Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-09-2024 Exécuté par Maugan (administrateur) sur PC-MAUGAN (Micro-Star International Co., Ltd. MS-7D98) (15-09-2024 17:58:12) Exécuté depuis C:\Users\Maugan\Desktop\FRST64.exe Profils chargés: Maugan Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.4169 (X64) Langue: Français (France) Navigateur par défaut: Brave Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8> (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe ->) (NC_NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] C:\Users\Maugan\Desktop\ZHPSuite.exe (C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.CpuIdRemote64.exe (C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\Corsair iCUE5 Software\crashpad_handler.exe (C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\QmlRenderer.exe (C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe ->) () [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Plugins\Watchdog\Lively.Watchdog.exe (C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe ->) (mpv) [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Plugins\Mpv\mpv.exe (cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe (Discord Inc. -> Discord Inc.) C:\Users\Maugan\AppData\Local\Discord\app-1.0.9163\Discord.exe <7> (DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atieclxx.exe (explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <22> (explorer.exe ->) (Lively) [Fichier non signé] C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe (explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe (explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) F:\Riot Games\Riot Client\RiotClientServices.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (F:\Riot Games\Riot Client\RiotClientServices.exe ->) () [Fichier non signé] F:\Riot Games\Riot Client\RiotClientCrashHandler.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\atiesrxx.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\CueLLAccessService.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_e585d940b03325e0\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_91a9902d227a84da\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3b3a65c9540c2b66\logi_lamparray_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe <2> (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (sihost.exe ->) (6099D0EF-9374-47ED-BDFE-A82136831235 -> File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.3.0.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe (sihost.exe ->) (E3B4A0F6-E459-414C-8DFB-ABEAB07C9242 -> Microsoft Corporation) C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ModernFlyoutsHost.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2409.1001.5.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25992.9000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.5142.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.5142.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2402.27001-0\SecurityHealthHost.exe <2> ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1803724721d1a34c\RtkAudUService64.exe [1945544 2024-02-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750672 2024-03-13] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Discord] => C:\Users\Maugan\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Spotify] => C:\Users\Maugan\AppData\Roaming\Spotify\Spotify.exe [34615112 2024-05-26] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37495272 2024-05-13] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1090168 2023-03-22] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46247680 2024-08-22] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [electron.app.Pawns.app] => C:\Program Files\Pawns.app\Pawns.app.exe --hidden (Pas de fichier) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2730600 2024-02-25] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [RiotClient] => F:\Riot Games\Riot Client\RiotClientServices.exe [73892672 2024-09-11] (Riot Games, Inc. -> Riot Games, Inc.) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [145336 2023-08-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) HKU\S-1-5-21-1484716125-585635640-2440183146-1001\...\Run: [Lively] => C:\Users\Maugan\AppData\Local\Programs\Lively Wallpaper\Lively.exe [200704 2024-05-31] (Lively) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\128.1.69.168\Installer\chrmstp.exe [2024-09-11] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {E8E5CEDA-5EBE-4A23-8855-13CB3F0491F7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.) Task: {1A8E6FD6-ADFE-4C02-B32E-678074C062FD} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {652DC0C8-C57E-4C99-9DD9-E3069D92A135} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {DB538C4E-7D97-460B-8230-C8BCA7A5116F} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {3AECC354-7B1A-4C88-9389-69418C7D8E4D} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {6F15CBDC-3FD0-491C-BC25-00B403941DDD} - System32\Tasks\Intel PTT EK Recertification => "C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe" (Pas de fichier) Task: {DB6EF171-4FA5-4816-A045-3D9DC5DDCD3D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-09-29] (Microsoft Corporation -> Microsoft Corporation) Task: {6F74F537-8EEF-46F9-8072-9D6AE1880CDB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-09-29] (Microsoft Corporation -> Microsoft Corporation) Task: {4B108DCB-2C06-46EC-8EC4-C2DED226E4CC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139136 2022-09-24] (Microsoft Corporation -> Microsoft Corporation) Task: {6557A8BC-8329-46C8-B592-27DC2871FA9D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139136 2022-09-24] (Microsoft Corporation -> Microsoft Corporation) Task: {809D2428-7206-4271-876D-3250C35D9BD4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053720 2022-09-24] (Microsoft Corporation -> Microsoft Corporation) Task: {803D5751-AF24-4B0B-93AE-0A1F7FE5DC6C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053720 2022-09-24] (Microsoft Corporation -> Microsoft Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier) Task: {92851B88-9753-473F-B16D-4E318ADBFA39} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier) Task: {657ABF65-C91C-47AD-BFAB-2B3116C8F871} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {C513421D-EB70-405F-AA19-9A46557288CD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-22] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A6E2BEC9-572A-4710-AF1F-5D29648CC9F8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-22] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {810347B8-DF11-4016-8B97-B6FA41C5B1FC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-22] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DDA0CAD5-640B-44B3-AC32-4B89D46D4D04} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-22] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {04DC86DC-F10A-48EA-805B-46DCE1DE5D5C} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-05-09] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {8FBA40C1-93D2-44D5-B53A-8754AA374D8A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-12] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {22BCCEF9-D4E8-4FB3-A1A7-183880BB1304} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1484716125-585635640-2440183146-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-07-12] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {539FCE03-9D3C-4930-8EDD-C3CB50960883} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34888 2024-07-12] (Mozilla Corporation -> Mozilla Foundation) Task: {54E14E7F-1D7B-4025-ACA7-53906A38A444} - System32\Tasks\NvOptimizerTaskUpdater_V2 => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [450560 2024-02-14] (Microsoft Windows -> Microsoft Corporation) -> -File C:/Windows/System32/NvWinSearchOptimizer.ps1 <==== ATTENTION Task: {76C2911B-A1B8-484F-8515-90E6B15FFE11} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-05-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {B2E660E0-C341-4E11-9DC1-E60F6029EC9B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-05-08] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{222ea97a-82d6-41fc-828f-8689bcd478c3}: [DhcpNameServer] 192.168.63.223 Tcpip\..\Interfaces\{4d53017a-469c-4f0f-b861-ef34a8c9d247}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{6cba7094-7424-47a8-be14-266e6919399f}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6cba7094-7424-47a8-be14-266e6919399f}: [DhcpDomain] home Tcpip\..\Interfaces\{a230d696-ea94-4d58-a2d0-3bca64a9b8ae}: [NameServer] 172.17.3.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-08] Edge NewTab: Default -> Not-active:"chrome-extension://fodkmcnpjapcffbmhelopfjhlmdmnbll/index.html" Edge Extension: (Simple New Tab) - C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fodkmcnpjapcffbmhelopfjhlmdmnbll [2024-04-12] Edge Extension: (Google Docs hors connexion) - C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-08] Edge Extension: (Edge relevant text changes) - C:\Users\Maugan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] FireFox: ======== FF DefaultProfile: oqcnxxmi.default FF ProfilePath: C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\oqcnxxmi.default [2021-07-31] FF ProfilePath: C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\49zcdkws.default-release [2024-07-16] FF Extension: (Widilo Cashback) - C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\49zcdkws.default-release\Extensions\{37d71f0b-917d-485a-ad55-7fd43df7cb57}.xpi [2024-03-31] FF Extension: (Poulpeo : cashback, réductions et codes promo) - C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\49zcdkws.default-release\Extensions\{a5df0009-71e3-4048-bb02-38e1ee2ed33f}.xpi [2024-06-26] FF Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Maugan\AppData\Roaming\Mozilla\Firefox\Profiles\49zcdkws.default-release\Extensions\{dbac9680-d559-4cd4-9765-059879e8c467}.xpi [2024-07-09] FF Plugin: @java.com/DTPlugin,version=11.411.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2024-03-13] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.411.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2024-03-13] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-09-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-09-24] (Microsoft Corporation -> Microsoft Corporation) Brave: ======= BRA DefaultProfile: Default BRA Profile: C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-09-15] BRA DefaultSearchKeyword: Default -> :g BRA Extension: (Dealabs | Économisez sur vos achats) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\befbacjblaaggjgfkbfgniddhbkifkfd [2024-07-04] BRA Extension: (Adblock pour Youtube™) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2024-08-21] BRA Extension: (Dark Reader) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2024-09-15] BRA Extension: (YouTube Auto HD + FPS) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fcphghnknhkimeagdglkljinmpbagone [2024-09-07] BRA Extension: (Widilo Cashback) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jlcaefilcommembbekhjjkibeieffchd [2024-08-31] BRA Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2024-07-25] BRA Extension: (Poulpeo : cashback, réductions et codes promo) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lelehponoadknmgbnmgkcniabpopckme [2024-09-08] BRA Extension: (Gestionnaire de mots de passe Bitwarden) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2024-09-15] BRA Profile: C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\Guest Profile [2021-10-23] BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-09-15] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-09-15] BRA Extension: (Brave NTP background images) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-09-15] BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-09-15] BRA Extension: (Brave Ads Resources) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\bgifagoclclhhoflocdefiklgodpihog [2024-09-15] BRA Extension: (Wallet Data Files Updater) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-23] BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-09-15] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-12-02] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2024-07-16] BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2022-12-02] BRA Extension: (Brave Ad Block Updater (AdGuard Français (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\flnkmpokemfpaajmiimmjeiandgoodgg [2024-09-15] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-09-15] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2021-07-31] BRA Extension: (Brave Ads Resources) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\ijgkfgmfiinppefbonemjidmkhgbonei [2024-01-25] BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-09-15] BRA Extension: (Brave SpeedReader Updater) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-14] BRA Extension: (Brave NTP sponsored images) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2024-09-15] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-08-31] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Maugan\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-25] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S4 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1421352 2021-08-10] (Acronis International GmbH -> Acronis International GmbH) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18681128 2024-06-06] (BattlEye Innovations e.K. -> ) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.) S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\128.1.69.168\elevation_service.exe [2659864 2024-09-11] (Brave Software, Inc. -> Brave Software, Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-31] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9183624 2021-09-29] (Microsoft Corporation -> Microsoft Corporation) R2 CorsairCpuIdService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe [240680 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.) S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [152104 2024-02-19] (Corsair Memory, Inc. -> ) R2 CorsairLLAService; C:\Program Files\Corsair\Corsair iCUE5 Software\CueLLAccessService.exe [251944 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairService; C:\Program Files\Corsair\Corsair iCUE5 Software\clink\Corsair.Service.exe [84008 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12094568 2024-02-25] (Electronic Arts, Inc. -> Electronic Arts) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2024-02-05] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-12-26] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-07-16] (Epic Games Inc. -> Epic Games, Inc.) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2023-06-08] (Underwriters Laboratories Inc. -> Futuremark) R3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [366632 2024-02-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.) S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11193088 2024-08-22] (Logitech Inc -> Logitech, Inc.) R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3b3a65c9540c2b66\logi_lamparray_service.exe [10150488 2024-08-23] (Logitech Inc -> Logitech, Inc.) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-22] (Microsoft Windows Publisher -> Microsoft Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2022-01-02] (Even Balance, Inc. -> ) R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2022-01-02] (Even Balance, Inc. -> ) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16971576 2023-03-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-22] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-22] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25688 2024-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 amducsi; C:\WINDOWS\System32\drivers\amducsi.sys [81632 2022-10-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0403196.inf_amd64_d0c41aa30f8bcfb2\B402774\amdkmdag.sys [100127016 2024-05-21] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-08-10] (Bitdefender SRL -> Bitdefender) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé] R2 CorsairLLAccess8F050F5E415C1A5882EB9FF7CE2BC59B7BE3A953; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairLLAccess64.sys [23728 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44576 2024-09-15] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [29200 2021-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [721536 2022-02-28] (Acronis International GmbH -> Acronis International GmbH) R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2022-02-28] (Acronis International GmbH -> Acronis International GmbH) R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2022-02-28] (Acronis International GmbH -> Acronis International GmbH) S3 gdrv3; C:\Windows\gdrv3.sys [36352 2021-07-31] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-06-23] (Intel Corporation -> Intel Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_6f93b7542fd3ead9\gna.sys [88656 2023-08-28] (Intel Corporation -> Intel Corporation) R3 logi_audio_surround; C:\WINDOWS\System32\DriverStore\FileRepository\logi_audio.inf_amd64_ef292d87e6baed60\logi_audio_surround.sys [44200 2024-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-08-02] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-08-02] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-08-02] (Logitech Inc -> Logitech) R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_3b3a65c9540c2b66\logi_lamparray.sys [89176 2024-08-23] (Logitech Inc -> Logitech, Inc.) S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-30] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.) S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.) R3 MpKsl1c7ad3d3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9A713361-E062-41F9-8AEB-CA0F3F77DE01}\MpKslDrv.sys [271640 2024-09-15] (Microsoft Windows -> Microsoft Corporation) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19000 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-08-10] (Acronis International GmbH -> Acronis International GmbH) S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [26368 2020-08-21] (Daniel Terhell -> Resplendence Software Projects Sp.) R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_84ec5c712a6969ea\rt25cx21x64.sys [713112 2022-10-18] (Realtek Semiconductor Corp. -> Realtek) S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) R2 SignalRgbDriver; C:\WINDOWS\System32\Drivers\SignalRgbDriver.sys [19984 2023-10-06] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2023-01-05] (TunnelBear, Inc. -> The OpenVPN Project) S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-10-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2022-02-28] (Acronis International GmbH -> Acronis International GmbH) R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2022-02-28] (Acronis International GmbH -> Acronis International GmbH) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [57344 2022-05-07] (Microsoft Corporation) [Fichier non signé] R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2022-02-28] (Acronis International GmbH -> Acronis International GmbH) R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2022-02-28] (Acronis International GmbH -> Acronis International GmbH) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-08-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602504 2024-08-22] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-22] (Microsoft Windows -> Microsoft Corporation) S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29680 2023-03-20] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 zttap300; C:\WINDOWS\System32\drivers\zttap300.sys [31744 2023-03-06] (Microsoft Windows Hardware Compatibility Publisher -> ZeroTier Networks LLC) S3 cpuz157; \??\C:\WINDOWS\temp\cpuz157\cpuz157_x64.sys [X] <==== ATTENTION S3 SIUSBXP; \??\C:\Windows\system32\drivers\SiUSBXp.sys [X] S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-09-15 17:58 - 2024-09-15 17:58 - 000041165 _____ C:\Users\Maugan\Desktop\FRST.txt 2024-09-15 17:58 - 2024-09-15 17:58 - 000000000 ____D C:\FRST 2024-09-15 17:57 - 2024-09-15 17:57 - 002397696 _____ (Farbar) C:\Users\Maugan\Desktop\FRST64.exe 2024-09-15 17:56 - 2024-09-15 17:57 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\ZHP 2024-09-15 17:56 - 2024-09-15 17:56 - 003539656 _____ (Nicolas Coolman) C:\Users\Maugan\Desktop\ZHPSuite.exe 2024-09-15 17:56 - 2024-09-15 17:56 - 000000878 _____ C:\Users\Maugan\Desktop\ZHPSuite.lnk 2024-09-15 17:56 - 2024-09-15 17:56 - 000000000 ____D C:\Users\Maugan\AppData\Local\ZHP 2024-09-15 15:04 - 2024-09-15 15:04 - 000096457 _____ C:\Users\Maugan\Desktop\20240909_0746_JustificatifAchat_SNCFCONNECT.pdf 2024-09-15 15:04 - 2024-09-15 15:04 - 000046224 _____ C:\Users\Maugan\Desktop\20240911_1112_JustificatifAchat_SNCFCONNECT.pdf 2024-09-15 12:57 - 2024-09-15 12:57 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat 2024-09-15 12:57 - 2024-09-15 12:57 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat 2024-09-01 18:59 - 2024-09-01 18:59 - 000002264 _____ C:\Users\Maugan\AppData\LocalLow\3f8a08924159e017c76c7de64b61c43fb8f4494d3336fd30e571426b7c08a2ac 2024-08-30 14:20 - 2024-07-16 19:43 - 000784048 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2024-08-30 14:20 - 2024-07-16 19:43 - 000668792 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2024-08-30 14:20 - 2024-07-16 19:42 - 000979160 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2024-08-30 14:20 - 2024-07-16 19:42 - 000737776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2024-08-30 14:20 - 2024-07-16 19:41 - 000621816 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2024-08-30 14:20 - 2024-07-16 19:41 - 000590448 _____ C:\WINDOWS\SysWOW64\IntelControlLib32.dll 2024-08-30 14:20 - 2024-07-16 19:41 - 000480936 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2024-08-30 14:20 - 2024-07-16 19:40 - 002115392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-08-30 14:20 - 2024-07-16 19:40 - 002115392 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-08-30 14:20 - 2024-07-16 19:40 - 002039104 _____ C:\WINDOWS\system32\ze_intel_gpu_raytracing.dll 2024-08-30 14:20 - 2024-07-16 19:40 - 001673536 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-08-30 14:20 - 2024-07-16 19:40 - 001673536 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-08-30 14:20 - 2024-07-16 19:40 - 001463000 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-08-30 14:20 - 2024-07-16 19:40 - 001463000 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-08-30 14:20 - 2024-07-16 19:40 - 001305296 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-08-30 14:20 - 2024-07-16 19:40 - 001305296 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-08-30 14:20 - 2024-07-16 19:40 - 000792280 _____ C:\WINDOWS\system32\ze_loader.dll 2024-08-30 14:20 - 2024-07-16 19:40 - 000560856 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2024-08-30 14:20 - 2024-07-16 19:40 - 000349912 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2024-08-30 14:20 - 2024-07-16 19:39 - 027984088 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2024-08-30 14:20 - 2024-07-16 19:39 - 020707944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2024-08-30 14:20 - 2024-07-16 19:39 - 000331344 _____ C:\WINDOWS\system32\ControlLib.dll 2024-08-30 14:20 - 2024-07-16 19:39 - 000277496 _____ C:\WINDOWS\SysWOW64\ControlLib32.dll 2024-08-23 06:01 - 2024-08-23 06:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2024-08-23 06:01 - 2024-08-23 06:01 - 000000000 ____D C:\Program Files\LGHUB 2024-08-22 19:10 - 2024-08-22 19:10 - 000026169 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-08-22 19:10 - 2024-08-22 19:10 - 000026169 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-07-02 23:39 - 2024-07-02 23:39 - 000009322 _____ C:\Users\Maugan\Documents\bali.xlsx ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-09-15 17:57 - 2021-10-23 03:36 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Excel 2024-09-15 17:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-09-15 17:52 - 2021-07-31 18:46 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\discord 2024-09-15 17:51 - 2021-07-31 18:45 - 000000000 ____D C:\Users\Maugan\AppData\Local\Discord 2024-09-15 17:45 - 2021-07-31 18:29 - 000000000 ____D C:\Program Files (x86)\Steam 2024-09-15 17:15 - 2023-12-27 18:07 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Word 2024-09-15 16:57 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-09-15 13:43 - 2023-07-17 12:49 - 000000000 ____D C:\Users\Maugan\AppData\Local\D3DSCache 2024-09-15 13:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-09-15 13:41 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-09-15 12:57 - 2023-07-19 01:00 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-09-15 12:57 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2024-09-15 12:54 - 2023-01-17 10:03 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-09-15 12:50 - 2024-05-26 23:23 - 000003108 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher 2024-09-15 12:50 - 2024-02-18 17:29 - 000003100 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2024-09-15 12:50 - 2023-07-19 01:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-09-15 12:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-09-15 12:50 - 2021-07-31 18:44 - 000000000 ____D C:\Program Files\TeamViewer 2024-09-15 12:50 - 2021-07-31 17:55 - 000012288 ___SH C:\DumpStack.log.tmp 2024-09-11 22:44 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-09-11 22:43 - 2023-10-11 01:19 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-09-11 22:43 - 2023-07-19 00:58 - 000512472 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-09-11 22:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-09-11 21:39 - 2021-07-31 18:39 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2024-09-11 21:36 - 2022-12-22 18:24 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\EasyAntiCheat 2024-09-11 19:05 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-09-11 19:04 - 2023-07-19 00:59 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-09-11 19:00 - 2021-07-31 19:38 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-09-11 18:59 - 2021-07-31 19:38 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-09-11 18:48 - 2023-07-19 01:01 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-09-11 18:48 - 2023-07-19 01:01 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-09-11 18:43 - 2023-07-19 00:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-09-08 23:51 - 2023-08-12 23:40 - 000000000 ___RD C:\Users\Maugan\Desktop\Games 2024-09-08 15:00 - 2023-03-07 01:05 - 000000000 ____D C:\Program Files\AMD 2024-09-07 20:27 - 2023-12-26 21:47 - 000000000 ____D C:\WINDOWS\NvOptimizerLog 2024-09-07 16:37 - 2021-07-31 18:00 - 000000000 ____D C:\Users\Maugan\AppData\Local\Packages 2024-09-07 16:27 - 2021-07-31 18:00 - 000000000 ____D C:\ProgramData\Packages 2024-09-07 16:22 - 2023-08-02 22:38 - 000000000 ____D C:\Users\Maugan\AppData\Local\LGHUB 2024-09-02 21:53 - 2022-10-20 11:16 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2024-09-02 21:53 - 2022-10-20 11:16 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2024-09-02 21:53 - 2022-08-07 21:24 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2024-09-02 21:53 - 2022-08-07 21:24 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2024-09-02 21:52 - 2024-02-18 14:11 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll 2024-09-02 21:52 - 2022-08-07 21:24 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2024-09-02 21:52 - 2022-08-07 21:24 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2024-09-02 21:52 - 2022-08-07 21:24 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2024-08-30 14:10 - 2023-07-19 01:01 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-08-30 14:10 - 2022-10-11 19:08 - 000002085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-08-23 13:55 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-08-23 12:26 - 2023-09-01 22:01 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\G HUB 2024-08-23 06:02 - 2023-08-02 22:38 - 000000000 ____D C:\Users\Maugan\AppData\Roaming\lghub 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-08-23 05:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\schemas 2024-08-22 19:12 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2024-08-22 19:12 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2024-08-22 16:33 - 2021-07-31 17:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd ==================== Fichiers à la racine de certains dossiers ======== 2021-07-31 22:19 - 2022-08-19 13:53 - 000007605 _____ () C:\Users\Maugan\AppData\Local\Resmon.ResmonCfg ==================== SigCheckExt ========================= 2021-07-31 23:01 - 2015-06-02 10:50 - 000005120 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\acpimof_ocpanel.dll 2024-09-15 17:57 - 2024-09-15 17:57 - 002397696 _____ (Farbar) C:\Users\Maugan\Desktop\FRST64.exe 2024-09-15 17:56 - 2024-09-15 17:56 - 003539656 _____ (Nicolas Coolman) C:\Users\Maugan\Desktop\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {0915d1be-9827-11ec-93b6-806e6f6e6963} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {0915d1be-9827-11ec-93b6-806e6f6e6963} device partition=\Device\HarddiskVolume6 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager Chargeur de démarrage Windows ----------------------------- identificateur {4f61ee72-f21f-11eb-bd0a-f39e6784c6b0} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{4f61ee73-f21f-11eb-bd0a-f39e6784c6b0} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-fr inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{4f61ee73-f21f-11eb-bd0a-f39e6784c6b0} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{4f61ee78-f21f-11eb-bd0a-f39e6784c6b0} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{4f61ee78-f21f-11eb-bd0a-f39e6784c6b0} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {4f61ee74-f21f-11eb-bd0a-f39e6784c6b0} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {4f61ee77-f21f-11eb-bd0a-f39e6784c6b0} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {4f61ee78-f21f-11eb-bd0a-f39e6784c6b0} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================