RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
ExÃ©cutÃ© par StÃ©phane (administrateur) sur DESKTOP-N2B4NKT (SAMSUNG ELECTRONICS CO., LTD. 350V5C/350V5X/350V4C/350V4X/351V5C/351V5X/351V4C/351V4X/3540VC/3540VX/3440VC/3440VX) (17-10-2024 12:04:25)
ExÃ©cutÃ© depuis C:\Users\StÃ©phane\Desktop\FRST64.exe
Profils chargÃ©s: StÃ©phane
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.5011 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: Edge
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <47>
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\StÃ©phane\AppData\Local\Microsoft\OneDrive\24.186.0915.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3940040 2015-06-12] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3387019964-3532494323-3827923169-1002\...\Run: [MicrosoftEdgeAutoLaunch_565E4FA6F7D0E888D6C8C142B82C9DC0] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3794984 2024-10-10] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\129.0.6668.101\Installer\chrmstp.exe [2024-10-16] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {5095139F-950B-4526-9DBF-8942BF55A9C8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe  (Pas de fichier)
Task: {E5170948-2ABB-4B9B-B55E-7FB34CD4D4B2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{19FFC9B9-6B47-403B-A6AF-2CF0D0312D72} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
Task: {6A90A2E1-F576-4F5D-9DA9-75C1242AA217} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => C:\WINDOWS\system32\clipesu.exe [221680 2024-10-03] (Microsoft Windows -> Microsoft Corporation)
Task: {1A28EE40-CFE9-4B1D-BFF5-E445636EEA6A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F2AEB5C-861C-479E-89DE-E62B64665DF4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F619EB5-2742-4106-BDCE-CB27016DB3F7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {494DD9CB-4ED0-49CD-9D76-CAE9EC3E8258} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)


==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{d2d5326f-1cc2-465e-9cef-73ffdc1250fc}: [DhcpNameServer] 192.168.0.254

Edge: 
=======
Edge Profile: C:\Users\StÃ©phane\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-16]
Edge Extension: (GoogleÂ Docs hors connexion) - C:\Users\StÃ©phane\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-08]
Edge Extension: (Edge relevant text changes) - C:\Users\StÃ©phane\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-10-08]

Chrome: 
=======
CHR Profile: C:\Users\StÃ©phane\AppData\Local\Google\Chrome\User Data\Default [2024-10-17]
CHR HomePage: Default -> hxxp://astromenda.com/?f=1&a=ast_tele_14_40_ch&cd=2XzuyEtN2Y1L1Qzu0CzztD0A0AzytA0FyDyCyDtCyB0C0A0CtN0D0Tzu0StCtDtDzztN1L2XzutAtFyDtFtCtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyBzz0ByD0DtC0D0AtGtDyDtAyEtG0B0B0E0DtGyEtBtB0EtGyEtDtAtDyBtA0FzztByDyByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0DtDtD0FyDtB0FtAtG0A0F0FtBtGyEyB0CzztG0BtD0DyCtG0FyByB0C0ByCtAyBtByDyByC2Q&cr=1897786782&ir=
CHR StartupUrls: Default -> "hxxp://astromenda.com/?f=7&a=ast_tele_14_40_ch&cd=2XzuyEtN2Y1L1Qzu0CzztD0A0AzytA0FyDyCyDtCyB0C0A0CtN0D0Tzu0StCtDtDzztN1L2XzutAtFyDtFtCtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyBzz0ByD0DtC0D0AtGtDyDtAyEtG0B0B0E0DtGyEtBtB0EtGyEtDtAtDyBtA0FzztByDyByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0DtDtD0FyDtB0FtAtG0A0F0FtBtGyEyB0CzztG0BtD0DyCtG0FyByB0C0ByCtAyBtByDyByC2Q&cr=1897786782&ir=","hxxp://astromenda.com/?f=7&a=ast_ggfc_14_40_ch&cd=2XzuyEtN2Y1L1Qzu0CzztD0A0AzytA0FyDyCyDtCyB0C0A0CtN0D0Tzu0StCtDtDzztN1L2XzutAtFyDtFtCtFtBtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyB0E0FtBtDtC0CyBtGtB0B0DtBtG0FtDtD0FtG0DyCyByDtGyEtB0F0F0E0E0C0DtByDyByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0DtDtD0FyDtB0FtAtG0A0F0FtBtGyEyB0CzztG0BtD0DyCtG0FyByB0C0ByCtAyBtByDyByC2Q&cr=1684160202&ir="
CHR Extension: (Honey: Automatic Coupons & Rewards) - C:\Users\StÃ©phane\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2024-10-08]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\StÃ©phane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-08]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\StÃ©phane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-10-08]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [804712 2022-10-06] (Oracle Corporation -> Oracle and/or its affiliates)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-10-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [254664 2022-10-06] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [265488 2022-10-06] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1060928 2022-10-06] (Oracle Corporation -> Oracle and/or its affiliates)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [186304 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-10-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-10-08] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Trois mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2024-10-17 12:04 - 2024-10-17 12:05 - 000011287 _____ C:\Users\StÃ©phane\Desktop\FRST.txt
2024-10-17 12:03 - 2024-10-17 12:03 - 000000000 ____D C:\Users\StÃ©phane\Desktop\Rapports
2024-10-17 11:54 - 2024-10-17 12:03 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\ZHP
2024-10-17 11:54 - 2024-10-17 11:54 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\ZHP
2024-10-16 20:11 - 2024-10-16 20:11 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-10-16 19:40 - 2024-10-16 19:40 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\ElevatedDiagnostics
2024-10-16 13:37 - 2024-10-16 13:37 - 000001320 _____ C:\Users\Public\Desktop\More Great Games.lnk
2024-10-16 13:35 - 2024-10-16 13:37 - 000000000 ____D C:\Program Files (x86)\Redemption Cemetery - La Malediction du Corbeau Edition Collector
2024-10-16 13:35 - 2024-10-16 13:35 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - La Malediction du Corbeau Edition Collector
2024-10-16 13:35 - 2024-10-16 13:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - La Malediction du Corbeau Edition Collector
2024-10-16 13:21 - 2024-10-16 13:38 - 000000000 ____D C:\Users\StÃ©phane\Desktop\Speccy
2024-10-14 19:51 - 2024-10-16 13:39 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\ERS Game Studios
2024-10-14 19:49 - 2024-10-14 19:50 - 000000000 ____D C:\Program Files (x86)\Azada - In Libro Edition Collector
2024-10-14 19:49 - 2024-10-14 19:49 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Azada - In Libro Edition Collector
2024-10-14 19:49 - 2024-10-14 19:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Azada - In Libro Edition Collector
2024-10-14 19:38 - 2024-10-16 19:49 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\D3DSCache
2024-10-14 19:37 - 2024-10-14 19:37 - 000000000 __SHD C:\WINDOWS\ftpcache
2024-10-14 19:37 - 2024-10-14 19:37 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Macromedia
2024-10-14 19:37 - 2024-10-14 19:37 - 000000000 ____D C:\ProgramData\Redrum
2024-10-14 19:36 - 2024-10-16 13:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2024-10-14 19:36 - 2024-10-14 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redrum
2024-10-14 19:36 - 2024-10-14 19:36 - 000000000 ____D C:\Program Files (x86)\Redrum
2024-10-14 19:32 - 2024-10-14 19:32 - 000001032 _____ C:\Users\Public\Desktop\Games.lnk
2024-10-14 19:31 - 2024-10-14 19:31 - 000002000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Manager.lnk
2024-10-14 19:31 - 2024-10-14 19:31 - 000001988 _____ C:\Users\Public\Desktop\Game Manager.lnk
2024-10-14 19:31 - 2024-10-14 19:31 - 000001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\More Great Games.lnk
2024-10-14 19:28 - 2024-10-14 19:31 - 000000000 ____D C:\Program Files (x86)\bfgclient
2024-10-14 19:26 - 2024-10-14 19:27 - 000237736 _____ (Big Fish Games) C:\Users\StÃ©phane\Downloads\bfgstub.exe
2024-10-12 12:17 - 2024-10-12 12:17 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-10-12 12:13 - 2024-10-12 12:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mot de Passe
2024-10-12 12:13 - 2024-10-12 12:13 - 000000000 ____D C:\Program Files (x86)\MotdePasse
2024-10-12 12:13 - 2006-11-15 01:23 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vb6fr.DLL
2024-10-12 12:12 - 2024-10-12 12:12 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\WinRAR
2024-10-12 12:12 - 2024-10-12 12:12 - 000000000 ____D C:\Program Files\WinRAR
2024-10-12 11:35 - 2024-10-12 11:35 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Passware
2024-10-12 11:29 - 2024-10-12 11:29 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\TSMonitor
2024-10-12 11:29 - 2024-10-12 11:29 - 000000000 ____D C:\tenorshare
2024-10-12 11:28 - 2024-10-12 11:48 - 000000000 ____D C:\Program Files (x86)\PassFab 4WinKey
2024-10-11 19:07 - 2024-10-11 19:07 - 000008914 _____ C:\Users\StÃ©phane\Documents\Copilot.txt
2024-10-10 14:23 - 2024-10-16 21:01 - 000000000 ____D C:\ProgramData\TEMP
2024-10-10 14:23 - 2024-10-10 14:23 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\CEF
2024-10-10 14:18 - 2024-10-14 19:28 - 000000000 ____D C:\ProgramData\Big Fish
2024-10-10 14:17 - 2024-10-10 14:23 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\Big Fish
2024-10-10 14:16 - 2024-10-16 13:38 - 000000000 ____D C:\Users\StÃ©phane\Desktop\Jeux Bigfish Game
2024-10-10 10:10 - 2024-10-10 10:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-10-10 10:07 - 2024-10-10 10:07 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2024-10-10 10:06 - 2024-10-16 13:13 - 000000000 ____D C:\Program Files\RUXIM
2024-10-10 09:55 - 2024-10-10 09:55 - 000001149 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2024-10-10 09:55 - 2024-10-10 09:55 - 000000000 ____D C:\ProgramData\VirtualBox
2024-10-10 09:55 - 2024-10-10 09:55 - 000000000 ____D C:\Program Files\Oracle
2024-10-10 09:55 - 2022-10-06 11:17 - 001060928 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxSup.sys
2024-10-10 09:55 - 2022-10-06 11:17 - 000204176 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2024-10-10 09:50 - 2024-10-10 09:51 - 109882376 _____ (Oracle and/or its affiliates) C:\Users\StÃ©phane\Desktop\virtualbox-7-0-0.exe
2024-10-09 17:34 - 2024-10-09 17:34 - 000000000 ___HD C:\$WinREAgent
2024-10-09 15:48 - 2024-10-09 15:48 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2024-10-08 15:38 - 2024-10-08 15:38 - 000000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-10-08 15:17 - 2024-10-08 15:17 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\AMD_Common
2024-10-08 14:53 - 2024-10-16 20:08 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\MMC
2024-10-08 14:53 - 2024-10-08 15:06 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Spelling
2024-10-08 14:47 - 2024-10-16 13:11 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-10-08 14:47 - 2024-10-16 13:11 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-10-08 14:47 - 2024-10-08 14:47 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\Google
2024-10-08 14:46 - 2024-10-08 14:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-10-08 14:46 - 2024-10-08 14:46 - 000000000 ____D C:\Program Files\Google
2024-10-08 14:46 - 2024-10-08 14:46 - 000000000 ____D C:\Program Files (x86)\Google
2024-10-08 14:45 - 2024-10-08 14:45 - 008917384 _____ (Google LLC) C:\Users\StÃ©phane\Desktop\ChromeSetup (1).exe
2024-10-08 14:43 - 2024-10-08 14:43 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\Comms
2024-10-08 14:42 - 2024-10-08 14:42 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Eipix
2024-10-08 14:27 - 2024-10-16 13:13 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3387019964-3532494323-3827923169-1002
2024-10-08 14:26 - 2024-10-16 13:13 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3387019964-3532494323-3827923169-1002
2024-10-08 14:26 - 2024-10-09 17:54 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\PlaceholderTileLogoFolder
2024-10-08 14:25 - 2024-10-08 14:25 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\ATI
2024-10-08 14:25 - 2024-10-08 14:25 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\ATI
2024-10-08 14:25 - 2024-10-08 14:25 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2024-10-08 14:25 - 2024-10-08 14:25 - 000000000 ____D C:\ProgramData\ATI
2024-10-08 14:23 - 2024-10-08 14:23 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\Publishers
2024-10-08 14:21 - 2024-10-09 15:57 - 000000000 ____D C:\ProgramData\Packages
2024-10-08 14:20 - 2024-10-12 12:13 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\VirtualStore
2024-10-08 14:20 - 2024-10-10 08:34 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\Packages
2024-10-08 14:20 - 2024-10-08 15:38 - 000000000 ____D C:\Users\StÃ©phane\AppData\Local\ConnectedDevicesPlatform
2024-10-08 14:20 - 2024-10-08 14:20 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2024-10-08 14:20 - 2024-10-08 14:20 - 000000020 ___SH C:\Users\StÃ©phane\ntuser.ini
2024-10-08 14:20 - 2024-10-08 14:20 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Synaptics
2024-10-08 14:20 - 2024-10-08 14:20 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Network
2024-10-08 14:20 - 2024-10-08 14:20 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Adobe
2024-10-08 14:20 - 2024-10-08 14:20 - 000000000 ____D C:\ProgramData\Synaptics
2024-10-08 13:53 - 2024-10-16 20:58 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-10-08 13:52 - 2024-10-08 13:52 - 000003766 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{70D0AE28-C04E-486B-AE1D-1977FA71AE9E}
2024-10-08 13:52 - 2024-10-08 13:52 - 000003642 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{3C1996FD-0373-4A1C-B748-8B1CD2045669}
2024-10-08 13:51 - 2024-10-08 13:51 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique
2024-10-08 13:51 - 2024-10-08 13:51 - 000000000 _SHDL C:\Users\Default User
2024-10-08 13:51 - 2024-10-08 13:51 - 000000000 _SHDL C:\Users\All Users
2024-10-08 13:51 - 2024-10-08 13:51 - 000000000 _SHDL C:\ProgramData\ModÃ¨les
2024-10-08 13:51 - 2024-10-08 13:51 - 000000000 _SHDL C:\ProgramData\Menu DÃ©marrer
2024-10-08 13:51 - 2024-10-08 13:51 - 000000000 _SHDL C:\ProgramData\Bureau
2024-10-08 13:51 - 2024-10-08 13:51 - 000000000 _SHDL C:\Program Files\Fichiers communs
2024-10-08 13:50 - 2024-10-16 20:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-10-08 13:50 - 2024-10-12 10:06 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-10-08 13:50 - 2024-10-08 17:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-10-08 13:48 - 2024-10-08 13:48 - 000009190 _____ C:\Users\StÃ©phane\Desktop\Applications supprimÃ©es.html
2024-10-08 13:48 - 2024-10-08 13:48 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\SystemCertificates
2024-10-08 13:48 - 2024-10-08 13:48 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Crypto
2024-10-08 13:44 - 2024-10-08 14:18 - 000000000 ____D C:\WINDOWS\Panther
2024-10-08 13:37 - 2024-10-08 13:37 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2024-10-08 13:36 - 2024-10-08 13:36 - 000000000 ____D C:\Program Files\Synaptics
2024-10-08 13:35 - 2024-10-08 13:35 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2024-10-08 13:34 - 2024-10-08 13:34 - 000000000 ____D C:\WINDOWS\Setup
2024-10-08 13:31 - 2024-10-16 20:58 - 000756416 _____ C:\WINDOWS\system32\perfh00C.dat
2024-10-08 13:31 - 2024-10-16 20:58 - 000142186 _____ C:\WINDOWS\system32\perfc00C.dat
2024-10-08 13:31 - 2024-10-10 14:04 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2024-10-08 13:31 - 2024-10-08 14:19 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2024-10-08 13:31 - 2024-10-08 13:31 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2024-10-08 13:31 - 2024-10-08 13:31 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2024-10-08 13:31 - 2024-10-08 13:31 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2024-10-08 13:31 - 2024-10-08 13:31 - 000000000 ____D C:\WINDOWS\OCR
2024-10-08 13:31 - 2024-10-08 13:31 - 000000000 ____D C:\WINDOWS\addins
2024-10-08 13:31 - 2024-10-08 13:31 - 000000000 ____D C:\ProgramData\ssh
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\winrm
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\WCN
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\slmgr
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\fr
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\0409
2024-10-08 13:30 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\DigitalLocker
2024-10-08 13:25 - 2024-10-08 13:43 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2024-10-08 13:25 - 2024-10-08 13:21 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2024-10-08 13:25 - 2024-10-08 13:21 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2024-10-08 13:25 - 2024-10-08 13:21 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2024-10-08 13:25 - 2024-10-08 13:21 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2024-10-08 13:25 - 2024-10-08 13:21 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2024-10-08 13:25 - 2024-10-08 13:21 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2024-10-08 13:24 - 2024-10-17 11:58 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-10-08 13:24 - 2024-10-17 11:49 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-08 13:24 - 2024-10-17 11:49 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-10-08 13:24 - 2024-10-16 18:48 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-10-08 13:24 - 2024-10-16 13:35 - 000000000 ___RD C:\Program Files (x86)
2024-10-08 13:24 - 2024-10-16 13:13 - 000002430 _____ C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-10-08 13:24 - 2024-10-12 10:12 - 000000000 ____D C:\WINDOWS\appcompat
2024-10-08 13:24 - 2024-10-10 14:04 - 000000000 ____D C:\WINDOWS\SystemResources
2024-10-08 13:24 - 2024-10-10 14:04 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-10-08 13:24 - 2024-10-10 14:04 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-10-08 13:24 - 2024-10-09 15:49 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-10-08 13:24 - 2024-10-08 17:49 - 000000000 ____D C:\Program Files\Windows Defender
2024-10-08 13:24 - 2024-10-08 14:42 - 000000000 ____D C:\WINDOWS\ServiceState
2024-10-08 13:24 - 2024-10-08 14:40 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-10-08 13:24 - 2024-10-08 14:21 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-10-08 13:24 - 2024-10-08 14:21 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Windows
2024-10-08 13:24 - 2024-10-08 14:21 - 000000000 ____D C:\Users\StÃ©phane
2024-10-08 13:24 - 2024-10-08 14:18 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-10-08 13:24 - 2024-10-08 14:18 - 000000000 ____D C:\ProgramData\USOPrivate
2024-10-08 13:24 - 2024-10-08 13:51 - 000000000 ____D C:\Program Files\Windows NT
2024-10-08 13:24 - 2024-10-08 13:49 - 000000000 ____D C:\WINDOWS\system32\spool
2024-10-08 13:24 - 2024-10-08 13:48 - 000000000 __RHD C:\Users\Public\Libraries
2024-10-08 13:24 - 2024-10-08 13:48 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2024-10-08 13:24 - 2024-10-08 13:43 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2024-10-08 13:24 - 2024-10-08 13:31 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-10-08 13:24 - 2024-10-08 13:31 - 000000000 ____D C:\WINDOWS\system32\setup
2024-10-08 13:24 - 2024-10-08 13:31 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ___SD C:\WINDOWS\system32\dsc
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\MUI
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\system32\Com
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\IME
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\WINDOWS\Help
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\Program Files\Common Files\System
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\Program Files (x86)\Windows NT
2024-10-08 13:24 - 2024-10-08 13:30 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ___SD C:\WINDOWS\system32\Nui
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\ti-et
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\ta-in
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\si-lk
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\my-mm
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\Keywords
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\icsxml
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\ias
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\downlevel
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\am-et
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\Registration
2024-10-08 13:24 - 2024-10-08 13:25 - 000000000 ____D C:\WINDOWS\Provisioning
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\Voisinage rÃ©seau
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\Voisinage d'impression
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\ModÃ¨les
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\Mes documents
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\Menu DÃ©marrer
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\Documents\Mes vidÃ©os
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\Documents\Mes images
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\Documents\Ma musique
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 _SHDL C:\Users\StÃ©phane\AppData\Local\Historique
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 __SHD C:\Program Files\Windows Sidebar
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 __RSD C:\WINDOWS\Media
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\Web
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\WaaS
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\Vss
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\tracing
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\TAPI
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SystemApps
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\winevt
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\ras
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\Macromed
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\IME
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\DriverState
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\System
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SKB
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\security
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\schemas
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\SchCache
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\Resources
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\rescache
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\PLA
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\Performance
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\ModemLogs
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\L2Schemas
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\InputMethod
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\InboxApps
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\IdentityCRL
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\Globalization
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\Cursors
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\Containers
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\Branding
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\ProgramData\USOShared
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\Program Files\Windows Security
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\Program Files\Windows Portable Devices
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\Program Files\Common Files\Services
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2024-10-08 13:24 - 2024-10-08 13:24 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2024-10-08 13:22 - 2024-10-16 20:58 - 000000000 ____D C:\WINDOWS\INF
2024-10-08 13:15 - 2024-10-10 11:14 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-10-08 13:15 - 2024-10-08 13:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2024-10-08 13:15 - 2024-10-08 13:15 - 000000000 ____D C:\Program Files\ATI Technologies
2024-10-08 13:14 - 2024-10-10 14:23 - 000000000 ____D C:\ProgramData\Package Cache
2024-10-08 13:14 - 2024-10-08 13:15 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2024-10-08 13:14 - 2024-10-08 13:14 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2024-10-08 13:14 - 2024-10-08 13:14 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2024-10-08 13:14 - 2024-10-08 13:14 - 000000000 _____ C:\WINDOWS\ativpsrm.bin
2024-10-08 13:13 - 2024-10-08 15:17 - 000000000 ____D C:\Program Files\AMD
2024-10-08 13:13 - 2024-10-08 13:13 - 000000000 ____D C:\Program Files\Intel
2024-10-08 13:02 - 2024-10-16 20:50 - 075235328 _____ C:\WINDOWS\system32\config\SOFTWARE
2024-10-08 13:02 - 2024-10-16 20:50 - 013631488 _____ C:\WINDOWS\system32\config\SYSTEM
2024-10-08 13:02 - 2024-10-16 20:50 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2024-10-08 13:02 - 2024-10-16 20:50 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-10-08 13:02 - 2024-10-16 20:50 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2024-10-08 13:02 - 2024-10-16 20:50 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY
2024-10-08 13:02 - 2024-10-10 11:13 - 000000000 ____D C:\WINDOWS\servicing
2024-10-08 13:02 - 2024-10-08 13:24 - 000000000 ____D C:\WINDOWS\system32\SMI
2024-10-08 13:02 - 2024-10-08 13:02 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2024-10-08 12:47 - 2024-10-16 18:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-10-08 12:46 - 2024-10-10 14:07 - 000260440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-10-08 12:25 - 2024-10-08 13:45 - 000000000 ___HD C:\$SysReset
2024-10-08 11:08 - 2024-10-08 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2024-10-08 09:24 - 2024-10-08 09:24 - 002397696 _____ (Farbar) C:\Users\StÃ©phane\Desktop\FRST64.exe
2024-10-08 09:14 - 2024-10-08 09:14 - 003539144 _____ (Nicolas Coolman) C:\Users\StÃ©phane\Desktop\ZHPSuite.exe
2024-10-08 08:48 - 2024-10-12 12:12 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-10-08 08:48 - 2024-10-12 12:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-10-08 08:48 - 2024-10-08 08:48 - 004075136 _____ (Alexander Roshal) C:\Users\StÃ©phane\Desktop\winrar-x64-701fr.exe
2024-10-07 12:34 - 2024-10-17 12:03 - 000000000 ____D C:\Users\StÃ©phane\Desktop\fgdump
2024-10-07 12:34 - 2024-10-08 09:28 - 000000000 ____D C:\Users\StÃ©phane\Desktop\fgdump-2.1.0-exeonly
2024-10-07 12:17 - 2024-10-07 13:48 - 015335424 _____ C:\Users\StÃ©phane\SystemBkup.hiv
2024-10-07 12:17 - 2024-10-07 13:48 - 000073728 _____ C:\Users\StÃ©phane\SamBkup.hiv
2024-10-07 12:14 - 2024-10-17 12:03 - 000000000 ____D C:\Users\StÃ©phane\Desktop\Mimikatz
2024-10-06 19:59 - 2024-10-06 19:59 - 000000000 ___HD C:\OneDriveTemp
2024-10-04 11:43 - 2024-10-04 11:43 - 000000903 _____ C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tor Browser.lnk
2024-10-04 11:43 - 2024-10-04 11:43 - 000000855 _____ C:\Users\StÃ©phane\Desktop\Tor Browser.lnk
2024-10-04 11:43 - 2024-10-04 11:43 - 000000000 ____D C:\Users\StÃ©phane\Desktop\Tor Browser
2024-10-04 11:41 - 2024-10-04 11:42 - 105583680 _____ C:\Users\StÃ©phane\Desktop\tor-browser-windows-x86_64-portable-13.5.6.exe
2024-10-04 10:44 - 2024-10-04 10:53 - 2493845504 _____ C:\Users\StÃ©phane\Desktop\fr_windows_7_home_premium_with_sp1_x86_dvd_u_676678.iso
2024-10-03 21:34 - 2024-10-04 16:36 - 000000000 ____D C:\Users\StÃ©phane\VirtualBox VMs
2024-10-03 19:15 - 2024-10-10 09:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2024-10-03 19:13 - 2024-10-03 19:14 - 110896736 _____ (Oracle and/or its affiliates) C:\Users\StÃ©phane\Desktop\VirtualBox-7.0.12-159484-Win.exe
2024-10-03 18:44 - 2024-10-03 18:44 - 002142114 _____ ( ) C:\Users\StÃ©phane\Desktop\SafeDiscShim_Setup_0.1.0.exe
2024-10-03 18:34 - 2024-10-03 18:34 - 002146449 _____ ( ) C:\Users\StÃ©phane\Desktop\SafeDiscShim_Setup_0.1.1.exe
2024-10-03 18:29 - 2024-10-03 18:30 - 000000000 ____D C:\Users\StÃ©phane\Desktop\SafeDisc
2024-10-03 18:29 - 2024-10-03 18:29 - 000042343 _____ C:\Users\StÃ©phane\Desktop\SafeDiscShim-main.zip
2024-10-03 16:56 - 2024-10-03 16:56 - 016222906 _____ (EA GAMES ) C:\Users\StÃ©phane\Desktop\MOHAA_FR_ONLY_patch111v9safedisk.exe
2024-10-03 16:10 - 2024-10-08 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2024-10-03 15:51 - 2024-10-03 15:53 - 000000000 ____D C:\Scripts
2024-10-03 15:50 - 2024-10-03 15:50 - 000021856 _____ C:\Users\StÃ©phane\Desktop\Edge_Removal.bat
2024-10-03 13:16 - 2024-10-03 13:16 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-10-03 13:06 - 2024-10-03 13:06 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-10-02 23:12 - 2024-10-02 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-10-02 23:11 - 2024-10-02 23:12 - 044943296 _____ C:\Users\StÃ©phane\Desktop\vlc-3.0.21-win64.exe
2024-10-02 20:41 - 2024-10-02 21:11 - 1861890048 _____ C:\Users\StÃ©phane\Desktop\Win10_22H2_French_x64v1.iso
2024-09-30 12:33 - 2024-09-30 12:35 - 257400056 _____ (VMware, Inc.) C:\Users\StÃ©phane\Desktop\vmware-workstation-windows-17.6.0-4873.exe
2024-09-29 17:30 - 2024-09-29 17:33 - 602144768 _____ C:\Users\StÃ©phane\Desktop\fr_windows_xp_home_with_service_pack_3_x86_cd_x14-92415.iso
2024-09-29 16:26 - 2024-10-10 14:01 - 000000000 ____D C:\Users\StÃ©phane\.VirtualBox
2024-09-29 16:03 - 2024-09-29 16:04 - 587763712 _____ C:\Users\StÃ©phane\Desktop\Windows XP Professional 64-bit Corporate Edition(CD Key VCFQD-V9FX9-46WVH-K3CD4-4J3JM).iso
2024-09-28 20:41 - 2024-10-08 14:26 - 000000000 ___RD C:\Users\StÃ©phane\OneDrive
2024-09-28 20:31 - 2024-10-08 14:21 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-09-28 20:31 - 2024-10-08 14:21 - 000000000 ___RD C:\Users\StÃ©phane\3D Objects
2024-09-28 20:30 - 2024-10-17 11:42 - 000000000 __SHD C:\Users\StÃ©phane\IntelGraphicsProfiles
2024-09-28 20:30 - 2024-09-28 20:30 - 000000000 ___SD C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Protect
2024-09-28 20:30 - 2024-09-28 20:30 - 000000000 ___SD C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Credentials
2024-09-28 20:30 - 2024-09-28 20:30 - 000000000 ____D C:\Users\StÃ©phane\AppData\Roaming\Microsoft\Vault
2024-09-28 20:09 - 2015-12-16 20:07 - 000082664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidÃ©os
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Public\Documents\Mes images
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\Voisinage rÃ©seau
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\ModÃ¨les
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\Mes documents
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\Menu DÃ©marrer
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidÃ©os
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\Documents\Mes images
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2024-09-28 19:53 - 2024-09-28 19:53 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2024-09-28 19:19 - 2024-10-12 10:06 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-28 19:19 - 2024-10-08 13:14 - 000000000 ____D C:\AMD
2024-09-28 18:57 - 2024-10-16 20:51 - 000008192 ___SH C:\DumpStack.log.tmp
2024-09-28 17:20 - 2024-09-28 17:52 - 000000000 ____D C:\ESD
2024-09-28 17:19 - 2024-09-28 17:19 - 000000000 ___HD C:\$Windows.~WS

==================== Trois mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2024-10-17 12:05 - 2023-09-25 15:04 - 000000000 ____D C:\FRST
2024-10-14 19:38 - 2013-10-21 22:46 - 000000000 ____D C:\BigFishCache

==================== SigCheckExt =========================

2006-12-01 23:37 - 2006-12-01 23:37 - 000904704 _____ (Microsoft Corporation) C:\msdia80.dll
2024-10-12 12:13 - 2006-11-15 01:23 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vb6fr.DLL
2024-10-08 09:24 - 2024-10-08 09:24 - 002397696 _____ (Farbar) C:\Users\StÃ©phane\Desktop\FRST64.exe
2024-10-03 16:56 - 2024-10-03 16:56 - 016222906 _____ (EA GAMES ) C:\Users\StÃ©phane\Desktop\MOHAA_FR_ONLY_patch111v9safedisk.exe
2024-10-03 18:44 - 2024-10-03 18:44 - 002142114 _____ ( ) C:\Users\StÃ©phane\Desktop\SafeDiscShim_Setup_0.1.0.exe
2024-10-03 18:34 - 2024-10-03 18:34 - 002146449 _____ ( ) C:\Users\StÃ©phane\Desktop\SafeDiscShim_Setup_0.1.1.exe
2024-10-08 09:14 - 2024-10-08 09:14 - 003539144 _____ (Nicolas Coolman) C:\Users\StÃ©phane\Desktop\ZHPSuite.exe

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)


==================== BCD ================================

Gestionnaire de dÃ©marrage du microprogramme
-------------------------------------------
identificateur          {fwbootmgr}
displayorder            {bootmgr}
                        {92fce251-d031-11ea-bf38-806e6f6e6963}
                        {76c57272-80ea-11ef-bb55-806e6f6e6963}
timeout                 0

Gestionnaire de dÃ©marrage Windows
---------------------------------
identificateur          {bootmgr}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\bootmgfw.efi
description             Windows Boot Manager
locale                  fr-FR
inherit                 {globalsettings}
default                 {current}
resumeobject            {c7166d4d-8569-11ef-9b15-d34ad88246e5}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Application logicielle (101fffff)
--------------------------------
identificateur          {76c57272-80ea-11ef-bb55-806e6f6e6963}
description             UEFI: IP6 Realtek PCIe GBE Family Controller

Application logicielle (101fffff)
--------------------------------
identificateur          {92fce251-d031-11ea-bf38-806e6f6e6963}
description             UEFI: IP4 Realtek PCIe GBE Family Controller

Chargeur de dÃ©marrage Windows
-----------------------------
identificateur          {695783bc-3819-11e2-9cc1-b888e360e44f}
device                  ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{695783bd-3819-11e2-9cc1-b888e360e44f}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  fr-FR
inherit                 {bootloadersettings}
displaymessage          Recovery
osdevice                ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{695783bd-3819-11e2-9cc1-b888e360e44f}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Chargeur de dÃ©marrage Windows
-----------------------------
identificateur          {8817927b-80fc-11ef-bb57-b078a267e257}
device                  ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{8817927c-80fc-11ef-bb57-b078a267e257}
path                    \windows\system32\winload.efi
description             Windows Recovery Environment
locale                  fr-FR
inherit                 {bootloadersettings}
displaymessage          Recovery
displaymessageoverride  PushButtonReset
osdevice                ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{8817927c-80fc-11ef-bb57-b078a267e257}
systemroot              \windows
nx                      OptIn
bootmenupolicy          Standard
winpe                   Yes

Chargeur de dÃ©marrage Windows
-----------------------------
identificateur          {current}
device                  partition=C:
path                    \WINDOWS\system32\winload.efi
description             Windows 10
locale                  fr-FR
inherit                 {bootloadersettings}
recoverysequence        {8817927b-80fc-11ef-bb57-b078a267e257}
displaymessageoverride  Recovery
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
osdevice                partition=C:
systemroot              \WINDOWS
resumeobject            {c7166d4d-8569-11ef-9b15-d34ad88246e5}
nx                      OptIn
bootmenupolicy          Standard

Reprendre Ã  partir de la mise en veille prolongÃ©e
-------------------------------------------------
identificateur          {c7166d4d-8569-11ef-9b15-d34ad88246e5}
device                  partition=C:
path                    \WINDOWS\system32\winresume.efi
description             Windows Resume Application
locale                  fr-FR
inherit                 {resumeloadersettings}
recoverysequence        {8817927b-80fc-11ef-bb57-b078a267e257}
recoveryenabled         Yes
isolatedcontext         Yes
allowedinmemorysettings 0x15000075
filedevice              partition=C:
filepath                \hiberfil.sys
bootmenupolicy          Standard
debugoptionenabled      No

Testeur de mÃ©moire Windows
--------------------------
identificateur          {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \EFI\Microsoft\Boot\memtest.efi
description             Diagnostics mÃ©moire Windows
locale                  fr-FR
inherit                 {globalsettings}
badmemoryaccess         Yes

ParamÃ¨tres EMS
--------------
identificateur          {emssettings}
bootems                 No

ParamÃ¨tres du dÃ©bogueur
-----------------------
identificateur          {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

Erreurs de mÃ©moire RAM
----------------------
identificateur          {badmemory}
badmemorylist           0x10007

ParamÃ¨tres globaux
------------------
identificateur          {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

ParamÃ¨tres du chargeur de dÃ©marrage
-----------------------------------
identificateur          {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

ParamÃ¨tres de l'hyperviseur
-------------------
identificateur          {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

ParamÃ¨tres du chargeur de reprise
---------------------------------
identificateur          {resumeloadersettings}
inherit                 {globalsettings}

Options de pÃ©riphÃ©rique
-----------------------
identificateur          {8817927c-80fc-11ef-bb57-b078a267e257}
description             Windows Recovery
ramdisksdidevice        partition=\Device\HarddiskVolume5
ramdisksdipath          \Recovery\WindowsRE\boot.sdi

==================== Fin de FRST.txt ========================