Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par InfoWare31 (administrateur) sur DESKTOP-MVJ4EJ1 (04-09-2022 19:26:58)
Exécuté depuis C:\Users\InfoWare31\OneDrive\Desktop
Profils chargés: InfoWare31
Plate-forme: Microsoft Windows 10 Professionnel Version 21H1 19043.1889 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(services.exe ->) () [Fichier non signé] C:\Program Files\OpenVPN Connect\agent_ovpnconnect_1647517251935.exe
(services.exe ->) () [Fichier non signé] C:\Program Files\OpenVPN Connect\ovpnhelper_service.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\InfoWare31\AppData\Local\Microsoft\OneDrive\22.166.0807.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe (Pas de fichier)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12837288 2022-07-19] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [iTunesHelper] => "C:\Program Files\iTunes\iTunesHelper.exe" (Pas de fichier)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [uTorrent] => C:\Users\InfoWare31\AppData\Roaming\uTorrent\uTorrent.exe [2004128 2022-08-31] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (Pas de fichier)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [org.openvpn.client] => C:\Program Files\OpenVPN Connect\OpenVPNConnect.exe [110833152 2022-03-17] (OpenVPN) [Fichier non signé]
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [MicrosoftEdgeAutoLaunch_474483BF035A5B1D2FEA44D887F4B957] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [utweb] => C:\Users\InfoWare31\AppData\Roaming\uTorrent Web\utweb.exe [6282912 2022-07-22] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-23] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2E81DD83-7447-4FEE-91BA-CAD4B0AD5D4E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {30E54446-E107-463C-8CF2-4BF9C0A12B1D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-06-11] (Google Inc -> Google LLC)
Task: {442DECAF-0979-42B9-B8F3-F87021B375BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCmdRun.exe [1335968 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4E48D986-B2DE-4CA8-B8E4-4EEEFC0BB5F6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCmdRun.exe [1335968 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {55037D50-7926-4BDE-80E4-375B327A7A98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A56EFC0-2C71-411C-8157-C08FDD1546CC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AF2CC753-A31D-414F-99F3-6687BD25DC30} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCmdRun.exe [1335968 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C10DBF5B-3B13-4E5C-A5E7-E2506A0A93E1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCmdRun.exe [1335968 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C18E0139-1E3D-4C2E-9092-52EAF226377D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {CEFC884D-57F4-44C8-877A-8ACD60C11DB1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D13AC0F2-D9AE-4FCA-8C88-A2F6A95AF3AE} - System32\Tasks\Opera scheduled Autoupdate 1636548709 => C:\Users\InfoWare31\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {E3ACFB3A-D0C1-4BC1-9B8A-E0DD79704A70} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-06-11] (Google Inc -> Google LLC)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4d9bf435-7921-4b9a-9446-297821271248}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c5b19a51-403a-4595-a095-373f006b5e88}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\InfoWare31\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-01]
FireFox:
========
FF DefaultProfile: yyurrrwp.default
FF ProfilePath: C:\Users\InfoWare31\AppData\Roaming\Mozilla\Firefox\Profiles\yyurrrwp.default [2020-06-11]
FF ProfilePath: C:\Users\InfoWare31\AppData\Roaming\Mozilla\Firefox\Profiles\u858sn0x.default-release [2020-06-11]
FF Extension: (Avast Online Security) - C:\Users\InfoWare31\AppData\Roaming\Mozilla\Firefox\Profiles\u858sn0x.default-release\Extensions\wrc@avast.com.xpi [2020-06-11]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Fichier non signé]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\Default [2022-09-04]
CHR Notifications: Default -> hxxps://monjardinmamaison.maison-travaux.fr
CHR HomePage: Default -> hxxp://google/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxps://www.google.com/"
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-30]
CHR Extension: (Nebula) - C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlmflgnnmmojlnbmaokpfcjdkhkjbnok [2020-10-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\System Profile [2020-10-31]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
Opera:
=======
OPR Profile: C:\Users\InfoWare31\AppData\Roaming\Opera Software\Opera Stable [2021-11-10]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 agent_ovpnconnect; C:\Program Files\OpenVPN Connect\agent_ovpnconnect_1647517251935.exe [3196928 2022-03-17] () [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-12] (Microsoft Corporation -> Microsoft Corporation)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-15] (Epic Games Inc. -> Epic Games, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [225368 2022-08-14] (HP Inc. -> HP Inc.)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [22174424 2021-12-03] (LLC Mail.Ru -> LLC Mail.Ru)
R2 ovpnhelper_service; C:\Program Files\OpenVPN Connect\ovpnhelper_service.exe [3021824 2022-03-17] () [Fichier non signé]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2021-06-23] (Even Balance, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35240 2022-07-19] (SteelSeries ApS -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\NisSrv.exe [3125128 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MsMpEng.exe [133560 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BEService; "C:\Program Files (x86)\Common Files\BattlEye\BEService.exe" [X]
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
S3 EasyAntiCheat_EOS; "C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_47917a79b8c7fd22\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-08-02] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 MpKsl57d9402f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CBEF96EE-2E8C-4FCE-9CFC-48C765D2A1CF}\MpKslDrv.sys [141576 2022-09-04] (Microsoft Windows -> Microsoft Corporation)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [21413808 2021-12-03] (LLC Mail.Ru -> LLC Mail.Ru)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [86632 2020-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46896 2017-12-15] (SteelSeries ApS -> )
R3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [43960 2022-07-06] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_ab95c13003d9c50f\SteelSeries-Sonar-VAD.sys [92912 2022-07-18] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
R3 tap_ovpnconnect; C:\WINDOWS\System32\drivers\tap_ovpnconnect.sys [40128 2022-03-17] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-08-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-08-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94456 2022-08-16] (Microsoft Windows -> Microsoft Corporation)
S3 wtbt; \??\e:\jeux\steamapps\common\super people playtest\engine\binaries\thirdparty\wondertrust\wtdrv64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-04 19:26 - 2022-09-04 19:27 - 000000000 ____D C:\FRST
2022-09-04 19:20 - 2022-09-04 19:25 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\ZHP
2022-09-04 19:20 - 2022-09-04 19:20 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\ZHP
2022-09-01 12:53 - 2022-09-01 12:53 - 000000000 ____D C:\Users\InfoWare31\OneDrive\Documents\Call of Duty Modern Warfare
2022-09-01 12:26 - 2022-09-04 11:39 - 103546880 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-09-01 12:22 - 2022-09-01 12:26 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-09-01 11:36 - 2022-09-01 11:37 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-09-01 11:36 - 2022-09-01 11:36 - 004838352 _____ (Blizzard Entertainment) C:\Users\InfoWare31\Downloads\Battle.net-Setup (1).exe
2022-08-31 13:53 - 2022-08-31 13:54 - 000000000 ____D C:\Users\InfoWare31\OneDrive\Documents\Marvel's Spider-Man Remastered
2022-08-31 13:53 - 2022-08-31 13:53 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Insomniac Games
2022-08-31 13:53 - 2022-08-31 13:53 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\FLT
2022-08-31 13:53 - 2022-08-31 13:53 - 000000000 ____D C:\Users\InfoWare31\.insomniac
2022-08-31 13:51 - 2022-08-31 13:51 - 000000936 _____ C:\Users\InfoWare31\Desktop\Marvel’s Spider-Man Remastered.lnk
2022-08-31 12:11 - 2022-08-31 12:11 - 000070717 _____ C:\Users\InfoWare31\Downloads\Marvels_Spider-Man_Remastered-FLT.torrent
2022-08-31 12:11 - 2022-08-31 12:11 - 000000000 ____D C:\Users\InfoWare31\AppData\LocalLow\uTorrent.WebView2
2022-08-31 12:08 - 2022-08-31 12:08 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-08-31 12:06 - 2022-07-22 06:25 - 000043184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-08-31 12:05 - 2022-09-01 11:35 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\uTorrent Web
2022-08-31 12:05 - 2022-08-31 12:05 - 000001890 _____ C:\Users\InfoWare31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2022-08-31 12:04 - 2022-07-28 06:50 - 000771568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-08-31 12:04 - 2022-07-28 06:47 - 005735944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-08-31 12:03 - 2022-07-28 06:53 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-08-31 12:03 - 2022-07-28 06:53 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-08-31 12:03 - 2022-07-28 06:53 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-08-31 12:03 - 2022-07-28 06:53 - 001471984 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001432328 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001432328 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001213424 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001145592 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001145592 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-08-31 12:03 - 2022-07-28 06:50 - 000865776 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-08-31 12:03 - 2022-07-28 06:50 - 000687624 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-08-31 12:03 - 2022-07-28 06:49 - 002127872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-08-31 12:03 - 2022-07-28 06:49 - 001536512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-08-31 12:03 - 2022-07-28 06:49 - 001182720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-08-31 12:03 - 2022-07-28 06:49 - 000714760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-08-31 12:03 - 2022-07-28 06:48 - 010269680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 008803848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 005362696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 003066888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 001607680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 001059320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 000456200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-08-31 12:03 - 2022-07-28 06:47 - 000853000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-08-31 12:03 - 2022-07-28 06:45 - 006367432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-08-31 12:03 - 2022-07-22 06:25 - 000093241 _____ C:\WINDOWS\system32\nvinfo.pb
2022-08-31 12:01 - 2022-08-31 12:02 - 822556856 _____ (NVIDIA Corporation) C:\Users\InfoWare31\Downloads\516.94-desktop-win10-win11-64bit-international-dch-whql.exe
2022-08-25 15:05 - 2022-08-25 15:05 - 000078414 _____ C:\Users\InfoWare31\Downloads\Banquejustificatif.pdf
2022-08-25 15:01 - 2022-08-25 15:01 - 000468753 _____ C:\Users\InfoWare31\Downloads\cessation.20bc4a5d.pdf
2022-08-25 14:23 - 2022-08-25 14:23 - 000053207 _____ C:\Users\InfoWare31\Downloads\doc8198.pdf
2022-08-25 14:18 - 2022-08-25 14:18 - 000150864 _____ C:\Users\InfoWare31\Downloads\OSCAISS_DPP_editionRib (1).pdf
2022-08-25 14:17 - 2022-08-25 14:17 - 000150861 _____ C:\Users\InfoWare31\Downloads\OSCAISS_DPP_editionRib.pdf
2022-08-25 14:15 - 2022-08-25 14:15 - 000235053 _____ C:\Users\InfoWare31\Downloads\DownloadDocument.pdf
2022-08-15 06:06 - 2022-08-15 06:06 - 000457007 _____ C:\Users\InfoWare31\Downloads\@marionclz • Photos et vidéos Instagram.html
2022-08-15 06:06 - 2022-08-15 06:06 - 000000000 ____D C:\Users\InfoWare31\Downloads\@marionclz • Photos et vidéos Instagram_files
2022-08-15 06:01 - 2022-09-02 15:14 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Pro Cycling Manager 2022
2022-08-13 21:53 - 2022-08-13 21:53 - 000374284 _____ C:\Users\InfoWare31\Downloads\Ordo-B.pdf
2022-08-13 13:59 - 2022-08-13 13:59 - 000035652 _____ C:\Users\InfoWare31\Downloads\20220427_103102-avec compression.pdf
2022-08-13 13:57 - 2022-08-13 13:57 - 001958247 _____ C:\Users\InfoWare31\Downloads\20220427_103102.pdf
2022-08-13 13:50 - 2022-08-13 13:50 - 000066390 _____ C:\Users\InfoWare31\Downloads\attestationTitulaireContrat (3).pdf
2022-08-12 13:46 - 2022-08-12 13:46 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-08-12 13:46 - 2022-08-12 13:46 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-08-12 13:45 - 2022-08-12 13:45 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-12 13:45 - 2022-08-12 13:45 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-08-12 13:45 - 2022-08-12 13:45 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-12 13:45 - 2022-08-12 13:45 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-12 13:45 - 2022-08-12 13:45 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-08-12 13:45 - 2022-08-12 13:45 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-12 13:26 - 2022-08-12 13:26 - 000000000 ___HD C:\$WinREAgent
2022-08-05 12:00 - 2022-08-05 12:00 - 000022338 _____ C:\Users\InfoWare31\Downloads\AA1_35441165_306_BMX_31_68092045.pdf
2022-08-02 15:26 - 2022-09-01 12:53 - 000000637 _____ C:\Users\Public\Desktop\Call of Duty Modern Warfare.lnk
2022-08-02 15:26 - 2022-08-02 15:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare
2022-08-02 13:48 - 2022-07-28 06:48 - 000845312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-07-27 10:48 - 2022-07-27 10:48 - 000470519 _____ C:\Users\InfoWare31\Downloads\596839_BE_0_71685_6300301000.pdf
2022-07-25 16:02 - 2022-07-25 16:02 - 000060412 _____ C:\Users\InfoWare31\Downloads\doc15.pdf
2022-07-22 17:14 - 2022-07-22 17:14 - 000000000 ____D C:\Users\InfoWare31\AppData\LocalLow\Redbeet Interactive
2022-07-18 14:29 - 2022-07-18 14:30 - 000407556 _____ C:\Users\InfoWare31\Downloads\E-billet.pdf
2022-07-18 13:52 - 2022-07-18 13:52 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Pro Cycling Manager 2017
2022-07-18 13:19 - 2022-08-13 00:00 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Pro Cycling Manager 2020
2022-07-16 15:26 - 2022-07-16 15:26 - 000039919 _____ C:\Users\InfoWare31\Downloads\MME GUIMARES.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039890 _____ C:\Users\InfoWare31\Downloads\MME GINESTE.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039875 _____ C:\Users\InfoWare31\Downloads\MME LEBE.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039872 _____ C:\Users\InfoWare31\Downloads\MME BENIDIRI.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039867 _____ C:\Users\InfoWare31\Downloads\MME SANCHEZ.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039867 _____ C:\Users\InfoWare31\Downloads\MME SANCHEZ (1).pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039716 _____ C:\Users\InfoWare31\Downloads\MR RUBIO.pdf
2022-07-13 16:19 - 2022-07-13 16:19 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-13 16:19 - 2022-07-13 16:19 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-13 16:19 - 2022-07-13 16:19 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-13 16:18 - 2022-07-13 16:18 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-13 12:55 - 2022-07-13 12:55 - 000060980 _____ C:\Users\InfoWare31\Downloads\doc14.pdf
2022-07-12 15:58 - 2022-07-12 15:58 - 000072302 _____ C:\Users\InfoWare31\Downloads\IDE-PHARMA pmst ORDO_247714_optimised.pdf
2022-06-30 10:34 - 2022-06-30 10:34 - 000039899 _____ C:\Users\InfoWare31\Downloads\attestation-laberenne-quentin.pdf
2022-06-24 15:31 - 2022-06-24 15:31 - 000080823 _____ C:\Users\InfoWare31\Downloads\EREQT_1-17DPTU6ET_1-1HGI1E0TA (1).PDF
2022-06-19 16:43 - 2022-06-19 16:43 - 000479744 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2022-06-19 16:43 - 2022-06-19 16:43 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2022-06-19 16:42 - 2022-06-19 16:42 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-19 16:42 - 2022-06-19 16:42 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-19 16:42 - 2022-06-19 16:42 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-19 16:25 - 2022-08-14 21:29 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-06-19 16:25 - 2022-08-14 21:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-06-19 16:24 - 2022-06-19 16:31 - 000000000 ____D C:\ProgramData\HP
2022-06-19 16:24 - 2022-02-24 02:44 - 000686360 _____ (HP Inc., LP) C:\WINDOWS\system32\HPWia2Drv.dll
2022-06-19 16:24 - 2022-02-24 02:43 - 007419672 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_x64.dll
2022-06-19 16:24 - 2022-02-24 02:43 - 005198640 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPScanTEDrv.dll
2022-06-19 16:24 - 2022-02-24 02:43 - 001350392 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_x64_DiscoveryLibDyn.dll
2022-06-19 16:24 - 2022-02-24 02:43 - 000983304 _____ (HP Inc.) C:\WINDOWS\SysWOW64\DiscoveryLibDyn.dll
2022-06-19 16:24 - 2022-02-24 02:33 - 000003487 _____ C:\WINDOWS\SysWOW64\HPScanDrvConfig.xml
2022-06-19 16:24 - 2022-02-24 02:33 - 000003487 _____ C:\WINDOWS\system32\HPScanDrvConfig.xml
2022-06-11 08:50 - 2022-06-11 08:50 - 000165078 _____ C:\Users\InfoWare31\Downloads\23YS2RP3ETETRP_8R42357920211_ReturnNote.pdf
2022-06-09 21:45 - 2022-06-09 21:45 - 000114163 _____ C:\Users\InfoWare31\Downloads\garorock-2022-pass-2-jours-jeudi-vendredi-tickets-79931626.pdf
2022-06-09 21:44 - 2022-06-09 21:44 - 001555685 _____ C:\Users\InfoWare31\Downloads\CNI 1.pdf
2022-06-09 21:44 - 2022-06-09 21:44 - 001407701 _____ C:\Users\InfoWare31\Downloads\CNI 2.pdf
2022-06-09 21:36 - 2022-06-09 21:36 - 000026434 _____ C:\Users\InfoWare31\Downloads\South Africa (3).ovpn
2022-06-09 21:36 - 2022-06-09 21:36 - 000026433 _____ C:\Users\InfoWare31\Downloads\India (V2) (5).ovpn
2022-06-09 21:36 - 2022-06-09 21:36 - 000026425 _____ C:\Users\InfoWare31\Downloads\Israel (3).ovpn
2022-06-09 10:58 - 2022-06-09 10:58 - 000059285 _____ C:\Users\InfoWare31\Downloads\XTSINDIVI_00004779.pdf
2022-06-09 10:35 - 2022-06-09 10:35 - 000080823 _____ C:\Users\InfoWare31\Downloads\EREQT_1-17DPTU6ET_1-1HGI1E0TA.PDF
2022-06-09 10:01 - 2021-10-08 11:00 - 000167544 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2022-06-08 20:34 - 2022-06-08 20:34 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-06-08 20:34 - 2022-06-08 20:34 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-04 19:24 - 2020-06-11 15:57 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-04 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-04 19:19 - 2020-12-09 13:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-04 18:34 - 2020-07-14 17:11 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 18:34 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-04 18:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-04 18:28 - 2020-12-09 14:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-04 18:28 - 2020-12-09 13:59 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-04 18:28 - 2020-03-05 13:13 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-04 11:39 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-03 13:58 - 2021-11-19 23:13 - 000153040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 002835920 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000443856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000198120 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000067024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-09-03 13:58 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-02 22:19 - 2020-06-11 16:18 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-02 15:14 - 2020-06-11 16:56 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\D3DSCache
2022-09-01 13:21 - 2020-06-11 13:58 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\Battle.net
2022-09-01 11:37 - 2021-04-22 15:27 - 000000946 _____ C:\Users\Public\Desktop\Battle.net.lnk
2022-09-01 11:35 - 2022-04-17 15:24 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\OpenVPN Connect
2022-09-01 11:35 - 2020-06-11 17:44 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\CrashDumps
2022-09-01 11:33 - 2020-03-05 13:07 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\Packages
2022-09-01 11:28 - 2020-10-13 14:54 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\BitTorrentHelper
2022-09-01 11:28 - 2020-03-05 13:08 - 000000000 ___RD C:\Users\InfoWare31\OneDrive
2022-09-01 10:04 - 2021-06-21 20:13 - 000000000 ____D C:\ProgramData\Origin
2022-09-01 09:56 - 2021-10-16 15:58 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\WhatsApp
2022-09-01 09:56 - 2021-10-16 15:58 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\WhatsApp
2022-08-31 19:02 - 2020-10-13 14:53 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\uTorrent
2022-08-31 19:02 - 2020-06-11 17:07 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\discord
2022-08-31 18:53 - 2020-09-24 18:06 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\Discord
2022-08-31 13:53 - 2020-12-09 14:00 - 000000000 ____D C:\Users\InfoWare31
2022-08-31 13:20 - 2021-03-06 01:08 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\NVIDIA
2022-08-31 12:39 - 2021-09-07 16:48 - 000000000 ____D C:\Users\InfoWare31\Games
2022-08-30 20:08 - 2021-10-31 18:54 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\Ubisoft Game Launcher
2022-08-30 13:19 - 2020-12-09 14:06 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 13:19 - 2020-12-09 14:06 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-29 22:03 - 2021-12-12 01:26 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1831518587-2530328139-2005501424-1001
2022-08-29 22:03 - 2020-12-09 14:06 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1831518587-2530328139-2005501424-1001
2022-08-29 22:03 - 2020-12-09 14:00 - 000002436 _____ C:\Users\InfoWare31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-17 14:37 - 2020-12-09 14:06 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 14:37 - 2020-12-09 14:06 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-16 20:50 - 2021-12-13 17:14 - 000000659 _____ C:\Users\Public\Desktop\FIFA 22.lnk
2022-08-16 01:33 - 2020-03-05 16:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-08-14 15:57 - 2020-12-09 12:45 - 000000000 ____D C:\Program Files\Microsoft Office
2022-08-13 23:54 - 2020-08-07 05:03 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-08-13 23:53 - 2021-10-08 22:36 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\EasyAntiCheat
2022-08-12 21:04 - 2020-12-09 14:08 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-12 21:04 - 2019-12-07 16:50 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-12 21:04 - 2019-12-07 16:50 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-12 16:27 - 2020-12-09 13:59 - 000443664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-12 16:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-12 16:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-12 13:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-12 13:44 - 2020-12-09 14:01 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-12 13:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-12 13:21 - 2020-03-05 15:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-12 13:19 - 2020-03-05 15:32 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2021-12-13 14:19 - 2021-12-13 14:19 - 000005190 _____ () C:\Users\InfoWare31\AppData\Local\4208131837
==================== SigCheckExt =========================
2019-03-19 06:45 - 2019-03-19 06:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionMgr.dll
2020-11-13 00:54 - 2020-11-13 00:54 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\canonurl.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMFNVSDeviceBridge.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2021-06-12 13:32 - 2022-09-03 13:58 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mitigationscanner.exe
2019-03-19 06:45 - 2019-03-19 06:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.ShellPosition.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\canonurl.dll
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{6bb9e07a-5ed0-11ea-a06c-ec20434f7366}
{1dd38fff-28fe-11ed-a047-806e6f6e6963}
{1dd39000-28fe-11ed-a047-806e6f6e6963}
{1dd39001-28fe-11ed-a047-806e6f6e6963}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume5
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {e0432868-3a15-11eb-96e2-f81591c414a6}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {1dd38fff-28fe-11ed-a047-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {1dd39000-28fe-11ed-a047-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {1dd39001-28fe-11ed-a047-806e6f6e6963}
description UEFI:Network Device
Application logicielle (101fffff)
--------------------------------
identificateur {6bb9e07a-5ed0-11ea-a06c-ec20434f7366}
description Hard Drive
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {e043286a-3a15-11eb-96e2-f81591c414a6}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {e0432868-3a15-11eb-96e2-f81591c414a6}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {e043286a-3a15-11eb-96e2-f81591c414a6}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{e043286b-3a15-11eb-96e2-f81591c414a6}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{e043286b-3a15-11eb-96e2-f81591c414a6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {e0432868-3a15-11eb-96e2-f81591c414a6}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {e043286a-3a15-11eb-96e2-f81591c414a6}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume5
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {e043286b-3a15-11eb-96e2-f81591c414a6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par InfoWare31 (administrateur) sur DESKTOP-MVJ4EJ1 (04-09-2022 19:26:58)
Exécuté depuis C:\Users\InfoWare31\OneDrive\Desktop
Profils chargés: InfoWare31
Plate-forme: Microsoft Windows 10 Professionnel Version 21H1 19043.1889 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(services.exe ->) () [Fichier non signé] C:\Program Files\OpenVPN Connect\agent_ovpnconnect_1647517251935.exe
(services.exe ->) () [Fichier non signé] C:\Program Files\OpenVPN Connect\ovpnhelper_service.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\InfoWare31\AppData\Local\Microsoft\OneDrive\22.166.0807.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe (Pas de fichier)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12837288 2022-07-19] (SteelSeries ApS -> SteelSeries ApS)
HKLM\...\Run: [iTunesHelper] => "C:\Program Files\iTunes\iTunesHelper.exe" (Pas de fichier)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [uTorrent] => C:\Users\InfoWare31\AppData\Roaming\uTorrent\uTorrent.exe [2004128 2022-08-31] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart (Pas de fichier)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [org.openvpn.client] => C:\Program Files\OpenVPN Connect\OpenVPNConnect.exe [110833152 2022-03-17] (OpenVPN) [Fichier non signé]
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [MicrosoftEdgeAutoLaunch_474483BF035A5B1D2FEA44D887F4B957] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Run: [utweb] => C:\Users\InfoWare31\AppData\Roaming\uTorrent Web\utweb.exe [6282912 2022-07-22] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-23] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2E81DD83-7447-4FEE-91BA-CAD4B0AD5D4E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {30E54446-E107-463C-8CF2-4BF9C0A12B1D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-06-11] (Google Inc -> Google LLC)
Task: {442DECAF-0979-42B9-B8F3-F87021B375BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCmdRun.exe [1335968 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4E48D986-B2DE-4CA8-B8E4-4EEEFC0BB5F6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCmdRun.exe [1335968 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {55037D50-7926-4BDE-80E4-375B327A7A98} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A56EFC0-2C71-411C-8157-C08FDD1546CC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AF2CC753-A31D-414F-99F3-6687BD25DC30} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCmdRun.exe [1335968 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C10DBF5B-3B13-4E5C-A5E7-E2506A0A93E1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MpCmdRun.exe [1335968 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C18E0139-1E3D-4C2E-9092-52EAF226377D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {CEFC884D-57F4-44C8-877A-8ACD60C11DB1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D13AC0F2-D9AE-4FCA-8C88-A2F6A95AF3AE} - System32\Tasks\Opera scheduled Autoupdate 1636548709 => C:\Users\InfoWare31\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {E3ACFB3A-D0C1-4BC1-9B8A-E0DD79704A70} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2020-06-11] (Google Inc -> Google LLC)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4d9bf435-7921-4b9a-9446-297821271248}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c5b19a51-403a-4595-a095-373f006b5e88}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\InfoWare31\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-01]
FireFox:
========
FF DefaultProfile: yyurrrwp.default
FF ProfilePath: C:\Users\InfoWare31\AppData\Roaming\Mozilla\Firefox\Profiles\yyurrrwp.default [2020-06-11]
FF ProfilePath: C:\Users\InfoWare31\AppData\Roaming\Mozilla\Firefox\Profiles\u858sn0x.default-release [2020-06-11]
FF Extension: (Avast Online Security) - C:\Users\InfoWare31\AppData\Roaming\Mozilla\Firefox\Profiles\u858sn0x.default-release\Extensions\wrc@avast.com.xpi [2020-06-11]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Fichier non signé]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\Default [2022-09-04]
CHR Notifications: Default -> hxxps://monjardinmamaison.maison-travaux.fr
CHR HomePage: Default -> hxxp://google/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxps://www.google.com/"
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-30]
CHR Extension: (Nebula) - C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlmflgnnmmojlnbmaokpfcjdkhkjbnok [2020-10-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\InfoWare31\AppData\Local\Google\Chrome\User Data\System Profile [2020-10-31]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
Opera:
=======
OPR Profile: C:\Users\InfoWare31\AppData\Roaming\Opera Software\Opera Stable [2021-11-10]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 agent_ovpnconnect; C:\Program Files\OpenVPN Connect\agent_ovpnconnect_1647517251935.exe [3196928 2022-03-17] () [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-12] (Microsoft Corporation -> Microsoft Corporation)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-15] (Epic Games Inc. -> Epic Games, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [225368 2022-08-14] (HP Inc. -> HP Inc.)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [22174424 2021-12-03] (LLC Mail.Ru -> LLC Mail.Ru)
R2 ovpnhelper_service; C:\Program Files\OpenVPN Connect\ovpnhelper_service.exe [3021824 2022-03-17] () [Fichier non signé]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2021-06-23] (Even Balance, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35240 2022-07-19] (SteelSeries ApS -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\NisSrv.exe [3125128 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.5-0\MsMpEng.exe [133560 2022-08-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BEService; "C:\Program Files (x86)\Common Files\BattlEye\BEService.exe" [X]
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
S3 EasyAntiCheat_EOS; "C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_47917a79b8c7fd22\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-08-02] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 MpKsl57d9402f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CBEF96EE-2E8C-4FCE-9CFC-48C765D2A1CF}\MpKslDrv.sys [141576 2022-09-04] (Microsoft Windows -> Microsoft Corporation)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [21413808 2021-12-03] (LLC Mail.Ru -> LLC Mail.Ru)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [86632 2020-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46896 2017-12-15] (SteelSeries ApS -> )
R3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [43960 2022-07-06] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_ab95c13003d9c50f\SteelSeries-Sonar-VAD.sys [92912 2022-07-18] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
R3 tap_ovpnconnect; C:\WINDOWS\System32\drivers\tap_ovpnconnect.sys [40128 2022-03-17] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-08-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-08-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94456 2022-08-16] (Microsoft Windows -> Microsoft Corporation)
S3 wtbt; \??\e:\jeux\steamapps\common\super people playtest\engine\binaries\thirdparty\wondertrust\wtdrv64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-04 19:26 - 2022-09-04 19:27 - 000000000 ____D C:\FRST
2022-09-04 19:20 - 2022-09-04 19:25 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\ZHP
2022-09-04 19:20 - 2022-09-04 19:20 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\ZHP
2022-09-01 12:53 - 2022-09-01 12:53 - 000000000 ____D C:\Users\InfoWare31\OneDrive\Documents\Call of Duty Modern Warfare
2022-09-01 12:26 - 2022-09-04 11:39 - 103546880 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-09-01 12:22 - 2022-09-01 12:26 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-09-01 11:36 - 2022-09-01 11:37 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-09-01 11:36 - 2022-09-01 11:36 - 004838352 _____ (Blizzard Entertainment) C:\Users\InfoWare31\Downloads\Battle.net-Setup (1).exe
2022-08-31 13:53 - 2022-08-31 13:54 - 000000000 ____D C:\Users\InfoWare31\OneDrive\Documents\Marvel's Spider-Man Remastered
2022-08-31 13:53 - 2022-08-31 13:53 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Insomniac Games
2022-08-31 13:53 - 2022-08-31 13:53 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\FLT
2022-08-31 13:53 - 2022-08-31 13:53 - 000000000 ____D C:\Users\InfoWare31\.insomniac
2022-08-31 13:51 - 2022-08-31 13:51 - 000000936 _____ C:\Users\InfoWare31\Desktop\Marvel’s Spider-Man Remastered.lnk
2022-08-31 12:11 - 2022-08-31 12:11 - 000070717 _____ C:\Users\InfoWare31\Downloads\Marvels_Spider-Man_Remastered-FLT.torrent
2022-08-31 12:11 - 2022-08-31 12:11 - 000000000 ____D C:\Users\InfoWare31\AppData\LocalLow\uTorrent.WebView2
2022-08-31 12:08 - 2022-08-31 12:08 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-08-31 12:06 - 2022-07-22 06:25 - 000043184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-08-31 12:05 - 2022-09-01 11:35 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\uTorrent Web
2022-08-31 12:05 - 2022-08-31 12:05 - 000001890 _____ C:\Users\InfoWare31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2022-08-31 12:04 - 2022-07-28 06:50 - 000771568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-08-31 12:04 - 2022-07-28 06:47 - 005735944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-08-31 12:03 - 2022-07-28 06:53 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-08-31 12:03 - 2022-07-28 06:53 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-08-31 12:03 - 2022-07-28 06:53 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-08-31 12:03 - 2022-07-28 06:53 - 001471984 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001432328 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001432328 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001213424 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001145592 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-08-31 12:03 - 2022-07-28 06:53 - 001145592 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-08-31 12:03 - 2022-07-28 06:50 - 000865776 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-08-31 12:03 - 2022-07-28 06:50 - 000687624 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-08-31 12:03 - 2022-07-28 06:49 - 002127872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-08-31 12:03 - 2022-07-28 06:49 - 001536512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-08-31 12:03 - 2022-07-28 06:49 - 001182720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-08-31 12:03 - 2022-07-28 06:49 - 000714760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-08-31 12:03 - 2022-07-28 06:48 - 010269680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 008803848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 005362696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 003066888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 001607680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 001059320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-08-31 12:03 - 2022-07-28 06:48 - 000456200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-08-31 12:03 - 2022-07-28 06:47 - 000853000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-08-31 12:03 - 2022-07-28 06:45 - 006367432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-08-31 12:03 - 2022-07-22 06:25 - 000093241 _____ C:\WINDOWS\system32\nvinfo.pb
2022-08-31 12:01 - 2022-08-31 12:02 - 822556856 _____ (NVIDIA Corporation) C:\Users\InfoWare31\Downloads\516.94-desktop-win10-win11-64bit-international-dch-whql.exe
2022-08-25 15:05 - 2022-08-25 15:05 - 000078414 _____ C:\Users\InfoWare31\Downloads\Banquejustificatif.pdf
2022-08-25 15:01 - 2022-08-25 15:01 - 000468753 _____ C:\Users\InfoWare31\Downloads\cessation.20bc4a5d.pdf
2022-08-25 14:23 - 2022-08-25 14:23 - 000053207 _____ C:\Users\InfoWare31\Downloads\doc8198.pdf
2022-08-25 14:18 - 2022-08-25 14:18 - 000150864 _____ C:\Users\InfoWare31\Downloads\OSCAISS_DPP_editionRib (1).pdf
2022-08-25 14:17 - 2022-08-25 14:17 - 000150861 _____ C:\Users\InfoWare31\Downloads\OSCAISS_DPP_editionRib.pdf
2022-08-25 14:15 - 2022-08-25 14:15 - 000235053 _____ C:\Users\InfoWare31\Downloads\DownloadDocument.pdf
2022-08-15 06:06 - 2022-08-15 06:06 - 000457007 _____ C:\Users\InfoWare31\Downloads\@marionclz • Photos et vidéos Instagram.html
2022-08-15 06:06 - 2022-08-15 06:06 - 000000000 ____D C:\Users\InfoWare31\Downloads\@marionclz • Photos et vidéos Instagram_files
2022-08-15 06:01 - 2022-09-02 15:14 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Pro Cycling Manager 2022
2022-08-13 21:53 - 2022-08-13 21:53 - 000374284 _____ C:\Users\InfoWare31\Downloads\Ordo-B.pdf
2022-08-13 13:59 - 2022-08-13 13:59 - 000035652 _____ C:\Users\InfoWare31\Downloads\20220427_103102-avec compression.pdf
2022-08-13 13:57 - 2022-08-13 13:57 - 001958247 _____ C:\Users\InfoWare31\Downloads\20220427_103102.pdf
2022-08-13 13:50 - 2022-08-13 13:50 - 000066390 _____ C:\Users\InfoWare31\Downloads\attestationTitulaireContrat (3).pdf
2022-08-12 13:46 - 2022-08-12 13:46 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-08-12 13:46 - 2022-08-12 13:46 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-08-12 13:45 - 2022-08-12 13:45 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-12 13:45 - 2022-08-12 13:45 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-08-12 13:45 - 2022-08-12 13:45 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-12 13:45 - 2022-08-12 13:45 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-12 13:45 - 2022-08-12 13:45 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-08-12 13:45 - 2022-08-12 13:45 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-12 13:26 - 2022-08-12 13:26 - 000000000 ___HD C:\$WinREAgent
2022-08-05 12:00 - 2022-08-05 12:00 - 000022338 _____ C:\Users\InfoWare31\Downloads\AA1_35441165_306_BMX_31_68092045.pdf
2022-08-02 15:26 - 2022-09-01 12:53 - 000000637 _____ C:\Users\Public\Desktop\Call of Duty Modern Warfare.lnk
2022-08-02 15:26 - 2022-08-02 15:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare
2022-08-02 13:48 - 2022-07-28 06:48 - 000845312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-07-27 10:48 - 2022-07-27 10:48 - 000470519 _____ C:\Users\InfoWare31\Downloads\596839_BE_0_71685_6300301000.pdf
2022-07-25 16:02 - 2022-07-25 16:02 - 000060412 _____ C:\Users\InfoWare31\Downloads\doc15.pdf
2022-07-22 17:14 - 2022-07-22 17:14 - 000000000 ____D C:\Users\InfoWare31\AppData\LocalLow\Redbeet Interactive
2022-07-18 14:29 - 2022-07-18 14:30 - 000407556 _____ C:\Users\InfoWare31\Downloads\E-billet.pdf
2022-07-18 13:52 - 2022-07-18 13:52 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Pro Cycling Manager 2017
2022-07-18 13:19 - 2022-08-13 00:00 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Pro Cycling Manager 2020
2022-07-16 15:26 - 2022-07-16 15:26 - 000039919 _____ C:\Users\InfoWare31\Downloads\MME GUIMARES.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039890 _____ C:\Users\InfoWare31\Downloads\MME GINESTE.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039875 _____ C:\Users\InfoWare31\Downloads\MME LEBE.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039872 _____ C:\Users\InfoWare31\Downloads\MME BENIDIRI.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039867 _____ C:\Users\InfoWare31\Downloads\MME SANCHEZ.pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039867 _____ C:\Users\InfoWare31\Downloads\MME SANCHEZ (1).pdf
2022-07-16 15:26 - 2022-07-16 15:26 - 000039716 _____ C:\Users\InfoWare31\Downloads\MR RUBIO.pdf
2022-07-13 16:19 - 2022-07-13 16:19 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-13 16:19 - 2022-07-13 16:19 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-13 16:19 - 2022-07-13 16:19 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-13 16:19 - 2022-07-13 16:19 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-13 16:19 - 2022-07-13 16:19 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-13 16:18 - 2022-07-13 16:18 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-13 12:55 - 2022-07-13 12:55 - 000060980 _____ C:\Users\InfoWare31\Downloads\doc14.pdf
2022-07-12 15:58 - 2022-07-12 15:58 - 000072302 _____ C:\Users\InfoWare31\Downloads\IDE-PHARMA pmst ORDO_247714_optimised.pdf
2022-06-30 10:34 - 2022-06-30 10:34 - 000039899 _____ C:\Users\InfoWare31\Downloads\attestation-laberenne-quentin.pdf
2022-06-24 15:31 - 2022-06-24 15:31 - 000080823 _____ C:\Users\InfoWare31\Downloads\EREQT_1-17DPTU6ET_1-1HGI1E0TA (1).PDF
2022-06-19 16:43 - 2022-06-19 16:43 - 000479744 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2022-06-19 16:43 - 2022-06-19 16:43 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2022-06-19 16:42 - 2022-06-19 16:42 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-19 16:42 - 2022-06-19 16:42 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-19 16:42 - 2022-06-19 16:42 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-19 16:25 - 2022-08-14 21:29 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-06-19 16:25 - 2022-08-14 21:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-06-19 16:24 - 2022-06-19 16:31 - 000000000 ____D C:\ProgramData\HP
2022-06-19 16:24 - 2022-02-24 02:44 - 000686360 _____ (HP Inc., LP) C:\WINDOWS\system32\HPWia2Drv.dll
2022-06-19 16:24 - 2022-02-24 02:43 - 007419672 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_x64.dll
2022-06-19 16:24 - 2022-02-24 02:43 - 005198640 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPScanTEDrv.dll
2022-06-19 16:24 - 2022-02-24 02:43 - 001350392 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_x64_DiscoveryLibDyn.dll
2022-06-19 16:24 - 2022-02-24 02:43 - 000983304 _____ (HP Inc.) C:\WINDOWS\SysWOW64\DiscoveryLibDyn.dll
2022-06-19 16:24 - 2022-02-24 02:33 - 000003487 _____ C:\WINDOWS\SysWOW64\HPScanDrvConfig.xml
2022-06-19 16:24 - 2022-02-24 02:33 - 000003487 _____ C:\WINDOWS\system32\HPScanDrvConfig.xml
2022-06-11 08:50 - 2022-06-11 08:50 - 000165078 _____ C:\Users\InfoWare31\Downloads\23YS2RP3ETETRP_8R42357920211_ReturnNote.pdf
2022-06-09 21:45 - 2022-06-09 21:45 - 000114163 _____ C:\Users\InfoWare31\Downloads\garorock-2022-pass-2-jours-jeudi-vendredi-tickets-79931626.pdf
2022-06-09 21:44 - 2022-06-09 21:44 - 001555685 _____ C:\Users\InfoWare31\Downloads\CNI 1.pdf
2022-06-09 21:44 - 2022-06-09 21:44 - 001407701 _____ C:\Users\InfoWare31\Downloads\CNI 2.pdf
2022-06-09 21:36 - 2022-06-09 21:36 - 000026434 _____ C:\Users\InfoWare31\Downloads\South Africa (3).ovpn
2022-06-09 21:36 - 2022-06-09 21:36 - 000026433 _____ C:\Users\InfoWare31\Downloads\India (V2) (5).ovpn
2022-06-09 21:36 - 2022-06-09 21:36 - 000026425 _____ C:\Users\InfoWare31\Downloads\Israel (3).ovpn
2022-06-09 10:58 - 2022-06-09 10:58 - 000059285 _____ C:\Users\InfoWare31\Downloads\XTSINDIVI_00004779.pdf
2022-06-09 10:35 - 2022-06-09 10:35 - 000080823 _____ C:\Users\InfoWare31\Downloads\EREQT_1-17DPTU6ET_1-1HGI1E0TA.PDF
2022-06-09 10:01 - 2021-10-08 11:00 - 000167544 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2022-06-08 20:34 - 2022-06-08 20:34 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-06-08 20:34 - 2022-06-08 20:34 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-04 19:24 - 2020-06-11 15:57 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-04 19:21 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-04 19:19 - 2020-12-09 13:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-04 18:34 - 2020-07-14 17:11 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 18:34 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-04 18:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-04 18:28 - 2020-12-09 14:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-04 18:28 - 2020-12-09 13:59 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-04 18:28 - 2020-03-05 13:13 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-04 11:39 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-03 13:58 - 2021-11-19 23:13 - 000153040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 002835920 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000443856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000198120 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-09-03 13:58 - 2021-06-12 13:32 - 000067024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-09-03 13:58 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-02 22:19 - 2020-06-11 16:18 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-02 15:14 - 2020-06-11 16:56 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\D3DSCache
2022-09-01 13:21 - 2020-06-11 13:58 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\Battle.net
2022-09-01 11:37 - 2021-04-22 15:27 - 000000946 _____ C:\Users\Public\Desktop\Battle.net.lnk
2022-09-01 11:35 - 2022-04-17 15:24 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\OpenVPN Connect
2022-09-01 11:35 - 2020-06-11 17:44 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\CrashDumps
2022-09-01 11:33 - 2020-03-05 13:07 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\Packages
2022-09-01 11:28 - 2020-10-13 14:54 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\BitTorrentHelper
2022-09-01 11:28 - 2020-03-05 13:08 - 000000000 ___RD C:\Users\InfoWare31\OneDrive
2022-09-01 10:04 - 2021-06-21 20:13 - 000000000 ____D C:\ProgramData\Origin
2022-09-01 09:56 - 2021-10-16 15:58 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\WhatsApp
2022-09-01 09:56 - 2021-10-16 15:58 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\WhatsApp
2022-08-31 19:02 - 2020-10-13 14:53 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\uTorrent
2022-08-31 19:02 - 2020-06-11 17:07 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\discord
2022-08-31 18:53 - 2020-09-24 18:06 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\Discord
2022-08-31 13:53 - 2020-12-09 14:00 - 000000000 ____D C:\Users\InfoWare31
2022-08-31 13:20 - 2021-03-06 01:08 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\NVIDIA
2022-08-31 12:39 - 2021-09-07 16:48 - 000000000 ____D C:\Users\InfoWare31\Games
2022-08-30 20:08 - 2021-10-31 18:54 - 000000000 ____D C:\Users\InfoWare31\AppData\Local\Ubisoft Game Launcher
2022-08-30 13:19 - 2020-12-09 14:06 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 13:19 - 2020-12-09 14:06 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-29 22:03 - 2021-12-12 01:26 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1831518587-2530328139-2005501424-1001
2022-08-29 22:03 - 2020-12-09 14:06 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1831518587-2530328139-2005501424-1001
2022-08-29 22:03 - 2020-12-09 14:00 - 000002436 _____ C:\Users\InfoWare31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-17 14:37 - 2020-12-09 14:06 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 14:37 - 2020-12-09 14:06 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-16 20:50 - 2021-12-13 17:14 - 000000659 _____ C:\Users\Public\Desktop\FIFA 22.lnk
2022-08-16 01:33 - 2020-03-05 16:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-08-14 15:57 - 2020-12-09 12:45 - 000000000 ____D C:\Program Files\Microsoft Office
2022-08-13 23:54 - 2020-08-07 05:03 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-08-13 23:53 - 2021-10-08 22:36 - 000000000 ____D C:\Users\InfoWare31\AppData\Roaming\EasyAntiCheat
2022-08-12 21:04 - 2020-12-09 14:08 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-12 21:04 - 2019-12-07 16:50 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-12 21:04 - 2019-12-07 16:50 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-12 16:27 - 2020-12-09 13:59 - 000443664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-12 16:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-12 16:26 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-12 16:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-12 13:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-12 13:44 - 2020-12-09 14:01 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-12 13:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-12 13:21 - 2020-03-05 15:32 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-12 13:19 - 2020-03-05 15:32 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2021-12-13 14:19 - 2021-12-13 14:19 - 000005190 _____ () C:\Users\InfoWare31\AppData\Local\4208131837
==================== SigCheckExt =========================
2019-03-19 06:45 - 2019-03-19 06:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionMgr.dll
2020-11-13 00:54 - 2020-11-13 00:54 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\canonurl.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMFNVSDeviceBridge.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2021-06-12 13:32 - 2022-09-03 13:58 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mitigationscanner.exe
2019-03-19 06:45 - 2019-03-19 06:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.ShellPosition.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\canonurl.dll
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{6bb9e07a-5ed0-11ea-a06c-ec20434f7366}
{1dd38fff-28fe-11ed-a047-806e6f6e6963}
{1dd39000-28fe-11ed-a047-806e6f6e6963}
{1dd39001-28fe-11ed-a047-806e6f6e6963}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume5
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {e0432868-3a15-11eb-96e2-f81591c414a6}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {1dd38fff-28fe-11ed-a047-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {1dd39000-28fe-11ed-a047-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {1dd39001-28fe-11ed-a047-806e6f6e6963}
description UEFI:Network Device
Application logicielle (101fffff)
--------------------------------
identificateur {6bb9e07a-5ed0-11ea-a06c-ec20434f7366}
description Hard Drive
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {e043286a-3a15-11eb-96e2-f81591c414a6}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {e0432868-3a15-11eb-96e2-f81591c414a6}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {e043286a-3a15-11eb-96e2-f81591c414a6}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{e043286b-3a15-11eb-96e2-f81591c414a6}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{e043286b-3a15-11eb-96e2-f81591c414a6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {e0432868-3a15-11eb-96e2-f81591c414a6}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {e043286a-3a15-11eb-96e2-f81591c414a6}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume5
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {e043286b-3a15-11eb-96e2-f81591c414a6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================