Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-11-2022 Exécuté par Mutch (administrateur) sur DESKTOP-8B0VL8P (HP HP Pavilion Gaming Laptop 15-cx0xxx) (06-11-2022 18:46:53) Exécuté depuis C:\Users\Mutch\Downloads Profils chargés: Mutch Plate-forme: Microsoft Windows 11 Famille Version 22H2 22623.870 (X64) Langue: Français (France) Navigateur par défaut: Opera Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <3> (C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_421.20070.755.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.35\msedgewebview2.exe <6> (C:\Users\Mutch\AppData\Local\Programs\Opera GX\opera.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (C:\Users\Mutch\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Mutch\AppData\Local\Programs\Opera GX\91.0.4516.106\opera_crashreporter.exe (C:\Windows\UUS\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Windows (R) – Fournisseur DDK Windows 7) C:\Windows\UUS\amd64\MoNotificationUx.exe (Discord Inc. -> Discord Inc.) C:\Users\Mutch\AppData\Local\Discord\app-1.0.9007\Discord.exe <6> (DriverStore\FileRepository\cui_dch.inf_amd64_da4f9f4b5cfd90a2\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_da4f9f4b5cfd90a2\igfxEM.exe (ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDTouch.exe (ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe (ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrlHelper.exe (explorer.exe ->) (BUREL VINCENT -> VB-AUDIO Software) C:\Program Files (x86)\VB\Voicemeeter\voicemeeter.exe (Opera Norway AS -> Opera Software) C:\Users\Mutch\AppData\Local\Programs\Opera GX\opera.exe <20> (services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\61_hp_coffeelake_hws_iigd_dch.inf_amd64_8689aabe3f30acb1\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\61_hp_coffeelake_hws_iigd_dch.inf_amd64_8689aabe3f30acb1\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_da4f9f4b5cfd90a2\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82419944dda69b12\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_4899b3da51f55322\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\NisSrv.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_08d48be9448ea4d9\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.yourphone_1.22092.201.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_421.20070.755.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (svchost.exe ->) (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\XboxGameBarSpotify.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.35\Installer\setup.exe [3361704 2022-11-05] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2790586827-2578072160-1583838447-1001\...\Run: [MicrosoftEdgeAutoLaunch_1EE0B3D0DFB3E670CA7FBC4D57BCA695] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891624 2022-11-03] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2790586827-2578072160-1583838447-1001\...\Run: [Discord] => C:\Users\Mutch\AppData\Local\Discord\Update.exe [1525016 2022-10-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-2790586827-2578072160-1583838447-1001\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [15841792 2022-01-26] () [Fichier non signé] HKU\S-1-5-21-2790586827-2578072160-1583838447-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802584 2022-09-22] (Overwolf Ltd -> Overwolf Ltd.) Startup: C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voicemeeter (VB-Audio).LNK [2022-10-29] ShortcutTarget: Voicemeeter (VB-Audio).LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeter.exe (BUREL VINCENT -> VB-AUDIO Software) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc Task: {2115325F-60EF-4FAD-829D-B2072B653FC6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) "C:\Windows\System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask" n'a pas pu être déverrouillé. <==== ATTENTION Task: {27CE9D59-9D48-4D29-99BC-64657AEBA494} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask Task: {3F3E4270-38B0-4315-8FC0-9F095A8769A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {40F3D2D7-F8B9-48F6-AC8F-847F104C07FD} - System32\Tasks\V30-Marquee-TaskPlan => C:\Program Files\KLIM AIM Gaming Mouse\KLIM AIM Gaming Mouse.exe [958976 2017-04-12] (Klim & Co limited) [Fichier non signé] Task: {6F19BD6D-9C0C-4370-8C7F-5A0DB56065DA} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [94208 2022-10-28] (Microsoft Windows -> ) Task: {72569889-A790-482F-8C5F-4F78A33C7654} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {76CDB934-E168-4D41-B639-699530DC5004} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {895895E4-E038-4AD9-A428-B0CF9F1063DB} - System32\Tasks\RtHDVBg_Session => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {B80E8DD3-0AEE-4A00-9EF6-6E01A518114D} - System32\Tasks\HidHide_Updater => C:\Program Files\Nefarius Software Solutions\HidHide\HidHide_Updater.exe [1041856 2022-06-27] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.) Task: {C15A9054-AD4A-4981-B755-34866183D4CA} - System32\Tasks\ViGEmBus_Updater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBus_Updater.exe [1117096 2022-09-27] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.) Task: {D6823907-6C3D-4ABC-A101-B882FD46EDBD} - System32\Tasks\Opera GX scheduled Autoupdate 1666976026 => C:\Users\Mutch\AppData\Local\Programs\Opera GX\launcher.exe [2471880 2022-10-28] (Opera Norway AS -> Opera Software) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier) Task: {EB65A95F-429A-464F-8516-9220409E811B} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-09-22] (Overwolf Ltd -> Overwolf LTD) Task: {F0B61D44-1ECB-4F45-BD3A-6A6A48AC3673} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F9BF65D1-9E56-4796-8F5E-76038F4F319C} - System32\Tasks\RtHDVBg_HP_VOICEMODE_FOR_SKYPE => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{0c506604-461e-45ee-a8d0-4fe6ab7d6f4b}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Mutch\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-03] Edge HomePage: Default -> hxxp://google.fr/ Edge Extension: (Twitch Auto Bonus) - C:\Users\Mutch\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cdncjdpjmpiopiopbgfmlamddfclfgck [2022-10-30] Edge Extension: (Sardalert) - C:\Users\Mutch\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elnpfaoipdfdhikjacbpcfhpnehjjaii [2022-10-30] Edge Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Mutch\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hgfjoaookbahbhinopgfoiajfijfcdhm [2022-10-30] Edge Extension: (BetterTTV) - C:\Users\Mutch\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icllegkipkooaicfmdfaloehobmglglb [2022-10-30] Edge Extension: (YouTube NonStop) - C:\Users\Mutch\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nlkaejimjacpillmajjnopmpbkbnocid [2022-10-30] Edge Extension: (I don't care about cookies) - C:\Users\Mutch\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oholpbloipjbbhlhohaebmieiiieioal [2022-10-31] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-2790586827-2578072160-1583838447-1001) Opera GXStable - "C:\Users\Mutch\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [806912 2022-10-28] (Microsoft Windows -> Microsoft Corporation) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.) S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-10-28] (Microsoft Windows -> Microsoft Corporation) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-09-22] (Overwolf Ltd -> Overwolf LTD) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2720088 2022-11-01] (Rockstar Games, Inc. -> Rockstar Games) R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-10-28] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\NisSrv.exe [3191224 2022-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe [133536 2022-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) R3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137568 2022-10-28] (Microsoft Windows -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_08d48be9448ea4d9\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_08d48be9448ea4d9\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AmPeStorU; C:\WINDOWS\system32\drivers\AmPeStorU.sys [242984 2021-06-24] (Alcorlink Corp. -> ) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91504 2022-10-28] (Microsoft Windows -> Microsoft Corporation) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2021-08-02] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R3 HidHide; C:\WINDOWS\System32\drivers\HidHide.sys [66584 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) R3 MpKsl3be7595a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C4E8A2E5-052A-4F83-8A6D-7E672536A65C}\MpKslDrv.sys [228632 2022-11-06] (Microsoft Windows -> Microsoft Corporation) S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.) S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> ) R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_75af912c76141870\rt68cx21x64.sys [656288 2022-10-17] (Realtek Semiconductor Corp. -> Realtek) R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0228; C:\WINDOWS\System32\drivers\RzDev_0228.sys [56136 2021-03-22] (Razer USA Ltd. -> Razer Inc) S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64872 2019-09-26] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2019-08-05] (Vincent Burel -> Windows (R) Win 7 DDK provider) R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469280 2022-10-31] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-10-31] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP) R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-10-28] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-11-06 18:46 - 2022-11-06 18:47 - 000019801 _____ C:\Users\Mutch\Downloads\FRST.txt 2022-11-06 18:46 - 2022-11-06 18:47 - 000000000 ____D C:\FRST 2022-11-06 18:45 - 2022-11-06 18:45 - 002374656 _____ (Farbar) C:\Users\Mutch\Downloads\FRST64.exe 2022-11-06 18:36 - 2022-11-06 18:43 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\ZHP 2022-11-06 18:36 - 2022-11-06 18:36 - 000000000 ____D C:\Users\Mutch\AppData\Local\ZHP 2022-11-06 18:35 - 2022-11-06 18:35 - 003509960 _____ (Nicolas Coolman) C:\Users\Mutch\Downloads\ZHPSuite.exe 2022-11-06 03:50 - 2022-11-06 03:50 - 008995336 _____ (Piriform Software Ltd) C:\Users\Mutch\Downloads\spsetup132.exe 2022-11-06 03:50 - 2022-11-06 03:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2022-11-06 03:50 - 2022-11-06 03:50 - 000000000 ____D C:\Program Files\Speccy 2022-11-05 09:57 - 2022-11-05 09:57 - 000007599 _____ C:\Users\Mutch\AppData\Local\Resmon.ResmonCfg 2022-11-05 03:54 - 2022-11-05 03:56 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-03 08:42 - 2022-11-03 08:43 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\MODSKIN_12.21 2022-11-03 01:44 - 2022-11-03 01:44 - 000003766 _____ C:\WINDOWS\system32\Tasks\HidHide_Updater 2022-11-03 01:44 - 2022-11-03 01:44 - 000001348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HidHide Configuration Client.lnk 2022-11-02 06:44 - 2022-11-02 06:44 - 000003668 _____ C:\WINDOWS\system32\Tasks\V30-Marquee-TaskPlan 2022-11-02 06:43 - 2022-11-02 06:43 - 002955526 _____ C:\Users\Mutch\Downloads\KLIM-AIM-Gaming-Mouse.zip 2022-11-02 06:43 - 2022-11-02 06:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KLIM AIM Gaming Mouse 3.0 2022-11-02 06:43 - 2022-11-02 06:43 - 000000000 ____D C:\Program Files\KLIM AIM Gaming Mouse 2022-11-02 06:43 - 2022-11-02 06:43 - 000000000 ____D C:\Program Files (x86)\KLIM AIM Gaming Mouse 2022-11-02 06:43 - 2017-04-12 16:40 - 000003596 _____ C:\WINDOWS\system32\GmTaskPlan64.xml 2022-11-02 06:16 - 2022-11-06 17:03 - 000000000 ____D C:\Users\Mutch\AppData\Local\CrashDumps 2022-11-01 10:00 - 2022-11-04 00:00 - 000000000 ____D C:\ProgramData\Nefarius Software Solutions e.U 2022-11-01 09:39 - 2022-11-01 09:39 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\NVIDIA 2022-11-01 09:35 - 2022-11-01 09:35 - 000004410 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task 2022-11-01 09:35 - 2022-11-01 09:35 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf 2022-11-01 09:34 - 2022-11-01 09:35 - 000000000 ____D C:\ProgramData\Overwolf 2022-11-01 09:34 - 2022-11-01 09:35 - 000000000 ____D C:\Program Files (x86)\Overwolf 2022-11-01 09:32 - 2022-11-01 09:39 - 000000000 ____D C:\Users\Mutch\AppData\Local\Overwolf 2022-11-01 09:31 - 2022-11-01 09:31 - 001256600 _____ (Overwolf Ltd.) C:\Users\Mutch\Downloads\Porofessor.gg - Installer.exe 2022-10-31 14:27 - 2022-10-31 14:27 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\modest-menu_v0.9.6_[unknowncheats.me]_ 2022-10-31 14:17 - 2022-11-03 01:44 - 000000000 ____D C:\Program Files\Nefarius Software Solutions 2022-10-31 14:17 - 2022-10-31 14:17 - 000003810 _____ C:\WINDOWS\system32\Tasks\ViGEmBus_Updater 2022-10-31 14:14 - 2022-11-06 08:47 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\DS4Windows 2022-10-31 14:12 - 2022-10-31 14:13 - 000000000 ____D C:\Program Files\dotnet 2022-10-31 14:12 - 2022-10-31 14:12 - 057361520 _____ (Microsoft Corporation) C:\Users\Mutch\Downloads\windowsdesktop-runtime-6.0.10-win-x64.exe 2022-10-31 14:11 - 2022-10-31 14:11 - 003681832 _____ C:\Users\Mutch\Downloads\DS4Windows_3.1.9_x64.zip 2022-10-31 14:11 - 2022-10-31 14:11 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\DS4Windows_3.1.9_x64 2022-10-31 14:10 - 2022-10-31 14:10 - 000810954 _____ C:\WINDOWS\system32\perfh00C.dat 2022-10-31 14:10 - 2022-10-31 14:10 - 000157390 _____ C:\WINDOWS\system32\perfc00C.dat 2022-10-31 13:48 - 2022-10-31 13:48 - 013832084 _____ C:\Users\Mutch\OneDrive\Documents\modest-menu_v0.9.6_[unknowncheats.me]_.zip 2022-10-30 17:21 - 2022-10-30 17:21 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2022-10-30 17:19 - 2022-10-31 13:49 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\Rockstar Games 2022-10-30 17:19 - 2022-10-31 13:49 - 000000000 ____D C:\Users\Mutch\AppData\Local\Rockstar Games 2022-10-30 17:18 - 2022-10-30 17:18 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2022-10-30 17:16 - 2022-10-31 04:51 - 000000000 ____D C:\Program Files\Rockstar Games 2022-10-30 17:16 - 2022-10-30 17:21 - 000000000 ____D C:\ProgramData\Rockstar Games 2022-10-30 17:16 - 2022-10-30 17:16 - 099630936 _____ (Rockstar Games Inc.) C:\Users\Mutch\Downloads\Rockstar-Games-Launcher.exe 2022-10-30 08:57 - 2022-10-30 08:57 - 001332574 _____ C:\Users\Mutch\Downloads\WorkshopMapLoader_v1.15.2.1_release.zip 2022-10-30 08:56 - 2022-10-30 08:56 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BakkesMod.lnk 2022-10-30 08:56 - 2022-10-30 08:56 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\bakkesmod 2022-10-30 08:56 - 2022-10-30 08:56 - 000000000 ____D C:\Program Files\BakkesMod 2022-10-30 08:55 - 2022-10-30 08:55 - 008167702 _____ C:\Users\Mutch\Downloads\BakkesModSetup.zip 2022-10-30 02:33 - 2022-11-03 08:43 - 000000000 ____D C:\Fraps 2022-10-29 19:05 - 2022-10-29 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2022-10-29 19:05 - 2022-10-29 19:05 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games 2022-10-29 19:05 - 2022-10-29 19:05 - 000000000 ____D C:\Riot Games 2022-10-29 18:54 - 2022-11-06 09:44 - 000000000 ____D C:\ProgramData\Riot Games 2022-10-29 18:54 - 2022-10-29 19:36 - 000000000 ____D C:\Users\Mutch\AppData\Local\Riot Games 2022-10-29 18:53 - 2022-10-29 18:53 - 069873744 _____ (Riot Games, Inc.) C:\Users\Mutch\Downloads\Install League of Legends euw.exe 2022-10-29 15:07 - 2022-10-29 15:07 - 000000000 ____D C:\Users\Mutch\AppData\Local\Rocket League 2022-10-29 15:04 - 2022-10-29 15:04 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\My Games 2022-10-29 14:51 - 2022-11-05 14:14 - 000007531 _____ C:\Users\Mutch\AppData\Roaming\VoiceMeeterDefault.xml 2022-10-29 14:50 - 2022-10-29 14:51 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\Voicemeeter 2022-10-29 14:39 - 2022-10-29 14:39 - 000000000 ____D C:\Users\Mutch\AppData\Local\DBG 2022-10-29 14:33 - 2022-10-29 14:33 - 000000000 ____D C:\Users\Mutch\Downloads\VBCABLE_Driver_Pack43 2022-10-29 14:33 - 2022-10-29 14:33 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio 2022-10-29 14:33 - 2022-10-29 14:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio 2022-10-29 14:33 - 2022-10-29 14:33 - 000000000 ____D C:\Program Files\VB 2022-10-29 14:33 - 2022-10-29 14:33 - 000000000 ____D C:\Program Files (x86)\VB 2022-10-29 14:30 - 2022-10-29 14:30 - 001139147 _____ C:\Users\Mutch\Downloads\VBCABLE_Driver_Pack43.zip 2022-10-29 14:29 - 2022-10-29 14:29 - 011739800 _____ (VB-AUDIO Software) C:\Users\Mutch\Downloads\VoicemeeterSetup.exe 2022-10-28 18:16 - 2022-10-28 18:16 - 000000000 ____D C:\Program Files\Epic Games 2022-10-28 18:15 - 2022-10-28 18:15 - 000000000 ____D C:\Users\Mutch\AppData\Local\Comms 2022-10-28 18:10 - 2022-11-03 01:43 - 000000000 ____D C:\ProgramData\Package Cache 2022-10-28 18:10 - 2022-10-28 18:10 - 000000000 ____D C:\Users\Mutch\AppData\Local\NVIDIA Corporation 2022-10-28 18:10 - 2022-10-28 18:10 - 000000000 ____D C:\Users\Mutch\AppData\Local\CEF 2022-10-28 18:08 - 2022-10-28 18:08 - 000000000 ____D C:\Users\Mutch\AppData\Local\UnrealEngineLauncher 2022-10-28 18:08 - 2022-10-28 18:08 - 000000000 ____D C:\Users\Mutch\AppData\Local\OneDrive 2022-10-28 18:07 - 2022-10-29 15:07 - 000000000 ____D C:\Users\Mutch\AppData\Local\Epic Games 2022-10-28 18:07 - 2022-10-29 15:05 - 000000000 ____D C:\Users\Mutch\AppData\Local\EpicGamesLauncher 2022-10-28 18:07 - 2022-10-28 18:07 - 000000000 ____D C:\Users\Mutch\AppData\Local\UnrealEngine 2022-10-28 18:05 - 2022-11-06 18:45 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\discord 2022-10-28 18:05 - 2022-10-28 18:05 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2022-10-28 18:03 - 2022-11-06 18:43 - 000000000 ____D C:\Users\Mutch\AppData\Local\Discord 2022-10-28 18:03 - 2022-10-28 18:03 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2022-10-28 18:02 - 2022-10-28 18:10 - 000000000 ____D C:\ProgramData\Epic 2022-10-28 18:02 - 2022-10-28 18:06 - 000000000 ____D C:\Program Files (x86)\Epic Games 2022-10-28 18:02 - 2022-10-28 18:05 - 000000000 ____D C:\Users\Mutch\AppData\Local\SquirrelTemp 2022-10-28 18:01 - 2022-10-28 18:01 - 083251992 _____ (Discord Inc.) C:\Users\Mutch\Downloads\DiscordSetup.exe 2022-10-28 17:58 - 2022-10-28 18:01 - 000000000 ____D C:\Users\Mutch\AppData\Local\Publishers 2022-10-28 17:54 - 2022-10-28 17:54 - 000000000 ____D C:\Users\Mutch\AppData\Local\Opera Software 2022-10-28 17:53 - 2022-10-28 17:53 - 000004244 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1666976026 2022-10-28 17:53 - 2022-10-28 17:53 - 000001432 _____ C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk 2022-10-28 17:52 - 2022-10-28 17:53 - 159928320 _____ C:\Users\Mutch\Downloads\EpicInstaller-14.2.1.msi 2022-10-28 17:52 - 2022-10-28 17:52 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\Opera Software 2022-10-28 17:51 - 2022-10-28 17:52 - 003530144 _____ (Opera Software) C:\Users\Mutch\Downloads\OperaGXSetup.exe 2022-10-28 17:44 - 2022-10-28 17:44 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\Overwatch 2022-10-28 17:44 - 2022-10-28 17:44 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\Modèles Office personnalisés 2022-10-28 17:44 - 2022-10-28 17:44 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\League of Legends 2022-10-28 17:44 - 2022-10-28 17:44 - 000000000 ____D C:\Users\Mutch\AppData\Local\VirtualStore 2022-10-28 17:44 - 2018-11-03 11:54 - 000008881 _____ C:\Users\Mutch\OneDrive\Documents\Quel sont les procédés comiques.odt 2022-10-28 17:43 - 2022-11-02 21:38 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2790586827-2578072160-1583838447-1001 2022-10-28 17:43 - 2022-11-02 21:38 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2790586827-2578072160-1583838447-1001 2022-10-28 17:43 - 2022-11-02 21:38 - 000002421 _____ C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-10-28 17:43 - 2022-10-28 17:44 - 000000000 ___RD C:\Users\Mutch\OneDrive 2022-10-28 17:43 - 2022-10-28 17:44 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\Image-Line 2022-10-28 17:43 - 2022-10-28 17:43 - 000000000 ___HD C:\OneDriveTemp 2022-10-28 17:43 - 2022-10-28 17:43 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\Screencast-O-Matic 2022-10-28 17:43 - 2022-10-28 17:43 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\Enregistrements audio 2022-10-28 17:43 - 2022-10-28 17:43 - 000000000 ____D C:\Users\Mutch\OneDrive\Documents\Add-in Express 2022-10-28 17:43 - 2022-03-29 11:38 - 000000172 ____R C:\Users\Mutch\OneDrive\Documents\Ordinateur portable de Titouan.url 2022-10-28 17:43 - 2019-02-24 12:03 - 000000000 _____ C:\Users\Mutch\OneDrive\Documents\Default.rdp 2022-10-28 17:41 - 2022-10-29 14:23 - 000000000 ____D C:\Users\Mutch\AppData\Local\PlaceholderTileLogoFolder 2022-10-28 17:41 - 2022-10-28 17:41 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2022-10-28 17:40 - 2022-10-28 17:40 - 000000000 ____D C:\Users\Mutch\AppData\LocalLow\Intel 2022-10-28 17:39 - 2022-11-06 18:07 - 000000000 ____D C:\Users\Mutch\AppData\Local\D3DSCache 2022-10-28 17:39 - 2022-11-05 18:17 - 000000000 __SHD C:\Users\Mutch\IntelGraphicsProfiles 2022-10-28 17:39 - 2022-10-29 15:08 - 000000000 ____D C:\Users\Mutch\AppData\Local\NVIDIA 2022-10-28 17:39 - 2022-10-29 14:22 - 000000000 ____D C:\Users\Mutch\AppData\Local\ConnectedDevicesPlatform 2022-10-28 17:39 - 2022-10-28 18:28 - 000000000 ____D C:\Users\Mutch\AppData\Local\Packages 2022-10-28 17:39 - 2022-10-28 17:41 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-10-28 17:39 - 2022-10-28 17:39 - 000000000 ____D C:\Users\Mutch\AppData\Roaming\Adobe 2022-10-28 17:33 - 2022-10-30 17:26 - 000000000 ____D C:\Users\Mutch 2022-10-28 17:33 - 2022-10-28 17:33 - 000000020 ___SH C:\Users\Mutch\ntuser.ini 2022-10-28 17:33 - 2022-10-28 17:33 - 000000000 _SHDL C:\Users\Mutch\Voisinage réseau 2022-10-28 17:33 - 2022-10-28 17:33 - 000000000 _SHDL C:\Users\Mutch\Voisinage d'impression 2022-10-28 17:33 - 2022-10-28 17:33 - 000000000 _SHDL C:\Users\Mutch\Modèles 2022-10-28 17:33 - 2022-10-28 17:33 - 000000000 _SHDL C:\Users\Mutch\Mes documents 2022-10-28 17:33 - 2022-10-28 17:33 - 000000000 _SHDL C:\Users\Mutch\Menu Démarrer 2022-10-28 17:33 - 2022-10-28 17:33 - 000000000 _SHDL C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2022-10-28 17:33 - 2022-10-28 17:33 - 000000000 _SHDL C:\Users\Mutch\AppData\Local\Historique 2022-10-28 17:33 - 2022-05-07 06:19 - 000001281 _____ C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk 2022-10-28 17:33 - 2022-05-07 06:19 - 000000407 _____ C:\Users\Mutch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk 2022-10-28 13:22 - 2022-10-28 13:13 - 000000000 ____D C:\WINDOWS\Panther 2022-10-28 13:17 - 2022-10-31 14:10 - 001803994 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-10-28 13:16 - 2022-11-05 18:19 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-10-28 13:15 - 2022-10-28 18:28 - 000000000 ____D C:\ProgramData\Packages 2022-10-28 13:11 - 2022-10-28 13:11 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-10-28 13:11 - 2022-10-28 13:11 - 000133120 _____ C:\WINDOWS\SysWOW64\stordiag.exe 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Users\Default\Modèles 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Users\Default\Mes documents 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\ProgramData\Modèles 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\ProgramData\Bureau 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Program Files\Fichiers communs 2022-10-28 13:11 - 2022-10-28 13:11 - 000000000 _SHDL C:\Documents and Settings 2022-10-28 13:10 - 2022-10-28 13:10 - 000180224 _____ C:\WINDOWS\system32\stordiag.exe 2022-10-28 13:09 - 2022-10-28 13:09 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-10-28 13:09 - 2022-10-28 13:09 - 000094208 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe 2022-10-28 13:09 - 2022-10-28 13:09 - 000055160 _____ C:\WINDOWS\system32\SFAPE.dll 2022-10-28 13:09 - 2022-10-28 13:09 - 000016533 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-10-28 13:08 - 2022-10-28 13:08 - 002088744 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2022-10-28 13:06 - 2022-10-28 13:06 - 000046896 _____ C:\WINDOWS\system32\wow64base.dll 2022-10-28 13:05 - 2022-10-28 13:05 - 000098304 _____ C:\WINDOWS\system32\dplcsp.dll 2022-10-28 13:04 - 2022-10-28 13:04 - 000192512 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll 2022-10-28 13:04 - 2022-10-28 13:04 - 000062808 _____ C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe 2022-10-28 13:03 - 2022-10-28 13:03 - 000296448 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll 2022-10-28 13:02 - 2022-10-28 13:02 - 002575640 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2022-10-28 13:00 - 2022-10-28 13:00 - 000327680 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-10-28 12:59 - 2022-10-28 13:12 - 000000000 ____D C:\ProgramData\Intel 2022-10-28 12:59 - 2022-10-28 12:59 - 003849681 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip 2022-10-28 12:59 - 2022-10-28 12:59 - 000003282 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_HP_VOICEMODE_FOR_SKYPE 2022-10-28 12:59 - 2022-10-28 12:59 - 000003222 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_Session 2022-10-28 12:59 - 2022-10-28 12:59 - 000003194 _____ C:\WINDOWS\system32\Tasks\RTKCPL 2022-10-28 12:59 - 2022-10-28 12:59 - 000002074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\B&O Play Audio Control.lnk 2022-10-28 12:59 - 2022-10-28 12:59 - 000000027 _____ C:\WINDOWS\system32\Drivers\RtkR0Log.dat 2022-10-28 12:59 - 2022-10-28 12:59 - 000000000 ____D C:\WINDOWS\system32\SRSLabs 2022-10-28 12:59 - 2022-10-28 12:59 - 000000000 ____D C:\ProgramData\SoundResearch 2022-10-28 12:59 - 2022-10-28 12:59 - 000000000 ____D C:\ProgramData\Razer 2022-10-28 12:58 - 2022-11-05 14:15 - 000000000 ____D C:\ProgramData\NVIDIA 2022-10-28 12:58 - 2022-10-28 15:12 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-10-28 12:58 - 2022-10-28 13:09 - 000000000 ____D C:\ProgramData\Realtek 2022-10-28 12:58 - 2022-10-28 12:58 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2022-10-28 12:58 - 2022-10-28 12:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2022-10-28 12:58 - 2022-10-28 12:58 - 000000000 ____D C:\Program Files\Realtek 2022-10-28 12:57 - 2022-11-03 01:47 - 000000000 ____D C:\Intel 2022-10-28 12:55 - 2022-10-29 14:25 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-10-28 12:55 - 2022-10-29 14:25 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-10-28 12:54 - 2022-10-28 12:54 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2022-10-28 12:53 - 2022-11-03 01:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-10-28 12:53 - 2022-10-31 23:40 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-10-28 12:52 - 2022-11-06 01:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-10-28 12:52 - 2022-11-03 01:47 - 000012288 ___SH C:\DumpStack.log.tmp 2022-10-28 12:52 - 2022-10-28 12:52 - 000293736 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-10-28 12:52 - 2022-10-28 12:52 - 000000000 ____D C:\WINDOWS\system32\config\BFS 2022-10-28 12:52 - 2022-10-28 12:52 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2022-10-28 12:51 - 2022-10-28 12:51 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2022-10-28 12:50 - 2022-10-28 12:50 - 000000000 ____D C:\Program Files\Reference Assemblies 2022-10-28 12:50 - 2022-10-28 12:50 - 000000000 ____D C:\Program Files\MSBuild 2022-10-28 12:50 - 2022-10-28 12:50 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2022-10-28 12:50 - 2022-10-28 12:50 - 000000000 ____D C:\Program Files (x86)\MSBuild 2022-10-28 12:48 - 2022-10-28 13:14 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2022-10-28 12:48 - 2022-10-28 12:48 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp 2022-10-28 12:48 - 2022-10-28 12:48 - 000000000 ____D C:\WINDOWS\addins 2022-10-28 12:39 - 2022-10-28 17:39 - 000000000 ____D C:\Program Files (x86)\Razer 2022-10-28 12:39 - 2022-10-28 12:39 - 000000000 ____D C:\WINDOWS\system32\Intel 2022-10-28 12:39 - 2022-10-28 12:39 - 000000000 ____D C:\WINDOWS\system32\cAVS 2022-10-28 12:35 - 2022-10-28 12:35 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2022-10-28 10:57 - 2022-10-28 13:33 - 000000000 ___HD C:\$SysReset 2022-10-20 14:06 - 2022-08-09 14:23 - 000030704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvswcfilter.sys 2022-10-20 14:06 - 2022-07-14 00:32 - 000060112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys 2022-10-17 12:11 - 2022-10-17 12:11 - 011829616 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlane.sys 2022-10-17 12:11 - 2022-10-17 12:11 - 000241272 _____ C:\WINDOWS\system32\Drivers\rtldata.txt 2022-10-15 01:52 - 2022-10-11 06:00 - 001967904 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-10-15 01:52 - 2022-10-11 06:00 - 001967904 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-10-15 01:52 - 2022-10-11 06:00 - 001524488 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-10-15 01:52 - 2022-10-11 06:00 - 001524488 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-10-15 01:52 - 2022-10-11 06:00 - 001471992 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2022-10-15 01:52 - 2022-10-11 06:00 - 001432320 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-10-15 01:52 - 2022-10-11 06:00 - 001432320 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-10-15 01:52 - 2022-10-11 06:00 - 001214000 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2022-10-15 01:52 - 2022-10-11 06:00 - 001145608 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-10-15 01:52 - 2022-10-11 06:00 - 001145608 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-10-15 01:52 - 2022-10-11 05:56 - 000823312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2022-10-15 01:52 - 2022-10-11 05:53 - 005753360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2022-10-15 01:52 - 2022-10-07 04:01 - 000129000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2022-10-15 01:52 - 2022-10-07 04:01 - 000041984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll 2022-10-15 01:51 - 2022-10-11 05:56 - 056966160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2022-10-15 01:51 - 2022-10-11 05:56 - 000870928 _____ C:\WINDOWS\system32\nvofapi64.dll 2022-10-15 01:51 - 2022-10-11 05:56 - 000693760 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2022-10-15 01:51 - 2022-10-11 05:55 - 002246664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2022-10-15 01:51 - 2022-10-11 05:55 - 001653248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2022-10-15 01:51 - 2022-10-11 05:55 - 001523216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2022-10-15 01:51 - 2022-10-11 05:55 - 001261064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2022-10-15 01:51 - 2022-10-11 05:55 - 001185272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2022-10-15 01:51 - 2022-10-11 05:55 - 000987672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2022-10-15 01:51 - 2022-10-11 05:55 - 000709640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2022-10-15 01:51 - 2022-10-11 05:54 - 015218688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2022-10-15 01:51 - 2022-10-11 05:54 - 012540912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2022-10-15 01:51 - 2022-10-11 05:54 - 005429248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2022-10-15 01:51 - 2022-10-11 05:54 - 003101176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2022-10-15 01:51 - 2022-10-11 05:54 - 000457232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2022-10-15 01:51 - 2022-10-11 05:53 - 005906416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2022-10-15 01:51 - 2022-10-11 05:52 - 000853552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2022-10-15 01:51 - 2022-10-11 05:51 - 007587792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2022-10-15 01:51 - 2022-10-11 05:51 - 006457800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2022-10-15 01:51 - 2022-10-07 04:01 - 000095170 _____ C:\WINDOWS\system32\nvinfo.pb 2022-09-05 07:10 - 2022-08-24 09:15 - 000515168 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2022-09-05 07:10 - 2022-08-24 09:15 - 000455800 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2022-09-05 07:10 - 2022-08-24 09:14 - 000949096 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2022-09-05 07:10 - 2022-08-24 09:14 - 000709920 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2022-09-05 07:10 - 2022-08-24 09:13 - 000594808 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2022-09-05 07:10 - 2022-08-24 09:13 - 000455072 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2022-09-05 07:10 - 2022-08-24 09:08 - 027949080 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2022-09-05 07:10 - 2022-08-24 09:08 - 020673048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2022-09-05 07:10 - 2022-08-24 09:08 - 000468528 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2022-09-05 07:10 - 2022-08-24 09:08 - 000376368 _____ C:\WINDOWS\system32\ze_loader.dll 2022-09-05 07:10 - 2022-08-24 09:08 - 000142384 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2022-08-30 02:23 - 2022-08-30 02:23 - 000249400 _____ (Nefarius Software Solutions e.U.) C:\WINDOWS\system32\Drivers\ViGEmBus.sys 2022-08-13 15:41 - 2022-06-24 01:17 - 000172288 _____ (Razer Inc) C:\WINDOWS\system32\RazerS3CoinstallerEx.dll ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-11-06 18:38 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-06 18:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-11-06 03:51 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2022-11-05 18:19 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-05 18:19 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-05 03:59 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-03 01:48 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState 2022-11-03 01:46 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-10-29 14:47 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows Defender 2022-10-28 17:58 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-10-28 17:56 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing 2022-10-28 17:39 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-10-28 15:19 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2022-10-28 15:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\appcompat 2022-10-28 13:22 - 2022-05-07 06:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-10-28 13:21 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System 2022-10-28 13:19 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2022-10-28 13:19 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2022-10-28 13:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2022-10-28 13:14 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\spool 2022-10-28 13:11 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows NT 2022-10-28 12:57 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-10-28 12:55 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2022-10-28 12:52 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2022-10-28 12:51 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2022-10-28 12:51 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\MUI 2022-10-28 12:48 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2022-10-28 12:48 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-10-28 12:48 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2022-10-28 12:48 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2022-10-28 12:48 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2022-10-28 12:48 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2022-10-28 12:48 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\winrm 2022-10-28 12:48 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\WCN 2022-10-28 12:48 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\slmgr 2022-10-28 12:48 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2022-10-28 12:48 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2022-10-28 12:48 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2022-10-28 12:48 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2022-10-28 12:48 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\dsc 2022-10-28 12:48 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2022-10-28 12:48 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2022-10-28 12:48 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2022-10-28 12:48 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender ==================== Fichiers à la racine de certains dossiers ======== 2022-10-29 14:51 - 2022-11-05 14:14 - 000007531 _____ () C:\Users\Mutch\AppData\Roaming\VoiceMeeterDefault.xml 2022-11-05 09:57 - 2022-11-05 09:57 - 000007599 _____ () C:\Users\Mutch\AppData\Local\Resmon.ResmonCfg ==================== SigCheckExt ========================= 2022-11-06 18:45 - 2022-11-06 18:45 - 002374656 _____ (Farbar) C:\Users\Mutch\Downloads\FRST64.exe 2022-11-06 18:35 - 2022-11-06 18:35 - 003509960 _____ (Nicolas Coolman) C:\Users\Mutch\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {e7bf4f30-98e4-11e9-a383-ce7cf951f1bc} {a094ad71-d778-11eb-830b-c8d9d2a58bea} timeout 0 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} flightsigning Yes default {current} resumeobject {36260d3c-56bb-11ed-a71a-c97d72880b78} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {a094ad71-d778-11eb-830b-c8d9d2a58bea} description Internal Hard Disk or Solid State Disk Application logicielle (101fffff) -------------------------------- identificateur {e7bf4f30-98e4-11e9-a383-ce7cf951f1bc} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {e7bf4f31-98e4-11e9-a383-ce7cf951f1bc} description Internal EFI Shell Application logicielle (101fffff) -------------------------------- identificateur {e7bf4f32-98e4-11e9-a383-ce7cf951f1bc} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Internal EFI Shell Application logicielle (101fffff) -------------------------------- identificateur {fa9ca117-d365-11ea-8d74-c8d9d2a58bea} description Internal EFI Shell Chargeur de d‚marrage Windows ----------------------------- identificateur {15bb7628-584d-11ec-8331-c8d9d2a58bea} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{15bb7629-584d-11ec-8331-c8d9d2a58bea} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride PushButtonReset osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{15bb7629-584d-11ec-8331-c8d9d2a58bea} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {c4dcfd61-d576-11ec-a6d7-bf8c99954859} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {36260d3c-56bb-11ed-a71a-c97d72880b78} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {c4dcfd61-d576-11ec-a6d7-bf8c99954859} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{c4dcfd62-d576-11ec-a6d7-bf8c99954859} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride PushButtonReset osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{c4dcfd62-d576-11ec-a6d7-bf8c99954859} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {36260d3c-56bb-11ed-a71a-c97d72880b78} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {c4dcfd61-d576-11ec-a6d7-bf8c99954859} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {c4dcfd62-d576-11ec-a6d7-bf8c99954859} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================