7FF7B20C0}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{65BED203-2C42-42C3-882B-4464B8395BFD}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{4EBC9B49-F2E2-49B3-8B77-5C55770B98C0}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.) FirewallRules: [{01B6B8C0-A9EA-4E48-8DBB-AFF3FA7FFA29}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.) FirewallRules: [TCP Query User{C1C589DE-40EF-43A4-9CA5-736D11E426E2}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{B1D5B981-4C00-4F58-8621-888A9E5C3B2F}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{A5DA7F43-E961-47D5-A91D-4DFF5844DDA9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{602AD556-09E8-493A-B267-B9823B50A9F8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{1BE278FF-B854-432E-8C98-7CE98448A3A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E348C6EF-19C9-4399-87A6-E4A7A922F634}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{F919CDAB-64DF-458F-A98A-68149E65AF80}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{84ABBE3C-8B42-4A89-931E-8621BC26AF1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{EC9F66F1-9268-4961-86DE-53034CED4186}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{4106D042-5EB1-4294-8BC1-30B286476CEE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{58CB8235-FABE-404C-9795-2657EDFCE95D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{1010532B-C3F5-48EE-A96E-91D61B6DC724}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{025E67D1-FB66-4FCA-BF07-2D970C23945B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{85D2A8F3-6889-4B3D-BBE0-D424ABAA03D5}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{5186C825-E579-4E41-8749-D1BA8A3DB267}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{60EF589C-347D-45D8-A976-BC1256CB8C28}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\Buoyancy\Buoyancy.exe () [Fichier non signé] FirewallRules: [{E7BC92F2-FFFF-4143-B230-18D89E219582}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\Buoyancy\Buoyancy.exe () [Fichier non signé] FirewallRules: [{7379B402-1A77-4C25-9466-1C56E47A92D8}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{5443ED9C-596F-4013-9A08-538720D2C896}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{C1B4CFBC-7EEB-4097-BC27-2017CD632778}] => (Allow) D:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () [Fichier non signé] FirewallRules: [{E4A961A0-1795-4A03-9CF1-3D0A1CD31D50}] => (Allow) D:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () [Fichier non signé] FirewallRules: [TCP Query User{231EBA3A-3859-4325-B483-33FDDC0F4B64}E:\téléchargements\office_kms_activator_2017_ultimate_1\office kms activator 2017 ultimate (1)\office kms activator 2017 ultimate\files\bin\kmss.exe] => (Allow) E:\téléchargements\office_kms_activator_2017_ultimate_1\office kms activator 2017 ultimate (1)\office kms activator 2017 ultimate\files\bin\kmss.exe Pas de fichier FirewallRules: [UDP Query User{FAD7CBE0-198E-49E2-92AA-3D8BD0D1C284}E:\téléchargements\office_kms_activator_2017_ultimate_1\office kms activator 2017 ultimate (1)\office kms activator 2017 ultimate\files\bin\kmss.exe] => (Allow) E:\téléchargements\office_kms_activator_2017_ultimate_1\office kms activator 2017 ultimate (1)\office kms activator 2017 ultimate\files\bin\kmss.exe Pas de fichier FirewallRules: [{A7A90646-0D61-42C0-A80D-A64D47E9F179}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd) FirewallRules: [{CD6DFA12-0ED1-429C-9C97-A32E3452F6FF}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd) FirewallRules: [{72EC5B26-2908-4913-B47F-46A5BB9135DA}] => (Allow) C:\Users\maxim\AppData\Local\Temp\7zS6770\HP.EasyStart.exe Pas de fichier FirewallRules: [{A767566F-E930-43A4-8636-3FAFBA311352}] => (Allow) C:\Users\maxim\AppData\Local\Temp\7zS68B7\HP.EasyStart.exe Pas de fichier FirewallRules: [{3FA56052-7C01-4B70-ACAC-318F6B09BB0F}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{C8486232-4838-49BB-AC82-42A550DC9D02}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{71DFBB61-0411-4E2C-A1B1-D90FD9EE16AB}] => (Allow) LPort=5357 FirewallRules: [{2157146C-87C2-45F4-BF5A-D78E6DFEE0E4}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{D8677A2D-9DDA-4844-99FB-BD1FF0C45BC4}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{BC0DC1DC-6A61-4397-B3DE-E97664B67F7A}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{BC91FF93-E209-4C12-B033-A39C7808A340}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation ) FirewallRules: [{16E410C3-A99C-4B41-941F-2A7218165C67}] => (Allow) E:\Jeux\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation ) FirewallRules: [TCP Query User{22900B27-064F-4357-A755-013E5CE7A3EE}E:\jeux\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\jeux\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.) FirewallRules: [UDP Query User{24A5A4E0-99CE-4E41-A50C-1A69E3436BF2}E:\jeux\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\jeux\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.) FirewallRules: [{E38B90B2-E72A-4E35-907E-6442D68B6F5A}] => (Allow) D:\SteamLibrary\steamapps\common\FORTIFY\Fortify.exe () [Fichier non signé] FirewallRules: [{B7F2DEEE-AE18-40C3-BE15-40E898AF78E7}] => (Allow) D:\SteamLibrary\steamapps\common\FORTIFY\Fortify.exe () [Fichier non signé] StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= 06-09-2019 12:44:30 Windows Update 10-09-2019 13:36:22 Installed Rustangelo 22-09-2019 14:37:30 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Périphérique PCI Description: Périphérique PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Périphérique PCI Description: Périphérique PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (09/23/2019 05:08:01 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme farbar-recovery-scan-tool-64-bits_18-09-2019_fr_432987_64.exe version 22.9.2019.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 17a8 Heure de début : 01d571bbe1cdf89a Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Users\maxim\Downloads\farbar-recovery-scan-tool-64-bits_18-09-2019_fr_432987_64.exe ID de rapport : 838b0a14-e35a-459f-a48c-874a8ab8a51f Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Top level window is idle Error: (09/23/2019 05:06:07 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {92a3758a-c52d-4d8c-a3e6-50bb328c6fba} Error: (09/23/2019 01:07:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 3687 Error: (09/23/2019 01:07:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 3687 Error: (09/23/2019 01:07:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/23/2019 01:07:58 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2515 Error: (09/23/2019 01:07:58 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 2515 Error: (09/23/2019 01:07:58 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Erreurs système: ============= Error: (09/19/2019 10:10:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (09/19/2019 10:10:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service. Error: (09/16/2019 10:50:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (09/16/2019 10:50:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service. Error: (09/14/2019 12:50:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EVEL2AU) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/14/2019 12:50:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EVEL2AU) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/14/2019 12:50:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EVEL2AU) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/14/2019 12:50:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EVEL2AU) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: =================================== Date: 2019-09-23 05:00:54.724 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0 Nom : Trojan:Win32/Azden.B!cl ID : 2147723291 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\maxim\Downloads\ZHPDiag3.exe; webfile:_C:\Users\maxim\Downloads\ZHPDiag3.exe|https://www.nicolascoolman.com/fr/download/zhpdiag/?wpdmdl=803&refresh=5d88340734a3a1569207303|pid:13228,ProcessStart:132136802306884598 Origine de la détection : Internet Type de détection : Chemin rapide Source de détection : Téléchargements et pièces jointes Utilisateur : DESKTOP-EVEL2AU\maxim Nom du processus : Unknown Version de la veille de sécurité : AV: 1.301.1996.0, AS: 1.301.1996.0, NIS: 1.301.1996.0 Version du moteur : AM: 1.1.16300.1, NIS: 1.1.16300.1 Date: 2019-09-23 04:56:54.973 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0 Nom : Trojan:Win32/Azden.B!cl ID : 2147723291 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\maxim\Downloads\ZHPDiag3.exe; webfile:_C:\Users\maxim\Downloads\ZHPDiag3.exe|https://www.nicolascoolman.com/fr/download/zhpdiag/?wpdmdl=803&refresh=5d88340734a3a1569207303|pid:13228,ProcessStart:132136802306884598 Origine de la détection : Internet Type de détection : Chemin rapide Source de détection : Téléchargements et pièces jointes Utilisateur : DESKTOP-EVEL2AU\maxim Nom du processus : Unknown Version de la veille de sécurité : AV: 1.301.1996.0, AS: 1.301.1996.0, NIS: 1.301.1996.0 Version du moteur : AM: 1.1.16300.1, NIS: 1.1.16300.1 Date: 2019-09-20 22:29:56.525 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {722F9B29-397C-421E-9DDB-2D3AED8E7F49} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-09-15 21:50:30.213 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {2BD2DA22-6AB6-4794-AA07-B6DFD3C6FA6C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-09-15 21:44:22.379 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {153E1FE9-203F-459E-BAC5-C066257A6CFA} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-09-06 12:49:18.126 Description: Antivirus Windows Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.301.623.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.16300.1 Code d’erreur : 0x80070643 Description de l’erreur : Erreur irrécupérable lors de l’installation. CodeIntegrity: =================================== Date: 2019-09-23 05:09:30.209 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 05:09:30.208 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 05:09:29.663 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 05:09:29.662 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 05:07:54.818 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 05:07:54.818 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 05:07:54.258 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 05:07:54.257 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1607 06/17/2019 Motherboard: ASUSTeK COMPUTER INC. TUF B450-PLUS GAMING Processeur: AMD Ryzen 5 3600 6-Core Processor Pourcentage de mémoire utilisée: 33% Mémoire physique - RAM - totale: 16312.45 MB Mémoire physique - RAM - disponible: 10917.34 MB Mémoire virtuelle totale: 26552.45 MB Mémoire virtuelle disponible: 19156.54 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:232.25 GB) (Free:173.63 GB) NTFS Drive d: (SSD 128) (Fixed) (Total:111.79 GB) (Free:71.46 GB) NTFS Drive e: (Données) (Fixed) (Total:931.51 GB) (Free:582.87 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive f: (ESD-ISO) (Removable) (Total:15 GB) (Free:11.05 GB) NTFS \\?\Volume{e5c97f11-2b26-49b1-a8ec-0dad154509e5}\ (Récupération) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS \\?\Volume{9d3e0fd4-7f4d-424f-b8f3-9fbccb5d38f6}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 52C52F7D) Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 62AD42AD) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 232.9 GB) (Disk ID: 29E8CE02) Partition: GPT. ======================================================== Disk: 3 (Size: 15 GB) (Disk ID: 0994C00D) Partition 1: (Active) - (Size=15 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================