Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2023 Exécuté par jerem (administrateur) sur LAPTOP-0PLHJH2Q (HP OMEN by HP Laptop 15-ce0xx) (09-05-2023 16:55:13) Exécuté depuis C:\Users\jerem\OneDrive\Bureau\FRST64.exe Profils chargés: jerem Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2846 (X64) Langue: Français (France) Navigateur par défaut: Opera Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.210.760.0_x86__zpdnekdrzrea0\Spotify.exe <6> (C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\MMSSHost\MMSSHOST.exe (C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe (C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\mfeav\MfeAVSvc.exe (C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (MUSARUBRA US LLC -> McAfee LLC.) C:\Program Files\Common Files\mcafee\amcore\mcshield.exe (C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (MUSARUBRA US LLC -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (C:\Program Files\mcafee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\Users\jerem\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\jerem\AppData\Local\Programs\Opera\98.0.4759.15\opera_crashreporter.exe (D:\Riot Games\League of Legends\LeagueClient.exe ->) (Riot Games, Inc. -> ) D:\Riot Games\League of Legends\LeagueCrashHandler64.exe (D:\Riot Games\League of Legends\LeagueClient.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) D:\Riot Games\League of Legends\LeagueClientUx.exe (D:\Riot Games\League of Legends\LeagueClientUx.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) D:\Riot Games\League of Legends\LeagueClientUxRender.exe <6> (D:\Riot Games\Riot Client\RiotClientServices.exe ->) () [Fichier non signé] D:\Riot Games\Riot Client\RiotClientCrashHandler.exe (D:\Riot Games\Riot Client\RiotClientServices.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) D:\Riot Games\League of Legends\LeagueClient.exe (Discord Inc. -> Discord Inc.) C:\Users\jerem\AppData\Local\Discord\app-1.0.9013\Discord.exe <6> (DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxEM.exe (explorer.exe ->) (NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] C:\Users\jerem\OneDrive\Bureau\ZHPSuite.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) D:\Riot Games\Riot Client\RiotClientServices.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe (Opera Norway AS -> Opera Software) C:\Users\jerem\AppData\Local\Programs\Opera\opera.exe <22> (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Avid Technology, Inc.) [Fichier non signé] C:\Config.Msi\450ea6a.rbf (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe (services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\HP 3D DriveGuard\hpservice.exe (services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe (services.exe ->) (HP Inc. -> HP) C:\Windows\System32\HP3DDGService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\csp\5.5.107.0\McCSPServiceHost.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <3> (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\PEF\CORE\PEFService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\VSCore_22_12\mcapexe.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (MUSARUBRA US LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (services.exe ->) (PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2314.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (HP Inc. -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe (svchost.exe ->) (HP Inc. -> HP.Inc) C:\Program Files\HP\OMEN Ally\HPOMENBG.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\mqs\QcShm.exe (svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\microsoft.zunemusic_10.22031.10091.0_x64__8wekyb3d8bbwe\Music.UI.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21422.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21422.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\jerem\AppData\Local\Microsoft\OneDrive\23.081.0416.0001\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe Impossible d'accéder au processus -> Hub.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1923008 2017-10-24] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [DigidesignMMERefresh] => "C:\Program Files\Avid\Pro Tools\MMERefresh.exe" (Pas de fichier) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [703312 2017-07-21] (HP Inc. -> HP Inc.) HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP Inc. -> HP) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-433152654-276539196-296321243-1001\...\Run: [Discord] => C:\Users\jerem\AppData\Local\Discord\Update.exe [1525016 2022-12-09] (Discord Inc. -> GitHub) HKU\S-1-5-21-433152654-276539196-296321243-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4362600 2023-04-28] (Valve Corp. -> Valve Corporation) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" a été déverrouillé. <==== ATTENTION Task: {02096385-6F05-48A9-B20A-657AE54E841F} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [931056 2023-02-20] (McAfee, LLC -> McAfee, LLC) Task: {0710E0FB-9C32-436B-8B77-1D3E7C4581AE} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.12.944\mcdatrep.exe [1212072 2023-04-25] (MUSARUBRA US LLC -> Trellix) Task: {0F653FC1-A79B-4B73-95F2-F1D578B718E3} - \HPAudioSwitch -> Pas de fichier <==== ATTENTION Task: {17E9E946-CD13-4F0E-BDB8-DF1C75D99CD5} - \NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {1B184A5E-F285-4C48-A004-6CAC82E0C27E} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> Pas de fichier <==== ATTENTION Task: {2773CA68-6652-4A76-A3C3-A10D5A8FD6E6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-09-27] (HP Inc. -> HP Inc.) Task: {2AC03343-233F-4748-8B09-892D5F3A7BF0} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [768288 2022-03-24] (McAfee, LLC -> McAfee, LLC) Task: {36E5A3E5-F3CA-4155-8EE3-FF7FD7086A29} - \NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {37292EA8-F458-47ED-A55C-5A3A1CCF5FD5} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION Task: {3891CB81-CF07-4ECD-A7CE-59544F84AF7D} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Pas de fichier <==== ATTENTION Task: {418FAA82-5275-488E-9CF4-C812D446AF1A} - \NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {45E4B7D8-6586-4155-874A-DB0225029654} - \OMEN Command Center BackGround Process -> Pas de fichier <==== ATTENTION Task: {4AE0035E-1134-43BC-A15C-0A07BBCA7F5C} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [931056 2023-02-20] (McAfee, LLC -> McAfee, LLC) Task: {64CD1B8B-BCD7-4022-BE3E-010C9D07F01F} - \NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {6555C041-167C-47F5-A8AC-E7EDF8B1B84C} - \HP\HP CoolSense\HP CoolSense Start at Logon -> Pas de fichier <==== ATTENTION Task: {6BFD4665-1E3D-4404-BF4D-B20537733E1A} - \NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {80BA2026-6538-4B6A-AD10-76F52F7B956B} - \OneDrive Standalone Update Task v2 -> Pas de fichier <==== ATTENTION Task: {81382EAC-CF97-41DD-BB45-366D99AD7160} - \HPJumpStartLaunch -> Pas de fichier <==== ATTENTION Task: {8DC4F6F2-5AC8-41B5-8461-383B58804B47} - \Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask -> Pas de fichier <==== ATTENTION Task: {A0C23063-C017-4388-9102-CF67732F992F} - \Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start -> Pas de fichier <==== ATTENTION Task: {AF4A35FA-C354-4BC8-A237-792C1D0D7DA2} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> Pas de fichier <==== ATTENTION Task: {CF92CAEE-B489-4E90-8756-06497B381BCC} - \Intel PTT EK Recertification -> Pas de fichier <==== ATTENTION Task: {D0218C70-9C99-4043-BF17-667E1AE5C42E} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Pas de fichier <==== ATTENTION Task: {D15D4A92-3782-4CAB-B53C-8D8FF074E83C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651632 2017-09-27] (HP Inc. -> HP Inc.) Task: {D300215F-1797-4DAF-85BC-B0FA702B7DA3} - \HPEA3JOBS -> Pas de fichier <==== ATTENTION Task: {DE7A9ED3-2915-4AC8-9FCE-5558492449AC} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4094568 2023-02-17] (McAfee, LLC -> McAfee, LLC) Task: {E67FDCA3-6388-418F-BD3E-28FFC34FE598} - \NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {F1EE6355-CC08-4FE6-B758-AD385E8B767E} - \Hewlett-Packard\HP Support Assistant\Product Configurator -> Pas de fichier <==== ATTENTION Task: {F2CCED52-4509-4948-95A7-D289474EFFE0} - \NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {F774DA52-68A3-4024-AB64-6018F88A0252} - System32\Tasks\Opera scheduled Autoupdate 1670469939 => C:\Users\jerem\AppData\Local\Programs\Opera\launcher.exe [2675608 2023-04-26] (Opera Norway AS -> Opera Software) Task: {F89A65CA-C5AB-44D7-85E5-BCE7C29F2A7E} - \NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> Pas de fichier <==== ATTENTION Task: {FD196029-93B1-4FE5-A3C1-2F8F5EA3345A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1490800 2017-09-27] (HP Inc. -> HP Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{0b1c70e7-472a-4863-a767-e11c4a36457b}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\jerem\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-09] FireFox: ======== FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2022-12-08] [] [non signé] FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2023-03-01] (McAfee, LLC -> ) FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2023-03-01] (McAfee, LLC -> ) Opera: ======= OPR Profile: C:\Users\jerem\AppData\Roaming\Opera Software\Opera Stable [2023-05-09] OPR Notifications: Opera Stable -> hxxps://www.cnetfrance.fr; hxxps://www.facebook.com; hxxps://www.instagram.com OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={searchTerms}&sourceid=opera&ie={inputEncoding}&oe={outputEncoding} OPR DefaultSearchKeyword: Opera Stable -> g OPR Extension: (Rich Hints Agent) - C:\Users\jerem\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-17] OPR Extension: (Opera Wallet) - C:\Users\jerem\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-05-08] OPR Extension: (Amazon Assistant Promotion) - C:\Users\jerem\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-12-08] OPR Extension: (Opera AI Prompts) - C:\Users\jerem\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-04-04] OPR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jerem\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2023-04-27] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-08-10] (McAfee, Inc. -> McAfee, Inc.) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1327400 2017-09-05] (HP Inc. -> HP Inc.) R2 hp3ddgsrv; C:\windows\system32\HP3DDGService.exe [130072 2017-09-22] (HP Inc. -> HP) R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [477184 2017-10-06] (HP Inc. -> HP Inc.) R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1075744 2017-10-11] (HP Inc. -> HP) R2 hpsrv; C:\Program Files (x86)\HP\HP 3D DriveGuard\hpservice.exe [28192 2017-10-05] (HP Inc. -> HP) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc. -> HP Inc.) R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [856472 2023-05-03] (McAfee, LLC -> McAfee, LLC) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_22_12\McApExe.exe [815376 2023-04-05] (McAfee, LLC -> McAfee, LLC) S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [454560 2017-01-17] (McAfee, Inc. -> McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\5.5.107.0\\McCSPServiceHost.exe [3384472 ] (McAfee, LLC -> McAfee, LLC) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1226192 2023-04-05] (MUSARUBRA US LLC -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1226192 2023-04-05] (MUSARUBRA US LLC -> McAfee, LLC) R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1226192 2023-04-05] (MUSARUBRA US LLC -> McAfee, LLC) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1570496 2023-02-17] (McAfee, LLC -> McAfee, LLC) R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4248712 2022-10-14] (McAfee, LLC -> McAfee, LLC) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe -s [X] S2 McProxy; "C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe" /McCoreSvc [X] S3 MSK80Service; "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [X] R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin" R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-04-26] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-04-26] (WDKTestCert build,131474841775766162 -> Apple Inc.) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [70880 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [491232 2022-11-22] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [354016 2022-11-22] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85456 2023-04-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Trellix US LLC.) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [464080 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [949472 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [714600 2022-11-15] (Musarubra US LLC -> Trellix US LLC.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [135024 2022-11-15] (Musarubra US LLC -> Trellix US LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [106720 2022-11-22] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [233176 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [26560 2017-10-24] (NVIDIA Corporation -> Windows (R) Win 7 DDK provider) R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [46592 2017-02-24] (Realtek Semiconductor Corp. -> Realtek) S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.) S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.) S3 V0540Dev; C:\WINDOWS\system32\DRIVERS\V0540Vid.sys [321376 2009-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP) U3 aspnet_state; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-05-09 16:55 - 2023-05-09 16:55 - 000000276 ____C C:\NvContainerRecoveryNVDisplay.ContainerLocalSystem.reg 2023-05-09 16:54 - 2023-05-09 16:55 - 000000000 ___DC C:\FRST 2023-05-09 16:51 - 2023-05-09 16:56 - 000000000 ___DC C:\Users\jerem\AppData\Roaming\ZHP 2023-05-09 16:51 - 2023-05-09 16:51 - 000000000 ___DC C:\Users\jerem\AppData\Local\ZHP 2023-05-09 16:36 - 2023-05-09 16:36 - 000000000 ___DC C:\Users\jerem\AppData\Roaming\McAfee 2023-05-09 13:14 - 2023-05-09 13:14 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2023-05-08 18:23 - 2023-05-09 13:44 - 000000000 ___DC C:\ProgramData\Riot Games 2023-05-08 17:46 - 2023-05-08 17:46 - 000000000 ___DC C:\Users\jerem\AppData\Local\OneDrive 2023-04-27 20:18 - 2023-04-27 20:18 - 000000000 __HDC C:\$WinREAgent 2023-03-25 14:48 - 2023-03-26 15:48 - 000000000 ___DC C:\Users\jerem\OneDrive\Documents\AIR Music Technology 2023-03-25 04:02 - 2023-03-25 04:02 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayCell 2023-03-25 03:42 - 2023-03-25 03:42 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SynthCell 2023-03-25 03:34 - 2023-03-25 03:34 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GrooveCell 2023-03-24 06:50 - 2023-03-24 06:50 - 000000000 ___DC C:\Users\jerem\AppData\Roaming\Digidesign 2023-03-24 06:49 - 2023-03-28 13:47 - 000000000 ___DC C:\Users\jerem\AppData\Roaming\Celemony Software GmbH 2023-03-24 06:48 - 2023-05-08 17:50 - 000000000 ___DC C:\Users\jerem\AppData\Roaming\Avid 2023-03-24 06:44 - 2023-03-24 06:44 - 000003584 ____C C:\Users\jerem\PaceKeyChain 2023-03-24 06:40 - 2023-03-24 06:40 - 000000000 ___DC C:\Users\jerem\AppData\Local\PaceAP 2023-03-24 06:38 - 2023-03-24 06:38 - 000000000 ___DC C:\ProgramData\Digidesign 2023-03-24 06:35 - 2023-03-24 06:35 - 000001416 ____C C:\Users\jerem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PaceProxyApp.lnk 2023-03-24 06:35 - 2023-03-24 06:35 - 000000000 ___DC C:\Users\jerem\AppData\Local\PACE 2023-03-24 06:32 - 2023-05-09 14:41 - 000000000 ___DC C:\Users\jerem\OneDrive\Documents\Pro Tools 2023-03-24 06:31 - 2023-03-24 06:31 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Celemony 2023-03-24 06:31 - 2023-03-24 06:31 - 000000000 ___DC C:\ProgramData\Celemony Software GmbH 2023-03-24 06:31 - 2023-03-24 06:31 - 000000000 ___DC C:\Program Files\Common Files\VST3 2023-03-24 06:31 - 2023-03-24 06:31 - 000000000 ___DC C:\Program Files\Common Files\Celemony 2023-03-24 06:31 - 2023-03-24 06:31 - 000000000 ___DC C:\Program Files\Celemony 2023-03-24 06:31 - 2023-03-24 06:31 - 000000000 ___DC C:\Program Files (x86)\Celemony 2023-03-24 06:26 - 2023-03-24 06:26 - 000002093 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLok License Manager.lnk 2023-03-24 06:26 - 2023-03-24 06:26 - 000000000 ___DC C:\ProgramData\PACE 2023-03-24 06:26 - 2023-03-24 06:26 - 000000000 ___DC C:\Program Files (x86)\iLok License Manager 2023-03-24 05:53 - 2023-05-09 14:41 - 000000000 ___DC C:\Program Files\Common Files\Avid 2023-03-24 05:41 - 2023-05-09 14:44 - 000000000 ___DC C:\Program Files\Avid 2023-03-24 05:41 - 2023-05-09 14:34 - 000000000 ___DC C:\ProgramData\Avid 2023-03-24 05:41 - 2023-03-24 06:48 - 000000000 ___DC C:\Users\jerem\AppData\Local\Avid 2023-03-24 05:41 - 2023-03-24 05:45 - 000000000 __HDC C:\AvidDownloads 2023-03-24 05:41 - 2023-03-24 05:41 - 000000000 ___DC C:\Users\jerem\AppData\Local\cache 2023-03-24 05:40 - 2023-03-24 05:54 - 000000000 ___DC C:\Users\jerem\AppData\Local\Downloaded Installations 2023-03-24 05:37 - 2023-03-24 05:38 - 132111368 ____C (Avid Technology, Inc.) C:\Users\jerem\Downloads\LinkFirst_key=6820ee11-87cd-45df-89ae-5a5151e2d240.exe 2023-02-10 20:52 - 2023-02-10 20:52 - 000078344 ____C C:\WINDOWS\system32\ntrights.exe ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-05-09 16:57 - 2022-12-08 04:47 - 000000000 ___DC C:\ProgramData\NVIDIA 2023-05-09 16:54 - 2022-12-08 04:32 - 000000000 ___DC C:\WINDOWS\INF 2023-05-09 16:52 - 2022-12-08 04:33 - 000000000 ___DC C:\ProgramData\regid.1991-06.com.microsoft 2023-05-09 16:28 - 2022-12-15 21:35 - 000000000 ___DC C:\Users\jerem\AppData\Local\Discord 2023-05-09 15:58 - 2022-12-15 21:35 - 000000000 ___DC C:\Users\jerem\AppData\Roaming\discord 2023-05-09 15:53 - 2022-12-22 19:34 - 000000000 ___DC C:\Users\jerem\AppData\Local\Overwolf 2023-05-09 13:14 - 2022-12-12 01:46 - 000000000 ___DC C:\WINDOWS\system32\Tasks\McAfee 2023-05-09 13:08 - 2022-12-08 04:46 - 000000000 ___DC C:\WINDOWS\system32\SleepStudy 2023-05-08 20:03 - 2022-12-08 05:36 - 000000000 ___DC C:\Users\jerem\AppData\Local\Riot Games 2023-05-08 18:35 - 2022-12-08 05:01 - 001841164 ____C C:\WINDOWS\system32\PerfStringBackup.INI 2023-05-08 18:35 - 2022-12-08 04:35 - 000794488 ____C C:\WINDOWS\system32\perfh00C.dat 2023-05-08 18:35 - 2022-12-08 04:35 - 000150602 ____C C:\WINDOWS\system32\perfc00C.dat 2023-05-08 18:28 - 2022-12-26 08:19 - 000000000 ___DC C:\Program Files (x86)\Steam 2023-05-08 18:28 - 2022-12-08 05:12 - 000000000 __RDC C:\Users\jerem\OneDrive 2023-05-08 18:27 - 2022-12-08 05:11 - 000000000 _SHDC C:\Users\jerem\IntelGraphicsProfiles 2023-05-08 18:27 - 2022-12-08 04:46 - 000380992 ____C C:\WINDOWS\system32\FNTCACHE.DAT 2023-05-08 18:27 - 2022-12-08 04:46 - 000008192 ___SH C:\DumpStack.log.tmp 2023-05-08 18:27 - 2022-12-08 04:46 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT 2023-05-08 18:27 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\ServiceState 2023-05-08 18:27 - 2022-12-08 04:29 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-05-08 18:26 - 2022-12-08 05:36 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2023-05-08 18:23 - 2022-12-23 19:33 - 000000000 ___DC C:\Users\jerem\AppData\Local\CrashDumps 2023-05-08 00:53 - 2022-12-08 05:27 - 000000000 ___DC C:\Users\jerem\AppData\Local\D3DSCache 2023-05-07 20:33 - 2022-12-08 04:46 - 000002449 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-05-07 20:33 - 2022-12-08 04:33 - 000000000 __HDC C:\Program Files\WindowsApps 2023-05-07 20:33 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\AppReadiness 2023-05-03 22:04 - 2022-12-08 05:13 - 000003580 ____C C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-433152654-276539196-296321243-1001 2023-05-03 22:04 - 2022-12-08 05:12 - 000003374 ____C C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-433152654-276539196-296321243-1001 2023-05-03 22:04 - 2022-12-08 05:08 - 000002420 ____C C:\Users\jerem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-05-02 22:28 - 2022-12-08 04:29 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2023-04-29 17:02 - 2022-12-08 05:25 - 000004232 ____C C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1670469939 2023-04-29 17:02 - 2022-12-08 05:25 - 000001408 ____C C:\Users\jerem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2023-04-27 23:58 - 2022-12-08 05:08 - 000000000 ___DC C:\Users\jerem 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 __RDC C:\WINDOWS\ImmersiveControlPanel 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\SysWOW64\WinMetadata 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\SysWOW64\Dism 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\SystemResources 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\system32\WinMetadata 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\system32\oobe 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\system32\es-MX 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\system32\Dism 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\system32\DDFs 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\PolicyDefinitions 2023-04-27 23:58 - 2022-12-08 04:33 - 000000000 ___DC C:\WINDOWS\bcastdvr 2023-04-27 20:42 - 2022-12-08 04:29 - 000000000 ___DC C:\WINDOWS\CbsTemp 2023-04-27 20:39 - 2022-12-08 04:48 - 003015680 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-04-27 20:02 - 2022-12-08 05:33 - 000000000 ___DC C:\WINDOWS\system32\MRT 2023-04-27 19:59 - 2022-12-08 05:33 - 156112424 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Fichiers à la racine de certains dossiers ======== 2023-03-24 05:47 - 2023-03-24 05:52 - 000727198 ____C () C:\Users\jerem\AppData\Roaming\AvidCloudClientServices_Install.log 2023-03-24 05:40 - 2023-03-24 05:41 - 001535842 ____C () C:\Users\jerem\AppData\Roaming\AvidLink_Install.log 2023-03-24 05:47 - 2023-05-09 14:44 - 000011926 ____C () C:\Users\jerem\AppData\Roaming\Avid_CCS_Service_Stop.log ==================== SigCheckExt ========================= 2018-02-04 02:30 - 2017-10-24 20:53 - 001321448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 001331200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 001135280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 023261768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 013253824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2018-02-04 02:57 - 2017-07-21 01:36 - 000235008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtBWCtrl.dll 2018-02-04 02:57 - 2017-02-24 07:22 - 000064000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtFDrvIOCtrl.dll 2018-02-04 02:57 - 2017-04-13 21:23 - 002216448 _____ (TODO: ) C:\WINDOWS\system32\wlanCliDLL.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 001038680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 001044664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 000885496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 019036904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2018-02-04 02:30 - 2017-10-24 20:53 - 010881696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {c27a511a-0941-11e8-b175-806e6f6e6963} {efec79b1-098b-11e8-872e-80ce624c243c} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {9fdb1aae-76a1-11ed-a078-a32db9ad22e1} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {c27a511a-0941-11e8-b175-806e6f6e6963} device partition=\Device\HarddiskVolume3 description Solid State Disk Application logicielle (101fffff) -------------------------------- identificateur {efec79b1-098b-11e8-872e-80ce624c243c} description USB Drive (UEFI) Chargeur de démarrage Windows ----------------------------- identificateur {96d37ede-9a3f-11eb-b252-bc53bdef256c} device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{96d37edf-9a3f-11eb-b252-bc53bdef256c} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride PushButtonReset osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{96d37edf-9a3f-11eb-b252-bc53bdef256c} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {96d37ede-9a3f-11eb-b252-bc53bdef256c} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {9fdb1aae-76a1-11ed-a078-a32db9ad22e1} nx OptIn bootmenupolicy Standard Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {9fdb1aae-76a1-11ed-a078-a32db9ad22e1} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {96d37ede-9a3f-11eb-b252-bc53bdef256c} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {96d37edf-9a3f-11eb-b252-bc53bdef256c} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================