Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11.01.2024 Exécuté par acns (administrateur) sur DESKTOP-GNCGR2A (Acer Veriton M480G) (15-01-2024 15:57:57) Exécuté depuis C:\Users\acns\OneDrive\Bureau\probleme windows updates et autres\FRST64.exe Profils chargés: acns & Stephanie Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3930 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\pingsender.exe (services.exe ->) (Avanquest Software (7270356 Canada Inc) -> Avanquest Software) C:\Program Files\Soda PDF Desktop 14\activation-service.exe (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\ensserver.exe (services.exe ->) (Chickadee Digital, LLC -> Chickadee Digital LLC) C:\Program Files (x86)\OneBrowser\Update\OBUpdateService.exe (services.exe ->) (Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (services.exe ->) (Wondershare Technology Group Co.,Ltd -> ) C:\ProgramData\Wondershare\wsServices\ElevationService.exe (svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.53.52331.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe Impossible d'accéder au processus -> FreemakeUtilsService.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [BraveVpnWireguardService] => "C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.116\BraveVpnWireguardService\brave_vpn_wireguard_service.exe" --interactive (Pas de fichier) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2023-10-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [481416 2020-05-15] (Geek Software GmbH -> Geek Software GmbH) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Run: [SecurityHealthSystray] => C:\Windows\System32\SecurityHealthSystray.exe [86016 2019-12-07] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MpCmdRun.exe [468120 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Run: [WmiPrvSE] => C:\Windows\System32\wbem\WmiPrvSE.exe [496640 2024-01-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2712168 2024-01-14] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Run: [MicrosoftEdgeAutoLaunch_E33921E5E92838DF6771E43C0E67D32A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854272 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Run: [Opera Stable] => C:\Users\acns\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-11] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Policies\Explorer: [NoSecurityTab] 1 HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Run: [SecurityHealthSystray] => C:\Windows\System32\SecurityHealthSystray.exe [86016 2019-12-07] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MpCmdRun.exe [468120 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Run: [WmiPrvSE] => C:\Windows\System32\wbem\WmiPrvSE.exe [496640 2024-01-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2712168 2024-01-14] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Policies\Explorer: [NoSecurityTab] 1 HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.) HKLM\...\Print\Monitors\Soda PDF Desktop 14 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.11.0.7.dll [960120 2022-08-14] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com)) HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\WSPDFelementMonitor.dll [286264 2020-04-16] (Wondershare Technology Co.,Ltd -> Wondershare Software) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{7D2B3E1D-D096-4594-9D8F-A6667F12E0AC}] -> C:\Program Files (x86)\OneBrowser\Application\115.0.5790.171\Installer\chrmstp.exe [2023-11-26] (Chickadee Digital, LLC -> Chickadee Digital, LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-01-29] ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION ==================== Tâches planifiées (Tous(tes)) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {011EF1B2-F8D3-4133-B82F-6281517CD737} - \GoogleUpdateTaskMachineCore{DFD08488-C915-4C19-B9DF-6F38EAA27F56} -> Pas de fichier <==== ATTENTION Task: {0294AB3B-CC3F-4EF7-B82C-FB99E9DA6876} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk4338 -> Pas de fichier <==== ATTENTION Task: {03A3E27E-BEE8-4B9E-BDFB-4947E4AFF7E8} - \SettingSysHost\SettingSysHostService_bk3813 -> Pas de fichier <==== ATTENTION Task: {03C6392D-8CB9-46DA-A075-563CCA59D950} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk395 -> Pas de fichier <==== ATTENTION Task: {05CDCE42-0DFF-4A89-9AD4-7683664D568E} - \WindowsDefenderServices\WindowsDefenderServicesService_bk6641 -> Pas de fichier <==== ATTENTION Task: {0C39141D-EB43-46C9-B126-AFBD607BE96A} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk4383 -> Pas de fichier <==== ATTENTION Task: {0C7129E5-1F0C-4B5F-BFA3-09C2394F991D} - \WmiPrvSE -> Pas de fichier <==== ATTENTION Task: {0F78000A-E0AD-451E-BE7F-0D6E8011949E} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk6560 -> Pas de fichier <==== ATTENTION Task: {179DAA63-5087-4D99-B577-E82F877A5090} - \lsassl -> Pas de fichier <==== ATTENTION Task: {1808F077-CA6A-41F4-ABA3-6483FECC4EC8} - \lsass -> Pas de fichier <==== ATTENTION Task: {1AA5F50B-C2D8-47F4-8D8A-E2F25E6BB97F} - \ABC -> Pas de fichier <==== ATTENTION Task: {1B3EF043-B5EB-46A6-8114-1E824E4FB4A5} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk758 -> Pas de fichier <==== ATTENTION Task: {1CAC170A-4D21-4F91-9CB3-782C9C071ACE} - \GoogleUpdateTaskMachineQC -> Pas de fichier <==== ATTENTION Task: {1E12C523-C31D-45B2-9E7D-A0AC5AC03729} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk16 -> Pas de fichier <==== ATTENTION Task: {2007DFC4-453E-40A1-A14A-4E14F208B3C5} - \WindowsDefender -> Pas de fichier <==== ATTENTION Task: {229AE2B2-997A-4EA3-8C72-4A9327EBDDB5} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk5488 -> Pas de fichier <==== ATTENTION Task: {2901C2C0-9EF6-4075-B77E-F2AA14A75BBF} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk2060 -> Pas de fichier <==== ATTENTION Task: {2F46D126-7E4F-4D20-8E4B-F8A33BC03E2D} - \msedgem -> Pas de fichier <==== ATTENTION Task: {31FC914D-869D-40F9-BF29-424D6936330A} - \WindowsDefenderServices\WindowsDefenderServicesService_bk9749 -> Pas de fichier <==== ATTENTION Task: {384ECDE5-D547-43E1-B12B-2598CB79B72B} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk2517 -> Pas de fichier <==== ATTENTION Task: {3C952673-DE92-42A0-BE7A-8ACF26ACD626} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk9030 -> Pas de fichier <==== ATTENTION Task: {4243ADBF-AE78-4D0F-B9DB-6A4C91673536} - \WindowsDefenderServices\WindowsDefenderServicesService_bk3398 -> Pas de fichier <==== ATTENTION Task: {42477102-9D20-42BA-BC23-6AB08D54F00F} - \SettingSysHost\SettingSysHostService_bk2589 -> Pas de fichier <==== ATTENTION Task: {4299F52E-2C94-4481-B7CA-16038AFEDDB5} - \SettingSysHost\SettingSysHostService_bk4643 -> Pas de fichier <==== ATTENTION Task: {45AFC778-8D89-467E-9A0B-6B11BBDD9284} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk1899 -> Pas de fichier <==== ATTENTION Task: {46CDD0B6-2728-410A-86A2-FD4EA6A14C76} - \ByteFence -> Pas de fichier <==== ATTENTION Task: {479304D7-F43A-4733-879A-823E73163B40} - \WindowsDefenderServices\WindowsDefenderServicesService_bk7951 -> Pas de fichier <==== ATTENTION Task: {4852727B-2CBD-474F-8C57-3EA2E93597E5} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk694 -> Pas de fichier <==== ATTENTION Task: {48732A9D-3436-4F4C-82ED-9C3B93D64570} - \SettingSysHost\SettingSysHostService_bk4225 -> Pas de fichier <==== ATTENTION Task: {4993ADAB-8E74-4FDA-84AB-E19B011A37C3} - \SgrmBrokerS -> Pas de fichier <==== ATTENTION Task: {51E9503B-C90B-4420-A519-C43A7946BFEA} - \msedge -> Pas de fichier <==== ATTENTION Task: {5F0BC309-1BA4-4DFC-B336-736DB6D839F7} - \SettingSysHost\SettingSysHostService_bk6845 -> Pas de fichier <==== ATTENTION Task: {610B7A04-E29F-40DC-B470-DC01164F908B} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk4668 -> Pas de fichier <==== ATTENTION Task: {66ABDD35-14AC-4EEE-9239-97CBE6166C94} - \AntiMalwareServiceExecutable -> Pas de fichier <==== ATTENTION Task: {6DE8081F-80AD-443D-BE81-A9B1E9BA15B2} - \Opera scheduled assistant Autoupdate 1630143280 -> Pas de fichier <==== ATTENTION Task: {6FE98978-D7FC-4530-9537-CA80A0DD24E0} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk8161 -> Pas de fichier <==== ATTENTION Task: {799A5701-4A8F-40D7-802B-1A47E0BE715C} - \WindowsDefenderServices\WindowsDefenderServicesService_bk4242 -> Pas de fichier <==== ATTENTION Task: {79C0F70C-1C56-4DF7-8286-A8735AAB0A8C} - \MEGA\StorageConows.ApplicationModel -> Pas de fichier <==== ATTENTION Task: {7a10401d-c41b-455e-8d88-7edbaa124011} - pas de chemin du fichier. <==== ATTENTION Task: {7A15D1C8-540E-4731-90AB-601B2DE725E8} - \SgrmBroker -> Pas de fichier <==== ATTENTION Task: {7AFD608F-7B12-4480-80AD-D0A253C055A4} - \Opera GX scheduled assistant Autoupdate 1661761845 -> Pas de fichier <==== ATTENTION Task: {7D68CD77-8229-404C-B395-69FF4579B5E0} - \WindowsDefenderServices\WindowsDefenderServicesService_bk4981 -> Pas de fichier <==== ATTENTION Task: {7DC11694-7C3A-48F7-AC89-2A2C90DB8B4A} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk1124 -> Pas de fichier <==== ATTENTION Task: {8322BC59-3D52-424D-BCD9-BED9D37FEF00} - \WindowsDefenderServices\WindowsDefenderServicesService_bk9007 -> Pas de fichier <==== ATTENTION Task: {83ED670F-3E11-4C37-BBAB-E8E28BD6F637} - \ABCA -> Pas de fichier <==== ATTENTION Task: {893F352D-3B53-4285-A68E-CA05CC863083} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk7040 -> Pas de fichier <==== ATTENTION Task: {8A59FE86-49D5-45E3-9F92-D141927FB2EF} - \SettingSysHost\SettingSysHostService_bk5776 -> Pas de fichier <==== ATTENTION Task: {92973775-C2DB-4810-88A8-B6C3E51722E9} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk9898 -> Pas de fichier <==== ATTENTION Task: {937FFC19-7414-488D-B4CA-51DA09E3BAFF} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk4542 -> Pas de fichier <==== ATTENTION Task: {95A66896-1A4A-45E6-9F84-1D70D99F4085} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk4968 -> Pas de fichier <==== ATTENTION Task: {9A04F11A-C2C5-4508-BA8A-88EBD8CEA20D} - \SettingSysHost\SettingSysHostService_bk2953 -> Pas de fichier <==== ATTENTION Task: {9E1AA289-449B-4200-A8F9-720CBCBD9496} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk9000 -> Pas de fichier <==== ATTENTION Task: {A140C580-21EA-49EB-9221-8A8484C8BBFD} - \SettingSysHost\SettingSysHostService_bk2501 -> Pas de fichier <==== ATTENTION Task: {A54D4893-159A-42F2-885B-50F3ADBD53E9} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk9361 -> Pas de fichier <==== ATTENTION Task: {ABDA4741-0C8E-44EC-8D47-72702A588EFE} - \WindowsDefenderServices\WindowsDefenderServicesService_bk440 -> Pas de fichier <==== ATTENTION Task: {ACCDC3D9-DEF8-4B58-A3CD-C5E0046C20DE} - \WindowsDefenderServices\WindowsDefenderServicesService_bk91 -> Pas de fichier <==== ATTENTION Task: {ADD27E72-6265-4D15-975C-8D3768A0B897} - \SecurityHealthSystray -> Pas de fichier <==== ATTENTION Task: {AEEEE322-0A18-48F4-9EC1-E8B66D2DDC3C} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk6385 -> Pas de fichier <==== ATTENTION Task: {B87D72A4-F669-4B77-B243-27FB814BDA06} - \OneDriveService -> Pas de fichier <==== ATTENTION Task: {BBCD8690-ED7D-44F8-AF60-D92649778184} - \WindowsDefenderServices\WindowsDefenderServicesService_bk8853 -> Pas de fichier <==== ATTENTION Task: {BC0424CF-52C0-40BA-A38C-C989741B7351} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk5719 -> Pas de fichier <==== ATTENTION Task: {BE10B0F6-E539-4AE8-996E-BB39B0BBDE40} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk8493 -> Pas de fichier <==== ATTENTION Task: {C0B7CD02-0B40-4C6D-BE40-DFC0B5DEF352} - \MicrosoftEdgeUpd -> Pas de fichier <==== ATTENTION Task: {C2B65FD8-4894-4C1F-9FB4-2AE60BBE6D0C} - \SettingSysHost\SettingSysHostService_bk3682 -> Pas de fichier <==== ATTENTION Task: {CA12BC76-BB09-44FF-A6FA-1EFDFC32FAC1} - \SettingSysHost\SettingSysHostService_bk1710 -> Pas de fichier <==== ATTENTION Task: {CA633339-ABD5-4D49-BFAD-17587FDE4E26} - \WindowsDefenderServices\WindowsDefenderServicesService_bk1834 -> Pas de fichier <==== ATTENTION Task: {CB479A34-2B7B-44DA-93AD-22B500FF0E42} - \WindowsDefenderServices\WindowsDefenderServicesService_bk6538 -> Pas de fichier <==== ATTENTION Task: {D039A780-E4EE-434E-9D43-A384B3D2947E} - \SettingSysHost\SettingSysHostService_bk8480 -> Pas de fichier <==== ATTENTION Task: {D7FA5A8B-513C-41D8-BCE4-046816346D34} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk4891 -> Pas de fichier <==== ATTENTION Task: {DC95C0C7-B98B-4519-94CC-13B5C2754899} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk4384 -> Pas de fichier <==== ATTENTION Task: {DE47062C-ABF1-49CD-9F6F-578233BB4AA5} - \WindowsDefenderServices\WindowsDefenderServicesService_bk3474 -> Pas de fichier <==== ATTENTION Task: {DEA8F2A6-FD16-427B-93AF-32E31C2255C7} - \WindowsDefenderServices\WindowsDefenderServicesService_bk6573 -> Pas de fichier <==== ATTENTION Task: {E6B82ED2-BB80-4C53-BDE8-7F758C5C2AE5} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk3364 -> Pas de fichier <==== ATTENTION Task: {E7C35184-EEEA-466B-858F-DDB9E7B50487} - \WindowsDefenderServices\WindowsDefenderServicesService_bk5907 -> Pas de fichier <==== ATTENTION Task: {E9C171D2-AC32-4A77-B47C-C3C7B903AC64} - \MicrosoftUpdateServices\MicrosoftUpdateServicesService_bk897 -> Pas de fichier <==== ATTENTION Task: {E9F19A20-3FEE-4109-A1B8-80EE78FFFCF3} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk791 -> Pas de fichier <==== ATTENTION Task: {EC747275-9B0A-46B8-997E-6119D637AA23} - \services64 -> Pas de fichier <==== ATTENTION Task: {EE5B1BBF-5CBA-4BD2-8367-261E6824210F} - \dllhost -> Pas de fichier <==== ATTENTION Task: {F1A88554-3BB1-4A0C-9B93-4888F1D0BF04} - \GoogleUpdateTaskMachineUA{DB514D1B-D353-4788-8ED8-96E2CF6B012F} -> Pas de fichier <==== ATTENTION Task: {F48D8D42-C485-475B-917A-AE39E90924DE} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableService_bk1914 -> Pas de fichier <==== ATTENTION Task: {FAE7C1EB-7640-4C1C-8ACB-D6B904AB782F} - \SettingSysHost\SettingSysHostService_bk351 -> Pas de fichier <==== ATTENTION Task: {FAF5BADB-E18A-4D9F-8E6B-01ECD9E0E1B4} - \NvStray -> Pas de fichier <==== ATTENTION Task: {25F8A648-61F3-4930-A4A5-F73ADE6D1EAB} - System32\Tasks\Agent Activation Runtime\S-1-5-21-94650286-2829628890-3860724237-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2024-01-14] (Microsoft Windows -> ) Task: {47B2D1B7-3BB9-47A5-B24C-39267F45475F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.) Task: {49BB1BA1-3245-4A46-9346-C30057F88ABB} - System32\Tasks\Avanquest Software\Soda PDF Desktop 14\App Notification => C:\Program Files\Soda PDF Desktop 14\soda-launcher.exe [1865232 2022-08-05] (Avanquest Software (7270356 Canada Inc) -> Avanquest Software) Task: {87F6437F-FF6F-44D8-BEF8-55E6E48BC937} - System32\Tasks\Avanquest Software\Soda PDF Desktop 14\App Notification Logon => C:\Program Files\Soda PDF Desktop 14\soda-launcher.exe [1865232 2022-08-05] (Avanquest Software (7270356 Canada Inc) -> Avanquest Software) Task: {B1BCE4C7-F86F-4056-B988-FDE4BA34D03A} - System32\Tasks\Avanquest Software\Soda PDF Desktop 14\Update => C:\Program Files\Soda PDF Desktop 14\soda.exe [3595280 2022-08-05] (Avanquest Software (7270356 Canada Inc) -> Avanquest Software) Task: {987765F7-5AD7-4DF8-A1FD-381F5EB84E25} - System32\Tasks\copy_dlc_unlocker => C:\WINDOWS\system32\xcopy.exe [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> /Y "C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\version.dll" "C:\Program Files\Electronic Arts\EA Desktop\StagedEADesktop\EA Desktop\*" Task: {7D5E724E-630C-4718-A34E-E16E143B2147} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5550856 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {BAF4B9A8-1B02-4B38-B231-7EA97230256B} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 => {84F0FAE1-C27B-4F6F-807B-28CF6F96287D} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation) Task: {D5A9F0F2-D7CA-4A2B-8871-C67F2CBEADF1} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 => {429BC048-379E-45E0-80E4-EB1977941B5C} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation) Task: {1D44DA44-C6A2-454A-AD76-389CB7AB7B77} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical => {613FBA38-A3DF-4AB8-9674-5604984A299A} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation) Task: {B750F9BA-94F7-495C-9AA5-9E0BFB0E1F63} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical => {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation) Task: {F346D1E4-9974-4A5D-9E35-FE7079A30555} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\WINDOWS\system32\msdrm.dll [570368 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {8E33F0A3-A31E-4E6C-AFF7-844A27E761B7} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4D8A-A53E-D81C70CF743C} C:\WINDOWS\system32\msdrm.dll [570368 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {5B885149-AF43-451C-A12F-0CD1E0A34023} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager => {DECA92E0-AF85-439E-9204-86679978DA08} C:\WINDOWS\System32\AppLockerCsp.dll [390144 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4EBE9A38-6BE4-429E-8588-B460327DB327} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\WINDOWS\system32\appidpolicyconverter.exe [160768 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {7A27D6E9-CB10-42F6-B75D-A53F78486290} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\WINDOWS\system32\appidcertstorecheck.exe [49152 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {C9702858-8B03-458C-9750-471158D765D3} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc Task: {C9702858-8B03-458C-9750-471158D765D3} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun Task: {C9702858-8B03-458C-9750-471158D765D3} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData Task: {7A5AFDB2-56EC-4352-AB44-069E7BF253A8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\WINDOWS\system32\compattelrunner.exe [185728 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4A156EAA-6457-47FB-8596-B5CA62602C90} - System32\Tasks\Microsoft\Windows\Application Experience\PcaPatchDbTask => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaPatchSdbTask Task: {73469C3A-0B60-4A11-AD8A-FC67A901B741} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\WINDOWS\system32\compattelrunner.exe [185728 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {3D363385-64B8-4207-AC46-3EE180DD87F2} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> Startupscan.dll,SusRunTask Task: {B5108B49-C39A-43DE-AC49-06155873BAE9} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [120320 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {BA366117-6A44-44F3-9BAA-09C4ADA110CC} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [120320 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {E003BEA4-7D11-4522-9834-25C3F9F93F53} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {F472261A-A57A-465B-A695-5F2E75E37782} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\WINDOWS\system32\dstokenclean.exe [13312 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {9AFF1738-3A36-48CB-A550-E188057338F5} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [96256 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {255716C5-442D-48FF-B7A9-7D6E10D8241D} - System32\Tasks\Microsoft\Windows\AppListBackup\BackupNonMaintenance => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [96256 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {C9ABE41C-5E65-4E52-8BAD-4F1BCA3B5715} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask Task: {9FF23C78-9BD3-49E8-BB77-6CBEC876CA55} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {36A78C3E-A142-4F86-903E-AE26291F646C} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> /d acproxy.dll,PerformAutochkOperations Task: {34ADEFE8-89DB-43BC-8C0B-14BB34D69F6D} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {87094343-6C1F-4855-A6B9-305BA74AB761} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {AB05B368-13F7-468A-9B30-E553C06B5449} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\WINDOWS\system32\BthUdTask.exe [40448 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {077333D6-06BA-4EA4-BDF4-1CD1439558F2} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask => {E984D939-0E00-4DD9-AC3A-7ACA04745521} Task: {F0BE4F3E-F4F0-4B98-88EE-57290DDF6CB2} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [279552 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {F67BF9CD-2696-4F2D-9D78-BB8C84A53C1E} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [279552 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {2F63CF7F-0537-4E2A-9F8A-B763EFE907F5} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [279552 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {50DDDD38-168C-486B-966F-A23226488295} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {0EDEA23A-3DEC-41C3-B03E-BC7A3356D6BC} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {78FC1447-DCFF-4832-A268-0ABA89022F48} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {57C76B66-AD3C-4221-81FA-55045859B06F} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan => {CF4270F5-2E43-4468-83B3-A8C45BB33EA1} C:\Windows\System32\pstask.dll [16384 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {3FC4BE91-4A96-48F5-8858-1628CB88EFB5} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\WINDOWS\system32\bcdboot.exe [253440 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> %windir% /sysrepair Task: {5B0ED9ED-6704-45F8-B8C1-93C5A3B5F4FF} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\WINDOWS\system32\ClipUp.exe [1163848 2024-01-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EB10D114-1ACB-4BCD-8455-5831C95A9CAF} - System32\Tasks\Microsoft\Windows\Clip\LicenseImdsIntegration => C:\WINDOWS\system32\fclip.exe [444736 2024-01-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {12514C9A-1DE5-40CE-B66C-D6838DA9A169} - System32\Tasks\Microsoft\Windows\CloudExperienceHost\CreateObjectTask => {E4544ABA-62BF-4C54-AAB2-EC246342626C} C:\Windows\System32\CloudExperienceHostBroker.exe [70112 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {08831463-BC7B-40EC-B2C5-36B451D0743E} - System32\Tasks\Microsoft\Windows\CloudRestore\Backup => {722D0F89-B69C-4700-AE8C-4A44350E4876} C:\WINDOWS\System32\CloudRestoreLauncher.dll [669184 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {AF1636F3-9DB3-421C-83EC-7532154B18E9} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [282112 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {ED77AEE0-EAFB-4133-B544-9E7C5632D902} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\WINDOWS\System32\wsqmcons.exe [119808 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {7572B7F9-BE9D-43BF-9A4E-F82023EDBD33} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {C27F6B1D-FE0B-45E4-9257-38799FA69BC8} C:\WINDOWS\System32\usbceip.dll [119808 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {304D2127-E6ED-4C82-B9B3-63B3B54A4D66} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Check And Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [316928 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {90F68E39-00DE-4159-BCDB-5C5759A5CF53} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [316928 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {EAD9ED20-AC69-4E97-8CCB-E8F62CA707B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [316928 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {1FBE5776-0F77-42FE-8ADD-33034AB2E6EC} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\WINDOWS\system32\defrag.exe [210432 2024-01-14] (Microsoft Windows -> Microsoft Corp.) Task: {4F41B4A1-8822-4B02-90CD-202A0099FFAE} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\WINDOWS\system32\devicecensus.exe [58848 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {F278A444-BDB4-4CD1-A2F0-7A2284C32800} - System32\Tasks\Microsoft\Windows\Device Information\Device User => C:\WINDOWS\system32\devicecensus.exe [58848 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {082F4875-D88C-40EA-8706-87480962C446} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh => {23C1F3CF-C110-4512-ACA9-7B6174ECE888} C:\WINDOWS\System32\DeviceSetupManagerAPI.dll [162816 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {9D87DBE9-E563-4708-A9E9-1A6EE5951EC2} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {0016B09F-CFDA-4F5B-A70B-84A75599B89B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {61B4D08B-1B23-4CC8-869E-CF0B7996EF5F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {6AAEEF1D-9661-4720-B127-27C975871238} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {9ECD9F35-130A-4C0C-A551-9D3335B165D7} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {EA82AA60-4BB0-41D9-AA1A-D64D739F55DE} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {5E0DF2C3-3D26-4759-9E02-FB7F4DCD159B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {114EC267-55F2-45DA-9AB6-B98CA9DC0D01} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {AF73DAAA-53AE-4CC8-8671-BE29D886B057} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {C660D735-E9F2-4190-9B4E-97ADF1AFFA16} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {125A08B3-1089-43DB-8E2E-D5DAEC3FD5F4} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A2FFCE6E-7F06-494A-8C84-6EFCAEB075BB} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {82118927-2361-4778-8B5E-26CC06DE2634} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => {AD08DCC2-4E35-4486-9D49-547CBD30942D} C:\WINDOWS\System32\MitigationClient.dll [489472 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {C3944556-15CF-467E-89E2-29D4BFD3EC5A} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {C1F85EF8-BCC2-4606-BB39-70C523715EB3} C:\WINDOWS\System32\sdiagschd.dll [68096 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {55B1C85E-5BEF-4EDB-ADD0-ECEAEF261E7C} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\WINDOWS\system32\directxdatabaseupdater.exe [286208 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {0CBABB27-6DFC-4155-BAE7-AE919B92FEF2} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\WINDOWS\system32\dxgiadaptercache.exe [236032 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {6AA2E298-C47C-45AE-BF6F-E2D9A555345C} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\WINDOWS\system32\cleanmgr.exe [299008 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> /autoclean /d %systemdrive% Task: {B97C7632-DD50-4F07-8E4E-F1450795BF78} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> dfdts.dll,DfdGetDefaultPolicyAndSMART Task: {3A4032F6-6063-4D54-BAE3-F8A4A5110CDA} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\WINDOWS\system32\DFDWiz.exe [54784 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {C9EC268B-1D36-4AF0-A1EB-2C1BC3B455D9} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\WINDOWS\system32\disksnapshot.exe [85504 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {117E2D01-1275-4560-90E9-A34BB4EE69A3} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense => {AB2A519B-03B0-43CE-940A-A73DF850B49A} C:\WINDOWS\system32\StorageUsage.dll [161792 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {69D15B8E-729C-4C1C-A0E7-6DCA5E963E60} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\WINDOWS\System32\dusmtask.exe [40960 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {EF4B8F07-FA4B-4CD0-84BC-4A758127E3DD} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {3789A597-BD62-4A2F-8F57-AE2D504E0E98} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {0E2DCCB3-7B11-40CF-B973-90F22732E317} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {66A3F618-0C70-4F70-9BBA-735CCDB43A09} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {B9E96119-515B-4D19-8357-D54B747395AD} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\WINDOWS\system32\MDMAgent.exe [166912 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {F8FEDA28-6261-4385-844A-684E6C988577} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh => {711001CD-CC1D-4470-9B7E-1EF73849C79E} C:\WINDOWS\System32\MitigationConfiguration.dll [86528 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {92FFE795-C628-4324-AB97-06F804352DB6} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\WINDOWS\system32\dmclient.exe [120832 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {7617E03F-109E-435B-9B4C-0282CD5BE4A9} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\WINDOWS\system32\dmclient.exe [120832 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {8A1D89C6-61B6-4C79-A636-5F5DD49D592F} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync => {2AE64751-B728-4D6B-97A0-B2DA2E7D2A3B} C:\Windows\System32\srmclient.dll [1349120 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {2EE7F450-D2B6-4D5E-AFE0-A8699149E79E} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) => {89917B7C-A1A6-11DF-8BF6-18A90531A85A} C:\WINDOWS\System32\fhtask.dll [61952 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {68C573B5-21CA-466D-810B-178BDDCCE176} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures => {59EECBFE-C2F5-4419-9B99-13FE05FF2675} C:\Windows\System32\fcon.dll [258048 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {FF2841D9-9BD6-45F8-B54A-22F8B9FF2EBB} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataFlushing => {99EFDAD1-0F11-4A6B-A702-4E1C37D1A3EF} C:\Windows\System32\fcon.dll [258048 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {D70B3D68-52D4-4872-AC48-DE51865133CA} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataReporting => {BBFCD054-8AAC-45DE-A1EB-7B246C9028AF} C:\Windows\System32\fcon.dll [258048 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4F2030CE-BA8E-4122-B9A8-29AA5858973E} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache => {E07647F7-AED2-48D9-9720-939BC24A8A3C} C:\Windows\System32\wosc.dll [294912 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {12DF3F8A-9612-48CA-AE38-2818FA70CA73} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [510464 2024-01-14] (Microsoft Windows -> ) Task: {CADF1293-5495-426F-8E37-A30F69274AF4} - System32\Tasks\Microsoft\Windows\Input\LocalUserSyncDataAvailable => {8E7C2AFB-72B9-415C-9AC2-5037693309B7} C:\Windows\System32\InputCloudStore.dll [208896 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {DA42085F-11E4-4EE1-A363-1898204812F5} - System32\Tasks\Microsoft\Windows\Input\MouseSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [208896 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4A0DEFDA-A2B8-4736-88E1-A578E00D9704} - System32\Tasks\Microsoft\Windows\Input\PenSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [208896 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {7C4733D2-81D6-4CA3-B30C-E00B496B9857} - System32\Tasks\Microsoft\Windows\Input\TouchpadSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [208896 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A08D6A77-C926-4E78-9ED0-09836E2769AE} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates => {A558C6A5-B42B-4C98-B610-BF9559143139} C:\Windows\System32\InstallServiceTasks.dll [230400 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A2FADBDF-6855-42F7-BDFC-F0C510EDA9BC} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser => {DDAFAEA2-8842-4E96-BADE-D44A8D676FDB} C:\Windows\System32\InstallServiceTasks.dll [230400 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {44AF7ADA-1C0D-43B1-A063-9E7581F7730B} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry => {F3A219C3-2698-4CBF-9C07-037EDB8E72E6} C:\Windows\System32\InstallServiceTasks.dll [230400 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {9B29B882-A95C-438B-BF91-E7C31B1D82D1} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates => {0DC331EE-8438-49D5-A721-E10B937CE459} C:\Windows\System32\InstallServiceTasks.dll [230400 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {EC3EFE4E-A2E4-4C66-975C-CA2EFD0D42CD} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates => {D5A04D91-6FE6-4FE4-A98A-FEB4500C5AF7} C:\Windows\System32\InstallServiceTasks.dll [230400 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A60D9ECB-A6F4-4FE1-9BD7-B049487A67E7} - System32\Tasks\Microsoft\Windows\International\Synchronize Language Settings => {10D62541-90D0-42FE-848C-0DBC1AC42EDA} C:\Windows\System32\CoreGlobConfig.dll [218104 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {7A7B60AA-BA42-409F-BC97-7BCFEFAD6308} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [181248 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A499FA48-7057-4AC1-9702-44C6FD924058} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources => {D0582E3B-3126-4CAA-9155-AC37C912A489} C:\WINDOWS\System32\LanguageOverlayServer.dll [410112 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {9520602D-5D35-49BC-B397-5251EC6364E8} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [181248 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A28E2F31-2C6D-426C-A2AC-2F9F6952D916} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange => {77646A68-AD14-4D53-897D-7BE4DDE5F929} C:\Windows\System32\TempSignedLicenseExchangeTask.dll [74752 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {E88D9B2C-DDEA-47B2-9582-085153004DB5} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\WINDOWS\System32\LocationNotificationWindows.exe [71168 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {E32B86AB-ABAA-45A7-9BE7-9BB2E6B7837D} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\WINDOWS\System32\WindowsActionDialog.exe [62464 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {6F063424-E8AD-40FA-92B9-CD047EC2A92A} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\WINDOWS\system32\WinSATAPI.dll [377856 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {6A9C4C68-2C0C-4998-9227-3719988B8302} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [200192 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A2021F48-FCEB-4C6B-AEFB-68BD961323C8} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [200192 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {E38739C8-A84F-4F9B-8913-DCA75BC35C79} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\WINDOWS\system32\ProvTool.exe [87040 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {80436C26-BC19-4930-9051-F06F0E0BA960} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\WINDOWS\system32\ProvTool.exe [87040 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {2AD5F8AE-8128-49DD-AB67-7D9052D0C609} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Retry => C:\WINDOWS\system32\ProvTool.exe [87040 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {E91D1CC3-09DF-45F0-8208-474AEE6B0A16} - System32\Tasks\Microsoft\Windows\Management\Provisioning\RunOnReboot => C:\WINDOWS\system32\ProvTool.exe [87040 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {701473A3-4C61-4063-AAC6-871E22A29FE7} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask => {9885AEF2-BD9F-41E0-B15E-B3141395E803} C:\WINDOWS\System32\mapstoasttask.dll [53760 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {E577C99D-E5DD-43E8-9E9F-2D291B431572} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask => {B9033E87-33CF-4D77-BC9B-895AFBBA72E4} C:\WINDOWS\System32\mapsupdatetask.dll [45568 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {78E96733-DDEF-4FB9-AD45-FC553EFC4CFD} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\WINDOWS\System32\MemoryDiagnostic.dll [33792 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {29903646-8B95-441C-AE59-CC43C0C76FF5} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\WINDOWS\System32\MemoryDiagnostic.dll [33792 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe [119296 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {6EE3AFA8-CBB1-4E6E-B0B4-ABFF3127206C} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\WINDOWS\system32\lpremove.exe [72704 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {9486DC81-1119-4559-9110-1A771DEC137A} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\WINDOWS\System32\PlaySndSrv.dll [90112 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {3A6DB6F9-A355-420A-B6E0-7C54D12F4033} - System32\Tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo => C:\WINDOWS\system32\gatherNetworkInfo.vbs [88781 2019-12-07] (Microsoft Windows -> ) Task: {C34E99FC-E9DA-45EE-AF9B-77AAD0B1B25F} - System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask => C:\WINDOWS\System32\WiFiTask.exe [133608 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {311FE1B5-CEC3-4086-B671-8B090CA26298} - System32\Tasks\Microsoft\Windows\Offline Files\Background Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [820736 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {54E7B7F2-3F0C-42B5-B207-7C10646502D2} - System32\Tasks\Microsoft\Windows\Offline Files\Logon Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [820736 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {046FAD4B-1F2D-44CC-A406-04D32930530D} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [95232 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {AAE4A09B-2A9A-4459-8078-98FA6265AF7F} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [318464 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {FB09E21D-A58E-4797-94AC-04234895966E} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [318464 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {C0467AB3-5004-4E13-BD2C-8DDF2AB880B5} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy => {60400283-B242-4FA8-8C25-CAF695B88209} C:\Windows\System32\pnppolicy.dll [91648 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4E3AEDFB-B76C-4C12-A54F-3BD72A10C434} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required => {48794782-6A1F-47B9-BD52-1D5F95D49C1B} C:\Windows\System32\pnpui.dll [49664 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {DF27E6F5-E07E-4744-981B-BB5BC982261C} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\WINDOWS\System32\drvinst.exe [337920 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {D9353C30-D505-4F11-8F95-55F3DDA1E214} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => {927EA2AF-1C54-43D5-825E-0074CE028EEE} C:\WINDOWS\System32\energytask.dll [26624 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {35525E8D-FD60-47BF-8D11-FA4F778C57C3} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\WINDOWS\system32\eduprintprov.exe [100352 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {36301B62-D399-45B9-8AB4-13DC8B0CF336} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\Windows\System32\PrinterCleanupTask.dll [86528 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A74EF9D1-6D6B-4566-8E25-782430F970E5} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start pushtoinstall login Task: {4BCE6391-0B05-40B4-B642-910B37FB1CE6} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start pushtoinstall registration Task: {C0E197F6-2E40-46FD-83DA-BE8704EF2CE5} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {C463A0FC-794F-4FDF-9201-01938CEACAFA} C:\WINDOWS\system32\rasmbmgr.dll [61952 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {F0FCA53B-F391-48AD-91F6-D1994846E55E} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE => {89D1D0C2-A3CF-490C-ABE3-B86CDE34B047} C:\WINDOWS\System32\ReAgentTask.dll [13824 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {00446CF1-8668-472D-BEDD-D0BB88DBA009} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {CA767AA8-9157-4604-B64B-40747123D5F2} C:\WINDOWS\System32\regidle.dll [15872 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {CC4F585B-EBBB-4AA6-9BDF-B28C489A9125} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\WINDOWS\system32\RAServer.exe [135168 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {8627F38D-3BB5-45A5-AAE5-B8735A41B62D} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => {752073A1-23F2-4396-85F0-8FDB879ED0ED} C:\WINDOWS\servicing\TrustedInstaller.exe [192480 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {E51EADD7-C4F7-43E7-A9CB-FEC8EC1E204F} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask => {59B9640B-3F70-4D1C-B159-F26EEB8A4C87} C:\WINDOWS\system32\SettingSyncCore.dll [1129472 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {7445D17B-89AB-43F3-B904-4DD68B19A6F2} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask => {A4173A49-F373-4475-9A0F-2D615204DC20} C:\WINDOWS\system32\SettingSyncCore.dll [1129472 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {8ACB53D9-7A3B-41B2-8448-52A927F42C4E} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask => {7C83C056-1D0D-4C8E-A6B0-89E79C213559} C:\WINDOWS\system32\oobe\SetupCleanupTask.dll [327168 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {8DB27523-093D-4B93-A00B-68F6317DFAE1} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance Task: {EC95F45C-0486-40E1-8938-20FE3E377E7D} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask => {990A9F8F-301F-45F7-8D0E-68C5952DBA43} C:\WINDOWS\system32\shell32.dll [7653056 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {DFDC1B83-7FD3-4C77-8CD1-7391D1680ACA} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\WINDOWS\System32\wpcmon.exe [1174544 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {44AE9673-2636-4AF9-B305-09BF29B86D75} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask => {D2CBF5F7-5702-440B-8D8F-8203034A6B82} Task: {CD0446AF-D5F6-4616-85CE-058C20FCE9EC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask => {C844C79D-AED8-4DCE-AB25-4D359BED84F8} C:\WINDOWS\System32\WpcRefreshTask.dll [1034240 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {C483CE25-B1C5-4BEB-AA31-5CADC8C66692} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance => {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} C:\WINDOWS\System32\srchadmin.dll [218112 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4D5F7111-8F86-4AAC-8D81-B673295BA17B} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\Windows\System32\Themes.SsfDownload.ScheduledTask.dll [141824 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {008539BF-83F9-4483-9E0A-EEEE6EAC0A08} - System32\Tasks\Microsoft\Windows\Shell\UpdateUserPictureTask => {09C5DD34-009D-40FA-BCB9-0165AD0C15D4} C:\Windows\System32\Windows.UI.Immersive.dll [1259008 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {2DFC28A5-3035-4555-A9E6-CE6D44EB1DB3} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [608768 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {892625FE-213B-4B60-95ED-A1CEFCAA365D} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [608768 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {3AB082DC-B77E-4487-BB5D-5DCB3A6C2B3C} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [608768 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {A9C498D6-046E-407B-A5B5-597DFC8756D9} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\WINDOWS\system32\SpaceAgent.exe [165888 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {AFEE5D15-0E83-432F-9DB0-58A2702115E1} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask => C:\WINDOWS\system32\spaceman.exe [80864 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {F5AF6E4F-A26E-493C-A71B-3E620142B809} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\WINDOWS\system32\speech_onecore\common\SpeechRuntime.exe [305664 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4D595DA6-BC59-47AE-A527-EC01FCE2E615} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\WINDOWS\system32\speech_onecore\common\SpeechModelDownload.exe [182272 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {58CCC4DA-C86D-4E3D-8FAF-A7B24D8F3950} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks Task: {D777B567-BB3B-4111-881C-0CB741022B0C} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization => {5C9AB547-345D-4175-9AF6-65133463A100} C:\Windows\System32\TieringEngineService.exe [326144 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {FC3767EA-5307-4D11-BA38-EB21A39737D7} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization => C:\WINDOWS\system32\defrag.exe [210432 2024-01-14] (Microsoft Windows -> Microsoft Corp.) Task: {55B24796-3532-4C53-BC27-66CD0625CC28} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [182248 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4FE0125E-6164-4CC8-8891-EE6E2F49712F} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [182248 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {64614AC8-EA46-476D-A71C-2C0B055C95CC} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate => {17C82257-654E-4C47-8E23-DCA24EAA76A0} C:\WINDOWS\system32\sysmain.dll [1005568 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {236EEE35-EDD5-418B-BCD5-293F6FAD7966} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} C:\WINDOWS\system32\sysmain.dll [1005568 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {051DF697-AF10-4DB6-9B93-E1A4E35F00F7} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync => {297EE78C-BA95-4E94-81D3-D6E7F089C7B5} C:\WINDOWS\system32\sysmain.dll [1005568 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {638672E6-20F1-499D-BFCC-9EA7935257C4} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> sysmain.dll,PfSvWsSwapAssessmentTask Task: {20546688-8F7B-4B82-8429-7E7E4F537E96} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\WINDOWS\system32\srtasks.exe [59392 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {7BE5585E-0190-458B-9CEC-F4076574C717} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855FEC53-D2E4-4999-9E87-3414E9CF0FF4} C:\WINDOWS\system32\wdc.dll [739840 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {511B7D7B-00B8-4A70-AEC0-811111148E77} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => %windir%\System32\RemoteFXvGPUDisablement.exe Disable (Pas de fichier) Task: {D2097F99-3467-4246-8068-457177741316} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => %windir%\System32\RemoteFXvGPUDisablement.exe Warning (Pas de fichier) Task: {88CE6B8C-B14B-499A-8D43-214F06116F07} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575CFE-9A55-4003-A5E1-F38D1EBDCBE1} C:\WINDOWS\system32\MsCtfMonitor.dll [96256 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {F5E862B9-98AE-458E-BC87-3ED25EFBB4D3} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime => {A31AD6C2-FF4C-43D4-8E90-7101023096F9} C:\WINDOWS\system32\TimeSyncTask.dll [15360 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {1FDAEDB1-C8AA-43FA-B046-3CDDDA12661E} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start w32time task_started Task: {C4C11C95-C597-4541-B0FF-0FB2C761FC92} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\WINDOWS\system32\tzsync.exe [70144 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {8A43AE7B-C54A-405B-913A-945A0AF2CA8F} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [318464 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {15E69FB7-BC19-4737-A3DF-0700D3959249} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [318464 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {CAB76809-EDC0-40D2-A888-AD9BEDF4E88A} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\WINDOWS\System32\UNP\UpdateNotificationMgr.exe [463232 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {BC763342-7287-4C62-9EC6-0D4D573B7AF8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\WINDOWS\system32\usoclient.exe [115200 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {32C066A3-2F75-4FC0-8A00-8472B5EAF2D5} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\WINDOWS\system32\MusNotification.exe [697344 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {BA54057C-2879-482E-9336-B98BA81F08A9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe [697344 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {8CD45566-34D8-4636-8DCF-D8A9D651BED0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe [697344 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {70EA2999-165C-4933-9027-250FB8B772F8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Report policies => C:\WINDOWS\system32\usoclient.exe [115200 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {D09B4AE2-5566-47DE-8D35-1CBA192E1CC4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work => C:\WINDOWS\system32\usoclient.exe [115200 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {362DF54B-D83B-4B3F-9C2A-960F3A2929F3} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\WINDOWS\system32\usoclient.exe [115200 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {309BA321-F7C8-46A4-BA50-5FAC484229CB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task => C:\WINDOWS\system32\usoclient.exe [115200 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {814D11FF-EADD-44FD-BC5E-F9297AE93D3A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work => C:\WINDOWS\system32\usoclient.exe [115200 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {FD370251-8BD8-4715-BEC0-F107D8CD26EB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Work => C:\WINDOWS\system32\usoclient.exe [115200 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {CB673CE4-960F-462D-AAD7-CDA0CD9FE030} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateModelTask => C:\WINDOWS\system32\usoclient.exe [115200 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {3C939DF6-D5B6-4A85-9826-03B4342D1047} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => C:\WINDOWS\system32\MusNotification.exe [697344 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4671B5C1-A383-4428-A45A-8D348E4CB873} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe [697344 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {57FF06A5-1054-4791-9938-1C3E61F00B07} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> config upnphost start= auto Task: {C5D47392-881C-422A-9BF8-E4916B55CD22} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications => {E05BE1C8-92A8-4757-B575-ACAECB4E6A40} C:\Windows\System32\UsbTask.dll [55808 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {3E51A991-10E2-4B16-B5B4-A2F051544BB9} - System32\Tasks\Microsoft\Windows\User Profile Service\HiveUploadTask => {BA677074-762C-444B-94C8-8C83F93F6605} C:\WINDOWS\system32\profsvc.dll [489984 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {0CEC0B91-4AE9-4E8A-ACB2-3B4C811F442C} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} C:\WINDOWS\System32\WaaSMedicSvc.dll [427520 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {1E334E22-CBC0-4D9C-B830-F1CC1BD6DCFD} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\WINDOWS\System32\WiFiTask.exe [133608 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4D36FC3F-B740-4739-9A9D-C43793F201B8} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900BE39D-6BE8-461A-BC4D-B0FA71F5ECB1} C:\WINDOWS\System32\wdi.dll [105472 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {75A35C91-670A-4071-BB93-066651438E14} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\WINDOWS\system32\wermgr.exe [243056 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {3F70B654-2C73-4A2C-BC19-8D8979651713} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\SystemInfo => %appdata%\\sysinfotool\\sitool.exe -st -tu 7 (Pas de fichier) Task: {86158314-60CF-4F3F-85B5-2399327EA496} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => C:\WINDOWS\system32\rundll32.exe [71680 2024-01-14] (Microsoft Windows -> Microsoft Corporation) -> bfe.dll,BfeOnServiceStartTypeChange Task: {3A92573F-61C5-4F73-AB0F-0A9B791545CB} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [71168 2019-12-06] (Microsoft Windows -> Microsoft Corporation) Task: {AA70A383-6F5D-470B-AA6B-B324620D9C75} - System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader => {B210D694-C8DF-490D-9576-9E20CDBC20BD} C:\Windows\System32\mscms.dll [708768 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4D334E70-6BB7-431B-8B43-D6BE38171749} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [256512 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {B93CA6CF-EB1B-44BA-BBF8-55A1DF3A9A0D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler => C:\Program Files\RUXIM\PLUGscheduler.exe [371672 2023-09-15] (Microsoft Windows -> Microsoft Corporation) Task: {8FF5DE67-C947-4488-997B-4184221E7D50} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start wuauserv Task: {D85F83F5-ED09-49BC-A506-32C837CA0904} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358B920-0AC7-461F-98F4-58E32CD89148} C:\WINDOWS\system32\wininet.dll [5039616 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {5E351EE7-F0D4-4F41-A05C-907EB1A33CE8} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync => {B0D2B535-12E1-439F-86B3-BADA289510F0} C:\Windows\System32\WiFiCloudStore.dll [283648 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {38E13CF7-9B81-4AAA-B379-2C5CB90A7142} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\WINDOWS\system32\WofTasks.dll [30720 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {DD9DBD08-CB56-40E3-B1AA-3E4CF0958EB6} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\WINDOWS\system32\WofTasks.dll [30720 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {F93E2A44-7E3E-49FE-9F66-12B1F4A037C0} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization => {97D47D56-3777-49FB-8E8F-90D7E30E1A1E} C:\Windows\System32\WorkFoldersShell.dll [230400 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {6440C5E0-A168-4A5F-B84E-F7C8C0A6E933} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => {63260BCE-A3FB-4A34-AA51-D4D8E877B62B} C:\Windows\System32\WorkFoldersShell.dll [230400 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {4BDB5047-01B7-48D5-AE7E-720EDA7D2049} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\WINDOWS\System32\dsregcmd.exe [468992 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {571A0A5E-B60E-4A25-BEFB-ABB3C6BB6B78} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync => {C662D912-E4D6-44A3-89A0-20550514951D} C:\Windows\System32\dsregtask.dll [52736 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {35D4C945-33D4-43B6-83D3-99034D411E25} - System32\Tasks\Microsoft\Windows\Workplace Join\Recovery-Check => C:\WINDOWS\System32\dsregcmd.exe [468992 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {DF6A7742-913B-4025-B27A-CE65BB343A0D} - System32\Tasks\Microsoft\Windows\WwanSvc\NotificationTask => C:\WINDOWS\System32\WiFiTask.exe [133608 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {6E0FD35C-8514-4094-9A30-BB613FC79FE9} - System32\Tasks\Microsoft\Windows\WwanSvc\OobeDiscovery => {C93CF9D5-031B-4AAA-AB0B-EF802347B381} C:\Windows\System32\MBMediaManager.dll [745984 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {41F5FC9D-EE65-4CA4-A908-91B3587198E0} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\WINDOWS\System32\XblGameSaveTask.exe [33792 2024-01-14] (Microsoft Windows -> Microsoft Corporation) Task: {198A5D65-6854-423E-B060-FB54910BAE02} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-06-22] (Microsoft Corporation -> Microsoft Corporation) Task: {0DEE367A-DFFC-43F5-94C1-572308EDD05F} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-06-22] (Microsoft Corporation -> Microsoft Corporation) Task: {5D703CB9-55A8-44B9-A7E5-372F3E527F2E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-12-22] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {E7E3A456-9146-4383-AF41-E35B6CF502FA} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [724384 2023-12-22] (Mozilla Corporation -> Mozilla Foundation) Task: {31DE09D1-5C7F-417F-B5AE-40BC592B36FF} - System32\Tasks\Opera GX scheduled Autoupdate 1659440474 => C:\Users\acns\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) Task: {BC17BC37-2902-4B0C-ADA5-7D5C14842C5C} - System32\Tasks\Opera scheduled Autoupdate 1705325824 => C:\Users\acns\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-11] (Opera Norway AS -> Opera Software) Task: {C029A8A0-6C41-4094-9F8F-99E3AE1EA882} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-12-19] (Overwolf Ltd -> Overwolf LTD) Task: {92652944-3064-4593-B560-F2E5606F14B0} - System32\Tasks\update-S-1-5-21-94650286-2829628890-3860724237-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {7D52D65E-F5F5-4B22-9E43-9B936AE948B2} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {EE804F38-80FF-4118-B90F-BC34ADEE0FBB} - System32\Tasks\VivaldiUpdateCheck-b3d132ba9b4b3e2e => C:\Users\acns\AppData\Local\Vivaldi\Application\update_notifier.exe [3704720 2024-01-10] (Vivaldi Technologies AS -> Vivaldi Technologies AS) Task: {32E721CC-E2C1-48F9-AC4E-3290D8CCEEAB} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-08-19] (Corel Corporation -> Corel Corporation) Task: {8E8EF411-D17D-40E9-860A-6B1CA734A038} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-08-19] (Corel Corporation -> Corel Corporation) Task: {079F687B-363F-4225-BE60-6CDCB58871B9} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-08-19] (Corel Corporation -> Corel Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-94650286-2829628890-3860724237-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones) Winsock: Catalog9 17 %windir%\system32\vsocklib.dll => Pas de fichier Winsock: Catalog9 18 %windir%\system32\vsocklib.dll => Pas de fichier Winsock: Catalog9-x64 17 %windir%\system32\vsocklib.dll => Pas de fichier Winsock: Catalog9-x64 18 %windir%\system32\vsocklib.dll => Pas de fichier Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{08f90449-b0a1-4898-8bb5-1d10135c90cb}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{edb36ab0-9b52-49ae-99a9-5125f404a3b5}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{f21e919b-0b4b-4e8f-890f-2316aac719f6}: [DhcpNameServer] 192.168.42.129 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge DefaultProfile: Profile 3 Edge Profile: C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-15] Edge Extension: (Avira Safe Shopping) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2024-01-15] Edge Extension: (Avira Password Manager) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-01-15] Edge Extension: (Google Docs hors connexion) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-15] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-01-15] Edge Extension: (Edge relevant text changes) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-15] Edge Profile: C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2024-01-13] Edge Profile: C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Profile 3 [2024-01-15] Edge Extension: (Avira Safe Shopping) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\caiblelclndcckfafdaggpephhgfpoip [2024-01-13] Edge Extension: (Avira Password Manager) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-01-13] Edge Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2024-01-15] Edge Extension: (Google Docs hors connexion) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-13] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-01-13] Edge Extension: (Edge relevant text changes) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-13] Edge Extension: (AdGuard AdBlocker) - C:\Users\acns\AppData\Local\Microsoft\Edge\User Data\Profile 3\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2024-01-15] Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip] Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: lrkuos4g.default FF DefaultProfile: 5xmcopep.default FF ProfilePath: C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lrkuos4g.default [2023-03-25] FF Homepage: Mozilla\Firefox\Profiles\lrkuos4g.default -> hxxps://mynewtab.co?pId=GR160102&searchEngine=bing&iDate=123121 FF NewTab: Mozilla\Firefox\Profiles\lrkuos4g.default -> hxxps://mynewtab.co?pId=GR160102&searchEngine=bing&iDate=123121 FF ProfilePath: C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287 [2024-01-15] FF DownloadDir: C:\Users\acns\OneDrive\Bureau FF Homepage: Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287 -> www.google.com FF Session Restore: Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287 -> est activé. FF Extension: (Dark Reader) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\addon@darkreader.org.xpi [2024-01-09] FF Extension: (Tampermonkey) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\firefox@tampermonkey.net.xpi [2024-01-09] FF Extension: (AdF.ly Skipper ★WORKING: 9/13/2017★) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\jid0-hyjN250ZzTOOX3evFwwAQBxE4ik@jetpack.xpi [2023-12-15] FF Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\jid1-TMndP6cdKgxLcQ@jetpack.xpi [2024-01-02] FF Extension: (Correcteur d’orthographe et de grammaire — LanguageTool) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\languagetool-webextension@languagetool.org.xpi [2023-12-15] FF Extension: (uBlock Origin) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\uBlock0@raymondhill.net.xpi [2024-01-09] FF Extension: (Magics Userscript+) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\uscriptplus@mol.com.xpi [2023-12-15] FF Extension: (Malwarebytes Browser Guard) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-12-22] FF Extension: (TwitchNoSub) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\{db7af3a9-f145-48d9-86b5-45c807773c75}.xpi [2023-12-24] FF Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\acns\AppData\Roaming\Mozilla\Firefox\Profiles\lhzg01e6.default-release-1682494868287\Extensions\{ddc62400-f22d-4dd3-8b4a-05837de53c2e}.xpi [2024-01-12] FF ProfilePath: C:\Users\acns\AppData\Roaming\librewolf\Profiles\5xmcopep.default [2023-12-18] FF ProfilePath: C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default [2024-01-10] FF Session Restore: librewolf\Profiles\ldxk0plu.default-default -> est activé. FF Extension: (Ghostery Bloqueur de Traqueurs et de Publicités - confidentialité) - C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default\Extensions\firefox@ghostery.com.xpi [2023-12-18] FF Extension: (AdF.ly Skipper ★WORKING: 9/13/2017★) - C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default\Extensions\jid0-hyjN250ZzTOOX3evFwwAQBxE4ik@jetpack.xpi [2023-12-18] FF Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2023-12-18] FF Extension: (TWP - Translate Web Pages) - C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2023-12-18] FF Extension: (Malwarebytes Browser Guard) - C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-12-19] FF Extension: (FormSwift - Edit PDf Button) - C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default\Extensions\{48f1873c-b966-4cdc-884b-742d1c655b38}.xpi [2023-12-18] FF Extension: (Country Home Winter by M♥Donna) - C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default\Extensions\{8c82f79b-6121-4f4a-a1f8-9c87086e880b}.xpi [2023-12-18] FF Extension: (TwitchNoSub) - C:\Users\acns\AppData\Roaming\librewolf\Profiles\ldxk0plu.default-default\Extensions\{db7af3a9-f145-48d9-86b5-45c807773c75}.xpi [2023-12-23] FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Pas de fichier] Chrome: ======= CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= OPR DefaultProfile: Default StartMenuInternet: (HKU\S-1-5-21-94650286-2829628890-3860724237-1001) Opera GXStable - "C:\Users\acns\AppData\Local\Programs\Opera GX\Launcher.exe" Vivaldi: ======= VIV DefaultProfile: Default VIV Profile: C:\Users\acns\AppData\Local\Vivaldi\User Data\Default [2024-01-14] VIV DownloadDir: C:\Users\acns\OneDrive\Bureau VIV Notifications: Default -> hxxps://www.youtube.com VIV DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}&{ddg:Referral} VIV DefaultSearchKeyword: Default -> d VIV DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list VIV Extension: (Avira Password Manager) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-11-25] VIV Extension: (Avira Safe Shopping) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2024-01-14] VIV Extension: (Foxit PDF Creator) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\cifnddnffldieaamihfkhkdgnbhfmaci [2023-07-22] VIV Extension: (Tampermonkey) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-12-15] VIV Extension: (360 Internet Protection) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2023-09-07] VIV Extension: (Malwarebytes Browser Guard) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-12-03] VIV Extension: (Save as PDF) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2023-07-13] VIV Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-11-13] VIV Extension: (AdFly Skipper) - C:\Users\acns\AppData\Local\Vivaldi\User Data\Default\Extensions\obnfifcganohemahpomajbhocfkdgmjb [2023-04-08] VIV Profile: C:\Users\acns\AppData\Local\Vivaldi\User Data\Guest Profile [2023-04-24] VIV Profile: C:\Users\acns\AppData\Local\Vivaldi\User Data\System Profile [2023-04-24] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 a.Installer; C:\ProgramData\TotalDefenseTng\StoredData\InstSrv\TotalDefense_638166354642736679\Prd.InstallSrv.exe [156192 2023-03-25] (Total Defense, LLC -> Total Defense) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11949672 2024-01-14] (Electronic Arts, Inc. -> Electronic Arts) R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [25224 2021-08-30] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] R2 ElevationService; C:\ProgramData\Wondershare\wsServices\ElevationService.exe [934648 2022-10-25] (Wondershare Technology Group Co.,Ltd -> ) S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2021-01-30] (Mixbyte Inc -> Freemake) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9405400 2023-12-17] (Malwarebytes Inc. -> Malwarebytes) R2 obupdate; C:\Program Files (x86)\OneBrowser\Update\OBUpdateService.exe [3306400 2023-11-26] (Chickadee Digital, LLC -> Chickadee Digital LLC) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-12-19] (Overwolf Ltd -> Overwolf LTD) R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [481416 2020-05-15] (Geek Software GmbH -> Geek Software GmbH) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2024-01-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Soda PDF Desktop 14; C:\Program Files\Soda PDF Desktop 14\activation-service.exe [2948112 2022-08-05] (Avanquest Software (7270356 Canada Inc) -> Avanquest Software) S3 Soda PDF Desktop 14 Creator; C:\Program Files\Soda PDF Desktop 14\creator-ws.exe [391184 2022-08-05] (Avanquest Software (7270356 Canada Inc) -> Avanquest Software) S3 Soda PDF Desktop 14 Update Service; C:\Program Files\Soda PDF Desktop 14\update-service.exe [294416 2022-08-05] (Avanquest Software (7270356 Canada Inc) -> Avanquest Software) S4 SU10Guard; C:\Windows\F1VPIJD6\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\NisSrv.exe [3174840 2024-01-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MsMpEng.exe [133592 2024-01-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 BraveVpnWireguardService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.116\BraveVpnWireguardService\brave_vpn_wireguard_service.exe" [X] S3 Browser; %SystemRoot%\System32\browser.dll [X] S4 QHActiveDefense; "C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe" [X] S4 QHProtected; "C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe" [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2022-03-02] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [120416 2023-03-13] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 disproc; C:\WINDOWS\System32\drivers\360disproc64.sys [92896 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-06-12] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-06-12] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222784 2024-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-05-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [202248 2023-08-14] (Microsoft Windows Hardware Compatibility Publisher -> Ray Hinchliffe) R2 sp_rsdrv2; C:\WINDOWS\System32\DRIVERS\stflt.sys [51496 2011-08-24] (Crawler, LLC -> Windows (R) Win 7 DDK provider) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [213088 2023-03-13] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr)) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2022-08-08] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [48824 2016-04-26] (Tunngle.net GmbH -> Tunngle.net GmbH) U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2024-01-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [594304 2024-01-14] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2024-01-14] (Microsoft Windows -> Microsoft Corporation) R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x64.sys [288768 2019-12-07] (Microsoft Windows -> Marvell) S3 360AvFlt; system32\DRIVERS\360AvFlt.sys [X] R3 360Box64; system32\DRIVERS\360Box64.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-01-15 14:37 - 2024-01-15 14:37 - 000004224 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1705325824 2024-01-15 14:37 - 2024-01-15 14:37 - 000001412 _____ C:\Users\acns\OneDrive\Bureau\Navigateur Opera.lnk 2024-01-15 14:37 - 2024-01-15 14:37 - 000001396 _____ C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2024-01-15 14:20 - 2024-01-15 14:21 - 002734880 _____ (Opera Software) C:\Users\acns\OneDrive\Bureau\OperaSetup.exe 2024-01-15 14:07 - 2024-01-15 14:07 - 000000000 _____ C:\Users\acns\OneDrive\Bureau\Disney-Pixar Ratatouille (Europe).7z 2024-01-15 14:06 - 2024-01-15 14:20 - 002357976 _____ C:\Users\acns\OneDrive\Bureau\Disney-Pixar Ratatouille (Europe).D7yRdxxJ.7z.part 2024-01-15 12:43 - 2024-01-15 12:43 - 000000000 ____H C:\ProgramData\cm-lock 2024-01-15 07:13 - 2024-01-15 07:13 - 000000000 ____D C:\WINDOWS\InboxApps 2024-01-14 21:33 - 2024-01-14 21:33 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-01-14 20:39 - 2024-01-14 20:39 - 000000000 ____D C:\ProgramData\PLUG 2024-01-14 20:34 - 2024-01-14 20:34 - 000000000 ___HD C:\$WinREAgent 2024-01-14 16:40 - 2024-01-14 16:40 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2024-01-14 16:39 - 2024-01-14 16:39 - 000000000 ____D C:\Program Files\RUXIM 2024-01-14 13:39 - 2024-01-14 13:39 - 000000608 __RSH C:\ProgramData\ntuser.pol 2024-01-14 11:05 - 2024-01-15 15:27 - 000000000 ____D C:\ProgramData\Outbyte 2024-01-14 11:01 - 2024-01-15 15:27 - 000000000 ____D C:\Program Files (x86)\Outbyte 2024-01-14 09:36 - 2024-01-14 09:37 - 000000000 ____D C:\WINDOWS\system32\Catroot2.bak 2024-01-13 21:05 - 2024-01-13 21:05 - 000000247 _____ C:\Users\acns\OneDrive\Bureau\Téléchargement terminé - CoolROM.com.url 2024-01-13 09:06 - 2024-01-13 09:06 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2024-01-13 09:00 - 2024-01-13 09:00 - 000000020 ___SH C:\Users\acns\ntuser.ini 2024-01-13 08:55 - 2024-01-15 12:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-01-13 08:55 - 2024-01-13 08:56 - 000003330 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task 2024-01-13 08:55 - 2024-01-13 08:56 - 000003046 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-94650286-2829628890-3860724237-1001 2024-01-13 08:55 - 2024-01-13 08:56 - 000002972 _____ C:\WINDOWS\system32\Tasks\VivaldiUpdateCheck-b3d132ba9b4b3e2e 2024-01-13 08:55 - 2024-01-13 08:56 - 000002798 _____ C:\WINDOWS\system32\Tasks\update-sys 2024-01-13 08:55 - 2024-01-13 08:56 - 000002752 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2 2024-01-13 08:55 - 2024-01-13 08:56 - 000002750 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1 2024-01-13 08:55 - 2024-01-13 08:56 - 000002730 _____ C:\WINDOWS\system32\Tasks\copy_dlc_unlocker 2024-01-13 08:55 - 2024-01-13 08:56 - 000002646 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask 2024-01-13 08:55 - 2024-01-13 08:55 - 000003692 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1659440474 2024-01-13 08:55 - 2024-01-13 08:55 - 000003616 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-01-13 08:55 - 2024-01-13 08:55 - 000003392 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-01-13 08:55 - 2024-01-13 08:55 - 000002750 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\WiseCleaner 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\WindowsDefenderServices 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\WaterfoxLimited 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\SettingSysHost 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\MicrosoftUpdateServices 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\MEGA 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\LULU Software 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avanquest Software 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AntiMalwareSericeExecutable 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Aiseesoft Studio 2024-01-13 08:55 - 2024-01-13 08:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2024-01-13 08:54 - 2024-01-13 08:55 - 000011433 _____ C:\WINDOWS\diagwrn.xml 2024-01-13 08:54 - 2024-01-13 08:55 - 000011433 _____ C:\WINDOWS\diagerr.xml 2024-01-13 08:42 - 2024-01-13 08:42 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network 2024-01-13 08:39 - 2024-01-15 12:51 - 001770970 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-01-13 08:38 - 2024-01-13 08:38 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\SystemCertificates 2024-01-13 08:38 - 2024-01-13 08:38 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Network 2024-01-13 08:38 - 2024-01-13 08:38 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Crypto 2024-01-13 08:36 - 2024-01-13 08:36 - 000000000 ____D C:\Users\Stephanie\AppData\Roaming\Microsoft\SystemCertificates 2024-01-13 08:36 - 2024-01-13 08:36 - 000000000 ____D C:\Users\Stephanie\AppData\Roaming\Microsoft\Network 2024-01-13 08:27 - 2024-01-13 10:18 - 000000000 ____D C:\Users\acns 2024-01-13 08:27 - 2024-01-13 08:42 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Windows 2024-01-13 08:27 - 2024-01-13 08:36 - 000000000 ____D C:\Users\Stephanie\AppData\Roaming\Microsoft\Windows 2024-01-13 08:27 - 2024-01-13 08:36 - 000000000 ____D C:\Users\Stephanie 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\Stephanie\Voisinage réseau 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\Stephanie\Voisinage d'impression 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\Stephanie\Modèles 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\Stephanie\Mes documents 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\Stephanie\Menu Démarrer 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\Stephanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\Stephanie\AppData\Local\Historique 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\acns\Voisinage réseau 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\acns\Voisinage d'impression 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\acns\Modèles 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\acns\Mes documents 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\acns\Menu Démarrer 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 _SHDL C:\Users\acns\AppData\Local\Historique 2024-01-13 08:27 - 2024-01-13 08:27 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\CLR Security Config 2024-01-13 08:21 - 2024-01-15 13:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-01-13 08:21 - 2024-01-15 08:03 - 000627472 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-01-13 08:20 - 2024-01-13 08:58 - 000000000 ____D C:\Windows.old 2024-01-13 08:15 - 2024-01-13 08:20 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2024-01-13 08:10 - 2024-01-13 08:15 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2024-01-13 08:10 - 2024-01-13 08:10 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2024-01-13 08:02 - 2024-01-13 08:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\mde 2024-01-13 07:32 - 2024-01-13 08:16 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2024-01-13 07:32 - 2024-01-13 07:32 - 000000000 ____D C:\Program Files\Reference Assemblies 2024-01-13 07:32 - 2024-01-13 07:32 - 000000000 ____D C:\Program Files\MSBuild 2024-01-13 07:32 - 2024-01-13 07:32 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2024-01-13 07:32 - 2024-01-13 07:32 - 000000000 ____D C:\Program Files (x86)\MSBuild 2024-01-13 02:33 - 2024-01-13 09:00 - 000000000 ___DC C:\WINDOWS\Panther 2024-01-13 02:26 - 2024-01-13 02:33 - 000000036 _____ C:\WINDOWS\progress.ini 2024-01-12 10:04 - 2024-01-13 08:57 - 000000000 ___HD C:\$GetCurrent 2024-01-12 10:03 - 2024-01-13 02:26 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant 2024-01-11 19:45 - 2024-01-11 19:46 - 000173550 _____ C:\WINDOWS\ntbtlog.txt 2024-01-11 18:42 - 2024-01-11 18:42 - 614784016 _____ C:\WINDOWS\MEMORY.DMP 2024-01-11 18:28 - 2024-01-13 08:20 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2024-01-11 17:13 - 2024-01-15 15:59 - 000000000 ____D C:\FRST 2024-01-11 15:29 - 2024-01-11 15:29 - 000000000 ____D C:\Users\acns\AppData\Local\PeerDistRepub 2024-01-11 11:16 - 2024-01-11 11:16 - 000000207 _____ C:\WINDOWS\tweaking.com-regbackup-DESKTOP-GNCGR2A-Windows-10-Pro-(64-bit).dat 2024-01-11 11:16 - 2024-01-11 11:16 - 000000000 ____D C:\RegBackup 2024-01-11 11:14 - 2024-01-11 11:14 - 000000000 ____D C:\Program Files (x86)\Tweaking.com 2024-01-11 11:13 - 2024-01-11 11:15 - 000388927 _____ C:\WINDOWS\Tweaking.com - Windows Repair Setup Log.txt 2024-01-11 09:56 - 2024-01-11 10:07 - 000000000 ____D C:\ESD 2024-01-11 09:54 - 2024-01-12 10:27 - 000000000 ___HD C:\$Windows.~WS 2024-01-10 20:11 - 2024-01-10 20:12 - 000000000 ____D C:\ProgramData\KMSAuto 2024-01-10 19:57 - 2014-05-25 01:36 - 000015360 _____ C:\WINDOWS\system32\SppExtComObjHook.dll 2024-01-10 18:50 - 2024-01-14 13:52 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2024-01-10 17:10 - 2024-01-13 14:45 - 000000000 ____D C:\WINDOWS\CSC 2024-01-10 12:56 - 2024-01-14 14:21 - 000000000 ____D C:\Users\acns\OneDrive\Bureau\probleme windows updates et autres 2024-01-10 11:53 - 2024-01-15 12:46 - 000000000 ____D C:\Users\acns\OneDrive\Bureau\Raccourci 2024-01-10 09:43 - 2024-01-10 09:43 - 000000858 _____ C:\Users\acns\Sims 4 Xxxxxx.lnk 2024-01-09 22:35 - 2024-01-11 13:16 - 000000000 ____D C:\Users\acns\OneDrive\Bureau\SITE SIMS 2024-01-09 20:54 - 2024-01-13 08:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2024-01-09 20:54 - 2024-01-09 20:54 - 000000000 ____D C:\Program Files\Speccy 2024-01-09 20:35 - 2024-01-09 20:35 - 000000000 ____D C:\ProgramData\SoftwareData 2024-01-09 20:30 - 2024-01-13 08:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius 2024-01-09 20:30 - 2024-01-09 20:30 - 000000000 ____D C:\ProgramData\Driver-Soft 2024-01-09 20:30 - 2024-01-09 20:30 - 000000000 ____D C:\Program Files (x86)\Driver-Soft 2024-01-08 20:27 - 2024-01-08 20:27 - 000000000 ____D C:\Users\acns\AppData\Local\Intel 2024-01-04 09:51 - 2024-01-04 10:07 - 000000000 ____D C:\Users\acns\AppData\Roaming\CurseForge 2024-01-04 09:50 - 2024-01-04 09:50 - 000002424 _____ C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CurseForge.lnk 2024-01-04 09:50 - 2024-01-04 09:50 - 000002422 _____ C:\Users\acns\OneDrive\Bureau\CurseForge.lnk 2024-01-04 09:50 - 2024-01-04 09:50 - 000000000 ____D C:\Users\acns\AppData\Roaming\ow-electron 2024-01-04 09:50 - 2024-01-04 09:50 - 000000000 ____D C:\Users\acns\AppData\Local\curseforge-updater 2023-12-31 13:33 - 2024-01-08 20:25 - 000000000 ____D C:\Users\acns\OneDrive\Bureau\Jeux 3ds a retelecharger 2023-12-30 12:21 - 2023-12-30 12:21 - 000000029 _____ C:\Users\acns\requied.txt 2023-12-26 09:23 - 2023-12-26 09:23 - 000000000 ____D C:\Users\acns\AppData\Local\Rufus 2023-12-22 18:37 - 2023-12-22 18:37 - 000000000 ____D C:\Users\acns\AppData\Local\Apple 2023-12-18 17:52 - 2023-12-18 17:52 - 000000000 ____D C:\Users\acns\AppData\Roaming\librewolf 2023-12-18 17:52 - 2023-12-18 17:52 - 000000000 ____D C:\Users\acns\AppData\Local\librewolf 2023-12-18 17:51 - 2024-01-13 08:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreWolf 2023-12-18 17:40 - 2023-12-19 10:34 - 000000000 ____D C:\Program Files\LibreWolf 2023-12-18 13:10 - 2024-01-13 08:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows 2023-12-18 12:59 - 2023-12-18 13:20 - 000000000 ____D C:\Users\acns\AppData\Local\URBrowser 2023-12-18 12:59 - 2023-12-18 12:59 - 000000000 ____D C:\Program Files\TAP-Windows 2023-12-17 13:38 - 2023-12-17 13:38 - 000000032 _____ C:\Users\acns\mot de passe animal gamecube.txt 2023-12-16 11:10 - 2023-12-16 11:10 - 000000000 ____D C:\ProgramData\BraveSoftware 2023-12-16 11:08 - 2023-12-16 11:08 - 000000000 ____D C:\Program Files\Crashpad 2023-12-16 10:51 - 2024-01-13 13:02 - 000000000 ____D C:\Program Files (x86)\BraveSoftware ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-01-15 16:06 - 2019-07-06 15:39 - 000000000 ____D C:\ProgramData\Packages 2024-01-15 16:04 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-01-15 16:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-01-15 16:02 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-01-15 15:52 - 2023-03-01 13:48 - 000000000 ____D C:\ProgramData\EA Desktop 2024-01-15 15:52 - 2022-02-15 08:13 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-01-15 15:42 - 2020-03-11 15:26 - 000000000 ____D C:\ProgramData\boost_interprocess 2024-01-15 15:39 - 2023-05-18 03:47 - 000000000 ____D C:\Users\acns\AppData\Local\Malwarebytes 2024-01-15 14:37 - 2019-07-06 21:07 - 000000000 ____D C:\Users\acns\AppData\Local\Opera Software 2024-01-15 14:35 - 2023-05-05 06:43 - 000000000 __SHD C:\$360Section 2024-01-15 14:34 - 2023-05-10 10:11 - 000000000 ____D C:\Users\acns\AppData\Roaming\360DesktopLite 2024-01-15 14:34 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2024-01-15 14:21 - 2019-07-06 19:42 - 000000000 ____D C:\Users\acns\AppData\Roaming\Opera Software 2024-01-15 13:35 - 2019-07-06 15:20 - 000000000 ____D C:\Users\acns\AppData\Local\Packages 2024-01-15 12:52 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2024-01-15 12:51 - 2019-12-07 15:50 - 000791718 _____ C:\WINDOWS\system32\perfh00C.dat 2024-01-15 12:51 - 2019-12-07 15:50 - 000149884 _____ C:\WINDOWS\system32\perfc00C.dat 2024-01-15 12:43 - 2020-06-10 12:46 - 000008192 ___SH C:\DumpStack.log.tmp 2024-01-15 08:41 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-01-15 08:35 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-01-15 08:13 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-01-15 07:15 - 2019-12-07 15:50 - 000000000 ____D C:\WINDOWS\SysWOW64\fr 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2024-01-15 07:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-01-15 07:14 - 2019-12-07 15:53 - 000000000 ___SD C:\WINDOWS\system32\AppV 2024-01-15 07:14 - 2019-12-07 15:50 - 000000000 ____D C:\WINDOWS\system32\fr 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-01-15 07:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2024-01-15 07:13 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-01-15 07:13 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-01-15 07:13 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2024-01-15 07:13 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2024-01-15 07:13 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2024-01-14 22:05 - 2019-12-07 15:53 - 000023552 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll 2024-01-14 22:05 - 2019-12-07 15:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2024-01-14 22:05 - 2019-12-07 15:53 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2024-01-14 22:05 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2024-01-14 22:05 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2024-01-14 20:37 - 2019-11-29 11:20 - 000000000 ____D C:\Users\acns\AppData\Local\D3DSCache 2024-01-14 18:07 - 2019-07-07 15:48 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-01-14 18:01 - 2019-07-06 21:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-01-14 17:45 - 2019-07-07 15:48 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-01-14 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2024-01-14 16:48 - 2019-12-07 10:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2024-01-14 14:12 - 2020-06-07 23:07 - 000000000 ____D C:\WINDOWS\pss 2024-01-14 12:15 - 2023-10-26 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outbyte 2024-01-14 09:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2024-01-14 09:11 - 2021-02-15 14:33 - 000000000 ____D C:\WINDOWS\F1VPIJD6 2024-01-13 21:47 - 2023-03-01 21:47 - 000000527 _____ C:\Users\acns\.vivaldi_reporting_data 2024-01-13 20:56 - 2019-07-06 19:52 - 000000000 ____D C:\Users\acns\AppData\Local\JDownloader v2.0 2024-01-13 20:37 - 2019-08-07 12:30 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\HTML Help 2024-01-13 20:24 - 2020-03-05 17:22 - 000000424 _____ C:\Users\acns\OneDrive\Bureau\Ce PC - Raccourci.lnk 2024-01-13 13:30 - 2022-09-08 04:12 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-01-13 13:30 - 2019-08-14 12:25 - 000000000 ____D C:\Users\acns\AppData\Local\Google 2024-01-13 13:30 - 2019-08-14 12:25 - 000000000 ____D C:\Program Files (x86)\Google 2024-01-13 12:34 - 2019-07-06 15:20 - 000000000 __RHD C:\Users\Public\AccountPictures 2024-01-13 12:34 - 2019-07-06 15:20 - 000000000 ____D C:\Users\acns\AppData\Local\ConnectedDevicesPlatform 2024-01-13 12:23 - 2019-07-27 16:45 - 000000000 ____D C:\Users\acns\AppData\Local\BraveSoftware 2024-01-13 09:48 - 2023-05-08 13:04 - 000000000 ____D C:\Users\acns\AppData\Local\ElevatedDiagnostics 2024-01-13 09:46 - 2023-08-18 07:32 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2024-01-13 09:01 - 2019-07-06 15:20 - 000000000 ___RD C:\Users\acns\3D Objects 2024-01-13 09:00 - 2020-06-22 08:10 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-01-13 08:57 - 2019-12-07 15:51 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2024-01-13 08:56 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT 2024-01-13 08:54 - 2019-07-06 15:24 - 000000000 ___RD C:\Users\acns\OneDrive 2024-01-13 08:43 - 2019-12-07 10:14 - 000000000 __RSD C:\WINDOWS\Media 2024-01-13 08:31 - 2023-11-26 14:37 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory 2024-01-13 08:31 - 2021-11-06 20:01 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iSunshare RAR Password Genius 2024-01-13 08:31 - 2021-06-20 08:16 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QTTabBar 2024-01-13 08:31 - 2019-07-06 16:41 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2024-01-13 08:29 - 2019-12-07 10:14 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows 2024-01-13 08:28 - 2023-05-08 10:23 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DiskInternals 2024-01-13 08:28 - 2021-06-03 10:50 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MiPony 2024-01-13 08:27 - 2020-03-27 09:06 - 000000000 ____D C:\Users\Stephanie\AppData\Local\Packages 2024-01-13 08:25 - 2023-10-26 08:13 - 000000000 ____D C:\WINDOWS\system32\DAX3 2024-01-13 08:25 - 2023-10-26 08:13 - 000000000 ____D C:\ProgramData\Audyssey Labs 2024-01-13 08:25 - 2023-10-20 08:39 - 000000000 ____D C:\WINDOWS\system32\DAX2 2024-01-13 08:20 - 2023-05-08 11:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recovery Toolbox for RAR 2024-01-13 08:20 - 2023-05-05 06:51 - 000000000 ____D C:\WINDOWS\system32\CleanLog 2024-01-13 08:20 - 2023-04-24 09:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2024-01-13 08:20 - 2023-03-01 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA 2024-01-13 08:20 - 2023-02-26 08:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sims 4 Studio 2024-01-13 08:20 - 2022-11-06 13:56 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter 2024-01-13 08:20 - 2022-08-02 11:47 - 000000000 ____D C:\WINDOWS\system32\elambkup 2024-01-13 08:20 - 2022-08-01 08:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Updates Downloader 2024-01-13 08:20 - 2022-04-22 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2024-01-13 08:20 - 2021-01-29 09:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip 2024-01-13 08:20 - 2021-01-25 10:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gihosoft TubeGet 2024-01-13 08:20 - 2020-07-03 16:54 - 000000000 ____D C:\WINDOWS\system32\GPUCache 2024-01-13 08:20 - 2020-06-07 21:48 - 000000000 ____D C:\WINDOWS\system32\%LOCALAPPDATA% 2024-01-13 08:20 - 2020-06-03 23:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 2024-01-13 08:20 - 2020-03-05 13:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management 2024-01-13 08:20 - 2020-02-05 16:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les Sims 4 2024-01-13 08:20 - 2019-12-30 17:26 - 000000000 ____D C:\WINDOWS\SysWOW64\luminati 2024-01-13 08:20 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2024-01-13 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-01-13 08:20 - 2019-12-05 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sims 4 Package Editor 2024-01-13 08:20 - 2019-08-17 03:06 - 000000000 ____D C:\Program Files\UNP 2024-01-13 08:20 - 2019-07-07 05:56 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.6 2024-01-13 08:20 - 2019-07-06 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2024-01-13 08:20 - 2019-07-06 15:10 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2024-01-13 08:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2024-01-13 08:19 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries 2024-01-13 08:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Resources 2024-01-13 08:15 - 2023-08-18 07:32 - 000000000 ____D C:\Program Files\Realtek 2024-01-13 08:15 - 2022-08-22 18:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2024-01-13 08:15 - 2020-03-05 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe 2024-01-13 08:15 - 2019-08-13 22:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeameeVo 2024-01-13 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps 2024-01-13 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2024-01-13 07:35 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup 2024-01-13 07:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2024-01-13 07:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI 2024-01-12 18:02 - 2023-03-01 21:46 - 000002378 _____ C:\Users\acns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk 2024-01-12 18:02 - 2023-03-01 21:45 - 000000000 ____D C:\Users\acns\AppData\Local\Vivaldi 2024-01-12 10:54 - 2019-08-08 11:37 - 000000000 ____D C:\Users\acns\Downloads\AUTRES 2024-01-11 21:41 - 2022-12-22 10:43 - 000000000 ____D C:\Program Files (x86)\Overwolf 2024-01-11 20:30 - 2023-05-09 15:15 - 000239576 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2024-01-11 18:46 - 2023-03-01 14:19 - 000000000 ____D C:\Users\acns\AppData\Local\anadius 2024-01-11 18:42 - 2023-05-10 09:57 - 000000418 _____ C:\WINDOWS\Tasks\update-sys.job 2024-01-11 18:42 - 2023-05-10 09:57 - 000000418 _____ C:\WINDOWS\Tasks\update-S-1-5-21-94650286-2829628890-3860724237-1001.job 2024-01-11 18:42 - 2021-02-15 16:12 - 000000000 ____D C:\Program Files\Common Files\AVG 2024-01-11 18:18 - 2021-02-15 16:40 - 000000000 ____D C:\Users\acns\AppData\Roaming\AVG 2024-01-11 18:18 - 2021-02-15 15:42 - 000000000 ____D C:\Program Files\AVG 2024-01-11 18:18 - 2021-02-15 15:39 - 000000000 ____D C:\ProgramData\AVG 2024-01-10 20:12 - 2019-07-06 16:42 - 000000000 ____D C:\Users\acns\AppData\Local\MSfree Inc 2024-01-10 18:14 - 2023-05-02 21:03 - 000000000 ____D C:\Program Files (x86)\360 2024-01-10 16:58 - 2021-06-03 10:50 - 000000000 ____D C:\Users\acns\AppData\Roaming\MiPony 2024-01-10 11:07 - 2023-04-23 10:20 - 000000000 ____D C:\Users\acns\AppData\Roaming\Tenorshare 2024-01-10 11:02 - 2023-12-14 17:21 - 000000000 ____D C:\Users\acns\AppData\Roaming\anadius 2024-01-10 11:02 - 2023-07-19 22:48 - 000000000 ____D C:\Users\acns\OneDrive\Bureau\jeux sims 4 2024-01-10 10:01 - 2022-12-22 10:20 - 000000000 ____D C:\Users\acns\AppData\Local\Overwolf 2024-01-10 09:20 - 2020-06-02 16:06 - 000000000 ____D C:\Users\acns\AppData\Local\CrashDumps 2024-01-09 21:53 - 2023-10-26 07:53 - 000000000 ____D C:\ProgramData\BrightData 2024-01-09 21:53 - 2019-12-30 17:24 - 000000000 ____D C:\Users\acns\AppData\Local\luminati 2024-01-09 21:42 - 2022-08-01 07:35 - 000000000 ____D C:\Users\acns\AppData\Roaming\Easeware 2024-01-09 21:15 - 2023-10-26 07:53 - 000000000 ____D C:\Users\acns\AppData\Roaming\Unknown Organization 2024-01-09 20:37 - 2019-07-27 12:30 - 000000000 ____D C:\ProgramData\Package Cache 2024-01-09 19:04 - 2023-08-18 07:06 - 000000000 ____D C:\Program Files (x86)\Intel 2024-01-09 14:46 - 2021-01-30 15:51 - 000000000 ____D C:\Users\acns\AppData\Roaming\dvdcss 2024-01-09 14:46 - 2019-08-02 13:39 - 000000000 ____D C:\Users\acns\AppData\Roaming\Microsoft\MMC 2024-01-09 14:45 - 2020-06-02 15:35 - 000000000 ____D C:\Users\acns\AppData\Local\Kjs.AppLife.Update 2024-01-09 14:44 - 2023-12-15 16:03 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-01-09 14:44 - 2020-09-25 11:27 - 000000000 ____D C:\ProgramData\AomeiBR 2024-01-09 14:44 - 2020-01-25 22:12 - 000000000 ____D C:\Users\acns\AppData\Local\BitTorrentHelper 2024-01-04 10:08 - 2020-10-10 07:21 - 000006545 _____ C:\WINDOWS\wininit.ini 2023-12-31 13:30 - 2023-12-15 16:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-12-22 21:22 - 2019-07-07 07:02 - 000000000 ____D C:\Users\acns\AppData\LocalLow\Mozilla 2023-12-22 17:24 - 2023-12-15 16:03 - 000000965 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-12-21 05:38 - 2023-05-02 21:06 - 000553712 _____ (360.cn) C:\WINDOWS\system32\Drivers\360FsFlt.sys.325 2023-12-21 05:38 - 2023-05-02 21:06 - 000227680 _____ (360.cn) C:\WINDOWS\system32\Drivers\BAPIDRV64.SYS.upd 2023-12-18 16:00 - 2023-05-10 10:31 - 000000000 ____D C:\Users\acns\AppData\Roaming\kingsoft ==================== Fichiers à la racine de certains dossiers ======== 2022-07-29 20:09 - 2022-08-02 12:33 - 000000004 _____ () C:\ProgramData\rc.dat 2022-07-29 20:08 - 2022-07-29 20:08 - 000000008 _____ () C:\ProgramData\ts.dat 2021-10-11 14:11 - 2022-07-06 07:05 - 000000000 ____D () C:\ProgramData\WZUpdateNotifier.exe 2021-01-31 10:44 - 2021-01-03 15:54 - 031694627 _____ (lrepacks.ru ) C:\Program Files (x86)\Setup.exe 2019-12-07 10:08 - 2019-12-07 10:08 - 765460480 _____ (Panasonic Corporation) C:\Users\acns\AppData\Roaming\fgricau 2023-06-13 20:48 - 2023-06-13 20:48 - 000099678 _____ () C:\Users\acns\AppData\Roaming\logo_bigfarm_desktop.ico 2023-06-13 20:48 - 2023-06-13 20:48 - 000370070 _____ () C:\Users\acns\AppData\Roaming\logo_empire_desktop.ico 2019-12-07 10:08 - 2019-12-07 10:08 - 000441139 _____ () C:\Users\acns\AppData\Roaming\sfubuab 2022-07-31 13:24 - 2022-07-31 13:24 - 000000010 _____ () C:\Users\acns\AppData\Roaming\temp0923 2019-11-28 20:39 - 2019-11-28 20:39 - 000069888 _____ () C:\Users\acns\AppData\Local\Config.xml 2021-02-15 15:27 - 2021-02-15 15:27 - 000016438 _____ () C:\Users\acns\AppData\Local\partner.bmp 2023-04-13 16:51 - 2023-04-13 17:04 - 079173136 _____ (Sony) C:\Users\acns\AppData\Local\pcc.exe 2022-07-31 12:55 - 2023-07-01 13:20 - 000007605 _____ () C:\Users\acns\AppData\Local\resmon.resmoncfg 2023-05-10 09:57 - 2023-05-10 09:57 - 000000003 _____ () C:\Users\acns\AppData\Local\updater.log 2023-05-10 09:57 - 2023-07-26 09:51 - 000000059 _____ () C:\Users\acns\AppData\Local\UserProducts.xml ==================== FLock ============================== 2021-02-18 17:15 C:\Users\acns\AppData\Roaming\Mxmetamux 2023-03-25 11:40 C:\ProgramData\Dllhost ==================== FCheck ================================ (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) FCheck: C:\Program Files\Google\Libs\WR64.sys [2022-08-01] <==== ATTENTION ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {57cb3c7c-c074-11e9-9f08-6c626d580826} displayorder {current} toolsdisplayorder {memdiag} timeout 0 Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {e6d053a5-c074-11e9-96e8-ad83fa277f17} displaymessageoverride PushButtonReset recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {57cb3c7c-c074-11e9-9f08-6c626d580826} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {e6d053a5-c074-11e9-96e8-ad83fa277f17} device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{e6d053a6-c074-11e9-96e8-ad83fa277f17} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{e6d053a6-c074-11e9-96e8-ad83fa277f17} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {ea343cd0-37b7-4c29-a725-7d103ce9739b} device ramdisk=[C:]\Aomei\AomeiBoot.wim,{682e7b7a-ebcb-4244-b664-8bfadc39a014} description Aomei PE osdevice ramdisk=[C:]\Aomei\AomeiBoot.wim,{682e7b7a-ebcb-4244-b664-8bfadc39a014} systemroot \Windows detecthal Yes winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {57cb3c7c-c074-11e9-9f08-6c626d580826} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {e6d053a5-c074-11e9-96e8-ad83fa277f17} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \boot\memtest.exe description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {682e7b7a-ebcb-4244-b664-8bfadc39a014} ramdisksdidevice partition=C: ramdisksdipath \Aomei\AomeiBoot.sdi Options de périphérique ----------------------- identificateur {e6d053a6-c074-11e9-96e8-ad83fa277f17} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume1 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================