Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-01-2022
Exécuté par HP (20-01-2022 18:29:10)
Exécuté depuis C:\Users\HP\Desktop
Microsoft Windows 10 专业版 Version 21H2 19044.1469 (X64) (2021-02-13 15:25:44)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrator (S-1-5-21-2900342939-2057370268-613790016-500 - Administrator - Disabled)
Chris (S-1-5-21-2900342939-2057370268-613790016-1003 - Limited - Disabled)
DefaultAccount (S-1-5-21-2900342939-2057370268-613790016-503 - Limited - Disabled)
Ge Zi (S-1-5-21-2900342939-2057370268-613790016-1016 - Limited - Enabled) => C:\Users\Ge Zi
Guest (S-1-5-21-2900342939-2057370268-613790016-501 - Limited - Disabled)
HP (S-1-5-21-2900342939-2057370268-613790016-1001 - Administrator - Enabled) => C:\Users\HP
lucas (S-1-5-21-2900342939-2057370268-613790016-1002 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2900342939-2057370268-613790016-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 21.011.20039 - Adobe)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.1.102.55 - Adobe Systems Incorporated)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
BitTorrent (HKU\S-1-5-21-2900342939-2057370268-613790016-1001\...\BitTorrent) (Version: 7.10.5.46097 - BitTorrent Inc.)
Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Contrôle d’intégrité du PC Windows (HKLM\...\{C2812DB5-E3F5-44FF-8EA0-8E03F1B61103}) (Version: 3.3.2110.22002 - Microsoft Corporation)
CPUID HWMonitor 1.44 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.44 - CPUID, Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.0.176.5083 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{1ea29ff4-ac27-4775-b029-95e63cac9adb}) (Version: 12.0.176.5083 - Electronic Arts)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.11.10.2264 - Steinberg Media Technologies GmbH)
Epic Games Launcher (HKLM-x32\...\{5C415481-ECCD-4875-AF77-A97B79825F2C}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ExpressVPN (HKLM-x32\...\{56351fa8-6289-49b9-8e2c-ddad288d573a}) (Version: 10.15.0.8 - ExpressVPN)
ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B876BD7839}) (Version: 10.15.0.8 - ExpressVPN) Hidden
Extended Asian Language font pack for Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-2530-0000-AC13084E6700}) (Version: 19.008.20071 - Adobe Systems Incorporated)
GameInput Redistributable (HKLM-x32\...\{7E52156F-18FE-B953-BEA9-6BE6A77AFDFF}) (Version: 10.1.19041.3906 - Microsoft Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.99 - Google LLC)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14729.20260 - Microsoft Corporation)
Microsoft 365 - zh-cn (HKLM\...\O365HomePremRetail - zh-cn) (Version: 16.0.14729.20260 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.62 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 97.0.1072.62 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29325 (HKLM-x32\...\{d7a6435f-ac9a-4af6-8fdc-ca130d13fac9}) (Version: 14.28.29325.2 - Microsoft Corporation)
Molotov 4.4.6 (HKU\S-1-5-21-2900342939-2057370268-613790016-1001\...\13767fb8-1090-5f10-9b1e-b497b7aff594) (Version: 4.4.6 - Molotov)
Mozilla Firefox 85.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 85.0.2 (x64 fr)) (Version: 85.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla)
MuseScore 3 (HKLM\...\{FF67E071-104C-4C42-9301-184442745671}) (Version: 3.6.2.548021803 - Werner Schweer and Others)
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.39.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.1 - NVIDIA Corporation)
NVIDIA Pilote graphique 511.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.23 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0804-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.110.50000 - Electronic Arts, Inc.)
Python 2.7.11 (HKLM-x32\...\{16E52445-1392-469F-9ADB-FC03AF00CD61}) (Version: 2.7.11150 - Python Software Foundation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{C4BE7550-ECE1-417D-A787-01266DC1F5A6}) (Version: 1.22.0.0 - Microsoft Corporation) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WeChat (HKLM-x32\...\WeChat) (Version: 2.6.8.51 - 腾讯科技(深圳)有限公司)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
B＆O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.15.226.0_x64__v10z8vjag6ke6 [2021-02-13] (HP Inc.)
Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt [2021-12-05] (INTEL CORP) [Startup Task]
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-30] (Microsoft Corporation)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-17] (Microsoft Corporation)
Halo Infinite -> C:\Program Files\WindowsApps\Microsoft.254428597CFE2_1.3295.45279.0_x64__8wekyb3d8bbwe [2022-01-20] (Microsoft Studios)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-10-14] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6 [2021-12-23] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-18] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1021.0_x64__8j3eq9eme6ctt [2021-12-05] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa [2021-11-09] (Apple Inc.) [Startup Task]
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1320.12.119.0_x64__8xx8rvfyw5nnt [2021-12-12] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-02-13] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-27] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-17] (NVIDIA Corp.)
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2021-12-26] (Adobe Systems Incorporated)
Traducteur -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2021-10-14] (Microsoft Corporation)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2147.16.0_x64__cv1g1gvanyjgm [2021-12-26] (WhatsApp Inc.)
Windows 地图中国导航 -> C:\Program Files\WindowsApps\Microsoft.WindowsMapsChinaNavigation_4.1510.2950.0_x64__8wekyb3d8bbwe [2021-10-14] (Microsoft Corporation)
微信 For Windows -> C:\Program Files\WindowsApps\TencentWeChatLimited.forWindows10_2.6.3.0_x86__sdtnhv12zgd7a [2019-11-29] (Tencent WeChat Limited)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [  OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-11] (Intel Corporation -> )
ShellIconOverlayIdentifiers-x32: [  OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [  OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-11] (Intel Corporation -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_c6685fe79c60e4b1\nvshext.dll [2022-01-11] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\20 Minutes.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=peabnllngidljilimpajcnacbbbkblke
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Modules chargés (Avec liste blanche) =============

2022-01-18 20:49 - 2022-01-18 20:49 - 000017920 _____ () [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libEGL.DLL
2022-01-18 20:49 - 2022-01-18 20:49 - 003567616 _____ () [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libGLESv2.dll
2022-01-20 18:21 - 2022-01-20 18:21 - 000008704 _____ () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\nsnDC4F.tmp\newadvsplash.dll
2022-01-20 18:21 - 2022-01-20 18:21 - 000011264 _____ () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\nsnDC4F.tmp\System.dll
2020-02-25 04:33 - 2020-03-16 07:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-02-25 04:33 - 2020-03-16 07:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 002815488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000678400 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2020-02-25 04:33 - 2020-02-25 04:33 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2022-01-20 11:43 - 2020-02-25 04:33 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll
2022-01-20 11:43 - 2020-02-25 04:33 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll
2022-01-20 11:43 - 2020-02-25 04:33 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll
2022-01-20 11:43 - 2020-02-25 04:33 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2022-01-20 11:43 - 2020-02-25 04:33 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2022-01-20 11:43 - 2020-02-25 04:33 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000046592 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000031744 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qgif.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000039936 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qicns.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000031232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qico.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000415232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qjpeg.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000025600 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qsvg.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000025088 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qtga.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000380416 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qtiff.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000023552 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qwbmp.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000532992 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qwebp.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 001455616 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\platforms\qwindows.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000227328 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt\labs\platform\qtlabsplatformplugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 006270976 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Core.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 006947328 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Gui.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 001389568 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Network.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000327168 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Positioning.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000319488 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5PrintSupport.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 003798528 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Qml.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000440832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QmlModels.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000054784 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QmlWorkerScript.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 004254720 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Quick.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000171520 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QuickControls2.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000222208 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QuickShapes.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 001128960 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QuickTemplates2.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000075264 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QuickWidgets.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000334848 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Svg.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000133120 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebChannel.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000396288 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebEngine.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 103583232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebEngineCore.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000250880 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebEngineWidgets.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000157184 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebSockets.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 005611520 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Widgets.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000210432 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Xml.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000056832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000059392 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000018432 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick.2\qtquick2plugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000294400 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000106496 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Layouts\qquicklayoutsplugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000017920 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Shapes\qmlshapesplugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000325120 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000045568 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Window.2\windowplugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000021504 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtWebChannel\declarative_webchannel.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000093696 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtWebEngine\qtwebengineplugin.dll
2022-01-18 20:49 - 2022-01-18 20:49 - 000135680 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

SearchScopes: HKU\S-1-5-21-2900342939-2057370268-613790016-1001 -> DefaultScope {64AF4D11-6492-4C25-B014-B6C6CEE3B0C5} URL = hxxps://www.baidu.com/s?tn=80035161_2_dg&wd={searchTerms}
SearchScopes: HKU\S-1-5-21-2900342939-2057370268-613790016-1001 -> {64AF4D11-6492-4C25-B014-B6C6CEE3B0C5} URL = hxxps://www.baidu.com/s?tn=80035161_2_dg&wd={searchTerms}
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-01-07] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2018-04-12 00:38 - 2022-01-20 18:21 - 000000928 _____ C:\WINDOWS\system32\drivers\etc\hosts
192.168.1.46 windows10.microdone.cn
127.0.0.1 license.piriform.com
127.0.0.1 http://www.piriform.com

2019-11-22 07:24 - 2021-03-02 08:14 - 000000713 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
8.137.254 XBOXONE.mshome.net # 2020 10 6 10 9 55 29 298
298
192.168.137.56 Sejour.mshome.net # 2020 3 3 25 11 40 47 517
47 517

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2900342939-2057370268-613790016-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
HKU\S-1-5-21-2900342939-2057370268-613790016-1016\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run32: => "ExpressVPNNotificationService"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKU\S-1-5-21-2900342939-2057370268-613790016-1001\...\StartupApproved\Run: => "ExpressVPN4"
HKU\S-1-5-21-2900342939-2057370268-613790016-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{0116EA48-72A4-4BD9-A642-37C57BD15478}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{90035EF8-0190-4F8B-ADD9-3A61BC200C9B}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{BE7CCD4B-41DB-4E29-898F-3F63CAC34653}] => (Allow) D:\SteamLibrary\steamapps\common\Jurassic World Evolution\JWE.exe (Frontier Developments) [Fichier non signé]
FirewallRules: [{E2A1E9E6-7A81-4619-8F38-CCE5DDB12B11}] => (Allow) D:\SteamLibrary\steamapps\common\Jurassic World Evolution\JWE.exe (Frontier Developments) [Fichier non signé]
FirewallRules: [{346D6AB9-486B-430F-A4B8-22F544EB6599}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{E81205C9-3CCF-42B7-B4DA-C450F483F237}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe (Xsolla (USA), Inc -> 2K)
FirewallRules: [{A9A59BF4-E46A-4E88-80BA-F72755B98075}] => (Block) C:\program files\windowsapps\tencentwechatlimited.forwindows10_2.6.3.0_x86__sdtnhv12zgd7a\wechatstore\wechatstore.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D3456139-6A8F-44ED-BC55-992190577FEA}] => (Block) C:\program files\windowsapps\tencentwechatlimited.forwindows10_2.6.3.0_x86__sdtnhv12zgd7a\wechatstore\wechatstore.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [UDP Query User{CB91D402-ECBA-45AF-B4C8-A677C59CF04A}C:\program files\windowsapps\tencentwechatlimited.forwindows10_2.6.3.0_x86__sdtnhv12zgd7a\wechatstore\wechatstore.exe] => (Allow) C:\program files\windowsapps\tencentwechatlimited.forwindows10_2.6.3.0_x86__sdtnhv12zgd7a\wechatstore\wechatstore.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [TCP Query User{C05D5255-2BFD-478F-90BB-521255A8D236}C:\program files\windowsapps\tencentwechatlimited.forwindows10_2.6.3.0_x86__sdtnhv12zgd7a\wechatstore\wechatstore.exe] => (Allow) C:\program files\windowsapps\tencentwechatlimited.forwindows10_2.6.3.0_x86__sdtnhv12zgd7a\wechatstore\wechatstore.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{0471C47B-9508-44E7-91AA-145DB6865049}] => (Allow) D:\SteamLibrary\steamapps\common\Overcooked! 2\Overcooked2.exe () [Fichier non signé]
FirewallRules: [{18555E4E-1C0C-460D-A7BD-246C15911F53}] => (Allow) D:\SteamLibrary\steamapps\common\Overcooked! 2\Overcooked2.exe () [Fichier non signé]
FirewallRules: [UDP Query User{7DD6C531-DB8F-4C6C-923F-6E1966D96A81}C:\program files (x86)\tencent\wechat\wechatapp.exe] => (Block) C:\program files (x86)\tencent\wechat\wechatapp.exe (Tencent Technology(Shenzhen) Company Limited -> The Tencent Authors)
FirewallRules: [TCP Query User{7CD90CB6-965E-4617-8164-5948745EA651}C:\program files (x86)\tencent\wechat\wechatapp.exe] => (Block) C:\program files (x86)\tencent\wechat\wechatapp.exe (Tencent Technology(Shenzhen) Company Limited -> The Tencent Authors)
FirewallRules: [{0847EA80-07A0-4935-A2C7-B7C63F7B6CC6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C11C6807-5F3C-4B13-947B-AEFE8904ED15}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{39DC56F3-B7E1-4DF3-A465-E88CBD7FDCEA}] => (Allow) D:\SteamLibrary\steamapps\common\Turok 2 - Seeds of Evil\horus_x64_ded.exe () [Fichier non signé]
FirewallRules: [{6CDEE89F-107D-4CA1-BD99-0AC06E539DA1}] => (Allow) D:\SteamLibrary\steamapps\common\Turok 2 - Seeds of Evil\horus_x64_ded.exe () [Fichier non signé]
FirewallRules: [{B7CD94DF-951E-467D-A2E3-7B00A7D69481}] => (Allow) D:\SteamLibrary\steamapps\common\Turok 2 - Seeds of Evil\horus_x64.exe () [Fichier non signé]
FirewallRules: [{77EF4268-72CD-47B8-89A4-2EF70062F46C}] => (Allow) D:\SteamLibrary\steamapps\common\Turok 2 - Seeds of Evil\horus_x64.exe () [Fichier non signé]
FirewallRules: [{7CD53637-AFD9-4074-8424-D04798C2C982}] => (Allow) D:\SteamLibrary\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Fichier non signé]
FirewallRules: [{F05ABC23-DB97-4CD1-AD1A-3031565D38A8}] => (Allow) D:\SteamLibrary\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [Fichier non signé]
FirewallRules: [{80D6C9F5-5183-4FC0-A39C-750A9B08B118}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{29285245-FF21-4C52-8089-4250BD4E4A6C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A282352B-C5AD-4299-AC58-E11E7DF58CD3}] => (Allow) C:\Program Files (x86)\Tencent\WeChat\WeChat.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{220465F2-A684-446D-BBAC-93F15AA36451}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C872E62D-887E-453C-8BC0-6BEFCB8519DF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{270D674D-4926-4152-90DF-EE9007BFBAB0}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{8AA282E0-2A0D-439B-88FA-AC5C9D3915D6}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{B4777CD1-0048-4B43-A064-1B39561A7CB3}] => (Allow) C:\Users\HP\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{87B401CD-B984-4110-83E8-1630C9AF5471}] => (Allow) C:\Users\HP\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{32566083-BFDA-4FF9-8D79-7A54E5BF3C3C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4D623941-A5FC-47AA-997D-6BF36811A5BC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8B6590E2-BA57-43C9-9B1D-E4AF4593650F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5C8D7FDD-7858-4BA2-86C1-4342E781FC03}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ABF0E72D-3CD1-4CCE-9B78-28A34FD6E4DB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FA1F486A-FB2C-47E2-A5C2-0299CFAF971A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A19C5731-3D6B-42AD-BEA8-960929FF9B9F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B9F42FBE-E9B0-4E69-B200-37DFBF62F164}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D50227D9-5544-4755-9D2E-8CFC599532D6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8CF6F0C8-0E9A-4594-AAE4-F3C045225B5F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A332952A-7E90-4CA0-B35A-71CB5CBD93F9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0139622F-CB5E-4135-8A00-65F83EA8DDE5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{08C3DD2E-9BB4-4D38-B25D-AFF95D7E3028}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C0A31B74-E316-424B-B628-0B321CD53C68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{32F1420F-BA83-422C-AFC9-BB9DCFC36920}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6155B566-D259-4939-A176-0735B54C83C1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{71786812-3E51-4D53-9915-DAB7192F7CDF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CAA1A95D-2456-4CD6-A8BB-21DF6E5C0E0D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{4898215A-9E46-4F6A-8D02-B8C90C6F1B14}D:\steamlibrary\steamapps\common\sid meier's civilization vi\base\binaries\win64steam\civilizationvi_dx12.exe] => (Allow) D:\steamlibrary\steamapps\common\sid meier's civilization vi\base\binaries\win64steam\civilizationvi_dx12.exe (Firaxis Games) [Fichier non signé]
FirewallRules: [UDP Query User{B66A50D4-E946-4EF4-8F17-60B1DA261EB9}D:\steamlibrary\steamapps\common\sid meier's civilization vi\base\binaries\win64steam\civilizationvi_dx12.exe] => (Allow) D:\steamlibrary\steamapps\common\sid meier's civilization vi\base\binaries\win64steam\civilizationvi_dx12.exe (Firaxis Games) [Fichier non signé]
FirewallRules: [TCP Query User{0056B60F-BAA3-4C81-896F-DB45A7419BAC}D:\steamlibrary\steamapps\common\sid meier's civilization vi\base\binaries\win64steam\civilizationvi.exe] => (Allow) D:\steamlibrary\steamapps\common\sid meier's civilization vi\base\binaries\win64steam\civilizationvi.exe (Firaxis Games) [Fichier non signé]
FirewallRules: [UDP Query User{7E440A81-B2EB-46DE-860A-CA377EB0C18E}D:\steamlibrary\steamapps\common\sid meier's civilization vi\base\binaries\win64steam\civilizationvi.exe] => (Allow) D:\steamlibrary\steamapps\common\sid meier's civilization vi\base\binaries\win64steam\civilizationvi.exe (Firaxis Games) [Fichier non signé]
FirewallRules: [{E3422388-443D-4D3E-88EB-C9E72A3458B2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E6C11F58-21C1-460A-8C6C-817E40669749}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.62\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{16B11AB7-99DF-43BA-9A19-7F24D9EDA274}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Points de restauration =========================


==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (01/20/2022 04:25:43 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, 系统正在关机。
]

Error: (01/18/2022 11:47:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, 系统正在关机。
.

Error: (01/18/2022 11:47:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, 系统正在关机。
]

Error: (01/18/2022 09:51:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme SearchApp.exe version 10.0.19041.1387 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance.

ID de processus : 3874

Heure de début : 01d80c901bb89ab7

Heure d'arrêt : 4294967295

Chemin d'accès à l'application : C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID de rapport : 353165b7-cfbe-459e-bca9-e020d6eca986

Nom complet du package défectueux : Microsoft.Windows.Search_1.14.2.19041_neutral_neutral_cw5n1h2txyewy

ID de l'application relative à un package défectueux : ShellFeedsUI

Type de blocage : Quiesce

Error: (01/18/2022 09:05:49 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, 拒绝访问。
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


操作:
   正在搜集写入程序数据

上下文:
   写入程序类 ID: {e8132975-6f93-4464-a53e-1050253ae220}
   写入程序名称: System Writer
   写入程序实例 ID: {26145198-7278-47bd-b7e6-2aa22f788d57}

Error: (01/12/2022 08:05:27 PM) (Source: Firefox Default Browser Agent) (EventID: 12007) (User: )
Description: Event-ID 12007

Error: (01/12/2022 08:05:27 PM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0

Error: (01/06/2022 05:06:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante CivilizationVI.exe, version : 1.0.12.9, horodatage : 0x6040067b
Nom du module défaillant : ntdll.dll, version : 10.0.19041.1288, horodatage : 0xa280d1d6
Code d’exception : 0xc0000374
Décalage d’erreur : 0x00000000000ff199
ID du processus défaillant : 0x63c
Heure de début de l’application défaillante : 0x01d803157b2b5d4d
Chemin d’accès de l’application défaillante : D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 5f43713b-8bcd-4781-a80d-bb8ad97ad918
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (01/20/2022 05:40:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service SysMain s’est arrêté avec l’erreur : 
Paramètre incorrect.

Error: (01/20/2022 03:30:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Microsoft Office « Démarrer en un clic » s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : 重新启动服务.

Error: (01/20/2022 12:25:45 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Les clichés instantanés du volume C: ont été annulés car le stockage du cliché instantané n’a pas pu s’agrandir en raison d’une limite utilisateur.

Error: (01/20/2022 12:12:07 PM) (Source: DCOM) (EventID: 10010) (User: IJKAN)
Description: Le serveur AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6!AD2F1837.HPPrinterControl.AppX3pygpm0xnrdftm5n1tftckhgsgz4zqvb.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/19/2022 12:01:30 AM) (Source: DCOM) (EventID: 10010) (User: IJKAN)
Description: Le serveur AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6!AD2F1837.HPPrinterControl.AppX3pygpm0xnrdftm5n1tftckhgsgz4zqvb.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/18/2022 11:47:16 PM) (Source: DCOM) (EventID: 10010) (User: IJKAN)
Description: Le serveur AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6!AD2F1837.HPPrinterControl.AppX3pygpm0xnrdftm5n1tftckhgsgz4zqvb.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/18/2022 10:59:25 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Origin Web Helper Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/18/2022 10:59:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service EABackgroundService s’est terminé de façon inattendue pour la 1ème fois.


Windows Defender:
================
Date: 2022-01-18 22:54:05
Description: 
在完成前停止了 Microsoft Defender 防病毒 扫描。
扫描 ID: {DC02D161-EC12-4FFB-9CF9-858FE86654E5}
扫描类型: 反恶意软件
扫描参数: 快速扫描
用户: NT AUTHORITY\SYSTEM

Date: 2022-01-18 20:57:57
Description: 
受控文件夹访问权限已阻止 C:\Users\HP\Downloads\CCleaner Pro Portable 5.88.9346 (Windows)\App\CCleaner\CCleaner64.exe 对内存进行更改。
检测时间: 2022-01-18T19:57:57.762Z
用户: IJKAN\HP
路径: \Device\Harddisk0\DR0
进程名称: C:\Users\HP\Downloads\CCleaner Pro Portable 5.88.9346 (Windows)\App\CCleaner\CCleaner64.exe
安全智能版本: 1.355.2114.0
引擎版本: 1.1.18800.4
产品版本:  4.18.2111.5

Date: 2022-01-18 15:11:31
Description: 
受控文件夹访问权限已阻止 C:\Users\HP\AppData\Local\Temp\~nsuA.tmp\Au_.exe 对内存进行更改。
检测时间: 2022-01-18T14:11:31.557Z
用户: IJKAN\HP
路径: \Device\Harddisk0\DR0
进程名称: C:\Users\HP\AppData\Local\Temp\~nsuA.tmp\Au_.exe
安全智能版本: 1.355.2114.0
引擎版本: 1.1.18800.4
产品版本:  4.18.2111.5

Date: 2022-01-18 14:35:56
Description: 
受控文件夹访问权限已阻止 C:\Program Files\CCleaner\CCleaner64.exe 对内存进行更改。
检测时间: 2022-01-18T13:35:56.188Z
用户: IJKAN\HP
路径: \Device\Harddisk0\DR0
进程名称: C:\Program Files\CCleaner\CCleaner64.exe
安全智能版本: 1.355.2114.0
引擎版本: 1.1.18800.4
产品版本:  4.18.2111.5

Date: 2022-01-18 14:35:56
Description: 
受控文件夹访问权限已阻止 C:\Program Files\CCleaner\CCUpdate.exe 对内存进行更改。
检测时间: 2022-01-18T13:35:56.187Z
用户: IJKAN\HP
路径: \Device\Harddisk0\DR0
进程名称: C:\Program Files\CCleaner\CCUpdate.exe
安全智能版本: 1.355.2114.0
引擎版本: 1.1.18800.4
产品版本:  4.18.2111.5

==================== Infos Mémoire =========================== 

BIOS: Insyde F.12 08/02/2019
Carte mère: HP 85FC
Processeur: Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
Pourcentage de mémoire utilisée: 86%
Mémoire physique - RAM - totale: 8032.18 MB
Mémoire physique - RAM - disponible: 1068.65 MB
Mémoire virtuelle totale: 18272.18 MB
Mémoire virtuelle disponible: 9697.02 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:124.59 GB) (Free:15.13 GB) NTFS
Drive d: () (Fixed) (Total:124.05 GB) (Free:58.23 GB) NTFS
Drive e: () (Fixed) (Total:226.94 GB) (Free:178.07 GB) NTFS

\\?\Volume{c9d39544-a0da-4ab6-adbb-30a598809b4f}\ () (Fixed) (Total:0.56 GB) (Free:0.05 GB) NTFS
\\?\Volume{69adeef2-654c-4b88-bc5b-85b9856b22b3}\ (Windows RE tools) (Fixed) (Total:0.53 GB) (Free:0.06 GB) NTFS
\\?\Volume{d7cce57c-e39d-4eb3-aec1-44ce913af8c9}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.19 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 41084D87)

Partition: GPT.

==================== Fin de Addition.txt =======================