Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Exécuté par amilh (administrateur) sur PC-AAA (Acer Nitro AN517-55) (11-10-2023 21:08:22)
Exécuté depuis C:\Users\amilh\OneDrive\Bureau\FRST64.exe
Profils chargés: amilh
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2283 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe
(Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\Browny02\BrYNSvc.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe <2>
(C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe <6>
(C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoNotificationUx.exe
(drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_helper.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <30>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\amilh\AppData\Local\Microsoft\Teams\current\Teams.exe <8>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.2.2.2501\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_734ca279c9cf8df2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_89d541b5fe7b9dc6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3>
(sihost.exe ->) (EAF76292-FADE-4EAB-A62C-FE5E78661D58 -> ) C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\amilh\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [223544 2019-02-01] (Autodesk, Inc. -> Autodesk)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3738160 2022-06-29] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11561184 2023-09-30] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [I20A] => C:\WINDOWS\twain_32\Brimi20a\Common\TwDsUiLaunch.exe [86976 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3384320 2022-03-17] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3785728 2023-09-06] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\amilh\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-10-07] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [MicrosoftEdgeAutoLaunch_619A29A1DB0E890815D3E9C30372A211] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-10-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [64539056 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Uninstall 23.189.0910.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\23.189.0910.0001" [0 2023-10-11] () <==== ATTENTION [zéro octet Fichier/Dossier]
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Policies\Explorer: []
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [831488 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [196096 2023-05-13] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.152\Installer\chrmstp.exe [2023-10-11] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {4B3E60B4-1766-4872-AAE9-DC4DBE93168D} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> )
Task: {656A0A86-A7BD-44EA-9B4A-33A7AB55AF08} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41632 2021-12-30] (Acer Incorporated -> )
Task: {753EF364-37C9-4B1B-9B05-59A6926E8493} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836512 2021-12-30] (Acer Incorporated -> )
Task: {CE296B18-D775-4CBE-9932-10E6E7D4ABA1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {80B20A1F-2DEB-44AA-88F3-1FB0984E1A84} - System32\Tasks\App Explorer => C:\Users\amilh\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {D7DF8C99-56C9-4CDF-96B7-8764C6718CC8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {92788E5E-C108-40FF-B5C9-A8845F315CD2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3D6693B9-1433-4848-A609-F5ADA01FB1A2} - System32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC)
Task: {6C828A5D-4D67-4146-AA7F-1844F142B6B0} - System32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC)
Task: {2EA12E8B-37BC-4E2F-86F9-FBBCFE266F39} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {96A7C11F-C6F0-41DB-9786-030D9A5FF905} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A3F2C90-7C8A-4C18-9A7D-752915B1F79C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {797F97C0-9AB0-4609-9F7A-F0F046D5B076} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {2C4539A4-6860-4B16-B84A-37405AE5AD4D} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {A56DBE1D-55FD-4F77-B7DB-0EBD808A26AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7CD1D7E6-04DF-4BC4-B2DE-975E4A2DF978} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1EF2A94-00C1-4C11-AB5C-980C32E60A7E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4F7B5BAB-37E1-4D35-B4EA-B5DC107215DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D6B6C6CF-F4FA-470F-9B38-4693E10A0D4F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [709560 2022-01-20] (Mozilla Corporation -> Mozilla Foundation)
Task: {FC2F89D6-455C-4299-8013-FB373B45C92A} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [609440 2022-03-21] (Acer Incorporated -> Acer Incorporated)
Task: {F1FDACEF-6CF8-46E1-A869-A2FEC437A84A} - System32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe [22291968 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E6353938-A550-4993-930B-AF5684D3EF96} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C4F610D8-C690-4EC3-B711-904659F9995E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F858898E-4369-4051-872E-6144958E2376} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9A09598F-37DC-43DF-82F9-3458A94DE11F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6D0AD92-1EBC-4463-AF1E-2F6B35900CB8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2EB2F766-25EC-4DD7-A85D-655A69110E09} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {392C1692-97DA-468E-9A82-D6FF72F2A05F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {778D41A7-C102-42FC-9443-AE26E63075DF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D286EDB9-82C2-44C3-A816-325E427FBF59} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62B8BC09-1D82-4135-B9DE-E9DD41038FE4} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2771616 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {4C9DEEC1-D7BB-48D3-BD27-4DE32E41454C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {D6F0F46E-A8E4-4FF3-9368-B7EC261D35A7} - System32\Tasks\RegistryUpdateTaskMachineQC => C:\Program Files\Registry\Host\updater.exe [4828160 2023-05-13] (Microsoft Inc.) [Fichier non signé] <==== ATTENTION
Task: {23BFC528-C988-45C5-8ED9-381516C9C048} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {11D2013B-A1F1-47CF-9D0E-F717B6E8ACFF} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft)
Task: {2D2B4AE5-D52A-46FA-81E4-4684C34CF77F} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [330472 2021-11-02] (Acer Incorporated -> Acer Incorporated)
Task: {FCB077D9-CEAD-4D78-99DB-CABE75AA2443} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2021-11-02] (Acer Incorporated -> Acer Incorporated)
Task: {DC6973B0-B8BA-4DD7-BC32-9C021117BADC} - System32\Tasks\WindowsUpdateTaskMachineQC => C:\Program Files\Windows\File\updater.exe [5984256 2023-05-13] (Google Inc.) [Fichier non signé] <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.3.1
Tcpip\..\Interfaces\{1c6604c5-41bc-440f-bf45-faf41871e295}: [DhcpNameServer] 192.168.3.1
Edge:
=======
Edge Profile: C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-11]
Edge Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-25]
Edge Extension: (Edge relevant text changes) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25]
FireFox:
========
FF Extension: (Français Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org.xpi [2022-01-25]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2022-05-19] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default [2023-10-11]
CHR Notifications: Default -> hxxps://calendar.google.com
CHR HomePage: Default -> hxxp://yahoo.fr/
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-06]
CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-24]
CHR HKU\S-1-5-21-730324531-2188339189-1696067976-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16926864 2019-08-08] (Autodesk, Inc. -> Autodesk)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [377856 2023-07-20] (Brother Industries, Ltd.) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-09-30] (Dropbox, Inc -> Dropbox, Inc.)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe [543888 2022-02-22] (Intel Corporation -> Intel Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [235744 2021-12-21] (DTS, Inc. -> DTS Inc.)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe [532664 2021-11-08] (Intel Corporation -> Intel)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe [2738360 2022-02-22] (Intel Corporation -> Intel Corporation)
S3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2423160 2022-03-28] (Intel Corporation -> Intel)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2883448 2022-03-28] (Intel Corporation -> Intel)
R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation)
R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [866976 2022-03-21] (Acer Incorporated -> Acer Incorporated)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [335080 2021-11-02] (Acer Incorporated -> Acer Incorporated)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2023-07-25] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [19456 2023-07-25] () [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R3 e2k68cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e2k68cx21x64.inf_amd64_e63a1a6682c5eed2\e2k68cx21x64.sys [619408 2022-03-09] (Realtek Semiconductor Corp. -> Realtek)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_c385707073e5c73f\iaLPSS2_GPIO2_ADL.sys [139912 2021-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_8ad31c966ef4e638\iaLPSS2_I2C_ADL.sys [207504 2021-10-24] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605296 2022-07-12] (Intel Corporation -> Intel Corporation)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_484c3823bebcfca7\IntcUSB.sys [881320 2021-11-08] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_19ceb7ce67a7cf8b\gna.sys [87208 2021-09-22] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_587e92f3084b501f\ipf_acpi.sys [86712 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_cpu.sys [80568 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_lf.sys [432312 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [175848 2022-03-28] (Intel Corporation -> Rivet Networks, LLC.)
R3 MpKsl694075b4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{26932995-0E02-4B2A-B52A-629A254D9946}\MpKslDrv.sys [263560 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [240152 2023-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-11 21:07 - 2023-10-11 21:08 - 000000000 ____D C:\FRST
2023-10-11 20:23 - 2023-10-11 20:49 - 000000000 ____D C:\Users\amilh\AppData\Roaming\ZHP
2023-10-11 20:23 - 2023-10-11 20:23 - 000000000 ____D C:\Users\amilh\AppData\Local\ZHP
2023-10-11 12:31 - 2023-10-11 12:45 - 000000000 ___HD C:\$WinREAgent
2023-10-11 11:34 - 2023-10-11 17:22 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-10-10 07:57 - 2023-10-10 07:57 - 000810954 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-10 07:57 - 2023-10-10 07:57 - 000157390 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-09 14:59 - 2023-10-09 14:59 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Brother
2023-10-07 15:00 - 2023-10-07 15:00 - 000002418 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams classic (work or school).lnk
2023-10-06 16:56 - 2023-10-06 16:56 - 000000000 ____D C:\Users\amilh\AppData\Local\Brother
2023-10-06 16:54 - 2023-10-09 14:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Brother
2023-10-06 16:54 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files\Brother
2023-10-06 16:53 - 2023-10-06 16:56 - 000000000 ____D C:\Program Files (x86)\Browny02
2023-10-06 16:53 - 2023-10-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll
2023-10-06 16:47 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files (x86)\Brother
2023-10-06 16:42 - 2023-10-06 16:57 - 000000000 ____D C:\ProgramData\Brother
2023-10-05 20:02 - 2023-10-11 07:28 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-05 20:00 - 2023-10-05 20:00 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2}
2023-10-05 20:00 - 2023-10-05 20:00 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050}
2023-10-05 09:54 - 2023-10-05 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-09-30 18:46 - 2023-09-30 18:46 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ C:\Users\amilh\AppData\Roaming\com.reolink.app.client
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-11 21:05 - 2023-04-06 10:38 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-11 21:05 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-11 20:55 - 2023-05-24 21:30 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Teams
2023-10-11 20:51 - 2023-04-12 16:32 - 000000000 ____D C:\Users\amilh\AppData\Local\CrashDumps
2023-10-11 20:26 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-11 20:21 - 2023-04-16 17:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 19:37 - 2023-04-06 11:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-11 18:14 - 2023-05-12 16:09 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Excel
2023-10-11 18:14 - 2023-04-06 09:56 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Word
2023-10-11 17:22 - 2023-04-06 11:00 - 000001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-10-11 17:22 - 2022-05-19 00:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-11 17:21 - 2023-05-27 14:02 - 000005290 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA
2023-10-11 16:09 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 15:59 - 2023-05-12 17:10 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-730324531-2188339189-1696067976-1001
2023-10-11 15:59 - 2023-05-12 17:10 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-730324531-2188339189-1696067976-1001
2023-10-11 15:59 - 2023-04-06 09:25 - 000002421 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-11 15:04 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-11 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-11 13:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-11 12:25 - 2022-05-18 23:27 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-11 08:09 - 2023-04-12 16:58 - 000000000 ____D C:\ProgramData\Autodesk
2023-10-11 07:45 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\D3DSCache
2023-10-11 07:37 - 2023-04-16 17:59 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-11 07:28 - 2023-04-06 09:16 - 000000000 ____D C:\Users\amilh\AppData\Local\Host App Service
2023-10-11 07:26 - 2023-05-24 20:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Dropbox
2023-10-11 07:26 - 2023-05-13 14:32 - 000000000 ____D C:\Users\amilh\AppData\Local\Dropbox
2023-10-10 12:14 - 2023-04-12 17:18 - 000000000 ____D C:\ProgramData\RevitInterProcess
2023-10-10 08:48 - 2023-05-13 14:41 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-10-10 08:14 - 2023-05-12 17:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-10 07:57 - 2023-05-13 14:34 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-10 07:57 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-10-10 07:49 - 2023-05-12 17:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-10 07:49 - 2022-05-18 23:18 - 000012288 ___SH C:\DumpStack.log.tmp
2023-10-10 07:49 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-08 20:42 - 2023-05-12 17:08 - 000000000 ____D C:\Users\amilh
2023-10-08 20:23 - 2022-05-18 23:18 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-08 20:17 - 2023-06-06 08:49 - 000000000 ____D C:\WINDOWS\Minidump
2023-10-08 20:17 - 2022-05-19 08:59 - 006046409 ____N C:\WINDOWS\Minidump\100823-14500-01.dmp
2023-10-06 16:53 - 2022-05-18 23:26 - 000000000 ____D C:\ProgramData\Package Cache
2023-10-05 10:39 - 2023-05-24 21:52 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2023-10-05 10:39 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-10-05 10:25 - 2022-05-18 23:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-05 10:18 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\Packages
2023-10-05 09:55 - 2023-05-24 20:59 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-10-04 08:26 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-03 18:45 - 2023-04-06 09:16 - 000000000 ___SD C:\Users\amilh\AppData\Roaming\Microsoft\Protect
2023-10-02 16:07 - 2023-07-10 16:14 - 000000000 ____D C:\Users\amilh\AppData\Roaming\reolink
2023-10-01 21:20 - 2023-04-06 11:00 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Mozilla
2023-09-21 17:15 - 2023-04-06 09:23 - 000000000 ____D C:\ProgramData\Packages
2023-09-21 08:36 - 2023-05-24 21:05 - 000000000 ___RD C:\Users\amilh\2d groupe Dropbox
2023-09-15 22:05 - 2023-04-06 09:56 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Office
2023-09-14 20:46 - 2023-05-24 20:59 - 000001198 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2023-09-14 20:46 - 2023-05-24 20:59 - 000001194 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2023-09-14 20:46 - 2023-05-12 17:07 - 000587608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-14 18:36 - 2023-05-13 14:26 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-14 09:29 - 2023-05-24 20:59 - 000004258 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2023-09-14 09:29 - 2023-05-24 20:59 - 000004026 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2023-09-14 09:23 - 2023-05-13 14:50 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-09-14 09:23 - 2023-05-13 14:50 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-09-11 15:25 - 2023-07-10 16:14 - 000000000 ____D C:\Users\amilh\AppData\Local\reolink-updater
==================== Fichiers à la racine de certains dossiers ========
2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ () C:\Users\amilh\AppData\Roaming\com.reolink.app.client
==================== SigCheckExt =========================
2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll
2023-05-13 14:38 - 2023-05-13 14:38 - 000196096 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-05-13 17:56 - 2010-12-06 04:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll
2023-05-24 21:40 - 2023-05-24 21:40 - 000003584 _____ C:\WINDOWS\SECOH-QAD.dll
2023-05-13 14:53 - 2023-05-13 14:53 - 000004608 _____ C:\WINDOWS\SECOH-QAD.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{009473dc-e299-11ed-87f5-806e6f6e6963}
{78a4f262-d6f8-11ec-87d4-806e6f6e6963}
{78a4f263-d6f8-11ec-87d4-806e6f6e6963}
{78a4f264-d6f8-11ec-87d4-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {009473dc-e299-11ed-87f5-806e6f6e6963}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f262-d6f8-11ec-87d4-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f263-d6f8-11ec-87d4-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f264-d6f8-11ec-87d4-806e6f6e6963}
description EFI Network
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par amilh (administrateur) sur PC-AAA (Acer Nitro AN517-55) (11-10-2023 21:08:22)
Exécuté depuis C:\Users\amilh\OneDrive\Bureau\FRST64.exe
Profils chargés: amilh
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2283 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe
(Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\Browny02\BrYNSvc.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe <2>
(C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe <6>
(C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoNotificationUx.exe
(drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_helper.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <30>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\amilh\AppData\Local\Microsoft\Teams\current\Teams.exe <8>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.2.2.2501\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_734ca279c9cf8df2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_89d541b5fe7b9dc6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3>
(sihost.exe ->) (EAF76292-FADE-4EAB-A62C-FE5E78661D58 -> ) C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\amilh\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [223544 2019-02-01] (Autodesk, Inc. -> Autodesk)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3738160 2022-06-29] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11561184 2023-09-30] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [I20A] => C:\WINDOWS\twain_32\Brimi20a\Common\TwDsUiLaunch.exe [86976 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3384320 2022-03-17] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3785728 2023-09-06] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\amilh\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-10-07] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [MicrosoftEdgeAutoLaunch_619A29A1DB0E890815D3E9C30372A211] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-10-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [64539056 2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Uninstall 23.189.0910.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\23.189.0910.0001" [0 2023-10-11] () <==== ATTENTION [zéro octet Fichier/Dossier]
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Policies\Explorer: []
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [831488 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [196096 2023-05-13] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.152\Installer\chrmstp.exe [2023-10-11] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {4B3E60B4-1766-4872-AAE9-DC4DBE93168D} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> )
Task: {656A0A86-A7BD-44EA-9B4A-33A7AB55AF08} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41632 2021-12-30] (Acer Incorporated -> )
Task: {753EF364-37C9-4B1B-9B05-59A6926E8493} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836512 2021-12-30] (Acer Incorporated -> )
Task: {CE296B18-D775-4CBE-9932-10E6E7D4ABA1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {80B20A1F-2DEB-44AA-88F3-1FB0984E1A84} - System32\Tasks\App Explorer => C:\Users\amilh\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {D7DF8C99-56C9-4CDF-96B7-8764C6718CC8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {92788E5E-C108-40FF-B5C9-A8845F315CD2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3D6693B9-1433-4848-A609-F5ADA01FB1A2} - System32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC)
Task: {6C828A5D-4D67-4146-AA7F-1844F142B6B0} - System32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC)
Task: {2EA12E8B-37BC-4E2F-86F9-FBBCFE266F39} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {96A7C11F-C6F0-41DB-9786-030D9A5FF905} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A3F2C90-7C8A-4C18-9A7D-752915B1F79C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {797F97C0-9AB0-4609-9F7A-F0F046D5B076} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {2C4539A4-6860-4B16-B84A-37405AE5AD4D} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {A56DBE1D-55FD-4F77-B7DB-0EBD808A26AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7CD1D7E6-04DF-4BC4-B2DE-975E4A2DF978} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1EF2A94-00C1-4C11-AB5C-980C32E60A7E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4F7B5BAB-37E1-4D35-B4EA-B5DC107215DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D6B6C6CF-F4FA-470F-9B38-4693E10A0D4F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [709560 2022-01-20] (Mozilla Corporation -> Mozilla Foundation)
Task: {FC2F89D6-455C-4299-8013-FB373B45C92A} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [609440 2022-03-21] (Acer Incorporated -> Acer Incorporated)
Task: {F1FDACEF-6CF8-46E1-A869-A2FEC437A84A} - System32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe [22291968 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E6353938-A550-4993-930B-AF5684D3EF96} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C4F610D8-C690-4EC3-B711-904659F9995E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F858898E-4369-4051-872E-6144958E2376} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9A09598F-37DC-43DF-82F9-3458A94DE11F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6D0AD92-1EBC-4463-AF1E-2F6B35900CB8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2EB2F766-25EC-4DD7-A85D-655A69110E09} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {392C1692-97DA-468E-9A82-D6FF72F2A05F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {778D41A7-C102-42FC-9443-AE26E63075DF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D286EDB9-82C2-44C3-A816-325E427FBF59} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62B8BC09-1D82-4135-B9DE-E9DD41038FE4} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2771616 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {4C9DEEC1-D7BB-48D3-BD27-4DE32E41454C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {D6F0F46E-A8E4-4FF3-9368-B7EC261D35A7} - System32\Tasks\RegistryUpdateTaskMachineQC => C:\Program Files\Registry\Host\updater.exe [4828160 2023-05-13] (Microsoft Inc.) [Fichier non signé] <==== ATTENTION
Task: {23BFC528-C988-45C5-8ED9-381516C9C048} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {11D2013B-A1F1-47CF-9D0E-F717B6E8ACFF} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft)
Task: {2D2B4AE5-D52A-46FA-81E4-4684C34CF77F} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [330472 2021-11-02] (Acer Incorporated -> Acer Incorporated)
Task: {FCB077D9-CEAD-4D78-99DB-CABE75AA2443} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2021-11-02] (Acer Incorporated -> Acer Incorporated)
Task: {DC6973B0-B8BA-4DD7-BC32-9C021117BADC} - System32\Tasks\WindowsUpdateTaskMachineQC => C:\Program Files\Windows\File\updater.exe [5984256 2023-05-13] (Google Inc.) [Fichier non signé] <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.3.1
Tcpip\..\Interfaces\{1c6604c5-41bc-440f-bf45-faf41871e295}: [DhcpNameServer] 192.168.3.1
Edge:
=======
Edge Profile: C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-11]
Edge Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-25]
Edge Extension: (Edge relevant text changes) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25]
FireFox:
========
FF Extension: (Français Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org.xpi [2022-01-25]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2022-05-19] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default [2023-10-11]
CHR Notifications: Default -> hxxps://calendar.google.com
CHR HomePage: Default -> hxxp://yahoo.fr/
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-06]
CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-24]
CHR HKU\S-1-5-21-730324531-2188339189-1696067976-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16926864 2019-08-08] (Autodesk, Inc. -> Autodesk)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [377856 2023-07-20] (Brother Industries, Ltd.) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-09-30] (Dropbox, Inc -> Dropbox, Inc.)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe [543888 2022-02-22] (Intel Corporation -> Intel Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [235744 2021-12-21] (DTS, Inc. -> DTS Inc.)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe [532664 2021-11-08] (Intel Corporation -> Intel)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe [2738360 2022-02-22] (Intel Corporation -> Intel Corporation)
S3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2423160 2022-03-28] (Intel Corporation -> Intel)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2883448 2022-03-28] (Intel Corporation -> Intel)
R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation)
R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [866976 2022-03-21] (Acer Incorporated -> Acer Incorporated)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [335080 2021-11-02] (Acer Incorporated -> Acer Incorporated)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2023-07-25] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [19456 2023-07-25] () [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R3 e2k68cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e2k68cx21x64.inf_amd64_e63a1a6682c5eed2\e2k68cx21x64.sys [619408 2022-03-09] (Realtek Semiconductor Corp. -> Realtek)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_c385707073e5c73f\iaLPSS2_GPIO2_ADL.sys [139912 2021-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_8ad31c966ef4e638\iaLPSS2_I2C_ADL.sys [207504 2021-10-24] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605296 2022-07-12] (Intel Corporation -> Intel Corporation)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_484c3823bebcfca7\IntcUSB.sys [881320 2021-11-08] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_19ceb7ce67a7cf8b\gna.sys [87208 2021-09-22] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_587e92f3084b501f\ipf_acpi.sys [86712 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_cpu.sys [80568 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_lf.sys [432312 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [175848 2022-03-28] (Intel Corporation -> Rivet Networks, LLC.)
R3 MpKsl694075b4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{26932995-0E02-4B2A-B52A-629A254D9946}\MpKslDrv.sys [263560 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [240152 2023-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-11 21:07 - 2023-10-11 21:08 - 000000000 ____D C:\FRST
2023-10-11 20:23 - 2023-10-11 20:49 - 000000000 ____D C:\Users\amilh\AppData\Roaming\ZHP
2023-10-11 20:23 - 2023-10-11 20:23 - 000000000 ____D C:\Users\amilh\AppData\Local\ZHP
2023-10-11 12:31 - 2023-10-11 12:45 - 000000000 ___HD C:\$WinREAgent
2023-10-11 11:34 - 2023-10-11 17:22 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-10-10 07:57 - 2023-10-10 07:57 - 000810954 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-10 07:57 - 2023-10-10 07:57 - 000157390 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-09 14:59 - 2023-10-09 14:59 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Brother
2023-10-07 15:00 - 2023-10-07 15:00 - 000002418 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams classic (work or school).lnk
2023-10-06 16:56 - 2023-10-06 16:56 - 000000000 ____D C:\Users\amilh\AppData\Local\Brother
2023-10-06 16:54 - 2023-10-09 14:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Brother
2023-10-06 16:54 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files\Brother
2023-10-06 16:53 - 2023-10-06 16:56 - 000000000 ____D C:\Program Files (x86)\Browny02
2023-10-06 16:53 - 2023-10-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll
2023-10-06 16:47 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files (x86)\Brother
2023-10-06 16:42 - 2023-10-06 16:57 - 000000000 ____D C:\ProgramData\Brother
2023-10-05 20:02 - 2023-10-11 07:28 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-05 20:00 - 2023-10-05 20:00 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2}
2023-10-05 20:00 - 2023-10-05 20:00 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050}
2023-10-05 09:54 - 2023-10-05 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-09-30 18:46 - 2023-09-30 18:46 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ C:\Users\amilh\AppData\Roaming\com.reolink.app.client
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-11 21:05 - 2023-04-06 10:38 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-11 21:05 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-11 20:55 - 2023-05-24 21:30 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Teams
2023-10-11 20:51 - 2023-04-12 16:32 - 000000000 ____D C:\Users\amilh\AppData\Local\CrashDumps
2023-10-11 20:26 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-11 20:21 - 2023-04-16 17:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 19:37 - 2023-04-06 11:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-11 18:14 - 2023-05-12 16:09 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Excel
2023-10-11 18:14 - 2023-04-06 09:56 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Word
2023-10-11 17:22 - 2023-04-06 11:00 - 000001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-10-11 17:22 - 2022-05-19 00:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-11 17:21 - 2023-05-27 14:02 - 000005290 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA
2023-10-11 16:09 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 15:59 - 2023-05-12 17:10 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-730324531-2188339189-1696067976-1001
2023-10-11 15:59 - 2023-05-12 17:10 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-730324531-2188339189-1696067976-1001
2023-10-11 15:59 - 2023-04-06 09:25 - 000002421 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-11 15:04 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-11 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-11 13:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-11 12:25 - 2022-05-18 23:27 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-11 08:09 - 2023-04-12 16:58 - 000000000 ____D C:\ProgramData\Autodesk
2023-10-11 07:45 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\D3DSCache
2023-10-11 07:37 - 2023-04-16 17:59 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-11 07:28 - 2023-04-06 09:16 - 000000000 ____D C:\Users\amilh\AppData\Local\Host App Service
2023-10-11 07:26 - 2023-05-24 20:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Dropbox
2023-10-11 07:26 - 2023-05-13 14:32 - 000000000 ____D C:\Users\amilh\AppData\Local\Dropbox
2023-10-10 12:14 - 2023-04-12 17:18 - 000000000 ____D C:\ProgramData\RevitInterProcess
2023-10-10 08:48 - 2023-05-13 14:41 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-10-10 08:14 - 2023-05-12 17:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-10 07:57 - 2023-05-13 14:34 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-10 07:57 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-10-10 07:49 - 2023-05-12 17:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-10 07:49 - 2022-05-18 23:18 - 000012288 ___SH C:\DumpStack.log.tmp
2023-10-10 07:49 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-08 20:42 - 2023-05-12 17:08 - 000000000 ____D C:\Users\amilh
2023-10-08 20:23 - 2022-05-18 23:18 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-08 20:17 - 2023-06-06 08:49 - 000000000 ____D C:\WINDOWS\Minidump
2023-10-08 20:17 - 2022-05-19 08:59 - 006046409 ____N C:\WINDOWS\Minidump\100823-14500-01.dmp
2023-10-06 16:53 - 2022-05-18 23:26 - 000000000 ____D C:\ProgramData\Package Cache
2023-10-05 10:39 - 2023-05-24 21:52 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2023-10-05 10:39 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-10-05 10:25 - 2022-05-18 23:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-05 10:18 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\Packages
2023-10-05 09:55 - 2023-05-24 20:59 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-10-04 08:26 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-03 18:45 - 2023-04-06 09:16 - 000000000 ___SD C:\Users\amilh\AppData\Roaming\Microsoft\Protect
2023-10-02 16:07 - 2023-07-10 16:14 - 000000000 ____D C:\Users\amilh\AppData\Roaming\reolink
2023-10-01 21:20 - 2023-04-06 11:00 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Mozilla
2023-09-21 17:15 - 2023-04-06 09:23 - 000000000 ____D C:\ProgramData\Packages
2023-09-21 08:36 - 2023-05-24 21:05 - 000000000 ___RD C:\Users\amilh\2d groupe Dropbox
2023-09-15 22:05 - 2023-04-06 09:56 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Office
2023-09-14 20:46 - 2023-05-24 20:59 - 000001198 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2023-09-14 20:46 - 2023-05-24 20:59 - 000001194 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2023-09-14 20:46 - 2023-05-12 17:07 - 000587608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-14 18:36 - 2023-05-13 14:26 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-14 09:29 - 2023-05-24 20:59 - 000004258 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2023-09-14 09:29 - 2023-05-24 20:59 - 000004026 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2023-09-14 09:23 - 2023-05-13 14:50 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-09-14 09:23 - 2023-05-13 14:50 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-09-11 15:25 - 2023-07-10 16:14 - 000000000 ____D C:\Users\amilh\AppData\Local\reolink-updater
==================== Fichiers à la racine de certains dossiers ========
2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ () C:\Users\amilh\AppData\Roaming\com.reolink.app.client
==================== SigCheckExt =========================
2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll
2023-05-13 14:38 - 2023-05-13 14:38 - 000196096 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-05-13 17:56 - 2010-12-06 04:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll
2023-05-24 21:40 - 2023-05-24 21:40 - 000003584 _____ C:\WINDOWS\SECOH-QAD.dll
2023-05-13 14:53 - 2023-05-13 14:53 - 000004608 _____ C:\WINDOWS\SECOH-QAD.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{009473dc-e299-11ed-87f5-806e6f6e6963}
{78a4f262-d6f8-11ec-87d4-806e6f6e6963}
{78a4f263-d6f8-11ec-87d4-806e6f6e6963}
{78a4f264-d6f8-11ec-87d4-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {009473dc-e299-11ed-87f5-806e6f6e6963}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f262-d6f8-11ec-87d4-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f263-d6f8-11ec-87d4-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f264-d6f8-11ec-87d4-806e6f6e6963}
description EFI Network
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================