Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22.01.2024 Exécuté par Christophe (administrateur) sur DESKTOP-HEB4JJD (Micro-Star International Co., Ltd. MS-7C80) (22-01-2024 11:19:07) Exécuté depuis C:\Users\Christophe\Desktop\FRST64.exe Profils chargés: Christophe Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.1574 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe (C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\Corsair iCUE5 Software\crashpad_handler.exe (C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [Fichier non signé] C:\Users\Christophe\AppData\Roaming\Elgato\StreamDeck\Plugins\com.javanpoirier.audiomixer.sdPlugin\com.javanpoirier.audiomixer.exe (C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [Fichier non signé] C:\Users\Christophe\AppData\Roaming\Elgato\StreamDeck\Plugins\tv.twitch.studio.sdPlugin\twitchstudiostreamdeck.exe (C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\StreamDeck\crashpad_handler.exe (C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Frederick Emmott -> Frederick Emmott) C:\Users\Christophe\AppData\Roaming\Elgato\StreamDeck\Plugins\com.fredemmott.audiooutputswitch.sdPlugin\sdaudioswitch.exe (C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Elgato\StreamDeck\QtWebEngineProcess.exe <5> (C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServer.exe (C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.400.20.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.144\msedgewebview2.exe <6> (Discord Inc. -> Discord Inc.) C:\Users\Christophe\AppData\Local\Discord\app-1.0.9030\Discord.exe <6> (explorer.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe (explorer.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe (explorer.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15> (explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Microsoft Corporation -> Microsoft Corporation) C:\Users\Christophe\AppData\Local\Microsoft\OneDrive\23.246.1127.0002\Microsoft.SharePoint.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Christophe\AppData\Local\Microsoft\Teams\current\Teams.exe <8> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_72a60bcfb646da4c\Display.NvContainer\NVDisplay.Container.exe <2> (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2312.1001.18.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25330.9000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.400.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2303.27001-0\SecurityHealthHost.exe <2> (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3088752 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [223544 2019-02-01] (Autodesk, Inc. -> Autodesk) HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [16501328 2023-10-23] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2023-12-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé] HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-05-11] (Autodesk, Inc. -> Autodesk, Inc.) HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [2913648 2021-05-10] (Autodesk, Inc. -> Autodesk) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.144\Installer\setup.exe [4650552 2024-01-19] (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4371816 2023-06-21] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [45968128 2023-12-07] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Christophe\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-17] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Run: [Microsoft.Lists] => C:\Users\Christophe\AppData\Local\Microsoft\OneDrive\23.246.1127.0002\Microsoft.SharePoint.exe [545824 2023-12-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Run: [Discord] => C:\Users\Christophe\AppData\Local\Discord\Update.exe [1525016 2023-03-22] (Discord Inc. -> GitHub) HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Run: [Volume Controller SD plugin] => C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe [108072 2023-09-18] (Corsair Memory, Inc. -> ) HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Run: [Opera Browser Assistant] => C:\Users\Christophe\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3746208 2023-12-19] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Run: [MicrosoftEdgeAutoLaunch_980524B2522C2AF6908B9618113DE2D3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854376 2024-01-17] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Policies\Explorer: [] HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Policies\Explorer: [DisallowRun] 1 HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Policies\Explorer\DisallowRun: [1] mshta.exe HKU\S-1-5-21-4086126032-1239720600-3168706972-1001\...\Policies\Explorer\DisallowRun: [2] powershell.exe HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2020-03-06] (Adobe Inc. -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.225\Installer\chrmstp.exe [2024-01-19] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\Christophe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2024-01-22] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0480E1FF-7417-41C2-BC9F-41D1078454AC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Pas de fichier) Task: {C9B094BC-BD71-4713-AC17-E14F20A37E0D} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-11-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "ac367948-baef-4eb2-9768-9bfaa6a06cee" --version "6.18.10824" --silent Task: {03B379DB-B3E3-4BA2-B24A-CA331D15249A} - System32\Tasks\CCleanerSkipUAC - Christophe => C:\Program Files\CCleaner\CCleaner.exe [37544352 2023-11-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {56B3247A-1730-496A-820F-5E3068737FF1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-06-29] (Google LLC -> Google LLC) Task: {53D22911-1F94-4E30-B397-347B5F6D3796} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-06-29] (Google LLC -> Google LLC) Task: {9AC01B65-B9D6-411B-9148-7E00FF5C2BB6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-05] (Microsoft Corporation -> Microsoft Corporation) Task: {F1E0F8B4-403F-4DA5-9E9E-0C9D3915CF11} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-05] (Microsoft Corporation -> Microsoft Corporation) Task: {FD136D99-69FD-477D-9BCC-FABE2B8764CB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-15] (Microsoft Corporation -> Microsoft Corporation) Task: {52D24EF8-1273-4F76-A181-C2E296FE60E9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-15] (Microsoft Corporation -> Microsoft Corporation) Task: {9B33CB24-405C-4B7F-A48E-E530A7A6717F} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [450560 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> -ExecutionPolicy Bypass -WindowStyle Hidden -File C:\WINDOWS\mid.ps1 Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier) Task: {D4F58891-2704-4D22-929D-0BA179B197FD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F78E5B34-F4EA-4EA5-89C6-C08922E0B487} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C9E03693-BEE9-4DE6-8B92-51ADA6700E40} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F74E9EDA-D341-4CD2-836E-6D3C11F00349} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B9A88C1A-44B6-4E28-94E7-694F53EFBCA5} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804408 2021-12-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {6518583F-33CA-4777-974C-B470C926AA35} - System32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe [11015736 2023-01-16] (NVIDIA Corporation -> NVIDIA Corporation) Task: {28A8B671-E336-40EC-A368-00797C833F6A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {328920DD-7155-42B2-A847-3C2A42B91AE9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C1FB0C09-8787-4F3F-AC5C-0DCAC1C41143} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F1A01933-FAD1-4B93-833A-3A249F178881} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {35216710-D793-45AF-807C-2898B5CFAE9F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B2DE4DC8-682C-459E-A824-7828956E546C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {46692C63-1EE3-449D-9C4F-4D711E788F35} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A36E7A40-0BFC-4C22-9449-EA400607AD26} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2D50F2A6-2469-40D2-B16E-AC5EEBAB0B54} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6CD768F1-FE35-4887-AB0D-13DA11E83E15} - System32\Tasks\Opera scheduled assistant Autoupdate 1613783345 => C:\Users\Christophe\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-18] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Christophe\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {CF735578-4EBE-450E-8CE1-9B4366A07471} - System32\Tasks\Opera scheduled Autoupdate 1613783342 => C:\Users\Christophe\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-18] (Opera Norway AS -> Opera Software) Task: {7AC658E8-83CD-4CAB-A9CC-BE202258AE7D} - System32\Tasks\TrackerAutoUpdate => "A:\Program Files\Tracker Software\Update\TrackerUpdate.exe" -CheckUpdate (Pas de fichier) Task: {C41F46F2-BAC6-4C95-A0E1-9279E7D90A73} - System32\Tasks\ViGEmBusUpdater => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [450560 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> -ExecutionPolicy ByPass -WindowStyle Hidden C:\Users\Christophe\AppData\Roaming\Webgard\cor.ps1 <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => A:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{8a9e4bb7-e9a8-4cfd-b006-7c08caa2977b}: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{8a9e4bb7-e9a8-4cfd-b006-7c08caa2977b}: [DhcpDomain] numericable.fr Tcpip\..\Interfaces\{c592b5ff-90f6-4305-bb3c-723a960ee885}: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{c592b5ff-90f6-4305-bb3c-723a960ee885}: [DhcpDomain] numericable.fr Tcpip\..\Interfaces\{fbcbd433-d51c-42e9-857a-dedb61b06137}: [DhcpNameServer] 172.20.10.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Christophe\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-22] Edge Extension: (Google Docs hors connexion) - C:\Users\Christophe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-18] Edge Extension: (Edge relevant text changes) - C:\Users\Christophe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-26] FireFox: ======== FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-03-05] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> A:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [Pas de fichier] FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> A:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [Pas de fichier] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-01-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-4086126032-1239720600-3168706972-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> A:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [Pas de fichier] Chrome: ======= CHR Profile: C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default [2024-01-22] CHR Extension: (Slinky Elégante) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln [2022-01-10] CHR Extension: (Extension Web Dragon) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddaloccgjfibfpkalenodgehlhkgoahe [2022-12-16] CHR Extension: (Google Docs hors connexion) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-17] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-01-17] CHR Extension: (XDEFI Wallet) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmeobnfnfcmdkdcmlblgagmfpfboieaf [2024-01-19] CHR Extension: (Castorus) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnhffkhmpnefgklngfmlndmkimimbphc [2022-05-20] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp] Opera: ======= OPR DefaultProfile: Default ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-05-11] (Autodesk, Inc. -> Autodesk Inc.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-09-19] (BattlEye Innovations e.K. -> ) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1083808 2023-11-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13777080 2024-01-05] (Microsoft Corporation -> Microsoft Corporation) S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [151080 2023-12-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-04-13] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2023-01-20] (Underwriters Laboratories Inc. -> Futuremark) R3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [366120 2023-12-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10759936 2023-12-07] (Logitech Inc -> Logitech, Inc.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_72a60bcfb646da4c\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-01-13] (NVIDIA Corporation -> NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2572096 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3491144 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [245216 2023-03-01] (Microsoft Windows Publisher -> Microsoft Corporation) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [11023152 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-05-28] (Activision Publishing Inc -> Activision Blizzard, Inc.) S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [2986792 2023-06-15] (Activision Publishing Inc -> Activision Blizzard, Inc.) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé] S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [47032 2023-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [22968 2023-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_e64afe811c7e4662\e1d.sys [607400 2022-02-16] (Intel Corporation -> Intel Corporation) R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [52672 2023-12-06] (Logitech Inc -> Logitech) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-23] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-23] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-23] (Logitech Inc -> Logitech) R3 MpKslf5015e4e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EAC52F0C-45DF-4D5B-9D42-5F29999647AC}\MpKslDrv.sys [263560 2024-01-22] (Microsoft Windows -> Microsoft Corporation) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2020-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22676992 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [103656 2021-06-05] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation) S3 cpuz158; \??\C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [X] <==== ATTENTION S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-01-22 11:19 - 2024-01-22 11:19 - 000034724 _____ C:\Users\Christophe\Desktop\FRST.txt 2024-01-22 11:17 - 2024-01-22 11:17 - 000000000 ____D C:\Users\Christophe\Downloads\FRST-OlderVersion 2024-01-18 09:56 - 2024-01-13 11:04 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-01-18 09:56 - 2024-01-13 11:04 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-01-18 09:56 - 2024-01-13 11:04 - 000850624 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-01-18 09:56 - 2024-01-13 11:04 - 000850624 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-01-18 09:56 - 2024-01-13 11:04 - 000731328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-01-18 09:56 - 2024-01-13 11:04 - 000731328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-01-18 09:56 - 2024-01-13 11:03 - 001488008 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2024-01-18 09:56 - 2024-01-13 11:03 - 001424064 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-01-18 09:56 - 2024-01-13 11:03 - 001424064 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-01-18 09:56 - 2024-01-13 11:03 - 001227400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2024-01-18 09:56 - 2024-01-13 11:00 - 000669704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll 2024-01-18 09:56 - 2024-01-13 11:00 - 000504952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll 2024-01-18 09:56 - 2024-01-13 10:59 - 001541256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2024-01-18 09:56 - 2024-01-13 10:59 - 001198728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2024-01-18 09:56 - 2024-01-13 10:59 - 000958600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2024-01-18 09:56 - 2024-01-13 10:58 - 002171528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2024-01-18 09:56 - 2024-01-13 10:58 - 001624184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2024-01-18 09:56 - 2024-01-13 10:58 - 000996984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2024-01-18 09:56 - 2024-01-13 10:58 - 000810632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2024-01-18 09:56 - 2024-01-13 10:58 - 000774280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2024-01-18 09:56 - 2024-01-13 10:57 - 000459272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2024-01-18 09:56 - 2024-01-13 10:56 - 015095416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2024-01-18 09:56 - 2024-01-13 10:56 - 012375160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2024-01-18 09:56 - 2024-01-13 10:56 - 006462496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2024-01-18 09:56 - 2024-01-13 10:56 - 005862408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2024-01-18 09:56 - 2024-01-13 10:56 - 005861000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2024-01-18 09:56 - 2024-01-13 10:56 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2024-01-18 09:56 - 2024-01-12 23:30 - 000113947 _____ C:\WINDOWS\system32\nvinfo.pb 2024-01-17 11:52 - 2024-01-17 11:52 - 000000598 _____ C:\Users\Christophe\Downloads\Bloquer-Powershell-MSHTA.zip 2024-01-17 11:24 - 2024-01-17 11:29 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2024-01-17 11:23 - 2024-01-17 11:23 - 000000000 ____D C:\WINDOWS\pss 2024-01-17 11:12 - 2024-01-17 11:12 - 000000000 ____D C:\Users\Christophe\AppData\Local\mbam 2024-01-17 11:10 - 2024-01-17 11:10 - 002606880 _____ (Malwarebytes) C:\Users\Christophe\Downloads\MBSetup.exe 2024-01-17 10:48 - 2024-01-17 11:30 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2024-01-17 10:48 - 2024-01-17 10:48 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2024-01-17 10:48 - 2024-01-17 10:48 - 000002924 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Christophe 2024-01-17 10:47 - 2024-01-17 10:59 - 000000000 ____D C:\Program Files\CCleaner 2024-01-17 10:47 - 2024-01-17 10:56 - 000000000 ____D C:\ProgramData\Piriform 2024-01-17 10:47 - 2024-01-17 10:47 - 000000000 ____D C:\Users\Public\Desktop\Pack CCleaner Technician 2024-01-17 10:47 - 2024-01-17 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2024-01-17 10:47 - 2024-01-17 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva 2024-01-17 10:47 - 2024-01-17 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler 2024-01-17 10:47 - 2024-01-17 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2024-01-17 10:47 - 2024-01-17 10:47 - 000000000 ____D C:\Program Files\Speccy 2024-01-17 10:47 - 2024-01-17 10:47 - 000000000 ____D C:\Program Files\Recuva 2024-01-17 10:47 - 2024-01-17 10:47 - 000000000 ____D C:\Program Files\Defraggler 2024-01-17 10:45 - 2024-01-17 10:52 - 000000000 ____D C:\Users\Christophe\AppData\LocalLow\uTorrent 2024-01-17 10:45 - 2024-01-17 10:45 - 000015533 _____ C:\Users\Christophe\Downloads\Pack CCleaner Technician 6.18 Win x64 Multi Préactivé.torrent 2024-01-17 10:44 - 2024-01-17 10:44 - 000038733 _____ C:\Users\Christophe\Downloads\Shortcut.txt 2024-01-17 10:42 - 2024-01-17 10:44 - 000071016 _____ C:\Users\Christophe\Downloads\Addition.txt 2024-01-17 10:41 - 2024-01-22 11:19 - 000000000 ____D C:\FRST 2024-01-17 10:41 - 2024-01-17 10:44 - 000045109 _____ C:\Users\Christophe\Downloads\FRST.txt 2024-01-17 10:40 - 2024-01-22 11:17 - 002389504 _____ (Farbar) C:\Users\Christophe\Desktop\FRST64.exe 2024-01-17 10:20 - 2024-01-19 22:49 - 120848384 _____ C:\WINDOWS\system32\config\SOFTWARE 2024-01-17 10:17 - 2024-01-17 10:20 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2024-01-16 15:13 - 2024-01-16 15:13 - 000215534 _____ C:\Users\Christophe\Downloads\B1559-5-BN.pdf 2024-01-16 15:13 - 2024-01-16 15:13 - 000156624 _____ C:\Users\Christophe\Downloads\[B1559-5] Ruban LED COB 24V DC - 12W_m - 8mm - IP20 - Rouleau de 5 mètres - Sécable tous les 4cm.pdf 2024-01-15 22:14 - 2024-01-15 22:14 - 000141484 _____ C:\Users\Christophe\Downloads\[LM164-P] Applique en osier avec prise _Frida_ E27.pdf 2024-01-15 19:37 - 2024-01-15 19:37 - 001017071 _____ C:\Users\Christophe\Downloads\user-manual-B8560.pdf 2024-01-15 19:37 - 2024-01-15 19:37 - 000100836 _____ C:\Users\Christophe\Downloads\[B8560-120] Linéaire LED en saillie - 33W - 120cm - IP20.pdf 2024-01-15 19:35 - 2024-01-15 19:35 - 000234213 _____ C:\Users\Christophe\Downloads\B8500-150BN.pdf 2024-01-15 19:35 - 2024-01-15 19:35 - 000120701 _____ C:\Users\Christophe\Downloads\[B8500-150] Linéaire LED 150cm 60W 5200lm IP40.pdf 2024-01-15 19:35 - 2024-01-15 19:35 - 000007580 _____ C:\Users\Christophe\Downloads\B8500-150BN.IES 2024-01-15 19:33 - 2024-01-15 19:33 - 000130033 _____ C:\Users\Christophe\Downloads\[CM-F] Connecteur d'angle pour rail magnétique 20mm.pdf 2024-01-15 19:32 - 2024-01-15 19:32 - 000102534 _____ C:\Users\Christophe\Downloads\[CMS-90V-N] Jonction en L pour rails magnétiques en saillie 20mm - Verticale.pdf 2024-01-15 12:01 - 2024-01-15 12:01 - 001025382 _____ C:\Users\Christophe\Downloads\Suivi Inventaire CNT.xlsm 2024-01-15 11:26 - 2024-01-22 10:30 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\LM Studio 2024-01-15 11:26 - 2024-01-15 11:26 - 422646400 _____ (LM Studio) C:\Users\Christophe\Downloads\LM+Studio-0.2.10+Setup.exe 2024-01-15 11:26 - 2024-01-15 11:26 - 000002318 _____ C:\Users\Christophe\Desktop\LM Studio.lnk 2024-01-15 11:26 - 2024-01-15 11:26 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LM Studio 2024-01-15 11:26 - 2024-01-15 11:26 - 000000000 ____D C:\Users\Christophe\AppData\Local\LM-Studio 2024-01-15 11:26 - 2024-01-15 11:26 - 000000000 ____D C:\Users\Christophe\.cache 2024-01-10 15:24 - 2024-01-10 15:24 - 000488238 _____ C:\Users\Christophe\Downloads\DUER VF 2024 - 08janv2024.pdf 2024-01-10 11:08 - 2024-01-10 11:08 - 001903744 _____ C:\Users\Christophe\Downloads\pdf_659e6b84d248f1_31195626.pdf 2024-01-10 11:06 - 2024-01-10 11:06 - 000087964 _____ C:\Users\Christophe\Downloads\pdf_659e6b84d23d87_55878797.pdf 2024-01-04 10:18 - 2024-01-04 10:18 - 073201527 _____ C:\Users\Christophe\Downloads\AR24-pieces-jointes-30979547-2023-09-21 (1).zip 2024-01-03 16:51 - 2024-01-03 16:51 - 000158418 _____ C:\Users\Christophe\Downloads\[PML-6WU18-N] Spot LED linéaire orientable sur rail magnétique 48V - 6W - UGR16 - Noir.pdf 2024-01-03 16:48 - 2024-01-03 16:48 - 000126157 _____ C:\Users\Christophe\Downloads\[BTM-200] Rail monophasé 200 cm saillie _ suspendu pour spot LED.pdf 2024-01-03 09:39 - 2024-01-03 16:15 - 000124600 _____ C:\Users\Christophe\Desktop\attestation-sur-l-honneur-du-representant-unique-de-l-indivision.pdf 2023-12-20 07:47 - 2023-12-20 07:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair 2023-12-12 16:56 - 2023-12-13 11:24 - 000010414 _____ C:\Users\Christophe\Desktop\salaire evolution.xlsx 2023-12-12 16:26 - 2023-12-12 16:26 - 000139900 _____ C:\Users\Christophe\Downloads\IPC_Note méthodologique_en bref_2020 _FR.pdf 2023-12-08 08:22 - 2023-12-08 08:22 - 000408081 _____ C:\Users\Christophe\Downloads\PWS - Rapport égalité HF - 2022 (1).pdf 2023-12-07 08:01 - 2023-12-07 08:01 - 000000856 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk 2023-12-07 08:01 - 2023-12-07 08:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2023-12-07 08:01 - 2023-12-07 08:01 - 000000000 ____D C:\Program Files\LGHUB 2023-12-06 07:50 - 2023-12-06 07:50 - 002082048 _____ (Logitech) C:\WINDOWS\system32\logi_audio_hx2e_render_apo.dll 2023-12-06 07:50 - 2023-12-06 07:50 - 000406984 _____ (Logitech) C:\WINDOWS\system32\logi_audio_dts_studio_capture_apo.dll 2023-12-06 07:50 - 2023-12-06 07:50 - 000052672 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_audio_surround.sys 2023-11-28 13:20 - 2023-11-28 13:20 - 000732370 _____ C:\Users\Christophe\Downloads\Bilan Social 2022 - SOCOTEC POWER SERVICES 22112023 (1).pdf 2023-11-27 08:06 - 2023-11-27 08:06 - 079774708 _____ C:\Users\Christophe\Downloads\EV2 252 - chargé.zip 2023-11-22 15:02 - 2023-11-22 15:02 - 000732370 _____ C:\Users\Christophe\Downloads\Bilan Social 2022 - SOCOTEC POWER SERVICES 22112023.pdf 2023-11-21 16:55 - 2023-11-21 16:55 - 000000000 ____D C:\ProgramData\obs-studio 2023-11-21 16:55 - 2023-11-21 16:55 - 000000000 ____D C:\Program Files\Elgato 2023-11-21 10:43 - 2023-11-21 10:43 - 000000210 ____H C:\Users\Christophe\Documents\Dessin1.dwl2 2023-11-21 10:43 - 2023-11-21 10:43 - 000000060 ____H C:\Users\Christophe\Documents\Dessin1.dwl 2023-11-21 09:22 - 2023-11-21 09:22 - 000000000 _____ C:\Users\Christophe\Downloads\PWS - Rapport égalité HF - 2022.pdf 2023-11-09 16:42 - 2023-11-09 16:42 - 001530361 _____ C:\Users\Christophe\Downloads\DUERP-PWS-GUYANCOURT-2022_11_23.pdf 2023-10-30 10:31 - 2023-10-30 10:31 - 000138778 _____ C:\Users\Christophe\Downloads\CertificatQualibat (2).pdf 2023-10-30 09:47 - 2023-10-30 09:47 - 000693715 _____ C:\Users\Christophe\Downloads\2202_brochureMaPrimeRenov.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-01-22 11:19 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-01-22 11:19 - 2021-02-04 20:48 - 000000000 ____D C:\Program Files (x86)\Google 2024-01-22 10:47 - 2021-02-05 07:41 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\Microsoft\Teams 2024-01-22 10:46 - 2023-04-14 10:27 - 000000000 ____D C:\Users\Christophe\AppData\Local\Discord 2024-01-22 10:30 - 2021-02-05 06:53 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\Microsoft\Excel 2024-01-22 10:20 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps 2024-01-22 10:20 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-01-22 10:20 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-01-22 10:20 - 2021-02-05 06:56 - 000000000 ____D C:\Users\Christophe\AppData\Local\D3DSCache 2024-01-22 08:53 - 2023-01-10 09:44 - 000004272 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1613783342 2024-01-22 08:53 - 2021-02-20 02:09 - 000001492 _____ C:\Users\Christophe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2024-01-22 07:52 - 2023-01-10 09:45 - 001800200 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-01-22 07:52 - 2021-06-05 19:15 - 000806506 _____ C:\WINDOWS\system32\perfh00C.dat 2024-01-22 07:52 - 2021-06-05 19:15 - 000156164 _____ C:\WINDOWS\system32\perfc00C.dat 2024-01-22 07:52 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF 2024-01-22 07:52 - 2021-02-04 20:50 - 000000000 ____D C:\ProgramData\NVIDIA 2024-01-22 07:48 - 2021-02-05 07:10 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2024-01-22 07:46 - 2022-04-08 21:41 - 000000000 ____D C:\Users\Christophe\AppData\Local\LGHUB 2024-01-22 07:46 - 2021-02-05 08:44 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\discord 2024-01-22 07:45 - 2023-01-10 09:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-01-22 07:45 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState 2024-01-22 07:45 - 2021-02-05 03:34 - 000012288 ___SH C:\DumpStack.log.tmp 2024-01-19 22:49 - 2023-01-10 09:44 - 000003152 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner 2024-01-19 22:49 - 2023-01-10 09:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-01-19 22:49 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-01-19 11:32 - 2023-04-04 13:52 - 000000000 ____D C:\Users\Christophe\Documents\Obsidian Vault 2024-01-19 11:32 - 2023-04-04 13:51 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\obsidian 2024-01-19 07:55 - 2020-11-19 00:47 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-01-18 15:56 - 2021-02-05 07:04 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\Microsoft\Word 2024-01-18 09:58 - 2021-02-04 20:52 - 000000000 ____D C:\Users\Christophe\AppData\Local\NVIDIA 2024-01-17 11:34 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2024-01-17 11:28 - 2023-01-10 09:04 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\Microsoft\Windows 2024-01-17 11:24 - 2023-01-10 09:41 - 000505912 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-01-17 11:16 - 2021-11-25 11:07 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\Logistic 2024-01-17 11:15 - 2021-02-12 23:57 - 000000000 ____D C:\Users\Christophe\AppData\Local\CrashDumps 2024-01-17 10:55 - 2021-04-19 21:26 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\uTorrent 2024-01-17 10:52 - 2023-04-05 11:59 - 000000000 ____D C:\WINDOWS\Minidump 2024-01-17 10:49 - 2023-01-10 08:30 - 000000000 ___DC C:\WINDOWS\Panther 2024-01-17 10:49 - 2021-02-06 14:37 - 000000000 ____D C:\Program Files (x86)\Steam 2024-01-17 10:13 - 2021-02-04 20:52 - 000000000 ____D C:\ProgramData\Package Cache 2024-01-17 10:13 - 2021-02-04 20:42 - 000000000 ____D C:\Users\Christophe\AppData\Local\Packages 2024-01-17 10:13 - 2020-11-19 00:48 - 000000000 ____D C:\ProgramData\Packages 2024-01-17 09:23 - 2023-10-11 07:52 - 000002443 _____ C:\Users\Christophe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams classic (work or school).lnk 2024-01-15 11:26 - 2023-01-10 09:04 - 000000000 ____D C:\Users\Christophe 2024-01-15 11:26 - 2021-02-05 07:41 - 000000000 ____D C:\Users\Christophe\AppData\Local\SquirrelTemp 2024-01-15 09:28 - 2021-02-05 06:40 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2024-01-13 10:56 - 2023-01-06 16:00 - 003619960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2024-01-13 10:55 - 2023-02-25 18:12 - 006745752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2024-01-13 10:55 - 2023-01-06 16:00 - 007869664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2024-01-12 09:08 - 2021-02-04 22:45 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2024-01-12 08:58 - 2023-04-13 20:08 - 000002256 _____ C:\Users\Christophe\Desktop\Discord.lnk 2024-01-04 09:06 - 2021-05-07 07:31 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared 2024-01-04 09:06 - 2021-05-07 07:29 - 000000000 ____D C:\Program Files\Autodesk 2024-01-04 09:06 - 2021-03-09 21:30 - 000000000 ____D C:\ProgramData\Autodesk 2024-01-04 08:45 - 2021-06-17 13:30 - 000000000 ____D C:\ProgramData\boost_interprocess ==================== Fichiers à la racine de certains dossiers ======== 2021-05-14 22:27 - 2023-05-15 15:43 - 000000121 _____ () C:\Users\Christophe\AppData\Roaming\D2Info0 2021-05-14 22:27 - 2023-05-15 15:51 - 000000008 _____ () C:\Users\Christophe\AppData\Roaming\DofusAppId0_1 2021-05-14 22:29 - 2023-05-15 15:51 - 000000008 _____ () C:\Users\Christophe\AppData\Roaming\DofusAppId0_2 2021-05-14 22:30 - 2021-08-27 13:51 - 000000008 _____ () C:\Users\Christophe\AppData\Roaming\DofusAppId0_3 2021-05-14 22:36 - 2021-05-14 22:38 - 000000008 _____ () C:\Users\Christophe\AppData\Roaming\DofusAppId0_4 2021-05-15 13:18 - 2021-05-15 13:29 - 000000008 _____ () C:\Users\Christophe\AppData\Roaming\DofusAppId0_5 2021-05-02 12:58 - 2023-10-17 12:10 - 000000615 _____ () C:\Users\Christophe\AppData\Local\oobelibMkey.log 2021-02-05 16:47 - 2021-02-05 16:47 - 000007601 _____ () C:\Users\Christophe\AppData\Local\Resmon.ResmonCfg ==================== SigCheckExt ========================= 2012-09-28 20:45 - 2012-09-28 20:45 - 000246272 _____ C:\WINDOWS\system32\rtvcvfw64.dll 2023-06-30 16:30 - 2023-05-10 16:21 - 117161984 _____ C:\WINDOWS\svshost.exe 2015-03-17 05:34 - 2015-03-17 05:34 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll 2015-03-17 05:34 - 2015-03-17 05:34 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll 2015-03-17 05:34 - 2015-03-17 05:34 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL 2015-03-17 05:34 - 2015-03-17 05:34 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll 2015-03-17 05:34 - 2015-03-17 05:34 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2015-03-17 05:34 - 2015-03-17 05:34 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2012-09-28 20:45 - 2012-09-28 20:45 - 000247296 _____ C:\WINDOWS\SysWOW64\rtvcvfw32.dll 2024-01-17 10:40 - 2024-01-22 11:17 - 002389504 _____ (Farbar) C:\Users\Christophe\Desktop\FRST64.exe 2021-04-19 21:18 - 2021-04-19 21:18 - 001481013 _____ (Igor Pavlov) C:\Users\Christophe\Downloads\7z2101-x64.exe 2021-02-06 20:04 - 2021-02-06 20:04 - 069192266 _____ (Electronic Arts) C:\Users\Christophe\Downloads\ApexLegendsInstaller.exe 2022-02-20 16:40 - 2022-02-20 16:40 - 066511879 _____ (BetterDiscord) C:\Users\Christophe\Downloads\BetterDiscord-Windows.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {a303b105-3a3a-11ed-b1ff-806e6f6e6963} {056759f0-4f12-11ed-b214-806e6f6e6963} {056759f1-4f12-11ed-b214-806e6f6e6963} {056759f2-4f12-11ed-b214-806e6f6e6963} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume5 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {7737dfad-675a-11eb-b59b-db7460360a71} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {056759f0-4f12-11ed-b214-806e6f6e6963} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {056759f1-4f12-11ed-b214-806e6f6e6963} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {056759f2-4f12-11ed-b214-806e6f6e6963} description UEFI:Network Device Application logicielle (101fffff) -------------------------------- identificateur {a303b105-3a3a-11ed-b1ff-806e6f6e6963} device partition=E: path \EFI\Microsoft\Boot\bootmgfw.efi description UEFI: General UDisk 5.00, Partition 1 Chargeur de démarrage Windows ----------------------------- identificateur {7737dfab-675a-11eb-b59b-db7460360a71} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{7737dfac-675a-11eb-b59b-db7460360a71} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-fr inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{7737dfac-675a-11eb-b59b-db7460360a71} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {7737dfb0-675a-11eb-b59b-db7460360a71} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {7737dfad-675a-11eb-b59b-db7460360a71} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {7737dfb0-675a-11eb-b59b-db7460360a71} device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{7737dfb1-675a-11eb-b59b-db7460360a71} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{7737dfb1-675a-11eb-b59b-db7460360a71} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {7737dfad-675a-11eb-b59b-db7460360a71} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {7737dfb0-675a-11eb-b59b-db7460360a71} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume5 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {7737dfb1-675a-11eb-b59b-db7460360a71} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume7 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================