Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023 Exécuté par amilh (administrateur) sur PC-AAA (Acer Nitro AN517-55) (11-10-2023 21:08:22) Exécuté depuis C:\Users\amilh\OneDrive\Bureau\FRST64.exe Profils chargés: amilh Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2283 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe (Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (C:\Program Files (x86)\Browny02\BrYNSvc.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe <2> (C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe <6> (C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoNotificationUx.exe (drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe (DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_helper.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7> (explorer.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <30> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (Microsoft Corporation -> Microsoft Corporation) C:\Users\amilh\AppData\Local\Microsoft\Teams\current\Teams.exe <8> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe (services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.2.2.2501\AdskLicensingService\AdskLicensingService.exe (services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe (services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_734ca279c9cf8df2\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_89d541b5fe7b9dc6\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3> (sihost.exe ->) (EAF76292-FADE-4EAB-A62C-FE5E78661D58 -> ) C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe (svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe (svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe (svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\amilh\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [223544 2019-02-01] (Autodesk, Inc. -> Autodesk) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3738160 2022-06-29] (Autodesk, Inc. -> Autodesk) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11561184 2023-09-30] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [I20A] => C:\WINDOWS\twain_32\Brimi20a\Common\TwDsUiLaunch.exe [86976 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3384320 2022-03-17] (Brother Industries, Ltd.) [Fichier non signé] HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3785728 2023-09-06] (Brother Industries, Ltd.) [Fichier non signé] HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\amilh\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-10-07] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Run: [MicrosoftEdgeAutoLaunch_619A29A1DB0E890815D3E9C30372A211] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-10-06] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier) HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [64539056 2023-10-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\RunOnce: [Uninstall 23.189.0910.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\amilh\AppData\Local\Microsoft\OneDrive\23.189.0910.0001" [0 2023-10-11] () <==== ATTENTION [zéro octet Fichier/Dossier] HKU\S-1-5-21-730324531-2188339189-1696067976-1001\...\Policies\Explorer: [] HKU\S-1-5-21-730324531-2188339189-1696067976-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [831488 2022-05-07] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [196096 2023-05-13] (pdfforge GmbH) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.152\Installer\chrmstp.exe [2023-10-11] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {4B3E60B4-1766-4872-AAE9-DC4DBE93168D} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> ) Task: {656A0A86-A7BD-44EA-9B4A-33A7AB55AF08} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41632 2021-12-30] (Acer Incorporated -> ) Task: {753EF364-37C9-4B1B-9B05-59A6926E8493} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836512 2021-12-30] (Acer Incorporated -> ) Task: {CE296B18-D775-4CBE-9932-10E6E7D4ABA1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.) Task: {80B20A1F-2DEB-44AA-88F3-1FB0984E1A84} - System32\Tasks\App Explorer => C:\Users\amilh\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION Task: {D7DF8C99-56C9-4CDF-96B7-8764C6718CC8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.) Task: {92788E5E-C108-40FF-B5C9-A8845F315CD2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.) Task: {3D6693B9-1433-4848-A609-F5ADA01FB1A2} - System32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC) Task: {6C828A5D-4D67-4146-AA7F-1844F142B6B0} - System32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-05] (Google LLC -> Google LLC) Task: {2EA12E8B-37BC-4E2F-86F9-FBBCFE266F39} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {96A7C11F-C6F0-41DB-9786-030D9A5FF905} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {6A3F2C90-7C8A-4C18-9A7D-752915B1F79C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {797F97C0-9AB0-4609-9F7A-F0F046D5B076} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {2C4539A4-6860-4B16-B84A-37405AE5AD4D} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-14] (Microsoft Windows -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {A56DBE1D-55FD-4F77-B7DB-0EBD808A26AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7CD1D7E6-04DF-4BC4-B2DE-975E4A2DF978} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A1EF2A94-00C1-4C11-AB5C-980C32E60A7E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4F7B5BAB-37E1-4D35-B4EA-B5DC107215DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D6B6C6CF-F4FA-470F-9B38-4693E10A0D4F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [709560 2022-01-20] (Mozilla Corporation -> Mozilla Foundation) Task: {FC2F89D6-455C-4299-8013-FB373B45C92A} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [609440 2022-03-21] (Acer Incorporated -> Acer Incorporated) Task: {F1FDACEF-6CF8-46E1-A869-A2FEC437A84A} - System32\Tasks\NvBroadcast_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA Broadcast\NVIDIA Broadcast UI.exe [22291968 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) Task: {E6353938-A550-4993-930B-AF5684D3EF96} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C4F610D8-C690-4EC3-B711-904659F9995E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation) Task: {F858898E-4369-4051-872E-6144958E2376} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9A09598F-37DC-43DF-82F9-3458A94DE11F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C6D0AD92-1EBC-4463-AF1E-2F6B35900CB8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2EB2F766-25EC-4DD7-A85D-655A69110E09} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {392C1692-97DA-468E-9A82-D6FF72F2A05F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {778D41A7-C102-42FC-9443-AE26E63075DF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D286EDB9-82C2-44C3-A816-325E427FBF59} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {62B8BC09-1D82-4135-B9DE-E9DD41038FE4} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2771616 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {4C9DEEC1-D7BB-48D3-BD27-4DE32E41454C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {D6F0F46E-A8E4-4FF3-9368-B7EC261D35A7} - System32\Tasks\RegistryUpdateTaskMachineQC => C:\Program Files\Registry\Host\updater.exe [4828160 2023-05-13] (Microsoft Inc.) [Fichier non signé] <==== ATTENTION Task: {23BFC528-C988-45C5-8ED9-381516C9C048} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {11D2013B-A1F1-47CF-9D0E-F717B6E8ACFF} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft) Task: {2D2B4AE5-D52A-46FA-81E4-4684C34CF77F} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [330472 2021-11-02] (Acer Incorporated -> Acer Incorporated) Task: {FCB077D9-CEAD-4D78-99DB-CABE75AA2443} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2021-11-02] (Acer Incorporated -> Acer Incorporated) Task: {DC6973B0-B8BA-4DD7-BC32-9C021117BADC} - System32\Tasks\WindowsUpdateTaskMachineQC => C:\Program Files\Windows\File\updater.exe [5984256 2023-05-13] (Google Inc.) [Fichier non signé] <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.3.1 Tcpip\..\Interfaces\{1c6604c5-41bc-440f-bf45-faf41871e295}: [DhcpNameServer] 192.168.3.1 Edge: ======= Edge Profile: C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-11] Edge Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-25] Edge Extension: (Edge relevant text changes) - C:\Users\amilh\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25] FireFox: ======== FF Extension: (Français Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org.xpi [2022-01-25] FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2022-05-19] [] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default [2023-10-11] CHR Notifications: Default -> hxxps://calendar.google.com CHR HomePage: Default -> hxxp://yahoo.fr/ CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-26] CHR Extension: (Google Docs hors connexion) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-04] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\amilh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-06] CHR Profile: C:\Users\amilh\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-24] CHR HKU\S-1-5-21-730324531-2188339189-1696067976-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.) R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16926864 2019-08-08] (Autodesk, Inc. -> Autodesk) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [377856 2023-07-20] (Brother Industries, Ltd.) [Fichier non signé] S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-05-24] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-09-30] (Dropbox, Inc -> Dropbox, Inc.) R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe [543888 2022-02-22] (Intel Corporation -> Intel Corporation) R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [235744 2021-12-21] (DTS, Inc. -> DTS Inc.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_7a15919fa204d00b\AS\IAS\IntelAudioService.exe [532664 2021-11-08] (Intel Corporation -> Intel) R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe [2738360 2022-02-22] (Intel Corporation -> Intel Corporation) S3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation) R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2423160 2022-03-28] (Intel Corporation -> Intel) R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2883448 2022-03-28] (Intel Corporation -> Intel) R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [64376 2022-03-28] (Intel Corporation -> Intel® Corporation) R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [866976 2022-03-21] (Acer Incorporated -> Acer Incorporated) S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated) R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated) S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [335080 2021-11-02] (Acer Incorporated -> Acer Incorporated) R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2023-07-25] () [Fichier non signé] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [19456 2023-07-25] () [Fichier non signé] R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_7f99dc46d04e93fd\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé] R3 e2k68cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e2k68cx21x64.inf_amd64_e63a1a6682c5eed2\e2k68cx21x64.sys [619408 2022-03-09] (Realtek Semiconductor Corp. -> Realtek) R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_c385707073e5c73f\iaLPSS2_GPIO2_ADL.sys [139912 2021-10-24] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_8ad31c966ef4e638\iaLPSS2_I2C_ADL.sys [207504 2021-10-24] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605296 2022-07-12] (Intel Corporation -> Intel Corporation) R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_484c3823bebcfca7\IntcUSB.sys [881320 2021-11-08] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_19ceb7ce67a7cf8b\gna.sys [87208 2021-09-22] (Intel Corporation -> Intel Corporation) R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_587e92f3084b501f\ipf_acpi.sys [86712 2022-02-22] (Intel Corporation -> Intel Corporation) R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_cpu.sys [80568 2022-02-22] (Intel Corporation -> Intel Corporation) R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_lf.sys [432312 2022-02-22] (Intel Corporation -> Intel Corporation) R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [175848 2022-03-28] (Intel Corporation -> Rivet Networks, LLC.) R3 MpKsl694075b4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{26932995-0E02-4B2A-B52A-629A254D9946}\MpKslDrv.sys [263560 2023-10-11] (Microsoft Windows -> Microsoft Corporation) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [240152 2023-06-09] (NVIDIA Corporation -> NVIDIA Corporation) S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-10-11 21:07 - 2023-10-11 21:08 - 000000000 ____D C:\FRST 2023-10-11 20:23 - 2023-10-11 20:49 - 000000000 ____D C:\Users\amilh\AppData\Roaming\ZHP 2023-10-11 20:23 - 2023-10-11 20:23 - 000000000 ____D C:\Users\amilh\AppData\Local\ZHP 2023-10-11 12:31 - 2023-10-11 12:45 - 000000000 ___HD C:\$WinREAgent 2023-10-11 11:34 - 2023-10-11 17:22 - 000000000 ____D C:\Program Files\Mozilla Thunderbird 2023-10-10 07:57 - 2023-10-10 07:57 - 000810954 _____ C:\WINDOWS\system32\perfh00C.dat 2023-10-10 07:57 - 2023-10-10 07:57 - 000157390 _____ C:\WINDOWS\system32\perfc00C.dat 2023-10-09 14:59 - 2023-10-09 14:59 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Brother 2023-10-07 15:00 - 2023-10-07 15:00 - 000002418 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams classic (work or school).lnk 2023-10-06 16:56 - 2023-10-06 16:56 - 000000000 ____D C:\Users\amilh\AppData\Local\Brother 2023-10-06 16:54 - 2023-10-09 14:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Brother 2023-10-06 16:54 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files\Brother 2023-10-06 16:53 - 2023-10-06 16:56 - 000000000 ____D C:\Program Files (x86)\Browny02 2023-10-06 16:53 - 2023-10-06 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother 2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll 2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll 2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll 2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll 2023-10-06 16:47 - 2023-10-06 16:54 - 000000000 ____D C:\Program Files (x86)\Brother 2023-10-06 16:42 - 2023-10-06 16:57 - 000000000 ____D C:\ProgramData\Brother 2023-10-05 20:02 - 2023-10-11 07:28 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-10-05 20:00 - 2023-10-05 20:00 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{EED05A10-2AE7-4B60-B3A9-35C236DF8DB2} 2023-10-05 20:00 - 2023-10-05 20:00 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{577F7A41-26B8-4AA6-9038-ECF75A885050} 2023-10-05 09:54 - 2023-10-05 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2023-09-30 18:46 - 2023-09-30 18:46 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ C:\Users\amilh\AppData\Roaming\com.reolink.app.client ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-10-11 21:05 - 2023-04-06 10:38 - 000000000 ____D C:\Program Files (x86)\Google 2023-10-11 21:05 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-10-11 20:55 - 2023-05-24 21:30 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Teams 2023-10-11 20:51 - 2023-04-12 16:32 - 000000000 ____D C:\Users\amilh\AppData\Local\CrashDumps 2023-10-11 20:26 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-10-11 20:21 - 2023-04-16 17:59 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-10-11 19:37 - 2023-04-06 11:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-10-11 18:14 - 2023-05-12 16:09 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Excel 2023-10-11 18:14 - 2023-04-06 09:56 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Word 2023-10-11 17:22 - 2023-04-06 11:00 - 000001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk 2023-10-11 17:22 - 2022-05-19 00:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-10-11 17:21 - 2023-05-27 14:02 - 000005290 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for PC-AAA-amilh PC-AAA 2023-10-11 16:09 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-10-11 15:59 - 2023-05-12 17:10 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-730324531-2188339189-1696067976-1001 2023-10-11 15:59 - 2023-05-12 17:10 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-730324531-2188339189-1696067976-1001 2023-10-11 15:59 - 2023-04-06 09:25 - 000002421 _____ C:\Users\amilh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-10-11 15:04 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-10-11 15:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-10-11 13:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-10-11 12:25 - 2022-05-18 23:27 - 000000000 ____D C:\ProgramData\NVIDIA 2023-10-11 08:09 - 2023-04-12 16:58 - 000000000 ____D C:\ProgramData\Autodesk 2023-10-11 07:45 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\D3DSCache 2023-10-11 07:37 - 2023-04-16 17:59 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-10-11 07:28 - 2023-04-06 09:16 - 000000000 ____D C:\Users\amilh\AppData\Local\Host App Service 2023-10-11 07:26 - 2023-05-24 20:59 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Dropbox 2023-10-11 07:26 - 2023-05-13 14:32 - 000000000 ____D C:\Users\amilh\AppData\Local\Dropbox 2023-10-10 12:14 - 2023-04-12 17:18 - 000000000 ____D C:\ProgramData\RevitInterProcess 2023-10-10 08:48 - 2023-05-13 14:41 - 000000000 ____D C:\ProgramData\boost_interprocess 2023-10-10 08:14 - 2023-05-12 17:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-10-10 07:57 - 2023-05-13 14:34 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-10-10 07:57 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-10-10 07:49 - 2023-05-12 17:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-10-10 07:49 - 2022-05-18 23:18 - 000012288 ___SH C:\DumpStack.log.tmp 2023-10-10 07:49 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-10-08 20:42 - 2023-05-12 17:08 - 000000000 ____D C:\Users\amilh 2023-10-08 20:23 - 2022-05-18 23:18 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-10-08 20:17 - 2023-06-06 08:49 - 000000000 ____D C:\WINDOWS\Minidump 2023-10-08 20:17 - 2022-05-19 08:59 - 006046409 ____N C:\WINDOWS\Minidump\100823-14500-01.dmp 2023-10-06 16:53 - 2022-05-18 23:26 - 000000000 ____D C:\ProgramData\Package Cache 2023-10-05 10:39 - 2023-05-24 21:52 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2023-10-05 10:39 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-10-05 10:25 - 2022-05-18 23:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-10-05 10:18 - 2023-04-06 09:23 - 000000000 ____D C:\Users\amilh\AppData\Local\Packages 2023-10-05 09:55 - 2023-05-24 20:59 - 000000000 ____D C:\Program Files (x86)\Dropbox 2023-10-04 08:26 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-10-03 18:45 - 2023-04-06 09:16 - 000000000 ___SD C:\Users\amilh\AppData\Roaming\Microsoft\Protect 2023-10-02 16:07 - 2023-07-10 16:14 - 000000000 ____D C:\Users\amilh\AppData\Roaming\reolink 2023-10-01 21:20 - 2023-04-06 11:00 - 000000000 ____D C:\Users\amilh\AppData\LocalLow\Mozilla 2023-09-21 17:15 - 2023-04-06 09:23 - 000000000 ____D C:\ProgramData\Packages 2023-09-21 08:36 - 2023-05-24 21:05 - 000000000 ___RD C:\Users\amilh\2d groupe Dropbox 2023-09-15 22:05 - 2023-04-06 09:56 - 000000000 ____D C:\Users\amilh\AppData\Roaming\Microsoft\Office 2023-09-14 20:46 - 2023-05-24 20:59 - 000001198 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2023-09-14 20:46 - 2023-05-24 20:59 - 000001194 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2023-09-14 20:46 - 2023-05-12 17:07 - 000587608 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-09-14 20:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-09-14 18:36 - 2023-05-13 14:26 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-09-14 09:29 - 2023-05-24 20:59 - 000004258 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2023-09-14 09:29 - 2023-05-24 20:59 - 000004026 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2023-09-14 09:23 - 2023-05-13 14:50 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2023-09-14 09:23 - 2023-05-13 14:50 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2023-09-11 15:25 - 2023-07-10 16:14 - 000000000 ____D C:\Users\amilh\AppData\Local\reolink-updater ==================== Fichiers à la racine de certains dossiers ======== 2023-09-24 19:34 - 2023-09-24 19:34 - 000000211 _____ () C:\Users\amilh\AppData\Roaming\com.reolink.app.client ==================== SigCheckExt ========================= 2023-10-06 16:49 - 2019-09-26 16:19 - 000121344 _____ () C:\WINDOWS\system32\BrNetSti.dll 2023-10-06 16:49 - 2019-07-12 15:45 - 000065024 _____ () C:\WINDOWS\system32\Brnsplg.dll 2023-10-06 16:49 - 2019-07-12 15:45 - 000072192 _____ () C:\WINDOWS\system32\BrWiaNCp.dll 2023-10-06 16:49 - 2019-07-12 15:45 - 000670208 _____ C:\WINDOWS\system32\NSSRH64.dll 2023-05-13 14:38 - 2023-05-13 14:38 - 000196096 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll 2023-05-13 17:56 - 2010-12-06 04:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll 2023-05-24 21:40 - 2023-05-24 21:40 - 000003584 _____ C:\WINDOWS\SECOH-QAD.dll 2023-05-13 14:53 - 2023-05-13 14:53 - 000004608 _____ C:\WINDOWS\SECOH-QAD.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {009473dc-e299-11ed-87f5-806e6f6e6963} {78a4f262-d6f8-11ec-87d4-806e6f6e6963} {78a4f263-d6f8-11ec-87d4-806e6f6e6963} {78a4f264-d6f8-11ec-87d4-806e6f6e6963} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {009473dc-e299-11ed-87f5-806e6f6e6963} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager Application logicielle (101fffff) -------------------------------- identificateur {78a4f262-d6f8-11ec-87d4-806e6f6e6963} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {78a4f263-d6f8-11ec-87d4-806e6f6e6963} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {78a4f264-d6f8-11ec-87d4-806e6f6e6963} description EFI Network Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {ffbab256-f0de-11ed-a9b8-9e11c3790f0c} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {ffbab258-f0de-11ed-a9b8-9e11c3790f0c} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ffbab259-f0de-11ed-a9b8-9e11c3790f0c} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {ffbab256-f0de-11ed-a9b8-9e11c3790f0c} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {ffbab258-f0de-11ed-a9b8-9e11c3790f0c} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {ffbab259-f0de-11ed-a9b8-9e11c3790f0c} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================