Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Exécuté par amilh (administrateur) sur PC-AAA (Acer Nitro AN517-55) (21-10-2023 11:49:04)
Exécuté depuis C:\Users\amilh\OneDrive\Bureau\FRST64.exe
Profils chargés: amilh
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2428 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe
(Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\Browny02\BrYNSvc.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe <2>
(C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe
(drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_helper.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\amilh\AppData\Local\Microsoft\Teams\current\Teams.exe <9>
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.2.2.2501\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_734ca279c9cf8df2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_89d541b5fe7b9dc6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacig.inf_amd64_890d601b2edd3d01\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3>
(sihost.exe ->) (EAF76292-FADE-4EAB-A62C-FE5E78661D58 -> ) C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
(svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [223544 2019-02-01] (Autodesk, Inc. -> Autodesk)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3738160 2022-06-29] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11561184 2023-10-17] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [I20A] => C:\WINDOWS\twain_32\Brimi20a\Common\TwDsUiLaunch.exe [86976 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3384320 2022-03-17] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3785728 2023-09-06] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\amilh\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-10-07] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [MicrosoftEdgeAutoLaunch_619A29A1DB0E890815D3E9C30372A211] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Policies\Explorer: []
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [831488 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [196096 2023-05-13] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-20] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {4B3E60B4-1766-4872-AAE9-DC4DBE93168D} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> )
Task: {2A27FF45-48BA-40C2-A682-6526783715A3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {D7DF8C99-56C9-4CDF-96B7-8764C6718CC8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {92788E5E-C108-40FF-B5C9-A8845F315CD2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3D6693B9-1433-4848-A609-F5ADA01FB1A2} - System32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC)
Task: {6C828A5D-4D67-4146-AA7F-1844F142B6B0} - System32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC)
Task: {2EA12E8B-37BC-4E2F-86F9-FBBCFE266F39} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {96A7C11F-C6F0-41DB-9786-030D9A5FF905} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A3F2C90-7C8A-4C18-9A7D-752915B1F79C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {797F97C0-9AB0-4609-9F7A-F0F046D5B076} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {2C4539A4-6860-4B16-B84A-37405AE5AD4D} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {2F860DED-A2D5-4C86-A049-2161A76A2459} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {82D60697-F01D-4154-A9DD-9C514808CE3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0BB83B9C-2C27-4DAE-9344-2B0332E14A45} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FCB3EB63-541D-4FDE-92CD-2ACC5E0604CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D6B6C6CF-F4FA-470F-9B38-4693E10A0D4F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [709560 2022-01-20] (Mozilla Corporation -> Mozilla Foundation)
Task: {FC2F89D6-455C-4299-8013-FB373B45C92A} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [609440 2022-03-21] (Acer Incorporated -> Acer Incorporated)
Task: {F1FDACEF-6CF8-46E1-A869-A2FEC437A84A} - System32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe [22291968 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B1EC41F4-1733-4FB4-8213-71CB4E882ED8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-10-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {41B57C09-0F48-4C7F-84CD-C1F5C84C74AC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-10-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23BFC528-C988-45C5-8ED9-381516C9C048} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {11D2013B-A1F1-47CF-9D0E-F717B6E8ACFF} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft)
Task: {BD6A2214-E088-4218-8528-2B47CB23F80B} - System32\Tasks\Uninstaller_SkipUac_amilh => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9825288 2023-09-19] (IObit CO., LTD -> IObit)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.3.1
Tcpip\..\Interfaces\{1c6604c5-41bc-440f-bf45-faf41871e295}: [DhcpNameServer] 192.168.3.1
Edge:
=======
Edge Profile: C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-12]
Edge Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-25]
Edge Extension: (Edge relevant text changes) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25]
FireFox:
========
FF Extension: (Français Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org.xpi [2022-01-25]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2022-05-19] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default [2023-10-21]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://yahoo.fr/
CHR StartupUrls: Default -> "hxxp://yahoo.fr/"
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-06]
CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-24]
CHR HKU\S-1-5-21-730324531-2188339189-1696067976-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16926864 2019-08-08] (Autodesk, Inc. -> Autodesk)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [377856 2023-07-20] (Brother Industries, Ltd.) [Fichier non signé]
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-10-17] (Dropbox, Inc -> Dropbox, Inc.)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe [543888 2022-02-22] (Intel Corporation -> Intel Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [235744 2021-12-21] (DTS, Inc. -> DTS Inc.)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe [532664 2021-11-08] (Intel Corporation -> Intel)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2023-07-26] (IObit CO., LTD -> IObit)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe [2738360 2022-02-22] (Intel Corporation -> Intel Corporation)
S3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2423160 2022-03-28] (Intel Corporation -> Intel)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2883448 2022-03-28] (Intel Corporation -> Intel)
R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-14] (Malwarebytes Inc. -> Malwarebytes)
R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [866976 2022-03-21] (Acer Incorporated -> Acer Incorporated)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2023-07-25] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [19456 2023-07-25] () [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacig.inf_amd64_890d601b2edd3d01\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacig.inf_amd64_890d601b2edd3d01\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 QALSvc; "C:\Program Files\Acer\Quick Access Service\QALSvc.exe" [X]
S3 QASvc; "C:\Program Files\Acer\Quick Access Service\QASvc.exe" [X]
S3 UEIPSvc; "C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 c1e636c0; C:\WINDOWS\System32\Drivers\c1e636c0.sys [377392 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 e2k68cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e2k68cx21x64.inf_amd64_e63a1a6682c5eed2\e2k68cx21x64.sys [619408 2022-03-09] (Realtek Semiconductor Corp. -> Realtek)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_c385707073e5c73f\iaLPSS2_GPIO2_ADL.sys [139912 2021-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_8ad31c966ef4e638\iaLPSS2_I2C_ADL.sys [207504 2021-10-24] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605296 2022-07-12] (Intel Corporation -> Intel Corporation)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_484c3823bebcfca7\IntcUSB.sys [881320 2021-11-08] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_19ceb7ce67a7cf8b\gna.sys [87208 2021-09-22] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_587e92f3084b501f\ipf_acpi.sys [86712 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_cpu.sys [80568 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_lf.sys [432312 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [175848 2022-03-28] (Intel Corporation -> Rivet Networks, LLC.)
S3 klupd_c1e636c0a_arkmon_3EAA902C; C:\KVRT2020_Data\Temp\3EAA902C0B5097D0258FD5FE1D8A2AA9\klupd_c1e636c0a_arkmon.sys [384656 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsle2d03a25; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C201193A-75C2-4B68-9CC6-34C7793401BB}\MpKslDrv.sys [263560 2023-10-21] (Microsoft Windows -> Microsoft Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [238720 2023-10-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [202248 2023-08-14] (Microsoft Windows Hardware Compatibility Publisher -> Ray Hinchliffe)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-21 11:12 - 2023-10-21 11:12 - 003512480 _____ (Nicolas Coolman) C:\Users\amilh\ZHPSuite.exe
2023-10-21 10:49 - 2023-10-21 10:49 - 000003126 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_amilh
2023-10-21 10:49 - 2023-10-21 10:49 - 000001428 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2023-10-21 10:49 - 2023-10-21 10:49 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\IObit
2023-10-21 10:49 - 2023-10-21 10:49 - 000000000 ____D C:\ProgramData\ProductData3
2023-10-21 10:49 - 2023-10-21 10:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2023-10-21 10:49 - 2023-10-21 10:49 - 000000000 ____D C:\Program Files (x86)\IObit
2023-10-21 10:48 - 2023-10-21 10:49 - 000000000 ____D C:\Users\amilh\AppData\Roaming\IObit
2023-10-21 10:48 - 2023-10-21 10:49 - 000000000 ____D C:\ProgramData\IObit
2023-10-18 07:23 - 2023-10-18 07:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-10-17 15:52 - 2023-10-17 15:52 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2023-10-15 08:40 - 2023-10-15 08:40 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Brother
2023-10-14 19:40 - 2023-10-14 19:40 - 000810954 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-14 19:40 - 2023-10-14 19:40 - 000157390 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-14 18:33 - 2023-10-14 18:33 - 000000000 ____D C:\KVRT2020_Data
2023-10-14 14:06 - 2023-10-14 14:06 - 000000000 ____D C:\Users\amilh\AppData\Local\mbam
2023-10-14 14:05 - 2023-10-14 14:05 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-10-14 14:05 - 2023-10-14 14:05 - 000000000 ____D C:\Users\amilh\AppData\Local\Malwarebytes
2023-10-14 14:02 - 2023-10-14 14:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-10-14 14:02 - 2023-10-14 14:02 - 000000000 ____D C:\Program Files\Malwarebytes
2023-10-13 20:40 - 2023-10-13 21:54 - 000000000 ____D C:\AdwCleaner
2023-10-11 21:42 - 2023-10-11 21:42 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-10-11 21:27 - 2023-10-05 16:36 - 001227400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-10-11 21:27 - 2023-10-05 16:36 - 000849080 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-10-11 21:27 - 2023-10-05 16:36 - 000849080 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-10-11 21:27 - 2023-10-05 16:36 - 000713912 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-10-11 21:27 - 2023-10-05 16:36 - 000713912 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-10-11 21:27 - 2023-10-05 16:36 - 000653504 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-10-11 21:27 - 2023-10-05 16:36 - 000653504 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-10-11 21:27 - 2023-10-05 16:36 - 000637112 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-10-11 21:27 - 2023-10-05 16:36 - 000637112 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-10-11 21:27 - 2023-10-05 16:28 - 001538080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-10-11 21:27 - 2023-10-05 16:28 - 001195120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-10-11 21:27 - 2023-10-05 16:28 - 000668680 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-10-11 21:27 - 2023-10-05 16:28 - 000503816 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-10-11 21:27 - 2023-10-05 16:27 - 002168456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-10-11 21:27 - 2023-10-05 16:27 - 001621624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-10-11 21:27 - 2023-10-05 16:27 - 000992368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-10-11 21:27 - 2023-10-05 16:27 - 000778888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-10-11 21:27 - 2023-10-05 16:27 - 000768544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-10-11 21:27 - 2023-10-05 16:26 - 000459912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-10-11 21:27 - 2023-10-05 16:25 - 014520968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-10-11 21:27 - 2023-10-05 16:25 - 012066424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-10-11 21:27 - 2023-10-05 16:24 - 006190624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-10-11 21:27 - 2023-10-05 16:24 - 005550088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-10-11 21:27 - 2023-10-05 16:23 - 005855752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-10-11 21:27 - 2023-10-05 16:23 - 000853104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-10-11 21:27 - 2023-10-05 16:22 - 006738544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-10-11 21:27 - 2023-10-05 01:56 - 000108232 _____ C:\WINDOWS\system32\nvinfo.pb
2023-10-11 21:07 - 2023-10-21 11:49 - 000000000 ____D C:\FRST
2023-10-11 20:23 - 2023-10-21 11:21 - 000000000 ____D C:\Users\amilh\AppData\Roaming\ZHP
2023-10-11 20:23 - 2023-10-12 09:09 - 000000000 ____D C:\Users\amilh\AppData\Local\ZHP
2023-10-11 13:54 - 2023-10-11 13:54 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-10-11 13:53 - 2023-10-11 13:53 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-10-11 13:53 - 2023-10-11 13:53 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 11:34 - 2023-10-11 21:42 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-10-07 15:00 - 2023-10-07 15:00 - 000002418 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams classic (work or school).lnk
2023-10-06 16:56 - 2023-10-06 16:56 - 000000000 ____D C:\Users\amilh\AppData\Local\Brother
2023-10-06 16:54 - 2023-10-09 14:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Brother
2023-10-06 16:54 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files\Brother
2023-10-06 16:53 - 2023-10-06 16:56 - 000000000 ____D C:\Program Files (x86)\Browny02
2023-10-06 16:53 - 2023-10-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll
2023-10-06 16:47 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files (x86)\Brother
2023-10-06 16:42 - 2023-10-06 16:57 - 000000000 ____D C:\ProgramData\Brother
2023-10-05 20:02 - 2023-10-20 08:40 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-05 20:00 - 2023-10-05 20:00 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2}
2023-10-05 20:00 - 2023-10-05 20:00 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050}
2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ C:\Users\amilh\AppData\Roaming\com.reolink.app.client
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-21 11:39 - 2023-05-12 17:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-21 11:21 - 2023-05-24 21:30 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Teams
2023-10-21 11:12 - 2023-05-12 17:08 - 000000000 ____D C:\Users\amilh
2023-10-21 11:10 - 2023-04-12 16:58 - 000000000 ____D C:\ProgramData\Autodesk
2023-10-21 11:09 - 2023-04-06 10:38 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-21 11:09 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-21 10:59 - 2023-04-12 17:00 - 000000000 ____D C:\Program Files\Autodesk
2023-10-21 10:51 - 2023-04-12 17:03 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2023-10-21 10:35 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-21 10:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-21 09:52 - 2023-05-24 20:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Dropbox
2023-10-21 09:52 - 2023-05-13 14:32 - 000000000 ____D C:\Users\amilh\AppData\Local\Dropbox
2023-10-21 09:52 - 2022-05-18 23:18 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-21 09:52 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-21 09:52 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-20 20:57 - 2022-05-18 23:27 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-20 20:01 - 2023-05-12 17:10 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-730324531-2188339189-1696067976-1001
2023-10-20 20:01 - 2023-05-12 17:10 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-730324531-2188339189-1696067976-1001
2023-10-20 20:01 - 2023-04-06 09:25 - 000002421 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-20 19:56 - 2023-04-06 11:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-20 16:46 - 2023-04-12 16:32 - 000000000 ____D C:\Users\amilh\AppData\Local\CrashDumps
2023-10-20 16:43 - 2023-05-12 16:09 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Excel
2023-10-20 13:40 - 2023-04-06 09:56 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Word
2023-10-20 09:57 - 2023-05-13 14:41 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-10-20 09:07 - 2023-04-12 17:18 - 000000000 ____D C:\ProgramData\RevitInterProcess
2023-10-19 17:20 - 2023-05-27 14:02 - 000005290 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA
2023-10-19 16:45 - 2023-05-13 14:50 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-19 16:45 - 2023-05-13 14:50 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-10-19 16:45 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\Packages
2023-10-18 07:23 - 2023-05-24 20:59 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-10-16 18:03 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\D3DSCache
2023-10-14 19:40 - 2023-05-13 14:34 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-14 19:40 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-10-14 19:33 - 2023-05-24 21:52 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2023-10-14 19:33 - 2023-05-12 17:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-14 19:33 - 2022-05-18 23:18 - 000012288 ___SH C:\DumpStack.log.tmp
2023-10-14 19:33 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-14 18:15 - 2023-07-10 16:14 - 000000000 ____D C:\Users\amilh\AppData\Roaming\reolink
2023-10-14 14:43 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-10-14 14:05 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-13 21:55 - 2022-05-19 00:00 - 000000000 ____D C:\ProgramData\Acer
2023-10-13 21:54 - 2022-05-19 00:02 - 000000000 ____D C:\Program Files\Acer
2023-10-13 21:54 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2023-10-12 08:42 - 2022-05-18 23:28 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-10-12 08:42 - 2022-05-18 23:27 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-10-12 08:42 - 2022-05-18 23:27 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-10-12 08:41 - 2023-04-06 09:25 - 000000000 ____D C:\Users\amilh\AppData\Local\NVIDIA Corporation
2023-10-12 08:41 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\NVIDIA
2023-10-12 08:40 - 2022-05-19 00:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-12 08:40 - 2022-05-18 23:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-10-11 21:43 - 2023-05-12 17:07 - 000587608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-11 21:30 - 2023-06-16 18:23 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-10-11 21:30 - 2023-06-16 18:23 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-10-11 21:30 - 2022-05-18 23:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-10-11 20:21 - 2023-04-16 17:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 17:22 - 2023-04-06 11:00 - 000001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-10-11 16:09 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 13:54 - 2023-05-13 14:26 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 13:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-11 07:37 - 2023-04-16 17:59 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-08 20:17 - 2023-06-06 08:49 - 000000000 ____D C:\WINDOWS\Minidump
2023-10-08 20:17 - 2022-05-19 08:59 - 006046409 ____N C:\WINDOWS\Minidump\100823-14500-01.dmp
2023-10-06 16:53 - 2022-05-18 23:26 - 000000000 ____D C:\ProgramData\Package Cache
2023-10-05 16:36 - 2023-04-24 13:34 - 001488008 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-10-05 16:28 - 2023-04-24 13:34 - 000938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-10-05 16:25 - 2023-04-24 13:34 - 003482744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-10-05 16:22 - 2023-04-24 13:34 - 007859712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-10-05 10:25 - 2022-05-18 23:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-05 01:56 - 2023-04-24 13:34 - 000238720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpcf.sys
2023-10-05 01:56 - 2022-05-18 23:49 - 000086568 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2023-10-05 01:56 - 2022-05-18 23:49 - 000075304 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2023-10-03 18:45 - 2023-04-06 09:16 - 000000000 ___SD C:\Users\amilh\AppData\Roaming\Microsoft\Protect
2023-10-01 21:20 - 2023-04-06 11:00 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Mozilla
2023-09-21 17:15 - 2023-04-06 09:23 - 000000000 ____D C:\ProgramData\Packages
2023-09-21 08:36 - 2023-05-24 21:05 - 000000000 ___RD C:\Users\amilh\2d groupe Dropbox
==================== Fichiers à la racine de certains dossiers ========
2023-10-21 11:12 - 2023-10-21 11:12 - 003512480 _____ (Nicolas Coolman) C:\Users\amilh\ZHPSuite.exe
2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ () C:\Users\amilh\AppData\Roaming\com.reolink.app.client
==================== SigCheckExt =========================
2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll
2023-05-13 14:38 - 2023-05-13 14:38 - 000196096 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-05-13 17:56 - 2010-12-06 04:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll
2023-10-21 11:12 - 2023-10-21 11:12 - 003512480 _____ (Nicolas Coolman) C:\Users\amilh\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{009473dc-e299-11ed-87f5-806e6f6e6963}
{78a4f262-d6f8-11ec-87d4-806e6f6e6963}
{78a4f263-d6f8-11ec-87d4-806e6f6e6963}
{78a4f264-d6f8-11ec-87d4-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {009473dc-e299-11ed-87f5-806e6f6e6963}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f262-d6f8-11ec-87d4-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f263-d6f8-11ec-87d4-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f264-d6f8-11ec-87d4-806e6f6e6963}
description EFI Network
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par amilh (administrateur) sur PC-AAA (Acer Nitro AN517-55) (21-10-2023 11:49:04)
Exécuté depuis C:\Users\amilh\OneDrive\Bureau\FRST64.exe
Profils chargés: amilh
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2428 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe
(Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\Browny02\BrYNSvc.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe <2>
(C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe
(drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_helper.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\amilh\AppData\Local\Microsoft\Teams\current\Teams.exe <9>
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.2.2.2501\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_734ca279c9cf8df2\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_89d541b5fe7b9dc6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacig.inf_amd64_890d601b2edd3d01\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3>
(sihost.exe ->) (EAF76292-FADE-4EAB-A62C-FE5E78661D58 -> ) C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe
(svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [223544 2019-02-01] (Autodesk, Inc. -> Autodesk)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3738160 2022-06-29] (Autodesk, Inc. -> Autodesk)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11561184 2023-10-17] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [I20A] => C:\WINDOWS\twain_32\Brimi20a\Common\TwDsUiLaunch.exe [86976 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3384320 2022-03-17] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3785728 2023-09-06] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\amilh\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-10-07] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [MicrosoftEdgeAutoLaunch_619A29A1DB0E890815D3E9C30372A211] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Policies\Explorer: []
HKU\S-1-5-21-730324531-2188339189-1696067976-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [831488 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [196096 2023-05-13] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-20] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {4B3E60B4-1766-4872-AAE9-DC4DBE93168D} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> )
Task: {2A27FF45-48BA-40C2-A682-6526783715A3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {D7DF8C99-56C9-4CDF-96B7-8764C6718CC8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {92788E5E-C108-40FF-B5C9-A8845F315CD2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3D6693B9-1433-4848-A609-F5ADA01FB1A2} - System32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC)
Task: {6C828A5D-4D67-4146-AA7F-1844F142B6B0} - System32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC)
Task: {2EA12E8B-37BC-4E2F-86F9-FBBCFE266F39} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {96A7C11F-C6F0-41DB-9786-030D9A5FF905} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {6A3F2C90-7C8A-4C18-9A7D-752915B1F79C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {797F97C0-9AB0-4609-9F7A-F0F046D5B076} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {2C4539A4-6860-4B16-B84A-37405AE5AD4D} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {2F860DED-A2D5-4C86-A049-2161A76A2459} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {82D60697-F01D-4154-A9DD-9C514808CE3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0BB83B9C-2C27-4DAE-9344-2B0332E14A45} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FCB3EB63-541D-4FDE-92CD-2ACC5E0604CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D6B6C6CF-F4FA-470F-9B38-4693E10A0D4F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [709560 2022-01-20] (Mozilla Corporation -> Mozilla Foundation)
Task: {FC2F89D6-455C-4299-8013-FB373B45C92A} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [609440 2022-03-21] (Acer Incorporated -> Acer Incorporated)
Task: {F1FDACEF-6CF8-46E1-A869-A2FEC437A84A} - System32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe [22291968 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B1EC41F4-1733-4FB4-8213-71CB4E882ED8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-10-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {41B57C09-0F48-4C7F-84CD-C1F5C84C74AC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-10-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23BFC528-C988-45C5-8ED9-381516C9C048} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {11D2013B-A1F1-47CF-9D0E-F717B6E8ACFF} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft)
Task: {BD6A2214-E088-4218-8528-2B47CB23F80B} - System32\Tasks\Uninstaller_SkipUac_amilh => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9825288 2023-09-19] (IObit CO., LTD -> IObit)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.3.1
Tcpip\..\Interfaces\{1c6604c5-41bc-440f-bf45-faf41871e295}: [DhcpNameServer] 192.168.3.1
Edge:
=======
Edge Profile: C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-12]
Edge Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-25]
Edge Extension: (Edge relevant text changes) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25]
FireFox:
========
FF Extension: (Français Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org.xpi [2022-01-25]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2022-05-19] []
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default [2023-10-21]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://yahoo.fr/
CHR StartupUrls: Default -> "hxxp://yahoo.fr/"
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-06]
CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-24]
CHR HKU\S-1-5-21-730324531-2188339189-1696067976-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16926864 2019-08-08] (Autodesk, Inc. -> Autodesk)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [377856 2023-07-20] (Brother Industries, Ltd.) [Fichier non signé]
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-10-17] (Dropbox, Inc -> Dropbox, Inc.)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe [543888 2022-02-22] (Intel Corporation -> Intel Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [235744 2021-12-21] (DTS, Inc. -> DTS Inc.)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe [532664 2021-11-08] (Intel Corporation -> Intel)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2023-07-26] (IObit CO., LTD -> IObit)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe [2738360 2022-02-22] (Intel Corporation -> Intel Corporation)
S3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2423160 2022-03-28] (Intel Corporation -> Intel)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2883448 2022-03-28] (Intel Corporation -> Intel)
R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-14] (Malwarebytes Inc. -> Malwarebytes)
R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [866976 2022-03-21] (Acer Incorporated -> Acer Incorporated)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2023-07-25] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [19456 2023-07-25] () [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacig.inf_amd64_890d601b2edd3d01\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacig.inf_amd64_890d601b2edd3d01\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 QALSvc; "C:\Program Files\Acer\Quick Access Service\QALSvc.exe" [X]
S3 QASvc; "C:\Program Files\Acer\Quick Access Service\QASvc.exe" [X]
S3 UEIPSvc; "C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 c1e636c0; C:\WINDOWS\System32\Drivers\c1e636c0.sys [377392 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 e2k68cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e2k68cx21x64.inf_amd64_e63a1a6682c5eed2\e2k68cx21x64.sys [619408 2022-03-09] (Realtek Semiconductor Corp. -> Realtek)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_c385707073e5c73f\iaLPSS2_GPIO2_ADL.sys [139912 2021-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_8ad31c966ef4e638\iaLPSS2_I2C_ADL.sys [207504 2021-10-24] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605296 2022-07-12] (Intel Corporation -> Intel Corporation)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_484c3823bebcfca7\IntcUSB.sys [881320 2021-11-08] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_19ceb7ce67a7cf8b\gna.sys [87208 2021-09-22] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_587e92f3084b501f\ipf_acpi.sys [86712 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_cpu.sys [80568 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_lf.sys [432312 2022-02-22] (Intel Corporation -> Intel Corporation)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [175848 2022-03-28] (Intel Corporation -> Rivet Networks, LLC.)
S3 klupd_c1e636c0a_arkmon_3EAA902C; C:\KVRT2020_Data\Temp\3EAA902C0B5097D0258FD5FE1D8A2AA9\klupd_c1e636c0a_arkmon.sys [384656 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsle2d03a25; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C201193A-75C2-4B68-9CC6-34C7793401BB}\MpKslDrv.sys [263560 2023-10-21] (Microsoft Windows -> Microsoft Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [238720 2023-10-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [202248 2023-08-14] (Microsoft Windows Hardware Compatibility Publisher -> Ray Hinchliffe)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-21 11:12 - 2023-10-21 11:12 - 003512480 _____ (Nicolas Coolman) C:\Users\amilh\ZHPSuite.exe
2023-10-21 10:49 - 2023-10-21 10:49 - 000003126 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_amilh
2023-10-21 10:49 - 2023-10-21 10:49 - 000001428 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2023-10-21 10:49 - 2023-10-21 10:49 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\IObit
2023-10-21 10:49 - 2023-10-21 10:49 - 000000000 ____D C:\ProgramData\ProductData3
2023-10-21 10:49 - 2023-10-21 10:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2023-10-21 10:49 - 2023-10-21 10:49 - 000000000 ____D C:\Program Files (x86)\IObit
2023-10-21 10:48 - 2023-10-21 10:49 - 000000000 ____D C:\Users\amilh\AppData\Roaming\IObit
2023-10-21 10:48 - 2023-10-21 10:49 - 000000000 ____D C:\ProgramData\IObit
2023-10-18 07:23 - 2023-10-18 07:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-10-17 15:52 - 2023-10-17 15:52 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2023-10-15 08:40 - 2023-10-15 08:40 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Brother
2023-10-14 19:40 - 2023-10-14 19:40 - 000810954 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-14 19:40 - 2023-10-14 19:40 - 000157390 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-14 18:33 - 2023-10-14 18:33 - 000000000 ____D C:\KVRT2020_Data
2023-10-14 14:06 - 2023-10-14 14:06 - 000000000 ____D C:\Users\amilh\AppData\Local\mbam
2023-10-14 14:05 - 2023-10-14 14:05 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-10-14 14:05 - 2023-10-14 14:05 - 000000000 ____D C:\Users\amilh\AppData\Local\Malwarebytes
2023-10-14 14:02 - 2023-10-14 14:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-10-14 14:02 - 2023-10-14 14:02 - 000000000 ____D C:\Program Files\Malwarebytes
2023-10-13 20:40 - 2023-10-13 21:54 - 000000000 ____D C:\AdwCleaner
2023-10-11 21:42 - 2023-10-11 21:42 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-10-11 21:27 - 2023-10-05 16:36 - 001227400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-10-11 21:27 - 2023-10-05 16:36 - 000849080 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-10-11 21:27 - 2023-10-05 16:36 - 000849080 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-10-11 21:27 - 2023-10-05 16:36 - 000713912 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-10-11 21:27 - 2023-10-05 16:36 - 000713912 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-10-11 21:27 - 2023-10-05 16:36 - 000653504 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-10-11 21:27 - 2023-10-05 16:36 - 000653504 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-10-11 21:27 - 2023-10-05 16:36 - 000637112 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-10-11 21:27 - 2023-10-05 16:36 - 000637112 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-10-11 21:27 - 2023-10-05 16:28 - 001538080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-10-11 21:27 - 2023-10-05 16:28 - 001195120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-10-11 21:27 - 2023-10-05 16:28 - 000668680 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-10-11 21:27 - 2023-10-05 16:28 - 000503816 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-10-11 21:27 - 2023-10-05 16:27 - 002168456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-10-11 21:27 - 2023-10-05 16:27 - 001621624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-10-11 21:27 - 2023-10-05 16:27 - 000992368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-10-11 21:27 - 2023-10-05 16:27 - 000778888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-10-11 21:27 - 2023-10-05 16:27 - 000768544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-10-11 21:27 - 2023-10-05 16:26 - 000459912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-10-11 21:27 - 2023-10-05 16:25 - 014520968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-10-11 21:27 - 2023-10-05 16:25 - 012066424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-10-11 21:27 - 2023-10-05 16:24 - 006190624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-10-11 21:27 - 2023-10-05 16:24 - 005550088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-10-11 21:27 - 2023-10-05 16:23 - 005855752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-10-11 21:27 - 2023-10-05 16:23 - 000853104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-10-11 21:27 - 2023-10-05 16:22 - 006738544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-10-11 21:27 - 2023-10-05 01:56 - 000108232 _____ C:\WINDOWS\system32\nvinfo.pb
2023-10-11 21:07 - 2023-10-21 11:49 - 000000000 ____D C:\FRST
2023-10-11 20:23 - 2023-10-21 11:21 - 000000000 ____D C:\Users\amilh\AppData\Roaming\ZHP
2023-10-11 20:23 - 2023-10-12 09:09 - 000000000 ____D C:\Users\amilh\AppData\Local\ZHP
2023-10-11 13:54 - 2023-10-11 13:54 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-10-11 13:53 - 2023-10-11 13:53 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-10-11 13:53 - 2023-10-11 13:53 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 11:34 - 2023-10-11 21:42 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-10-07 15:00 - 2023-10-07 15:00 - 000002418 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams classic (work or school).lnk
2023-10-06 16:56 - 2023-10-06 16:56 - 000000000 ____D C:\Users\amilh\AppData\Local\Brother
2023-10-06 16:54 - 2023-10-09 14:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Brother
2023-10-06 16:54 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files\Brother
2023-10-06 16:53 - 2023-10-06 16:56 - 000000000 ____D C:\Program Files (x86)\Browny02
2023-10-06 16:53 - 2023-10-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll
2023-10-06 16:47 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files (x86)\Brother
2023-10-06 16:42 - 2023-10-06 16:57 - 000000000 ____D C:\ProgramData\Brother
2023-10-05 20:02 - 2023-10-20 08:40 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-05 20:00 - 2023-10-05 20:00 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2}
2023-10-05 20:00 - 2023-10-05 20:00 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050}
2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ C:\Users\amilh\AppData\Roaming\com.reolink.app.client
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-10-21 11:39 - 2023-05-12 17:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-21 11:21 - 2023-05-24 21:30 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Teams
2023-10-21 11:12 - 2023-05-12 17:08 - 000000000 ____D C:\Users\amilh
2023-10-21 11:10 - 2023-04-12 16:58 - 000000000 ____D C:\ProgramData\Autodesk
2023-10-21 11:09 - 2023-04-06 10:38 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-21 11:09 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-21 10:59 - 2023-04-12 17:00 - 000000000 ____D C:\Program Files\Autodesk
2023-10-21 10:51 - 2023-04-12 17:03 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2023-10-21 10:35 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-21 10:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-21 09:52 - 2023-05-24 20:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Dropbox
2023-10-21 09:52 - 2023-05-13 14:32 - 000000000 ____D C:\Users\amilh\AppData\Local\Dropbox
2023-10-21 09:52 - 2022-05-18 23:18 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-21 09:52 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-21 09:52 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-20 20:57 - 2022-05-18 23:27 - 000000000 ____D C:\ProgramData\NVIDIA
2023-10-20 20:01 - 2023-05-12 17:10 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-730324531-2188339189-1696067976-1001
2023-10-20 20:01 - 2023-05-12 17:10 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-730324531-2188339189-1696067976-1001
2023-10-20 20:01 - 2023-04-06 09:25 - 000002421 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-20 19:56 - 2023-04-06 11:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-20 16:46 - 2023-04-12 16:32 - 000000000 ____D C:\Users\amilh\AppData\Local\CrashDumps
2023-10-20 16:43 - 2023-05-12 16:09 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Excel
2023-10-20 13:40 - 2023-04-06 09:56 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Word
2023-10-20 09:57 - 2023-05-13 14:41 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-10-20 09:07 - 2023-04-12 17:18 - 000000000 ____D C:\ProgramData\RevitInterProcess
2023-10-19 17:20 - 2023-05-27 14:02 - 000005290 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA
2023-10-19 16:45 - 2023-05-13 14:50 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-19 16:45 - 2023-05-13 14:50 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-10-19 16:45 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\Packages
2023-10-18 07:23 - 2023-05-24 20:59 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-10-16 18:03 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\D3DSCache
2023-10-14 19:40 - 2023-05-13 14:34 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-14 19:40 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-10-14 19:33 - 2023-05-24 21:52 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2023-10-14 19:33 - 2023-05-12 17:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-14 19:33 - 2022-05-18 23:18 - 000012288 ___SH C:\DumpStack.log.tmp
2023-10-14 19:33 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-14 18:15 - 2023-07-10 16:14 - 000000000 ____D C:\Users\amilh\AppData\Roaming\reolink
2023-10-14 14:43 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-10-14 14:05 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-13 21:55 - 2022-05-19 00:00 - 000000000 ____D C:\ProgramData\Acer
2023-10-13 21:54 - 2022-05-19 00:02 - 000000000 ____D C:\Program Files\Acer
2023-10-13 21:54 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2023-10-12 08:42 - 2022-05-18 23:28 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-10-12 08:42 - 2022-05-18 23:27 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-10-12 08:42 - 2022-05-18 23:27 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-10-12 08:41 - 2023-04-06 09:25 - 000000000 ____D C:\Users\amilh\AppData\Local\NVIDIA Corporation
2023-10-12 08:41 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\NVIDIA
2023-10-12 08:40 - 2022-05-19 00:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-12 08:40 - 2022-05-18 23:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-10-11 21:43 - 2023-05-12 17:07 - 000587608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-11 21:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-11 21:30 - 2023-06-16 18:23 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-10-11 21:30 - 2023-06-16 18:23 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-10-11 21:30 - 2022-05-18 23:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-10-11 20:21 - 2023-04-16 17:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 17:22 - 2023-04-06 11:00 - 000001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-10-11 16:09 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 13:54 - 2023-05-13 14:26 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 13:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-11 07:37 - 2023-04-16 17:59 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-08 20:17 - 2023-06-06 08:49 - 000000000 ____D C:\WINDOWS\Minidump
2023-10-08 20:17 - 2022-05-19 08:59 - 006046409 ____N C:\WINDOWS\Minidump\100823-14500-01.dmp
2023-10-06 16:53 - 2022-05-18 23:26 - 000000000 ____D C:\ProgramData\Package Cache
2023-10-05 16:36 - 2023-04-24 13:34 - 001488008 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-10-05 16:28 - 2023-04-24 13:34 - 000938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-10-05 16:25 - 2023-04-24 13:34 - 003482744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-10-05 16:22 - 2023-04-24 13:34 - 007859712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-10-05 10:25 - 2022-05-18 23:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-05 01:56 - 2023-04-24 13:34 - 000238720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpcf.sys
2023-10-05 01:56 - 2022-05-18 23:49 - 000086568 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2023-10-05 01:56 - 2022-05-18 23:49 - 000075304 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2023-10-03 18:45 - 2023-04-06 09:16 - 000000000 ___SD C:\Users\amilh\AppData\Roaming\Microsoft\Protect
2023-10-01 21:20 - 2023-04-06 11:00 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Mozilla
2023-09-21 17:15 - 2023-04-06 09:23 - 000000000 ____D C:\ProgramData\Packages
2023-09-21 08:36 - 2023-05-24 21:05 - 000000000 ___RD C:\Users\amilh\2d groupe Dropbox
==================== Fichiers à la racine de certains dossiers ========
2023-10-21 11:12 - 2023-10-21 11:12 - 003512480 _____ (Nicolas Coolman) C:\Users\amilh\ZHPSuite.exe
2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ () C:\Users\amilh\AppData\Roaming\com.reolink.app.client
==================== SigCheckExt =========================
2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll
2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll
2023-05-13 14:38 - 2023-05-13 14:38 - 000196096 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-05-13 17:56 - 2010-12-06 04:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll
2023-10-21 11:12 - 2023-10-21 11:12 - 003512480 _____ (Nicolas Coolman) C:\Users\amilh\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{009473dc-e299-11ed-87f5-806e6f6e6963}
{78a4f262-d6f8-11ec-87d4-806e6f6e6963}
{78a4f263-d6f8-11ec-87d4-806e6f6e6963}
{78a4f264-d6f8-11ec-87d4-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {009473dc-e299-11ed-87f5-806e6f6e6963}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f262-d6f8-11ec-87d4-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f263-d6f8-11ec-87d4-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {78a4f264-d6f8-11ec-87d4-806e6f6e6963}
description EFI Network
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
nx OptIn
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {ffbab256-f0de-11ed-a9b8-9e11c3790f0c}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {ffbab259-f0de-11ed-a9b8-9e11c3790f0c}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================