Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-08.2024 Exécuté par nobru (administrateur) sur NOBRUTE (HP Victus by HP 15L Gaming Desktop TG02-0xxx) (18-08-2024 17:53:20) Exécuté depuis C:\Users\nobru\Desktop\FRST64.exe Profils chargés: nobru Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22631.4037 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe <6> (C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.0.1.281\DiscoverySrv.exe (C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bduserhost.exe <4> (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe (C:\Program Files\CyberGhost 8\Dashboard.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\127.0.2651.105\msedgewebview2.exe <14> (C:\Program Files\CyberGhost 8\Dashboard.Service.exe ->) (Cyberghost SRL -> The OpenVPN Project) C:\Program Files\CyberGhost 8\Applications\VPN\Data\OpenVPN\x64\openvpn.exe (C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.5.15.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.5.15.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe (C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2408.5.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2408.5.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\omenmqtt.exe (C:\Riot Games\Riot Client\RiotClientServices.exe ->) () [Fichier non signé] C:\Riot Games\Riot Client\RiotClientCrashHandler.exe (Discord Inc. -> Discord Inc.) C:\Users\nobru\AppData\Local\Discord\app-1.0.9158\Discord.exe <6> (DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointGpuInfo.exe (DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\AppHelperCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\BridgeCommunication.exe (DriverStore\FileRepository\ipf_cpu.inf_amd64_ac13c23bf8b4219a\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_ac13c23bf8b4219a\ipf_helper.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPEnhance_1.4.4.0_x64__v10z8vjag6ke6\Win32\HPEnhancedLighting.Bg.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.5.15.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2408.5.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe (explorer.exe ->) (Cyberghost SRL -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.exe (explorer.exe ->) (HEIDI COMPUTERS LIMITED -> The Eraser Project) C:\Program Files\Eraser\Eraser.exe (explorer.exe ->) (Mega Limited -> Mega Limited) C:\Users\nobru\AppData\Local\MEGAsync\MEGAsync.exe (explorer.exe ->) (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe (explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Riot Games\Riot Client\RiotClientServices.exe (Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3> (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (services.exe ->) (CYBELSOFT -> ) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloudAgent.exe (services.exe ->) (Cyberghost SRL -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe (services.exe ->) (Cyberghost SRL -> WGHelper) C:\Program Files\CyberGhost 8\Applications\VPN\WGHelper.exe (services.exe ->) (HON HAI PRECISION INDUSTRY CO.LTD. -> ) C:\Program Files\FanControlApp\FanControlApp.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_9f1f5222288bdf88\x64\OmenCap\OmenCap.exe (services.exe ->) (HP Inc. -> HP Inc; HP Development Company, L.P.) C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_191d9fb378307f35\ipfsvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_74e28d819fb21cc3\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_ac13c23bf8b4219a\ipf_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdci.inf_amd64_f5e2912d1d6d0adb\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9d3a92437ffb40b7\RtkAudUService64.exe <2> (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (sihost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_35.52430.841.0_x64__v10z8vjag6ke6\win32\DesktopExtension.exe (sihost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENLightStudio_1.0.47.0_x64__v10z8vjag6ke6\LightStudio-ui\LightStudio-background.exe (svchost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_35.52430.841.0_x64__v10z8vjag6ke6\HP.myHP.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\Overlay\OverlayHelper.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22040.0_x64__8wekyb3d8bbwe\HxAccounts.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22040.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22040.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\nobru\AppData\Local\Microsoft\OneDrive\24.151.0728.0003\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe Impossible d'accéder au processus -> vmmemCmZygote ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1070952 2024-07-08] (Bitdefender SRL -> Bitdefender) HKLM\...\Run: [HPOneAgentService] => C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe [2005008 2024-07-10] (HP Inc. -> HP Inc; HP Development Company, L.P.) HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1074520 2024-03-22] (HEIDI COMPUTERS LIMITED -> The Eraser Project) HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3023152 2024-07-09] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-3498437227-2710467151-1942494557-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [539152 2024-07-30] (HP Inc. -> HP Inc.) HKU\S-1-5-21-3498437227-2710467151-1942494557-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1417696 2024-07-30] (Cyberghost SRL -> CyberGhost S.R.L.) HKU\S-1-5-21-3498437227-2710467151-1942494557-1001\...\Run: [Discord] => C:\Users\nobru\AppData\Local\Discord\Update.exe [1526552 2024-07-30] (Discord Inc. -> GitHub) HKU\S-1-5-21-3498437227-2710467151-1942494557-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36733928 2024-08-12] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3498437227-2710467151-1942494557-1001\...\Run: [MicrosoftEdgeAutoLaunch_55E3274812C197178FB7BB7BE358A19C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814952 2024-08-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3498437227-2710467151-1942494557-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44970408 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd) HKU\S-1-5-21-3498437227-2710467151-1942494557-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [71201128 2024-08-16] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\windows\system32\CNMLMCT.DLL [406528 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.120\Installer\chrmstp.exe [2024-08-16] (Google LLC -> Google LLC) Startup: C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2024-08-08] ShortcutTarget: MEGAsync.lnk -> C:\Users\nobru\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {850EDBFE-FA10-4D3F-AC6A-BF788A98DE91} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.0.1.281\WatchDog.exe [1150456 2024-07-09] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.0.1.281\repair Task: {8E00DB8F-AC66-4837-AD61-47F770A40D6D} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2024-07-23] (Now.gg, INC -> BlueStack Systems, Inc.) Task: {14483477-3875-4CCC-A4F3-199FB9DE5982} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-07-16] (Gen Digital Inc. -> Gen Digital Inc.) Task: {8C3B4252-C0A6-456A-AAB7-63D585027965} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-07-16] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "2857477d-1fb3-457f-aca7-acfef142830f" --version "6.26.11169" --silent Task: {6F553320-934B-4647-8C01-BE4F025570A6} - System32\Tasks\CCleanerSkipUAC - nobru => C:\Program Files\CCleaner\CCleaner.exe [38931368 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd) Task: {35AA342D-6BD5-4B31-9834-D367CA293465} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem129.0.6651.0{1EF938FF-407E-415C-80DF-CB30B13290F2} => C:\Program Files (x86)\Google\GoogleUpdater\129.0.6651.0\updater.exe [4906600 2024-08-11] (Google LLC -> Google LLC) Task: {1827133F-FAA8-40C7-8788-BD1322D7ECD8} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://ABO Task: {07C2E56B-816C-48B5-ABBB-E64857151BF5} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusError Task: {0C794FB6-B86E-4F83-AFAB-7AF37DAE4F51} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BCF Task: {E7B4765C-AF28-4C14-AD00-061F6A9B2BF9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM1 Task: {622FFDE2-F2FB-48DB-A66C-4B85171A0D45} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM2 Task: {8CCD5A8B-C0C0-42BD-812D-233403DE1BF4} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://LaunchUI Task: {2DD7AC09-62BB-42B0-8660-AFE4CF6FA777} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags: Task: {29534482-38FA-414D-A3FC-D0B7967E7957} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckError Task: {F1089C40-85D1-43C2-936B-39ADFD34BAB9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => C:\windows\system32\cmd.exe [323584 2024-07-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckTest Task: {11FD0BF1-CD6D-4880-9C51-6A5A06165FA6} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-SmartCheckTest => c:\Windows\System32\schtasks.exe [258048 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\SmartCheckTest" Task: {E07FCEB7-6AA7-4349-95AF-20BC90413C09} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [731152 2024-07-25] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show Task: {566F8AC8-64B5-4F92-9D49-9F966D107362} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-07-25] (HP Inc. -> HP Inc.) Task: {72C5CB92-82B4-4BE6-A880-5D9C08E27C22} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-07-25] (HP Inc. -> HP Inc.) Task: {E5801F02-5A24-486C-A484-3F0535E3C57D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-07-25] (HP Inc. -> HP Inc.) Task: {3184C76A-230B-451D-B52B-DCCF24C716D2} - System32\Tasks\HP\Consent Manager Launcher => C:\windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice Task: {C7A284F2-F426-4D65-9ABF-156141F9C799} - System32\Tasks\HPOneAgentRepairTask => C:\ProgramData\Package Cache\{28510657-A7F6-4942-AD21-C79028388777}\HPOneAgent.exe [1169480 2024-07-30] (HP Inc. -> HP Inc.) Task: {E3D18008-766F-4487-89DD-A3441200A118} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3498437227-2710467151-1942494557-1001 => C:\Users\nobru\AppData\Local\MEGAsync\MEGAupdater.exe [1815816 2024-07-16] (Mega Limited -> ) Task: {D5E9232B-00A1-4C84-9CF2-0163A9D277DB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28583648 2024-08-10] (Microsoft Corporation -> Microsoft Corporation) Task: {4BD00D14-4707-4CBF-8DD2-F58D80F11266} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28583648 2024-08-10] (Microsoft Corporation -> Microsoft Corporation) Task: {C25B3C67-41F1-44A9-814C-CC658C3D1032} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312416 2024-08-16] (Microsoft Corporation -> Microsoft Corporation) Task: {C9E1F2AB-329E-44BE-8474-D0C4F7636758} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312416 2024-08-16] (Microsoft Corporation -> Microsoft Corporation) Task: {7D9EFD83-DD6A-4C39-9523-35D4CE981C1E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [182240 2024-08-07] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {F9F3EAB6-F34F-4353-B63D-E6824932D066} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3498437227-2710467151-1942494557-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-13] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {FA6C621C-5D74-4DCB-86A5-05CC1C85A6E8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-08-13] (Mozilla Corporation -> Mozilla Foundation) Task: {2F48E039-494D-49A1-A762-93A9B9539CE0} - System32\Tasks\OmenInstallMonitor => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [70104 2024-08-13] (HP Inc. -> HP Inc.) Task: {021D73ED-430A-4B6C-9B44-DDCE85EF687B} - System32\Tasks\OmenInstallMonitorCustomEvent => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [70104 2024-08-13] (HP Inc. -> HP Inc.) Task: {E262B17C-D195-40E6-BBB5-509CDCB8DF94} - System32\Tasks\OmenOverlay => C:\Program Files\HP\Overlay\OverlayHelper.exe [66520 2024-08-13] (HP Inc. -> HP Inc.) Task: {B6E67F61-31DD-4B70-9EEB-53B0E1EA7F35} - System32\Tasks\OmenOverlayCustomEvent => C:\Program Files\HP\Overlay\OverlayHelper.exe [66520 2024-08-13] (HP Inc. -> HP Inc.) Task: {7681AAEE-2B6A-4A97-B992-8A2B9198DD5A} - System32\Tasks\RtkAudUService64_BG => C:\windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9d3a92437ffb40b7\RtkAudUService64.exe [1994024 2023-12-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {50B88085-54FA-4897-BF78-7DD055CEB649} - System32\Tasks\SystemOptimizer => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [159184 2024-08-13] (HP Inc. -> HP Inc.) Task: {017BAF92-8DDA-4858-B3A5-29A67336BE0E} - System32\Tasks\SystemOptimizerCustomEvent => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [159184 2024-08-13] (HP Inc. -> HP Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{00610061-0063-0036-6300-610063003200}: [NameServer] 10.0.0.243 Tcpip\..\Interfaces\{080731f9-399a-4d4c-ad17-17cca8c7afed}: [NameServer] 10.0.0.243 Tcpip\..\Interfaces\{1519d91d-156f-4432-b632-735b18d7a671}: [DhcpNameServer] 192.168.245.103 Tcpip\..\Interfaces\{60f3e1a0-c142-382d-5795-a4096dbd9010}: [NameServer] 10.0.0.243 Tcpip\..\Interfaces\{f20b5a64-0ad0-4ca2-a158-02bb84ed8dee}: [NameServer] 10.0.0.243 Tcpip\..\Interfaces\{f20b5a64-0ad0-4ca2-a158-02bb84ed8dee}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{fe467658-de5b-42d8-b074-301e43c599a8}: [NameServer] 10.0.0.243 Edge: ======= Edge Profile: C:\Users\nobru\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-18] Edge Notifications: Default -> hxxps://www.tiktok.com Edge Extension: (Google Docs hors connexion) - C:\Users\nobru\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-30] Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\nobru\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-08-17] Edge Extension: (Edge relevant text changes) - C:\Users\nobru\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-07-30] FireFox: ======== FF DefaultProfile: dg7x458w.default FF ProfilePath: C:\Users\nobru\AppData\Roaming\Mozilla\Firefox\Profiles\dg7x458w.default [2024-08-02] FF ProfilePath: C:\Users\nobru\AppData\Roaming\Mozilla\Firefox\Profiles\96fd46w7.default-release-1723236673468 [2024-08-18] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\nobru\AppData\Roaming\Mozilla\Firefox\Profiles\96fd46w7.default-release-1723236673468\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-08-09] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext [2024-07-08] [] [non signé] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-07-30] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-07-30] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.21 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2024-07-31] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2024-07-31] <==== ATTENTION Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\nobru\AppData\Local\Google\Chrome\User Data\Default [2024-08-18] CHR Notifications: Default -> hxxps://central.bitdefender.com; hxxps://crotorrents.com; hxxps://forums.futura-sciences.com; hxxps://fr.shopping.rakuten.com; hxxps://web.snapchat.com; hxxps://www.50factory.com; hxxps://www.allocine.fr; hxxps://www.driverscloud.com; hxxps://www.easeus.fr; hxxps://www.facebook.com; hxxps://www.francetvinfo.fr; hxxps://www.lamontagne.fr; hxxps://www.materiel.net; hxxps://www.netflix.com; hxxps://www.tiktok.com; hxxps://www.youtube.com CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\nobru\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-08-14] CHR Extension: (Google Docs hors connexion) - C:\Users\nobru\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-30] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nobru\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-30] CHR Profile: C:\Users\nobru\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-31] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [849328 2024-07-08] (Bitdefender SRL -> Bitdefender) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [849328 2024-07-03] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [849328 2024-07-03] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2963856 2023-07-20] (Bitdefender SRL -> Bitdefender) R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2574864 2023-07-20] (Bitdefender SRL -> Bitdefender) R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [849328 2024-07-03] (Bitdefender SRL -> Bitdefender) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085864 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13995704 2024-08-10] (Microsoft Corporation -> Microsoft Corporation) R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [69088 2024-07-30] (Cyberghost SRL -> CyberGhost S.R.L.) R4 CyberGhostTunnel$CyberGhost-WireGuard-2; C:\Program Files\CyberGhost 8\Applications\VPN\WGHelper.exe [13280 2024-07-30] (Cyberghost SRL -> WGHelper) R2 dptftcs; C:\windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_191d9fb378307f35\ipfsvc.exe [557096 2023-06-23] (Intel Corporation -> Intel Corporation) R2 DriversCloudAgent; C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloudAgent.exe [1807896 2024-05-18] (CYBELSOFT -> ) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2024-08-14] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [475680 2023-04-14] (HP Inc. -> HP Inc.) R2 hp-one-agent-service; C:\Program Files\HP\HP One Agent\hp-one-agent-service.exe [2005008 2024-07-10] (HP Inc. -> HP Inc; HP Development Company, L.P.) R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\AppHelperCap.exe [928192 2024-07-18] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\DiagsCap.exe [926768 2024-07-18] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\NetworkCap.exe [922672 2024-07-18] (HP Inc. -> HP Inc.) R2 HPOmenCap; C:\windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_9f1f5222288bdf88\x64\OmenCap\OmenCap.exe [755216 2024-06-17] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-08-06] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_1d957930b3685886\x64\SysInfoCap.exe [926248 2024-07-18] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe [569008 2024-05-07] (HP Inc. -> HP Inc.) R2 ID19 HP Fan Control Service; C:\Program Files\FanControlApp\FanControlApp.exe [283168 2020-04-29] (HON HAI PRECISION INDUSTRY CO.LTD. -> ) S2 Intel(R) Platform License Manager Service; C:\windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation) R2 ipfsvc; C:\windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_ac13c23bf8b4219a\ipf_uf.exe [2999912 2024-05-22] (Intel Corporation -> Intel Corporation) S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpDefenderCoreService.exe [1377416 2024-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\windows\System32\DriverStore\FileRepository\nvhdci.inf_amd64_f5e2912d1d6d0adb\Display.NvContainer\NVDisplay.Container.exe [1275008 2024-07-31] (NVIDIA Corporation -> NVIDIA Corporation) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [688624 2024-07-09] (Bitdefender SRL -> Bitdefender) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522096 2024-08-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2023-12-21] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933432 2023-12-21] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [282728 2024-07-03] (Bitdefender SRL -> Bitdefender) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9730864 2024-07-09] (Riot Games, Inc. -> Riot Games, Inc.) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [849328 2024-07-03] (Bitdefender SRL -> Bitdefender) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\NisSrv.exe [3236728 2024-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MsMpEng.exe [133688 2024-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 atc; C:\windows\System32\DRIVERS\atc.sys [7183920 2024-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci4; C:\windows\system32\DRIVERS\bddci4.sys [922672 2024-04-22] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S0 bdelam; C:\windows\System32\drivers\bdelam.sys [24568 2023-05-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R3 bdprivmon; C:\windows\system32\DRIVERS\bdprivmon.sys [49200 2023-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender SRL) S3 bduefiscan; C:\windows\system32\DRIVERS\bduefiscan.sys [42432 2024-06-06] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [394176 2024-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.) S3 BTHMODEM; C:\windows\System32\drivers\bthmodem.sys [106496 2023-07-25] (Microsoft Corporation) [Fichier non signé] S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus2.sys [167440 2023-12-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 DriversCloud_amd64; C:\Program Files\Cybelsoft\DriversCloud.com\Drivers\DriversCloud_amd64.sys [24768 2024-02-09] (Cybelsoft -> CybelSoft) R0 fse; C:\windows\System32\drivers\fse.sys [218608 2024-07-30] (Microsoft Windows -> Microsoft Corporation) R1 Gemma; C:\windows\System32\DRIVERS\gemma.sys [1488320 2024-04-08] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA) R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-07] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.) R3 HPOmenCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_ca73a0631db38b6a\x64\hpomencustomcapdriver.sys [25072 2024-06-17] (HP Inc. -> HP Inc.) R2 HpReadHWData; C:\windows\system32\drivers\HpReadHWData.sys [55880 2024-07-30] (HP Inc. -> Windows (R) Win 7 DDK provider) R3 iaLPSS2_I2C_ADL; C:\windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\windows\System32\drivers\iaStorVD.sys [1605320 2023-06-05] (Intel Corporation -> Intel Corporation) R2 Ignisv2; C:\windows\system32\DRIVERS\ignisv2.sys [849968 2024-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R3 IntelGNA; C:\windows\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88760 2023-06-02] (Intel Corporation -> Intel Corporation) R3 ipf_acpi; C:\windows\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_4c3f63d0ffe9d9b8\ipf_acpi.sys [88632 2024-05-22] (Intel Corporation -> Intel Corporation) R3 ipf_cpu; C:\windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_ac13c23bf8b4219a\ipf_cpu.sys [85560 2024-05-22] (Intel Corporation -> Intel Corporation) R3 ipf_lf; C:\windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_ac13c23bf8b4219a\ipf_lf.sys [481896 2024-05-22] (Intel Corporation -> Intel Corporation) S3 rtcx21; C:\windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) R1 rtf64; C:\windows\system32\DRIVERS\rtf64x64.sys [67496 2023-03-23] (Realtek Semiconductor Corp. -> Realtek) S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [174112 2023-12-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2023-12-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R2 trufos; C:\windows\System32\DRIVERS\trufos.sys [629184 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [39676808 2024-07-09] (Riot Games, Inc. -> Riot Games, Inc.) R0 vlflt; C:\windows\System32\DRIVERS\vlflt.sys [1432528 2024-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S3 vmbusproxy; C:\windows\system32\drivers\vmbusproxy.sys [94208 2024-07-30] (Microsoft Windows -> ) S3 WdBoot; C:\windows\system32\drivers\wd\WdBoot.sys [21968 2024-07-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\windows\system32\drivers\wd\WdFilter.sys [602520 2024-07-30] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-07-30] (Microsoft Windows -> Microsoft Corporation) R3 wintun; C:\windows\System32\drivers\wintun.sys [29592 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) R3 WireGuard; C:\windows\System32\drivers\wireguard.sys [489368 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-08-18 17:53 - 2024-08-18 17:53 - 000041677 _____ C:\Users\nobru\Desktop\FRST.txt 2024-08-18 17:52 - 2024-08-18 17:53 - 000000000 ____D C:\FRST 2024-08-18 17:52 - 2024-08-18 17:52 - 000259417 _____ C:\Users\nobru\Desktop\ZHPDiag.txt 2024-08-18 17:49 - 2024-08-18 17:49 - 000000872 _____ C:\Users\nobru\Desktop\ZHPSuite.lnk 2024-08-18 17:49 - 2024-08-18 17:49 - 000000000 ____D C:\Users\nobru\AppData\Local\ZHP 2024-08-18 17:48 - 2024-08-18 17:48 - 003539656 _____ (Nicolas Coolman) C:\Users\nobru\Desktop\ZHPSuite.exe 2024-08-18 17:47 - 2024-08-18 17:47 - 002397184 _____ (Farbar) C:\Users\nobru\Desktop\FRST64.exe 2024-08-18 13:17 - 2024-08-18 13:17 - 000000000 ____D C:\Users\nobru\Downloads\eMule 2024-08-18 13:16 - 2024-08-18 13:18 - 000000000 ____D C:\Users\nobru\AppData\Local\eMule 2024-08-18 13:16 - 2024-08-18 13:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMule 2024-08-18 13:16 - 2024-08-18 13:16 - 000000000 ____D C:\Program Files (x86)\eMule 2024-08-18 12:07 - 2024-08-18 12:20 - 1450969826 _____ C:\Users\nobru\Downloads\Twisters.2024.MULTi.1080p.WEB.H264-TORSADES-Wawacity.ING.mkv 2024-08-17 22:21 - 2024-08-17 22:21 - 000773042 _____ C:\windows\system32\perfh00C.dat 2024-08-17 22:21 - 2024-08-17 22:21 - 000149154 _____ C:\windows\system32\perfc00C.dat 2024-08-17 20:08 - 2024-08-17 20:08 - 000002449 _____ C:\Users\nobru\Desktop\Microsoft Edge.lnk 2024-08-17 15:50 - 2024-08-17 15:50 - 000002820 _____ C:\Users\nobru\Desktop\Snapchat.lnk 2024-08-17 15:50 - 2024-08-17 15:50 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2024-08-17 11:47 - 2024-08-17 11:47 - 000001402 _____ C:\Users\nobru\Desktop\Roblox Player.lnk 2024-08-16 10:46 - 2024-08-16 10:46 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-08-16 10:40 - 2024-08-16 10:40 - 000000000 ____D C:\Users\nobru\AppData\Local\VALORANT 2024-08-16 10:37 - 2024-08-17 22:17 - 000000001 _____ C:\windows\vgkbootstatus.dat 2024-08-16 09:48 - 2024-08-16 09:48 - 000000000 ____D C:\Program Files\Riot Vanguard 2024-08-16 09:38 - 2024-08-16 10:46 - 000000000 ____D C:\ProgramData\Riot Games 2024-08-16 09:38 - 2024-08-16 10:45 - 000000000 ____D C:\Users\nobru\AppData\Roaming\riot-client-ux 2024-08-16 09:38 - 2024-08-16 10:40 - 000000000 ____D C:\Users\nobru\AppData\Local\Riot Games 2024-08-16 09:38 - 2024-08-16 09:51 - 000001629 _____ C:\Users\Public\Desktop\VALORANT.lnk 2024-08-16 09:38 - 2024-08-16 09:48 - 000000000 ____D C:\Riot Games 2024-08-16 09:38 - 2024-08-16 09:38 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games 2024-08-16 09:38 - 2024-08-16 09:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2024-08-14 11:43 - 2024-08-14 11:43 - 000000000 ___SH C:\Users\Public\Shared Files 2024-08-14 11:30 - 2024-08-14 17:56 - 000000000 ____D C:\Users\nobru\AppData\Roaming\EasyAntiCheat 2024-08-14 11:30 - 2024-08-14 11:30 - 000000000 ____D C:\Users\nobru\AppData\Local\CrashReportClient 2024-08-14 11:30 - 2024-08-14 11:30 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2024-08-13 21:36 - 2024-08-13 21:36 - 000001688 _____ C:\windows\system32\Drivers\etc\hosts.rollback 2024-08-13 21:36 - 2022-05-07 07:22 - 000000824 _____ C:\windows\system32\Drivers\etc\hosts.backup 2024-08-13 19:04 - 2024-08-13 19:04 - 000001575 _____ C:\Users\Public\Desktop\Call of Duty - Modern Warfare 2 CR.lnk 2024-08-13 18:49 - 2024-08-14 15:30 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-08-11 00:43 - 2024-08-11 00:43 - 000001086 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2024-08-11 00:43 - 2024-08-11 00:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2024-08-11 00:43 - 2024-08-11 00:43 - 000000000 ____D C:\Program Files\VS Revo Group 2024-08-10 17:21 - 2024-08-18 13:17 - 000000000 ____D C:\ProgramData\eMule 2024-08-09 23:24 - 2024-08-10 00:21 - 000000000 ____D C:\Program Files (x86)\Call of Duty Ghosts 2024-08-09 22:51 - 2024-08-16 10:47 - 000002053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigation privée de Firefox.lnk 2024-08-09 22:51 - 2024-08-16 10:47 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-08-09 22:51 - 2024-08-14 15:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-08-09 22:51 - 2024-08-09 22:51 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk 2024-08-09 22:51 - 2024-08-09 22:51 - 000000000 ____D C:\windows\system32\Tasks\Mozilla 2024-08-09 19:08 - 2024-08-09 19:08 - 000000004 ____H C:\windows\system32\__iw6sp64_ship 2024-08-09 19:08 - 2024-08-09 19:08 - 000000000 ____D C:\Users\nobru\AppData\Local\ElevatedDiagnostics 2024-08-09 12:36 - 2024-03-20 18:54 - 000799592 _____ C:\windows\SysWOW64\IccSdk.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000768872 _____ (Intel(R) Corporation) C:\windows\SysWOW64\IntelOverclockingSDK.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000279296 _____ (Intel(R) Corporation) C:\windows\SysWOW64\XtuCommon.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000277352 _____ (Intel(R) Corporation) C:\windows\SysWOW64\HardwareAccess.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000256768 _____ (Intel(R) Corporation) C:\windows\SysWOW64\XtuApplication.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000099688 _____ (Intel(R) Corporation) C:\windows\SysWOW64\HardwareServices.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000090984 _____ (Intel(R) Corporation) C:\windows\SysWOW64\HardwareServiceInterfaces.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000060264 _____ (Intel(R) Corporation) C:\windows\SysWOW64\IntelBenchmarkSDK.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000060160 _____ (Intel(R) Corporation) C:\windows\SysWOW64\XtuCoreServer.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000055896 _____ (Intel Corporation) C:\windows\system32\Drivers\iocbios2.sys 2024-08-09 12:36 - 2024-03-20 18:54 - 000044120 _____ (Intel Corporation) C:\windows\system32\Drivers\ICCWDT.sys 2024-08-09 12:36 - 2024-03-20 18:54 - 000041320 _____ (Intel Corporation) C:\windows\SysWOW64\PerfTuneAppMutex.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000034552 _____ (Intel(R) Corporation) C:\windows\SysWOW64\HardwareAccessInterfaces.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000033640 _____ ( ) C:\windows\SysWOW64\Interop.IccProxy.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000033024 _____ (Intel(R) Corporation) C:\windows\SysWOW64\XtuInterface.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000029952 _____ (Intel(R) Corporation) C:\windows\SysWOW64\XtuService.exe 2024-08-09 12:36 - 2024-03-20 18:54 - 000029440 _____ (Intel(R) Corporation) C:\windows\SysWOW64\XtuApplicationInterfaces.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000029440 _____ (Intel(R) Corporation) C:\windows\SysWOW64\ProfileHelperModel.dll 2024-08-09 12:36 - 2024-03-20 18:54 - 000028920 _____ (Intel(R) Corporation) C:\windows\SysWOW64\PlatformDetection.dll 2024-08-09 00:01 - 2024-08-09 00:01 - 000000000 ____D C:\Users\Public\Documents\Steam 2024-08-09 00:01 - 2024-08-09 00:01 - 000000000 ____D C:\Users\nobru\AppData\Local\Activision 2024-08-08 23:49 - 2024-08-11 00:27 - 000000000 ____D C:\Users\nobru\Documents\Téléchargements MEGA 2024-08-08 23:47 - 2024-08-08 23:47 - 000000000 ___RD C:\Users\nobru\Documents\MEGA 2024-08-08 23:46 - 2024-08-08 23:46 - 000000000 ____D C:\windows\system32\Tasks\MEGA 2024-08-08 23:46 - 2024-08-08 23:46 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync 2024-08-08 23:46 - 2024-08-08 23:46 - 000000000 ____D C:\Users\nobru\AppData\Local\MEGAsync 2024-08-08 23:46 - 2024-08-08 23:46 - 000000000 ____D C:\Users\nobru\AppData\Local\Mega Limited 2024-08-08 23:38 - 2024-08-15 10:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab 2024-08-08 23:38 - 2024-08-13 21:35 - 000000000 ____D C:\windows\SysWOW64\directx 2024-08-08 23:38 - 2024-08-10 00:34 - 000001804 _____ C:\Users\nobru\Desktop\Call of Duty BlackOps1.lnk 2024-08-08 23:29 - 2024-08-15 10:26 - 000000000 ____D C:\Games 2024-08-08 23:11 - 2024-08-15 15:44 - 000000000 ____D C:\Users\nobru\AppData\Roaming\bittorrent 2024-08-08 23:11 - 2024-08-15 10:19 - 000000000 ____D C:\Users\nobru\AppData\Local\BitTorrentHelper 2024-08-08 23:11 - 2024-08-08 23:11 - 000000923 _____ C:\Users\nobru\Desktop\BitTorrent.lnk 2024-08-08 23:11 - 2024-08-08 23:11 - 000000000 ____D C:\Users\nobru\AppData\LocalLow\BitTorrent.WebView2 2024-08-08 10:51 - 2024-08-08 10:51 - 000000000 ____D C:\Users\nobru\AppData\Local\Sony Corporation 2024-08-08 10:44 - 2024-08-16 10:40 - 000002102 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS Remote Play.lnk 2024-08-08 10:44 - 2024-08-08 10:44 - 000000000 ____D C:\Program Files (x86)\Sony 2024-08-08 00:00 - 2024-08-10 00:34 - 000000000 ____D C:\Users\nobru\Documents\mes icone 2024-08-07 23:54 - 2024-08-07 23:54 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Unreal Engine 2024-08-07 16:24 - 2024-07-31 20:29 - 002040696 _____ C:\windows\system32\vulkaninfo-1-999-0-0-0.exe 2024-08-07 16:24 - 2024-07-31 20:29 - 002040696 _____ C:\windows\system32\vulkaninfo.exe 2024-08-07 16:24 - 2024-07-31 20:29 - 001583888 _____ C:\windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-08-07 16:24 - 2024-07-31 20:29 - 001583888 _____ C:\windows\SysWOW64\vulkaninfo.exe 2024-08-07 16:24 - 2024-07-31 20:29 - 001446672 _____ C:\windows\system32\vulkan-1-999-0-0-0.dll 2024-08-07 16:24 - 2024-07-31 20:29 - 001446672 _____ C:\windows\system32\vulkan-1.dll 2024-08-07 16:24 - 2024-07-31 20:29 - 001296760 _____ C:\windows\SysWOW64\vulkan-1-999-0-0-0.dll 2024-08-07 16:24 - 2024-07-31 20:29 - 001296760 _____ C:\windows\SysWOW64\vulkan-1.dll 2024-08-07 16:24 - 2024-07-31 20:29 - 000478360 _____ (Khronos Group) C:\windows\system32\OpenCL.dll 2024-08-07 16:24 - 2024-07-31 20:29 - 000374400 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll 2024-08-07 16:24 - 2024-07-31 20:26 - 071738928 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys 2024-08-07 16:24 - 2024-07-31 20:26 - 001078920 _____ (NVIDIA Corporation) C:\windows\system32\nvml.dll 2024-08-07 16:24 - 2024-07-31 20:26 - 000670360 _____ (NVIDIA Corporation) C:\windows\system32\nvofapi64.dll 2024-08-07 16:24 - 2024-07-31 20:26 - 000505480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvofapi.dll 2024-08-07 16:24 - 2024-07-31 20:25 - 002178712 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll 2024-08-07 16:24 - 2024-07-31 20:25 - 001629848 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll 2024-08-07 16:24 - 2024-07-31 20:25 - 001547304 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll 2024-08-07 16:24 - 2024-07-31 20:25 - 001203248 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll 2024-08-07 16:24 - 2024-07-31 20:25 - 001034800 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll 2024-08-07 16:24 - 2024-07-31 20:25 - 000856704 _____ (NVIDIA Corporation) C:\windows\system32\nvidia-smi.exe 2024-08-07 16:24 - 2024-07-31 20:25 - 000797336 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll 2024-08-07 16:24 - 2024-07-31 20:24 - 016199816 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll 2024-08-07 16:24 - 2024-07-31 20:24 - 014270088 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll 2024-08-07 16:24 - 2024-07-31 20:24 - 006914600 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll 2024-08-07 16:24 - 2024-07-31 20:24 - 005910680 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll 2024-08-07 16:24 - 2024-07-31 20:24 - 005349416 _____ (NVIDIA Corporation) C:\windows\system32\nvcudadebugger.dll 2024-08-07 16:24 - 2024-07-31 20:24 - 003788416 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll 2024-08-07 16:24 - 2024-07-31 20:24 - 000461872 _____ (NVIDIA Corporation) C:\windows\system32\nvdebugdump.exe 2024-08-07 16:24 - 2024-07-31 20:23 - 007133544 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll 2024-08-07 16:24 - 2024-07-31 20:23 - 006212184 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll 2024-08-07 16:24 - 2024-07-31 20:23 - 000853656 _____ (NVIDIA Corporation) C:\windows\system32\MCU.exe 2024-08-07 16:24 - 2024-07-31 00:10 - 000127237 _____ C:\windows\system32\nvinfo.pb 2024-08-07 16:05 - 2024-08-07 16:05 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes (Preview).lnk 2024-08-06 11:09 - 2024-08-06 11:09 - 000002088 _____ C:\Users\nobru\Desktop\BrawlStars.lnk 2024-08-03 19:55 - 2024-08-03 19:55 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2024-08-03 19:54 - 2024-08-18 16:58 - 000000000 ____D C:\Users\nobru\AppData\Local\Discord 2024-08-03 19:54 - 2024-08-03 19:54 - 000000000 ____D C:\Program Files\JBL 2024-08-02 23:01 - 2024-08-02 23:01 - 000004096 ___SH C:\{72F820D0-424A-498E-A8F7-FAE0395FD535}.CBM 2024-08-02 22:28 - 2024-08-02 22:28 - 000487936 ___SH C:\EUMONBMP.SYS 2024-08-01 16:26 - 2024-08-01 16:26 - 000000000 ____D C:\Users\nobru\AppData\Local\Backup 2024-08-01 16:09 - 2023-12-21 10:43 - 000174112 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudmdm.sys 2024-08-01 16:09 - 2023-12-21 10:43 - 000167440 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudbus2.sys 2024-08-01 16:09 - 2023-12-21 10:43 - 000050720 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ss_conn_usb_driver2.sys 2024-08-01 16:08 - 2024-08-01 16:09 - 000000000 ____D C:\ProgramData\Samsung 2024-08-01 16:08 - 2024-08-01 16:08 - 000000000 ____D C:\Program Files\Samsung 2024-07-31 19:58 - 2024-07-31 19:58 - 000000000 ____D C:\Users\nobru\AppData\Local\unali-10582437 2024-07-31 19:58 - 2024-07-31 19:58 - 000000000 ____D C:\Users\nobru\AppData\Local\unali-10580593 2024-07-31 19:56 - 2024-07-31 19:56 - 000000000 ____D C:\windows\system32\appmgmt 2024-07-31 18:22 - 2024-08-03 23:45 - 000000000 ____D C:\Users\nobru\AppData\Local\WonderShare 2024-07-31 18:22 - 2024-07-31 18:22 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Apple Computer 2024-07-31 18:22 - 2024-07-31 18:22 - 000000000 ____D C:\Users\nobru\AppData\Local\Apple Computer 2024-07-31 18:22 - 2024-07-31 18:22 - 000000000 ____D C:\ProgramData\SystemAcCrux 2024-07-31 18:22 - 2024-07-31 18:22 - 000000000 ____D C:\Program Files (x86)\EaseUS 2024-07-31 18:21 - 2024-08-03 23:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2024-07-31 18:21 - 2024-07-31 20:09 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Wondershare 2024-07-31 18:21 - 2024-07-31 18:21 - 000000000 ____D C:\Users\nobru\AppData\Roaming\EaseUS 2024-07-31 18:21 - 2024-07-31 18:21 - 000000000 ____D C:\ProgramData\Apple 2024-07-31 18:20 - 2024-08-03 23:47 - 000000000 ____D C:\ProgramData\Wondershare 2024-07-31 18:19 - 2024-07-31 18:21 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2024-07-31 18:18 - 2024-07-31 18:24 - 000000000 ____D C:\Users\nobru\.android 2024-07-31 18:15 - 2024-07-31 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie 2024-07-31 18:15 - 2024-07-31 19:57 - 000000000 ____D C:\Program Files (x86)\iMobie 2024-07-31 18:15 - 2024-07-31 18:16 - 000000000 ____D C:\Users\nobru\AppData\Roaming\iMobie 2024-07-31 18:15 - 2024-07-31 18:15 - 000000000 ____D C:\Users\nobru\AppData\Local\iMobie_Inc 2024-07-31 17:57 - 2024-08-18 17:44 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-07-31 17:57 - 2024-07-31 17:57 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Mozilla 2024-07-31 17:57 - 2024-07-31 17:57 - 000000000 ____D C:\Users\nobru\AppData\Local\Mozilla 2024-07-31 17:34 - 2024-08-17 11:47 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox 2024-07-31 17:34 - 2024-08-04 11:57 - 000000000 ____D C:\Users\nobru\AppData\Local\Roblox 2024-07-31 17:31 - 2024-07-31 17:31 - 000002029 _____ C:\Users\nobru\Desktop\BlueStacks X.lnk 2024-07-31 17:26 - 2024-08-02 12:15 - 000000000 ____D C:\KPRM 2024-07-31 17:21 - 2024-08-08 00:01 - 000000354 _____ C:\Users\nobru\Desktop\HelloModKit.url 2024-07-31 16:08 - 2024-07-31 16:08 - 000000000 ____H C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2024-07-31 15:28 - 2024-07-31 15:28 - 000000000 ____D C:\Users\nobru\Documents\Rockstar Games 2024-07-31 12:46 - 2024-07-31 12:46 - 000000000 ____D C:\Users\nobru\Documents\My Games 2024-07-31 12:46 - 2024-07-31 12:46 - 000000000 ____D C:\Users\nobru\AppData\Local\Rocket League 2024-07-31 12:35 - 2024-08-18 17:52 - 000000000 ____D C:\Users\nobru\AppData\Roaming\ZHP 2024-07-31 12:31 - 2024-07-31 12:31 - 000000000 ____D C:\Users\nobru\AppData\Local\FortniteGame 2024-07-31 12:28 - 2024-07-31 12:28 - 000000368 _____ C:\Users\nobru\Desktop\Rocket League®.url 2024-07-31 12:26 - 2024-08-01 12:34 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Excel 2024-07-31 12:26 - 2024-07-31 12:26 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Office 2024-07-31 12:26 - 2024-07-31 12:26 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\AddIns 2024-07-31 12:11 - 2024-07-31 12:11 - 000000354 _____ C:\Users\nobru\Desktop\Fortnite.url 2024-07-31 12:09 - 2024-08-18 17:44 - 000000000 ____D C:\Users\nobru\AppData\Roaming\vlc 2024-07-31 12:09 - 2024-07-31 12:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2024-07-31 12:09 - 2024-07-31 12:09 - 000000000 ____D C:\Program Files (x86)\VideoLAN 2024-07-31 11:22 - 2024-07-31 17:13 - 000000000 ____D C:\Program Files\Epic Games 2024-07-31 11:18 - 2024-08-16 10:47 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2024-07-31 11:18 - 2024-08-14 11:30 - 000000000 ____D C:\Users\nobru\AppData\Local\UnrealEngine 2024-07-31 11:18 - 2024-08-07 22:33 - 000001426 _____ C:\Users\Public\Desktop\EpicGames.lnk 2024-07-31 11:18 - 2024-08-06 20:55 - 000000000 ____D C:\Users\nobru\AppData\Local\EpicGamesLauncher 2024-07-31 11:18 - 2024-07-31 12:46 - 000000000 ____D C:\Users\nobru\AppData\Local\Epic Games 2024-07-31 11:18 - 2024-07-31 11:18 - 000000000 ____D C:\Users\nobru\AppData\Local\UnrealEngineLauncher 2024-07-31 11:17 - 2024-07-31 11:18 - 000000000 ____D C:\ProgramData\Epic 2024-07-31 11:17 - 2024-07-31 11:18 - 000000000 ____D C:\Program Files (x86)\Epic Games 2024-07-31 10:21 - 2024-08-18 14:59 - 000000000 ____D C:\Users\nobru\AppData\Roaming\discord 2024-07-31 10:21 - 2024-08-16 09:17 - 000002254 _____ C:\Users\nobru\Desktop\Discord.lnk 2024-07-31 10:21 - 2024-08-03 19:55 - 000000000 ____D C:\Users\nobru\AppData\Local\SquirrelTemp 2024-07-31 10:02 - 2024-07-31 10:02 - 000000000 ___HD C:\ProgramData\CanonBJ 2024-07-31 09:59 - 2024-08-09 12:36 - 000000000 ____D C:\SWSetup 2024-07-31 09:59 - 2024-05-16 21:05 - 011806664 _____ (Realtek Semiconductor Corporation ) C:\windows\system32\Drivers\rtwlane.sys 2024-07-31 09:58 - 2024-07-31 09:58 - 000001096 _____ C:\Users\nobru\Desktop\CyberGhost 8.lnk 2024-07-31 04:12 - 2024-07-31 04:12 - 000000000 __HDL C:\System.sav 2024-07-31 03:38 - 2024-07-30 18:57 - 000000000 ____D C:\windows\HoloShell 2024-07-31 03:38 - 2024-07-30 18:47 - 000000000 ____D C:\windows\TextInput 2024-07-31 03:38 - 2023-06-05 11:53 - 001605320 _____ (Intel Corporation) C:\windows\system32\Drivers\iaStorVD.sys 2024-07-31 03:38 - 2023-06-05 11:53 - 000029384 _____ (Intel Corporation) C:\windows\system32\RstMwEventLogMsg.dll 2024-07-31 03:38 - 2022-05-06 23:02 - 000000002 _____ C:\windows\system32\hologramcompositor.lock 2024-07-30 23:49 - 2024-08-06 19:51 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2024-07-30 23:36 - 2024-07-30 23:36 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Greenshot 2024-07-30 23:36 - 2024-07-30 23:36 - 000000000 ____D C:\Users\nobru\AppData\Local\Greenshot 2024-07-30 23:36 - 2024-07-30 23:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Greenshot 2024-07-30 23:36 - 2024-07-30 23:36 - 000000000 ____D C:\Program Files\Greenshot 2024-07-30 23:30 - 2024-08-02 16:18 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Winamp 2024-07-30 23:30 - 2024-08-01 11:53 - 000000000 ____D C:\Program Files (x86)\Winamp 2024-07-30 23:01 - 2024-07-30 23:01 - 000000000 ____D C:\ProgramData\Steam 2024-07-30 23:01 - 2024-07-30 23:01 - 000000000 ____D C:\ProgramData\Socialclub 2024-07-30 23:00 - 2024-07-30 23:00 - 000000000 ____D C:\Users\nobru\AppData\Local\Rockstar Games 2024-07-30 22:59 - 2024-07-30 22:59 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2024-07-30 22:54 - 2024-07-30 23:00 - 000000896 _____ C:\Users\Public\Desktop\Grand Theft Auto V.lnk 2024-07-30 22:54 - 2024-07-30 23:00 - 000000000 ____D C:\Program Files (x86)\Grand Theft Auto V 2024-07-30 22:54 - 2024-07-30 22:54 - 000000908 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V.lnk 2024-07-30 22:01 - 2024-07-30 22:59 - 000000000 ____D C:\Program Files\Rockstar Games 2024-07-30 22:00 - 2024-07-30 22:00 - 000000000 ____D C:\Users\nobru\AppData\Local\HD-Player 2024-07-30 21:59 - 2024-08-15 17:29 - 000000000 ____D C:\Users\nobru\AppData\Local\BlueStacks X 2024-07-30 21:59 - 2024-08-08 23:46 - 000000000 ____D C:\Users\nobru\AppData\Local\cache 2024-07-30 21:59 - 2024-07-30 21:59 - 000000000 ____D C:\Users\nobru\AppData\Local\BSXCache 2024-07-30 21:58 - 2024-08-15 17:29 - 000000000 ____D C:\ProgramData\bst_boost_interprocess 2024-07-30 21:58 - 2024-07-30 21:58 - 000003922 _____ C:\windows\system32\Tasks\BlueStacksHelper_nxt 2024-07-30 21:58 - 2024-07-30 21:58 - 000000000 ____D C:\Users\nobru\AppData\Roaming\NVIDIA 2024-07-30 21:58 - 2024-07-30 21:57 - 000006579 _____ C:\Users\nobru\-1.14-windows.xml 2024-07-30 21:57 - 2024-08-15 17:29 - 000000000 ____D C:\ProgramData\BlueStacks_nxt 2024-07-30 21:57 - 2024-07-30 21:57 - 000000000 ____D C:\Program Files\BlueStacks_nxt 2024-07-30 21:56 - 2024-07-30 21:56 - 000000000 ____D C:\Users\nobru\AppData\Local\PeerDistRepub 2024-07-30 21:56 - 2024-07-30 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks X 2024-07-30 21:56 - 2024-07-30 21:56 - 000000000 ____D C:\Program Files (x86)\BlueStacks X 2024-07-30 21:55 - 2024-07-30 21:57 - 000000000 ____D C:\Users\nobru\AppData\Local\Bluestacks 2024-07-30 21:55 - 2024-07-30 21:55 - 000000000 ____D C:\Users\Public\BlueStacks 2024-07-30 21:52 - 2024-07-30 21:52 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\MMC 2024-07-30 21:51 - 2024-08-17 22:14 - 000000435 _____ C:\windows\system32\Drivers\etc\hosts.ics 2024-07-30 21:50 - 2024-08-14 17:25 - 000000000 ____D C:\Program Files\Hyper-V 2024-07-30 21:50 - 2024-07-30 21:50 - 000000000 ___SD C:\windows\system32\containers 2024-07-30 21:50 - 2024-07-30 21:50 - 000000000 ____D C:\windows\system32\HvsiSettingsProviders 2024-07-30 21:50 - 2024-07-30 21:50 - 000000000 ____D C:\windows\system32\BestPractices 2024-07-30 21:46 - 2024-08-14 17:25 - 000000000 ___SD C:\windows\system32\AppV 2024-07-30 21:46 - 2024-08-14 17:25 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-07-30 21:46 - 2024-07-30 21:48 - 000000000 ____D C:\windows\CSC 2024-07-30 21:46 - 2024-07-30 21:46 - 000000000 __SHD C:\windows\BitLockerDiscoveryVolumeContents 2024-07-30 21:46 - 2024-07-30 21:46 - 000000000 ____D C:\windows\system32\Drivers\mde 2024-07-30 21:46 - 2024-07-30 21:46 - 000000000 ____D C:\windows\RemotePackages 2024-07-30 21:39 - 2024-07-30 21:39 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72} 2024-07-30 21:39 - 2024-07-30 21:39 - 000000000 ____D C:\ProgramData\Intel Package Cache {9f9c9e51-d42f-4462-a27a-7d419da18045} 2024-07-30 21:39 - 2024-07-30 21:39 - 000000000 ____D C:\ProgramData\Intel Package Cache {58E22E6B-0E58-4E93-AF9A-036556EB66F5} 2024-07-30 21:39 - 2024-07-30 21:39 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700} 2024-07-30 21:39 - 2024-07-30 21:39 - 000000000 ____D C:\Program Files (x86)\Intel 2024-07-30 21:39 - 2024-06-14 08:56 - 000069668 _____ C:\windows\rtl8822c_mp_chip_bt40_fw_asic_rom_patch_new 2024-07-30 21:39 - 2024-06-14 08:56 - 000056468 _____ C:\windows\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new 2024-07-30 21:39 - 2024-06-14 08:56 - 000005780 _____ C:\windows\PidVid_List 2024-07-30 21:31 - 2024-07-30 21:31 - 000000000 ____D C:\Users\nobru\AppData\Local\CEF 2024-07-30 21:31 - 2024-07-30 21:31 - 000000000 ____D C:\Users\nobru\ansel 2024-07-30 21:30 - 2024-07-30 21:30 - 000000000 ____D C:\Users\nobru\AppData\LocalLow\NVIDIA 2024-07-30 21:28 - 2024-07-11 00:29 - 000121872 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda64v.sys 2024-07-30 21:28 - 2024-03-26 19:21 - 000060240 ____N (NVIDIA Corporation) C:\windows\system32\Drivers\nvvhci.sys 2024-07-30 21:27 - 2024-08-14 09:55 - 000004250 _____ C:\windows\system32\Tasks\SystemOptimizerCustomEvent 2024-07-30 21:27 - 2024-08-14 09:55 - 000003848 _____ C:\windows\system32\Tasks\SystemOptimizer 2024-07-30 21:26 - 2024-08-14 09:56 - 000004214 _____ C:\windows\system32\Tasks\OmenOverlayCustomEvent 2024-07-30 21:26 - 2024-08-14 09:56 - 000003812 _____ C:\windows\system32\Tasks\OmenOverlay 2024-07-30 21:25 - 2024-08-18 09:58 - 000000000 ____D C:\Users\nobru\AppData\Local\OGH 2024-07-30 21:25 - 2024-08-14 09:56 - 000004274 _____ C:\windows\system32\Tasks\OmenInstallMonitorCustomEvent 2024-07-30 21:25 - 2024-08-14 09:56 - 000003872 _____ C:\windows\system32\Tasks\OmenInstallMonitor 2024-07-30 21:25 - 2024-07-30 21:25 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_HpReadHWData_01011.Wdf 2024-07-30 21:21 - 2024-07-30 21:21 - 000000000 ____D C:\Users\nobru\AppData\Local\OneDrive 2024-07-30 21:20 - 2024-07-30 21:20 - 000000000 ____D C:\Users\nobru\Intel 2024-07-30 21:20 - 2024-07-30 21:20 - 000000000 ____D C:\Program Files\Intel 2024-07-30 21:20 - 2024-06-23 17:02 - 001344456 _____ (Realtek ) C:\windows\system32\Drivers\rt640x64.sys 2024-07-30 21:19 - 2024-07-30 21:19 - 000000000 ____D C:\Users\nobru\AppData\Roaming\WinRAR 2024-07-30 21:19 - 2024-07-30 21:19 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2024-07-30 21:19 - 2024-07-30 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2024-07-30 21:19 - 2024-07-30 21:19 - 000000000 ____D C:\Program Files\WinRAR 2024-07-30 20:16 - 2024-08-16 10:47 - 000001835 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eraser.lnk 2024-07-30 20:16 - 2024-08-01 12:47 - 000000000 ____D C:\Program Files\Eraser 2024-07-30 20:16 - 2024-07-30 20:16 - 000000000 ____D C:\Users\nobru\AppData\Local\Eraser 6 2024-07-30 20:15 - 2024-07-30 20:15 - 000000000 ____D C:\ProgramData\Piriform 2024-07-30 20:14 - 2024-08-18 09:58 - 000000000 ____D C:\Program Files\CCleaner 2024-07-30 20:14 - 2024-08-10 14:01 - 000004210 _____ C:\windows\system32\Tasks\CCleaner Update 2024-07-30 20:14 - 2024-07-30 21:47 - 000000666 _____ C:\windows\Tasks\CCleanerCrashReporting.job 2024-07-30 20:14 - 2024-07-30 21:14 - 000003382 _____ C:\windows\system32\Tasks\CCleanerCrashReporting 2024-07-30 20:14 - 2024-07-30 20:14 - 000002888 _____ C:\windows\system32\Tasks\CCleanerSkipUAC - nobru 2024-07-30 20:14 - 2024-07-30 20:14 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk 2024-07-30 20:14 - 2024-07-30 20:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2024-07-30 20:06 - 2024-07-30 20:06 - 000026169 _____ C:\windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-07-30 20:06 - 2024-07-30 20:06 - 000026169 _____ C:\windows\system32\IntegratedServicesRegionPolicySet.json 2024-07-30 20:03 - 2024-08-14 21:01 - 000000000 ____D C:\ProgramData\driverscloud.com 2024-07-30 20:03 - 2024-07-30 20:03 - 000000000 ____D C:\Users\nobru\AppData\Local\driverscloud 2024-07-30 20:03 - 2024-07-30 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com 2024-07-30 20:03 - 2024-07-30 20:03 - 000000000 ____D C:\Program Files\Cybelsoft 2024-07-30 19:55 - 2024-07-31 11:09 - 000000000 ____D C:\windows\Firmware 2024-07-30 19:55 - 2023-12-10 22:43 - 006144872 _____ (Realtek Semiconductor Corp.) C:\windows\system32\Drivers\RTKVHD64.sys 2024-07-30 19:52 - 2024-07-30 19:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2024-07-30 19:34 - 2024-07-30 19:34 - 000000980 _____ C:\windows\system32\x509Req.pem 2024-07-30 19:33 - 2024-07-30 19:33 - 000003894 _____ C:\windows\system32\Tasks\HPOneAgentRepairTask 2024-07-30 19:29 - 2024-08-14 11:30 - 000000000 ____D C:\windows\system32\MRT 2024-07-30 19:27 - 2024-08-16 10:47 - 000108476 _____ C:\ProgramData\vpn.uninstall.1722359890.bdinstall.v2.bin 2024-07-30 19:15 - 2024-08-16 10:47 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-07-30 19:15 - 2024-08-16 09:18 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-07-30 19:15 - 2024-07-30 19:15 - 000000000 ____D C:\Users\nobru\AppData\Local\Google 2024-07-30 19:14 - 2024-07-30 19:14 - 000000000 ____D C:\windows\system32\Tasks\GoogleSystem 2024-07-30 19:14 - 2024-07-30 19:14 - 000000000 ____D C:\Program Files\Google 2024-07-30 19:14 - 2024-07-30 19:14 - 000000000 ____D C:\Program Files (x86)\Google 2024-07-30 19:12 - 2024-07-30 19:12 - 000000000 ____D C:\Users\nobru\AppData\Local\Comms 2024-07-30 19:10 - 2024-07-30 19:10 - 000000318 _____ C:\windows\system32\httpproxy.json 2024-07-30 19:10 - 2024-07-30 19:10 - 000000027 _____ C:\windows\system32\ctc.json 2024-07-30 19:09 - 2024-08-18 13:25 - 000000000 ____D C:\Users\nobru\AppData\Local\CyberGhost 2024-07-30 19:09 - 2024-07-30 19:09 - 000000000 ____D C:\Users\nobru\AppData\Roaming\CyberGhost 2024-07-30 19:09 - 2024-07-30 19:09 - 000000000 ____D C:\Users\nobru\AppData\Local\IsolatedStorage 2024-07-30 19:09 - 2024-07-30 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 8 2024-07-30 19:09 - 2024-07-30 19:09 - 000000000 ____D C:\Program Files\TAP-Windows 2024-07-30 19:09 - 2024-07-30 19:09 - 000000000 ____D C:\Program Files\CyberGhost 8 2024-07-30 19:08 - 2024-08-16 10:47 - 000186940 _____ C:\ProgramData\vpn.1722359324.bdinstall.v2.bin 2024-07-30 19:05 - 2024-08-16 10:47 - 000696648 _____ C:\ProgramData\cl.1722359028.bdinstall.v2.bin 2024-07-30 19:05 - 2024-08-16 10:40 - 000130580 _____ C:\ProgramData\cl.kit.1722359027.bdinstall.v2.bin 2024-07-30 19:04 - 2024-07-30 19:04 - 000003846 _____ C:\windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2024-07-30 19:04 - 2024-07-30 19:04 - 000002385 _____ C:\Users\Public\Desktop\Bitdefender.lnk 2024-07-30 19:04 - 2024-07-30 19:04 - 000000000 ____D C:\windows\system32\elambkup 2024-07-30 19:04 - 2024-07-30 19:04 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Bitdefender Security App 2024-07-30 19:04 - 2024-07-30 19:04 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Bitdefender 2024-07-30 19:04 - 2024-07-30 19:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security 2024-07-30 19:04 - 2024-07-30 19:04 - 000000000 ____D C:\ProgramData\Gemma 2024-07-30 19:04 - 2024-07-30 19:04 - 000000000 ____D C:\ProgramData\BDLogging 2024-07-30 19:04 - 2024-07-30 19:04 - 000000000 ____D C:\ProgramData\Atc 2024-07-30 19:04 - 2024-07-30 19:04 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 2024-07-30 19:03 - 2024-07-30 19:52 - 000000000 ____D C:\Program Files\Bitdefender 2024-07-30 19:03 - 2024-07-30 19:19 - 000000000 ____D C:\ProgramData\Bitdefender 2024-07-30 19:03 - 2024-07-30 19:04 - 000000000 ____D C:\Program Files\Common Files\Bitdefender 2024-07-30 19:02 - 2024-08-16 10:43 - 000145120 _____ C:\ProgramData\agent.1722358969.bdinstall.v2.bin 2024-07-30 19:02 - 2024-07-30 19:02 - 000000000 ____D C:\Users\nobru\AppData\Local\Bitdefender 2024-07-30 19:02 - 2024-07-30 19:02 - 000000000 ____D C:\ProgramData\Bitdefender Agent 2024-07-30 19:02 - 2024-07-30 19:02 - 000000000 ____D C:\Program Files\Bitdefender Agent 2024-07-30 18:57 - 2024-08-15 09:33 - 000000000 ____D C:\Users\nobru\AppData\Local\HP 2024-07-30 18:57 - 2024-08-02 10:03 - 000000000 ____D C:\windows\system32\Tasks\Hewlett-Packard 2024-07-30 18:52 - 2024-08-18 10:32 - 000000000 ____D C:\Users\nobru\AppData\Local\D3DSCache 2024-07-30 18:51 - 2024-08-18 09:58 - 000000000 ___RD C:\Users\nobru\OneDrive 2024-07-30 18:51 - 2024-08-17 19:01 - 000000000 ____D C:\Users\nobru\AppData\Local\CrashDumps 2024-07-30 18:51 - 2024-08-10 15:41 - 000003592 _____ C:\windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3498437227-2710467151-1942494557-1001 2024-07-30 18:51 - 2024-08-10 15:41 - 000003364 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3498437227-2710467151-1942494557-1001 2024-07-30 18:51 - 2024-08-10 15:41 - 000002428 _____ C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-07-30 18:51 - 2024-08-03 21:11 - 000000000 ____D C:\Users\nobru\AppData\Local\PlaceholderTileLogoFolder 2024-07-30 18:51 - 2024-07-30 18:57 - 000000000 ____D C:\Users\nobru\AppData\Local\Publishers 2024-07-30 18:51 - 2024-07-30 18:51 - 000000000 ___HD C:\OneDriveTemp 2024-07-30 18:50 - 2024-07-30 18:50 - 000000000 ____D C:\Users\nobru\AppData\Local\DBG 2024-07-30 18:49 - 2024-08-17 15:46 - 000000000 ____D C:\Users\nobru\AppData\Local\Packages 2024-07-30 18:49 - 2024-08-14 11:31 - 000000000 ____D C:\Users\nobru\AppData\Local\NVIDIA Corporation 2024-07-30 18:49 - 2024-08-08 10:23 - 000000000 ____D C:\Users\nobru\AppData\Local\NVIDIA 2024-07-30 18:49 - 2024-07-30 18:56 - 000000000 ____D C:\Users\nobru\AppData\Local\ConnectedDevicesPlatform 2024-07-30 18:49 - 2024-07-30 18:49 - 000000000 ___SD C:\Users\nobru\AppData\Roaming\Microsoft\Crypto 2024-07-30 18:49 - 2024-07-30 18:49 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Vault 2024-07-30 18:49 - 2024-07-30 18:49 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Network 2024-07-30 18:49 - 2024-07-30 18:49 - 000000000 ____D C:\Users\nobru\AppData\Roaming\HP 2024-07-30 18:49 - 2024-07-30 18:49 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Adobe 2024-07-30 18:49 - 2024-07-30 18:49 - 000000000 ____D C:\Users\nobru\AppData\Local\VirtualStore 2024-07-30 18:49 - 2024-07-30 18:49 - 000000000 ____D C:\Users\nobru\AppData\Local\SoundResearch 2024-07-30 18:47 - 2024-08-14 17:25 - 000000000 ____D C:\windows\system32\Microsoft-Edge-WebView 2024-07-30 18:47 - 2024-07-30 21:46 - 000000000 ____D C:\windows\InboxApps 2024-07-30 18:47 - 2024-07-30 18:47 - 000000000 ____D C:\windows\SysWOW64\DDFs 2024-07-30 18:43 - 2024-07-30 18:43 - 000060462 _____ C:\windows\SysWOW64\ctac.json 2024-07-30 18:43 - 2024-07-30 18:43 - 000060462 _____ C:\windows\system32\ctac.json 2024-07-30 18:36 - 2024-07-30 18:36 - 000000000 ___SD C:\Users\nobru\AppData\Roaming\Microsoft\SystemCertificates 2024-07-30 18:35 - 2024-08-17 22:58 - 000000000 ____D C:\Users\nobru 2024-07-30 18:35 - 2024-07-30 18:59 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Spelling 2024-07-30 18:35 - 2024-07-30 18:49 - 000000000 ____D C:\Users\nobru\AppData\Roaming\Microsoft\Windows 2024-07-30 18:35 - 2024-07-30 18:35 - 000000020 ___SH C:\Users\nobru\ntuser.ini 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\Voisinage réseau 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\Voisinage d'impression 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\Modèles 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\Mes documents 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\Menu Démarrer 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\Documents\Mes vidéos 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\Documents\Mes images 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\Documents\Ma musique 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 _SHDL C:\Users\nobru\AppData\Local\Historique 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 ___SD C:\Users\nobru\AppData\Roaming\Microsoft\Protect 2024-07-30 18:35 - 2024-07-30 18:35 - 000000000 ___SD C:\Users\nobru\AppData\Roaming\Microsoft\Credentials 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidéos 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Public\Documents\Mes images 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\Modèles 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\Mes documents 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\Documents\Mes images 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\ProgramData\Modèles 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\ProgramData\Bureau 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Program Files\Fichiers communs 2024-07-30 18:12 - 2024-07-30 18:12 - 000000000 _SHDL C:\Documents and Settings 2024-07-30 18:02 - 2024-07-30 18:12 - 000002858 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3498437227-2710467151-1942494557-500 2024-07-30 17:54 - 2024-07-30 17:58 - 000040008 _____ C:\windows\diagwrn.xml 2024-07-30 17:54 - 2024-07-30 17:58 - 000040008 _____ C:\windows\diagerr.xml 2024-07-30 17:53 - 2024-07-30 21:20 - 000000000 ____D C:\ProgramData\Intel 2024-07-30 17:53 - 2024-07-30 17:53 - 000000182 __RSH C:\windows\system32\Drivers\103C_HP_5331M5_Victus by HP 15L Gaming Desktop TG02-0xxx.MRK 2024-07-30 17:52 - 2024-07-30 17:52 - 000000000 ____D C:\Program Files\Common Files\McAfee 2024-07-30 17:51 - 2024-07-30 21:25 - 000055880 _____ (Windows (R) Win 7 DDK provider) C:\windows\system32\Drivers\HpReadHWData.sys 2024-07-30 17:50 - 2024-07-30 18:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2024-07-30 17:49 - 2024-07-30 17:49 - 000000000 ____D C:\Program Files\PackageManagement 2024-07-30 17:49 - 2023-07-25 10:49 - 000228400 _____ (HP Inc.) C:\windows\OMENSDK_Ver.exe 2024-07-30 17:49 - 2023-03-23 05:21 - 002232728 _____ (TODO: ) C:\windows\system32\wlanCliDLL.dll.old 2024-07-30 17:49 - 2023-03-23 05:21 - 002232728 _____ (TODO: ) C:\windows\system32\wlanCliDLL.dll 2024-07-30 17:49 - 2023-03-23 05:21 - 000428032 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtBWCtrl.dll.old 2024-07-30 17:49 - 2023-03-23 05:21 - 000428032 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtBWCtrl.dll 2024-07-30 17:49 - 2023-03-23 05:21 - 000135064 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtFDrvIOCtrl.dll.old 2024-07-30 17:49 - 2023-03-23 05:21 - 000135064 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtFDrvIOCtrl.dll 2024-07-30 17:48 - 2024-07-31 10:06 - 000000000 ____D C:\windows\HP 2024-07-30 17:47 - 2024-07-30 17:47 - 000000000 ___HD C:\Program Files\FanControlApp 2024-07-30 17:45 - 2024-08-06 19:51 - 000000000 ____D C:\windows\system32\Tasks\HP 2024-07-30 17:45 - 2024-07-30 17:46 - 000000000 ____D C:\ProgramData\Realtek 2024-07-30 17:44 - 2024-08-09 12:35 - 000000000 ____D C:\Program Files (x86)\Realtek 2024-07-30 17:44 - 2024-06-11 21:50 - 000086568 _____ C:\windows\system32\FvSDK_x64.dll 2024-07-30 17:44 - 2024-06-11 21:50 - 000075304 _____ C:\windows\SysWOW64\FvSDK_x86.dll 2024-07-30 17:43 - 2024-08-18 13:33 - 000000000 ____D C:\ProgramData\Package Cache 2024-07-30 17:43 - 2024-08-17 22:58 - 000000000 ____D C:\ProgramData\NVIDIA 2024-07-30 17:43 - 2024-08-14 11:30 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2024-07-30 17:43 - 2024-08-07 16:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2024-07-30 17:43 - 2024-08-07 16:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2024-07-30 17:43 - 2024-07-30 21:30 - 000000000 ____D C:\windows\system32\Drivers\NVIDIA Corporation 2024-07-30 17:43 - 2024-07-30 19:55 - 000003366 _____ C:\windows\system32\Tasks\RtkAudUService64_BG 2024-07-30 17:41 - 2024-07-30 19:52 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2024-07-30 17:39 - 2024-07-30 17:39 - 000002858 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3938088944-2001559113-2696141967-500 ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-08-18 17:39 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-08-18 17:13 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SystemTemp 2024-08-18 13:26 - 2022-05-07 07:22 - 000000000 ____D C:\windows\INF 2024-08-18 10:31 - 2022-11-03 06:32 - 000000000 ____D C:\windows\system32\SleepStudy 2024-08-18 09:58 - 2022-05-07 07:24 - 000000000 ____D C:\windows\AppReadiness 2024-08-17 22:21 - 2022-11-03 06:39 - 001764464 _____ C:\windows\system32\PerfStringBackup.INI 2024-08-17 22:14 - 2022-11-03 06:32 - 000012288 ___SH C:\DumpStack.log.tmp 2024-08-17 22:14 - 2022-11-03 06:32 - 000000006 ____H C:\windows\Tasks\SA.DAT 2024-08-17 22:14 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-08-17 22:14 - 2022-05-07 07:24 - 000000000 ____D C:\windows\ServiceState 2024-08-17 20:41 - 2022-11-03 06:32 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-08-17 11:21 - 2022-05-07 07:17 - 000786432 _____ C:\windows\system32\config\BBI 2024-08-16 10:47 - 2023-07-25 04:27 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2024-08-16 10:47 - 2023-07-25 04:27 - 000002411 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2024-08-16 10:47 - 2023-07-25 04:27 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook (classic).lnk 2024-08-16 10:47 - 2023-07-25 04:27 - 000002393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2024-08-16 10:47 - 2023-07-25 04:26 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Documentation.lnk 2024-08-16 10:45 - 2023-07-25 04:27 - 000000000 ____D C:\Program Files\Microsoft Office 2024-08-16 10:40 - 2023-07-25 04:27 - 000002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2024-08-15 09:30 - 2023-07-25 04:21 - 000001623 _____ C:\windows\system32\config\VSMIDK 2024-08-14 17:41 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-08-14 17:31 - 2022-05-07 07:17 - 000032768 _____ C:\windows\system32\config\ELAM 2024-08-14 17:27 - 2023-07-25 04:25 - 000000000 ____D C:\Program Files\HP 2024-08-14 17:26 - 2022-11-03 06:32 - 000592456 _____ C:\windows\system32\FNTCACHE.DAT 2024-08-14 17:25 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SystemResources 2024-08-14 17:25 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\Sgrm 2024-08-14 17:25 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\SecureBootUpdates 2024-08-14 17:25 - 2022-05-07 07:24 - 000000000 ____D C:\windows\bcastdvr 2024-08-14 12:01 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\windows\SysWOW64\msclmd.dll 2024-08-14 12:01 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\windows\system32\msclmd.dll 2024-08-14 12:01 - 2022-05-07 07:17 - 000000000 ____D C:\windows\CbsTemp 2024-08-14 11:43 - 2022-05-07 07:24 - 000000000 __SHD C:\Users\Public\Libraries 2024-08-10 00:37 - 2022-11-03 06:35 - 000000000 ____D C:\ProgramData\Packages 2024-08-06 11:02 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\AppLocker 2024-08-05 14:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\NDF 2024-08-02 19:29 - 2022-05-07 07:24 - 000000000 ____D C:\windows\OCR 2024-08-02 19:29 - 2022-05-07 07:24 - 000000000 ____D C:\windows\Globalization 2024-08-01 20:04 - 2022-11-03 07:29 - 000000000 ____D C:\windows\Panther 2024-08-01 11:15 - 2022-05-07 08:10 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-08-01 11:15 - 2022-05-07 08:10 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-08-01 11:15 - 2022-05-07 08:01 - 000000000 ____D C:\windows\SysWOW64\winrm 2024-08-01 11:15 - 2022-05-07 08:01 - 000000000 ____D C:\windows\SysWOW64\WCN 2024-08-01 11:15 - 2022-05-07 08:01 - 000000000 ____D C:\windows\SysWOW64\slmgr 2024-08-01 11:15 - 2022-05-07 08:01 - 000000000 ____D C:\windows\SysWOW64\Printing_Admin_Scripts 2024-08-01 11:15 - 2022-05-07 08:01 - 000000000 ____D C:\windows\system32\winrm 2024-08-01 11:15 - 2022-05-07 08:01 - 000000000 ____D C:\windows\system32\WCN 2024-08-01 11:15 - 2022-05-07 08:01 - 000000000 ____D C:\windows\system32\slmgr 2024-08-01 11:15 - 2022-05-07 08:01 - 000000000 ____D C:\windows\system32\Printing_Admin_Scripts 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ___SD C:\windows\SysWOW64\F12 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ___SD C:\windows\SysWOW64\DiagSvcs 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ___SD C:\windows\system32\lxss 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ___SD C:\windows\system32\F12 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ___SD C:\windows\system32\dsc 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ___SD C:\windows\system32\DiagSvcs 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ___RD C:\windows\ImmersiveControlPanel 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\oobe 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\Dism 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\WinBioPlugIns 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\SystemResetPlatform 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\PerceptionSimulation 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\oobe 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\migwiz 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\Dism 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\PolicyDefinitions 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\windows\IME 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Windows Defender 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\System 2024-08-01 11:15 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2024-08-01 11:15 - 2022-05-07 07:17 - 000000000 ____D C:\windows\servicing 2024-07-31 22:49 - 2022-05-07 07:24 - 000000000 ____D C:\windows\appcompat 2024-07-31 20:09 - 2023-07-25 04:26 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2024-07-31 13:27 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-07-31 09:35 - 2022-11-03 06:32 - 000003690 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-07-31 09:35 - 2022-11-03 06:32 - 000003566 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-07-31 03:35 - 2022-05-07 07:24 - 000028672 _____ C:\windows\system32\config\BCD-Template 2024-07-30 21:50 - 2022-05-07 07:24 - 000000000 ___SD C:\windows\SysWOW64\lxss 2024-07-30 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\windows\schemas 2024-07-30 21:50 - 2022-05-07 07:20 - 001585236 _____ C:\windows\system32\WindowsVirtualization.V2.mof 2024-07-30 21:50 - 2022-05-07 07:20 - 001153282 _____ C:\windows\system32\WindowsHyperVCluster.V2.mof 2024-07-30 21:50 - 2022-05-07 07:20 - 000284000 _____ (Microsoft Corporation) C:\windows\system32\vmfirmwarepcat.dll 2024-07-30 21:50 - 2022-05-07 07:20 - 000191480 _____ (Microsoft Corporation) C:\windows\system32\vmsp.exe 2024-07-30 21:50 - 2022-05-07 07:20 - 000144967 _____ C:\windows\system32\virtmgmt.msc 2024-07-30 21:50 - 2022-05-07 07:20 - 000111976 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pcip.sys 2024-07-30 21:50 - 2022-05-07 07:20 - 000099688 _____ (Microsoft Corporation) C:\windows\system32\rtpm.dll 2024-07-30 21:50 - 2022-05-07 07:20 - 000087392 _____ (Microsoft Corporation) C:\windows\system32\vmmsprox.dll 2024-07-30 21:50 - 2022-05-07 07:20 - 000071024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\lunparser.sys 2024-07-30 21:50 - 2022-05-07 07:20 - 000067520 _____ (Microsoft Corporation) C:\windows\system32\vmplatformca.exe 2024-07-30 21:50 - 2022-05-07 07:20 - 000057344 _____ (Microsoft Corporation) C:\windows\system32\AttestationWmiProvider.dll 2024-07-30 21:50 - 2022-05-07 07:20 - 000054608 _____ (Microsoft Corporation) C:\windows\system32\UtilityVmSysprep.dll 2024-07-30 21:50 - 2022-05-07 07:20 - 000050536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\lxss.sys 2024-07-30 21:50 - 2022-05-07 07:20 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\VmComputeProxy.dll 2024-07-30 21:50 - 2022-05-07 07:20 - 000025952 _____ (Microsoft Corporation) C:\windows\system32\c28c7a4e-a619-4463-82b7-0fc9cc7187f5_HyperV-ComputeStorage.dll 2024-07-30 21:50 - 2022-05-07 07:20 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\HostGuardianServiceClientResources.dll 2024-07-30 21:46 - 2023-07-25 14:08 - 000000000 ____D C:\windows\system32\fr 2024-07-30 21:46 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SystemApps 2024-07-30 21:46 - 2022-05-07 07:24 - 000000000 ____D C:\windows\security 2024-07-30 21:45 - 2022-05-07 07:20 - 001896448 _____ (Microsoft Corporation) C:\windows\system32\PeerDistSvc.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 001191936 _____ (Microsoft Corporation) C:\windows\system32\srmclient.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000934400 _____ (Microsoft Corporation) C:\windows\SysWOW64\srmclient.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000741376 _____ (Microsoft Corporation) C:\windows\system32\PeerDistCacheProvider.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000598016 _____ (Microsoft Corporation) C:\windows\system32\srmscan.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000552960 _____ (Microsoft Corporation) C:\windows\system32\AdmTmpl.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000479232 _____ (Microsoft Corporation) C:\windows\SysWOW64\srmscan.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000442368 _____ (Microsoft Corporation) C:\windows\system32\PeerDistSh.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000436224 _____ (Microsoft Corporation) C:\windows\SysWOW64\AdmTmpl.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000385536 _____ (Microsoft Corporation) C:\windows\SysWOW64\PeerDistSh.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000344064 _____ (Microsoft Corporation) C:\windows\system32\AppIdPolicyEngineApi.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\ddputils.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\cscobj.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000304128 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppIdPolicyEngineApi.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000303104 _____ (Microsoft Corporation) C:\windows\system32\srm.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\srm.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000266240 _____ (Microsoft Corporation) C:\windows\system32\srmstormod.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\PeerDistCleaner.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000249856 _____ (Microsoft Corporation) C:\windows\system32\ddpchunk.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000245760 _____ (Microsoft Corporation) C:\windows\system32\PeerDist.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000233472 _____ (Microsoft Corporation) C:\windows\system32\appvetwsharedperformance.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000233472 _____ (Microsoft Corporation) C:\windows\system32\AppvClientEventLog.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000225280 _____ (Microsoft Corporation) C:\windows\system32\appmgmts.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000200704 _____ (Microsoft Corporation) C:\windows\SysWOW64\srmstormod.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000200704 _____ (Microsoft Corporation) C:\windows\system32\PeerDistWSDDiscoProv.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000195584 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscobj.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000194560 _____ (Microsoft Corporation) C:\windows\SysWOW64\PeerDist.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000188416 _____ (Microsoft Corporation) C:\windows\system32\fveprompt.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000180224 _____ (Microsoft Corporation) C:\windows\system32\srmshell.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000162816 _____ (Microsoft Corporation) C:\windows\SysWOW64\appmgmts.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\ddptrace.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\BdeHdCfg.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\AuditNativeSnapIn.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000147439 _____ C:\windows\SysWOW64\gpedit.msc 2024-07-30 21:45 - 2022-05-07 07:20 - 000147439 _____ C:\windows\system32\gpedit.msc 2024-07-30 21:45 - 2022-05-07 07:20 - 000139264 _____ (Microsoft Corporation) C:\windows\system32\adrclient.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000131072 _____ (Microsoft Corporation) C:\windows\SysWOW64\srmshell.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000131072 _____ (Microsoft Corporation) C:\windows\system32\BdeHdCfgLib.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000131072 _____ (Microsoft Corporation) C:\windows\system32\baaupdate.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\AuditNativeSnapIn.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000120458 _____ C:\windows\system32\secpol.msc 2024-07-30 21:45 - 2022-05-07 07:20 - 000106496 _____ (Microsoft Corporation) C:\windows\system32\auditpolmsg.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000104448 _____ (Microsoft Corporation) C:\windows\SysWOW64\adrclient.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000102400 _____ (Microsoft Corporation) C:\windows\system32\PackageInspector.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000098304 _____ (Microsoft Corporation) C:\windows\system32\srmtrace.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000095744 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpolmsg.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\PrintBrmUi.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000090112 _____ (Microsoft Corporation) C:\windows\SysWOW64\srmlib.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000090112 _____ (Microsoft Corporation) C:\windows\system32\srmlib.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000086016 _____ (Microsoft Corporation) C:\windows\system32\ddp_ps.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000086016 _____ (Microsoft Corporation) C:\windows\system32\AuditPolicyGPInterop.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\PeerDistHttpTrans.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000073728 _____ (Microsoft Corporation) C:\windows\system32\PeerDistAD.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000073728 _____ (Microsoft Corporation) C:\windows\system32\gpscript.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\srmtrace.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000065536 _____ (Microsoft Corporation) C:\windows\system32\gpscript.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000063392 _____ (Microsoft Corporation) C:\windows\system32\Drivers\kbldfltr.sys 2024-07-30 21:45 - 2022-05-07 07:20 - 000062800 _____ (Microsoft Corporation) C:\windows\system32\KeyboardFilterCore.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\AuditPolicyGPInterop.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000061440 _____ (Microsoft Corporation) C:\windows\system32\SrpUxNativeSnapIn.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000057344 _____ C:\windows\system32\uwfservicingapi.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000057344 _____ (Microsoft Corporation) C:\windows\system32\CIWmi.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000053248 _____ (Microsoft Corporation) C:\windows\system32\WindowsIoTCsp.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000053248 _____ (Microsoft Corporation) C:\windows\system32\srm_ps.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\tskill.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\tsdiscon.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\tscon.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\rwinsta.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\qprocess.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\qappsrv.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\logoff.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000045056 _____ (Microsoft Corporation) C:\windows\system32\chgport.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000044544 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpscript.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000043566 _____ C:\windows\SysWOW64\rsop.msc 2024-07-30 21:45 - 2022-05-07 07:20 - 000043566 _____ C:\windows\system32\rsop.msc 2024-07-30 21:45 - 2022-05-07 07:20 - 000040960 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpscript.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\chgusr.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\reset.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\query.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\change.exe 2024-07-30 21:45 - 2022-05-07 07:20 - 000036200 _____ (Microsoft Corporation) C:\windows\SysWOW64\KeyboardFilterCore.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\SrpUxNativeSnapIn.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\CIWmi.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\windows\system32\BdeSysprep.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\windows\system32\assignedaccessproviderevents.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000020480 _____ (Microsoft Corporation) C:\windows\SysWOW64\NcaApi.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.SecureAssessment.Diagnostics.dll 2024-07-30 21:45 - 2022-05-07 07:20 - 000015360 _____ (Microsoft Corporation) C:\windows\SysWOW64\srm_ps.dll 2024-07-30 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\windows\WUModels 2024-07-30 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\windows\UUS 2024-07-30 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\WinMetadata 2024-07-30 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\WinMetadata 2024-07-30 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\appraiser 2024-07-30 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\windows\ShellExperiences 2024-07-30 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\windows\ShellComponents 2024-07-30 20:11 - 2022-05-07 07:24 - 000000000 ____D C:\windows\Provisioning 2024-07-30 19:55 - 2022-11-03 06:32 - 000000000 ____D C:\windows\system32\Drivers\wd 2024-07-30 19:53 - 2023-07-25 04:25 - 000000000 ____D C:\Program Files (x86)\HP 2024-07-30 19:33 - 2023-07-25 04:25 - 000000000 ____D C:\ProgramData\HP 2024-07-30 19:28 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\SecurityHealth 2024-07-30 18:57 - 2022-05-07 07:24 - 000000000 ___RD C:\windows\PrintDialog 2024-07-30 18:53 - 2022-05-07 07:24 - 000000000 ___HD C:\windows\ELAMBKUP 2024-07-30 18:49 - 2022-11-03 06:35 - 000000000 __RHD C:\Users\Public\AccountPictures 2024-07-30 18:47 - 2023-07-25 14:08 - 000000000 ____D C:\windows\SysWOW64\fr 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ___SD C:\windows\system32\UNP 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\vi-VN 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\setup 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\PerceptionSimulation 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\lv-LV 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\lt-LT 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\id-ID 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\gl-ES 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\eu-ES 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\et-EE 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\es-MX 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\SysWOW64\ca-ES 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\vi-VN 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\ShellExperiences 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\setup 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\lv-LV 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\lt-LT 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\id-ID 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\HealthAttestationClient 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\gl-ES 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\eu-ES 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\et-EE 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\es-MX 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\DDFs 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\ca-ES 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\DiagTrack 2024-07-30 18:47 - 2022-05-07 07:24 - 000000000 ____D C:\windows\BrowserCore 2024-07-30 18:46 - 2022-05-07 08:10 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\OEMDefaultAssociations.dll 2024-07-30 18:46 - 2022-05-07 08:10 - 000024383 _____ C:\windows\system32\OEMDefaultAssociations.xml 2024-07-30 18:43 - 2022-11-03 06:34 - 003212800 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintConfig.dll 2024-07-30 18:36 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\WinBioDatabase 2024-07-30 18:12 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Windows NT 2024-07-30 18:06 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\Sysprep 2024-07-30 18:04 - 2023-07-25 04:26 - 000000000 ___RD C:\Program Files\Online Services 2024-07-30 18:04 - 2023-07-25 04:26 - 000000000 ___RD C:\Program Files (x86)\Online Services 2024-07-30 18:04 - 2022-05-07 07:20 - 000144736 _____ (Microsoft Corporation) C:\windows\system32\rdp4vs.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000132456 _____ C:\windows\system32\secfw_AuthenticAMD.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000124240 _____ (Microsoft Corporation) C:\windows\system32\vmwpevents.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000095584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pvhdparser.sys 2024-07-30 18:04 - 2022-05-07 07:20 - 000075104 _____ (Microsoft Corporation) C:\windows\system32\Drivers\passthruparser.sys 2024-07-30 18:04 - 2022-05-07 07:20 - 000058704 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hnswfpdriver.sys 2024-07-30 18:04 - 2022-05-07 07:20 - 000042344 _____ (Microsoft Corporation) C:\windows\system32\vmcomputeeventlog.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000025960 _____ (Microsoft Corporation) C:\windows\system32\f989b52d-f928-44a3-9bf1-bf0c1da6a0d6_HyperV-DeviceVirtualization.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000025960 _____ (Microsoft Corporation) C:\windows\system32\07409496-a423-4a3e-b620-2cfb01a9318d_HyperV-ComputeNetwork.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000025952 _____ (Microsoft Corporation) C:\windows\system32\f1db7d81-95be-4911-935a-8ab71629112a_HyperV-IsolatedVM.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000025952 _____ (Microsoft Corporation) C:\windows\system32\d4d78066-e6db-44b7-b5cd-2eb82dce620c_HyperV-ComputeLegacy.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000025952 _____ (Microsoft Corporation) C:\windows\system32\c4d66f00-b6f0-4439-ac9b-c5ea13fe54d7_HyperV-ComputeCore.dll 2024-07-30 18:04 - 2022-05-07 07:20 - 000006658 _____ C:\windows\system32\VmFirmwareHcl Third-Party Notices.txt 2024-07-30 18:04 - 2022-05-07 07:20 - 000006658 _____ C:\windows\system32\VmFirmware Third-Party Notices.txt 2024-07-30 18:02 - 2022-11-03 06:36 - 000000000 ____D C:\windows\system32\Tasks\Agent Activation Runtime 2024-07-30 17:45 - 2023-07-25 05:55 - 000000000 ___HD C:\hp 2024-07-30 17:45 - 2022-05-07 07:24 - 000000000 ____D C:\windows\system32\Drivers\DriverData ==================== SigCheckExt ========================= 2024-08-18 17:47 - 2024-08-18 17:47 - 002397184 _____ (Farbar) C:\Users\nobru\Desktop\FRST64.exe 2024-08-18 17:48 - 2024-08-18 17:48 - 003539656 _____ (Nicolas Coolman) C:\Users\nobru\Desktop\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {8ad82e26-4e9c-11ef-9672-806e6f6e6963} {ec3eff71-517e-11ef-9681-806e6f6e6963} {ec3eff72-517e-11ef-9681-806e6f6e6963} {ec3eff73-517e-11ef-9681-806e6f6e6963} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {31e9fc5d-4edd-11ef-b2df-c19a9890e798} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {8ad82e26-4e9c-11ef-9672-806e6f6e6963} device unknown description UEFI: VerbatimSTORE N GO 8.07 Application logicielle (101fffff) -------------------------------- identificateur {ec3eff71-517e-11ef-9681-806e6f6e6963} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {ec3eff72-517e-11ef-9681-806e6f6e6963} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {ec3eff73-517e-11ef-9681-806e6f6e6963} description UEFI:Network Device Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \windows\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {9095d502-4ee1-11ef-9f56-a4c8a34e0e7f} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \windows resumeobject {31e9fc5d-4edd-11ef-b2df-c19a9890e798} nx OptIn bootmenupolicy Standard hypervisorlaunchtype Auto Chargeur de démarrage Windows ----------------------------- identificateur {9095d502-4ee1-11ef-9f56-a4c8a34e0e7f} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{a44063dc-4ee1-11ef-a8d9-c13267c074f4} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{a44063dc-4ee1-11ef-a8d9-c13267c074f4} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {31e9fc5d-4edd-11ef-b2df-c19a9890e798} device partition=C: path \windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {9095d502-4ee1-11ef-9f56-a4c8a34e0e7f} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Windows Memory Diagnostic locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {a44063dc-4ee1-11ef-a8d9-c13267c074f4} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================