Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22.05.2024 01
Exécuté par anton (administrateur) sur LAURENCEAU (Acer Aspire A315-24P) (27-05-2024 14:21:42)
Exécuté depuis C:\Users\anton\OneDrive\Bureau\FRST64.exe
Profils chargés: anton
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3447 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\CamUsage.exe
(C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\MicUsage.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.67\msedgewebview2.exe <6>
(DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atieclxx.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\anton\AppData\Roaming\Spotify\Spotify.exe <6>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <33>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atiesrxx.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe
(services.exe ->) (pdfforge GmbH -> Avanquest pdfforge GmbH) C:\Program Files\PDF Architect 9\activation-service.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3>
(services.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe
(sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\anton\AppData\Local\Microsoft\OneDrive\24.091.0505.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\anton\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.67\Installer\setup.exe [7182888 2024-05-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [Spotify] => C:\Users\anton\AppData\Roaming\Spotify\Spotify.exe [34615112 2024-05-27] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [MicrosoftEdgeAutoLaunch_27C358CB5E42F7E1A720AA41BA227239] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4136912 2024-05-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45430176 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\PDF Architect 9 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.23.0.2.dll [974120 2024-03-20] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [196096 2023-08-26] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.77\Installer\chrmstp.exe [2024-05-24] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {D823FD2A-F610-457E-9F1E-B7BD4A13E2C5} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971792 2022-05-20] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto
Task: {6B00A040-6A9F-4735-A73C-ED70D566C6D4} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41616 2022-05-20] (Acer Incorporated -> )
Task: {728EA85C-6C05-4BEF-BBA2-6788DBA0C96B} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836496 2022-05-20] (Acer Incorporated -> )
Task: {C4475ED5-DFB3-4190-A1A4-ECAA6C43F84E} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {6DABBFFA-DF18-41B5-A296-30FB81C22898} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {6E170B2D-5473-4F72-AD91-EFD84FBAC2B0} - System32\Tasks\App Explorer => C:\Users\anton\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {01481AD9-50A4-4363-9306-50611F23EFF5} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification => C:\Program Files\PDF Architect 9\architect-launcher.exe [2313152 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {5092ED20-DD11-408E-94AE-14045CB98662} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification Logon => C:\Program Files\PDF Architect 9\architect-launcher.exe [2313152 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {38A4EE32-7B85-4A4F-9153-49BDCE7C96C5} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [12050872 2024-03-20] (pdfforge GmbH -> )
Task: {AEEA5A60-1723-41AE-A3C0-D203E7A1633B} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3503040 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {55D65461-5D68-4ED3-8ECB-E9FE08786D90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7B6AE709-9C7A-4162-9CFE-2E5918E26A68} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "3e3b2913-f675-4f95-8f3d-5ffb845a26bc" --version "6.24.11060" --silent
Task: {B806FF27-9A5D-4AF9-999A-77BD6D62F35B} - System32\Tasks\CCleanerSkipUAC - anton => C:\Program Files\CCleaner\CCleaner.exe [39169952 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {313A8A70-B970-49B3-94D9-43C79C215F47} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{0931950A-6DFD-43DA-8FE8-973D9D882B32} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
Task: {6F59BFC7-790E-44FD-9652-7D70DB24D430} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C04EE50-5FE6-4857-9A49-50C1692EE93D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D56CBC64-CAE0-43EB-87FF-94775DA9EB35} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {2DFB42F5-7C70-4644-BDB6-865549CCCBA1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {546F6663-BB16-4469-811B-9C22D628A1AD} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168928 2024-05-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {819CA237-191B-4864-BAC1-813159AE9150} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {1070466D-697D-46C0-9DC3-76BF4A0F0B86} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2FCA2F96-7DCF-44AF-A81A-AEEF1C2CA930} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B3CB51D-5049-412E-8227-14250D0FA9BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4071AB47-530C-4C46-A7EC-BB6169843428} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8E7CFCED-AE04-406A-988C-18CE5F15FF1F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {73D868A8-0D21-467F-9012-E404994A14D4} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-428499685-2534697496-1257434464-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {D18F665F-1128-4751-8C97-97395D57B208} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {5FA20006-6DD4-4F89-9BC5-463AAF4CB204} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {8ABF0210-BC5F-4798-A823-EAAFC256B17B} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-428499685-2534697496-1257434464-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {9D9FE47E-0A84-4735-BA23-354A9B6AD8EF} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [12050872 2024-03-20] (pdfforge GmbH -> )
Task: {065EDF48-41F8-4DD6-B597-677665CC24D7} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3503040 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {7300A9A3-183D-4658-A386-B58DE5DF50C4} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [450536 2022-05-24] (Acer Incorporated -> Acer Incorporated)
Task: {A6FEE66A-29C2-4B36-A822-377B2F7A65B3} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-03-01] (Acer Incorporated -> Acer Incorporated)
Task: {F65F2E58-AF23-4793-AB30-E13E252BACE6} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft)
Task: {D2AD568C-BCF9-438D-A447-7D0819D424E8} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [342672 2022-06-01] (Acer Incorporated -> Acer Incorporated)
Task: {F4F20379-70D0-4290-AEFE-6AE25DB5B483} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2022-05-17] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{27b9c369-9f58-4585-8860-765740fb280b}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{27b9c369-9f58-4585-8860-765740fb280b}: [DhcpDomain] lan
Edge:
=======
Edge Profile: C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-27]
Edge Extension: (Google Docs hors connexion) - C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-26]
Edge Extension: (Edge relevant text changes) - C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
FireFox:
========
FF DefaultProfile: 46q9bsgz.default
FF ProfilePath: C:\Users\anton\AppData\Roaming\Mozilla\Firefox\Profiles\46q9bsgz.default [2023-08-28]
FF ProfilePath: C:\Users\anton\AppData\Roaming\Mozilla\Firefox\Profiles\mtr8tk46.default-release [2024-05-27]
FF Homepage: Mozilla\Firefox\Profiles\mtr8tk46.default-release -> hxxps://www.20minutes.fr/
FF Notifications: Mozilla\Firefox\Profiles\mtr8tk46.default-release -> hxxps://www.sports.fr; hxxps://www.facebook.com; hxxps://www.pagesjaunes.fr; hxxps://www.instagram.com; hxxps://forums.futura-sciences.com; hxxps://www.lepoint.fr; hxxps://cursus.edu
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default [2024-05-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-21]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259216 2022-05-20] (Acer Incorporated -> Acer Incorporated)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14248016 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [678328 2018-06-11] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887344 2024-05-11] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-05-11] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 PDF Architect 9; C:\Program Files\PDF Architect 9\activation-service.exe [3219392 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 PDF Architect 9 Creator; C:\Program Files\PDF Architect 9\creator-ws.exe [509888 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 PDF Architect 9 Update Service; C:\Program Files\PDF Architect 9\update-service.exe [415680 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [469992 2022-05-24] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [508392 2022-05-24] (Acer Incorporated -> Acer Incorporated)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [334992 2022-06-01] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
R3 AMDAfdAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\amdacpafd.inf_amd64_f8b7b9ff8b9e6bf2\amdacpafd.sys [429984 2022-12-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [35360 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\amdkmdag.sys [94458400 2024-01-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-01-15] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2023-01-15] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218592 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223184 2024-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-08-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MTKBTFilterX64; C:\WINDOWS\System32\drivers\mtkbtfilterx.sys [371144 2023-01-10] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1614792 2022-11-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-11-17] (Microsoft Windows -> )
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-27 14:21 - 2024-05-27 14:22 - 000027642 _____ C:\Users\anton\OneDrive\Bureau\FRST.txt
2024-05-27 14:20 - 2024-05-27 14:21 - 000000000 ____D C:\FRST
2024-05-27 14:19 - 2024-05-27 14:19 - 002395136 _____ (Farbar) C:\Users\anton\OneDrive\Bureau\FRST64.exe
2024-05-27 14:06 - 2024-05-27 14:06 - 000203796 _____ C:\Users\anton\OneDrive\Bureau\ZHPDiag.txt
2024-05-27 13:59 - 2024-05-27 14:06 - 000000000 ____D C:\Users\anton\AppData\Roaming\ZHP
2024-05-27 13:59 - 2024-05-27 13:59 - 000000875 _____ C:\Users\anton\OneDrive\Bureau\ZHPSuite.lnk
2024-05-27 13:59 - 2024-05-27 13:59 - 000000000 ____D C:\Users\anton\AppData\Local\ZHP
2024-05-27 13:57 - 2024-05-27 13:58 - 003539104 _____ (Nicolas Coolman) C:\Users\anton\OneDrive\Bureau\ZHPSuite.exe
2024-05-27 09:17 - 2024-05-27 09:17 - 000082066 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-3.pdf
2024-05-26 15:03 - 2024-05-26 15:05 - 000000000 ____D C:\Users\anton\OneDrive\Bureau\UCheck
2024-05-24 14:25 - 2024-05-24 14:25 - 000082005 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-2.pdf
2024-05-24 14:19 - 2024-05-24 14:19 - 000082815 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-1.pdf
2024-05-24 14:06 - 2024-05-24 14:06 - 000024160 _____ C:\WINDOWS\system32\lc.dat
2024-05-24 14:05 - 2024-05-24 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2024-05-17 13:29 - 2024-05-17 13:29 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-05-16 17:06 - 2024-05-16 17:06 - 000082864 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment1.pdf
2024-05-16 17:06 - 2024-05-16 17:06 - 000082815 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment.pdf
2024-05-10 14:23 - 2024-05-10 14:23 - 000058228 _____ C:\Users\anton\OneDrive\Bureau\AFPA Dossier De Demande Formation 2023.pdf
2024-05-10 13:21 - 2024-05-10 13:21 - 000809500 _____ C:\WINDOWS\system32\perfh00C.dat
2024-05-10 13:21 - 2024-05-10 13:21 - 000156952 _____ C:\WINDOWS\system32\perfc00C.dat
2024-05-08 15:04 - 2024-05-01 14:41 - 000082815 _____ C:\Users\anton\OneDrive\Bureau\Technicien métreur du bâtiment.pdf
2024-05-08 14:11 - 2024-05-08 14:11 - 000000000 ___HD C:\OneDriveTemp
2024-05-06 14:33 - 2024-05-06 14:33 - 000056864 _____ C:\Users\anton\Downloads\FICHE_PRODUIT_ALTERNANCE_13990_Technicien_metreur_du_batiment__Contrat_en_alternance.pdf
2024-05-06 14:04 - 2024-05-06 14:04 - 000269700 _____ C:\Users\anton\Downloads\2024-2025_Diplômes_LAURENCEAU.pdf
2024-05-06 14:03 - 2024-05-06 14:03 - 000124699 _____ C:\Users\anton\Downloads\2024-2025_Bulletins_LAURENCEAU.pdf
2024-05-06 14:03 - 2024-05-06 14:03 - 000083128 _____ C:\Users\anton\Downloads\2024-2025_CV_LAURENCEAU.pdf
2024-05-01 11:53 - 2024-05-01 11:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-04-27 13:59 - 2024-04-27 13:59 - 000083128 _____ C:\Users\anton\Downloads\Métreur du bâtiment.pdf
2024-04-25 14:50 - 2024-04-25 14:50 - 000010035 _____ C:\Users\anton\OneDrive\Bureau\lettre de motiv.odt
2024-04-20 14:21 - 2024-04-20 14:21 - 000368710 _____ C:\Users\anton\Downloads\F.L.D.M - Comptes sociaux 2019.pdf
2024-04-19 14:14 - 2024-04-19 14:14 - 000006468 _____ C:\Users\anton\Downloads\details_sessions-1.pdf
2024-04-14 14:36 - 2024-04-14 14:36 - 000082738 _____ C:\Users\anton\Downloads\Opérateur de production mécanique.pdf
2024-04-12 14:56 - 2024-04-12 14:57 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2024-04-12 14:23 - 2024-04-12 14:23 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-12 14:22 - 2024-04-12 14:22 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-09 14:55 - 2024-04-09 14:55 - 000082083 _____ C:\Users\anton\Downloads\Contrôleur qualité mécanique-1.pdf
2024-04-09 14:54 - 2024-04-09 14:54 - 000082999 _____ C:\Users\anton\Downloads\Contrôleur conformité qualité en production.pdf
2024-04-09 14:54 - 2024-04-09 14:54 - 000082205 _____ C:\Users\anton\Downloads\Technicien contrôle qualité.pdf
2024-04-08 14:31 - 2024-04-08 14:31 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-01 14:37 - 2024-04-01 14:37 - 005989784 _____ C:\Users\anton\OneDrive\Bureau\bts-management-economique-de-la-construction (1).pdf
2024-03-22 15:35 - 2024-03-22 15:35 - 000006392 _____ C:\Users\anton\Downloads\details_sessions.pdf
2024-03-22 15:30 - 2024-03-22 15:30 - 000015298 _____ C:\Users\anton\OneDrive\Bureau\lettre mail avant candidature.odt
2024-03-20 15:45 - 2024-03-20 15:46 - 000000000 ____D C:\Program Files\PDF Architect 9
2024-03-20 15:45 - 2024-03-20 15:45 - 000001185 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 9.lnk
2024-03-20 15:33 - 2024-03-20 15:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avanquest pdfforge GmbH
2024-03-17 17:35 - 2024-05-11 14:27 - 028965296 _____ C:\Users\anton\OneDrive\Bureau\UCheck_portable64(2).exe
2024-03-17 15:48 - 2024-03-17 15:48 - 044262456 _____ (Avanquest pdfforge GmbH) C:\Users\anton\Downloads\PDFCreator-5_2_1-Setup.exe
2024-03-16 13:22 - 2024-03-16 13:36 - 000000000 ____D C:\Users\anton\AppData\Roaming\Any Video Converter
2024-03-16 13:22 - 2024-03-16 13:22 - 000000036 _____ C:\Users\anton\AppData\Local\_LOCAL_GUID
2024-03-16 13:22 - 2024-03-16 13:22 - 000000000 ____H C:\Users\anton\MJKJRegInfo_JSOIGNLOFVI6W4DODRL5DLLUHYENUXTM
2024-03-16 13:22 - 2024-03-16 13:22 - 000000000 ____D C:\Users\anton\OneDrive\Documents\Any Video Converter
2024-03-16 13:21 - 2024-03-16 13:38 - 000000000 ____D C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anvsoft
2024-03-16 13:19 - 2024-03-16 13:38 - 000000000 ____D C:\Program Files\Anvsoft
2024-03-15 15:06 - 2024-03-15 15:06 - 000000000 ____D C:\ProgramData\Piriform
2024-03-15 15:05 - 2024-03-15 15:05 - 000000000 ____D C:\ProgramData\Norton
2024-03-12 18:33 - 2024-03-12 18:33 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487-2.pdf
2024-03-12 18:26 - 2024-03-12 18:26 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487-1.pdf
2024-03-12 18:23 - 2024-03-12 18:23 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-27 14:22 - 2023-08-20 12:43 - 000000000 ____D C:\Users\anton\AppData\Local\Spotify
2024-05-27 14:21 - 2023-08-20 12:39 - 000000000 ____D C:\Users\anton\AppData\Roaming\Spotify
2024-05-27 14:20 - 2023-08-02 02:55 - 000000000 ____D C:\WINDOWS\INF
2024-05-27 14:18 - 2023-08-27 14:13 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-05-27 14:07 - 2023-08-20 21:51 - 000000000 ____D C:\Users\anton\AppData\Local\CrashDumps
2024-05-27 14:01 - 2023-08-02 02:56 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-27 13:56 - 2023-08-19 14:29 - 000000000 ____D C:\Users\anton\AppData\Local\D3DSCache
2024-05-27 13:53 - 2023-08-19 14:55 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-05-27 13:52 - 2023-08-20 18:07 - 000000000 ____D C:\Program Files\CCleaner
2024-05-27 13:52 - 2023-08-19 14:30 - 000000000 ___RD C:\Users\anton\OneDrive
2024-05-27 13:52 - 2023-08-02 02:56 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-27 13:52 - 2023-08-02 02:56 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-05-27 09:16 - 2023-08-19 14:15 - 000000000 ____D C:\Users\anton\AppData\Local\Host App Service
2024-05-27 09:14 - 2023-08-21 14:28 - 000000000 ____D C:\Users\anton\OneDrive\Bureau\CV
2024-05-27 09:13 - 2023-08-19 14:29 - 000000000 ____D C:\Users\anton\AppData\Local\Packages
2024-05-27 09:13 - 2023-08-01 17:09 - 000000000 ____D C:\ProgramData\Packages
2024-05-26 16:52 - 2023-08-01 17:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-26 15:15 - 2023-08-20 18:01 - 000000000 ____D C:\Users\anton\AppData\Local\Malwarebytes
2024-05-26 14:40 - 2023-08-01 17:02 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-26 14:37 - 2023-08-19 14:30 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-428499685-2534697496-1257434464-1001
2024-05-26 14:37 - 2023-08-19 14:30 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-428499685-2534697496-1257434464-1001
2024-05-26 14:37 - 2023-08-19 14:30 - 000002421 _____ C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-26 14:36 - 2023-08-02 02:56 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-26 14:33 - 2023-08-01 17:08 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-05-26 14:33 - 2023-08-01 17:08 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-05-24 14:05 - 2023-08-26 15:02 - 000000000 ____D C:\Program Files\PDFCreator
2024-05-24 13:59 - 2023-08-21 16:43 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-24 13:58 - 2023-08-26 15:09 - 000000000 ____D C:\Users\anton\AppData\Roaming\PDF Architect 9
2024-05-23 15:02 - 2023-08-20 18:07 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-05-23 15:02 - 2023-08-20 18:07 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-05-23 15:02 - 2023-08-20 18:07 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-05-23 14:56 - 2023-01-15 14:20 - 000000000 ____D C:\Program Files\Microsoft Office
2024-05-17 13:57 - 2023-08-19 14:55 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-17 13:41 - 2023-01-15 13:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-05-11 14:34 - 2023-10-29 15:22 - 000000000 ____D C:\Users\anton\AppData\Roaming\Telegram Desktop
2024-05-11 14:34 - 2023-10-29 15:22 - 000000000 ____D C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2024-05-11 14:34 - 2023-08-20 18:01 - 000002097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-05-11 14:30 - 2023-08-20 17:49 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-05-11 14:30 - 2023-08-20 17:48 - 000000000 ____D C:\Program Files\Malwarebytes
2024-05-10 13:21 - 2023-08-01 17:12 - 001804074 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-01 11:53 - 2023-08-21 15:12 - 000000000 ____D C:\Program Files (x86)\Google
2024-05-01 11:53 - 2023-08-19 14:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
==================== Fichiers à la racine de certains dossiers ========
2024-03-16 13:22 - 2024-03-16 13:22 - 000000036 _____ () C:\Users\anton\AppData\Local\_LOCAL_GUID
==================== SigCheckExt =========================
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll
2023-08-26 15:02 - 2023-08-26 15:02 - 000196096 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2024-05-27 14:19 - 2024-05-27 14:19 - 002395136 _____ (Farbar) C:\Users\anton\OneDrive\Bureau\FRST64.exe
2024-05-27 13:57 - 2024-05-27 13:58 - 003539104 _____ (Nicolas Coolman) C:\Users\anton\OneDrive\Bureau\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{dc6395b8-94cb-11ed-8936-806e6f6e6963}
{dc6395b9-94cb-11ed-8936-806e6f6e6963}
{dc6395ba-94cb-11ed-8936-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {dc6395b8-94cb-11ed-8936-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {dc6395b9-94cb-11ed-8936-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {dc6395ba-94cb-11ed-8936-806e6f6e6963}
description EFI Network
Chargeur de démarrage Windows
-----------------------------
identificateur {44f8fe28-9517-11ed-811a-00e04c68c0b6}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{44f8fe29-9517-11ed-811a-00e04c68c0b6}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale en-us
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride PushButtonReset
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{44f8fe29-9517-11ed-811a-00e04c68c0b6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {44f8fe28-9517-11ed-811a-00e04c68c0b6}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2}
nx OptIn
bootmenupolicy Standard
hypervisorlaunchtype Auto
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {44f8fe28-9517-11ed-811a-00e04c68c0b6}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {44f8fe29-9517-11ed-811a-00e04c68c0b6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par anton (administrateur) sur LAURENCEAU (Acer Aspire A315-24P) (27-05-2024 14:21:42)
Exécuté depuis C:\Users\anton\OneDrive\Bureau\FRST64.exe
Profils chargés: anton
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3447 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\CamUsage.exe
(C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\MicUsage.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.amdradeonsoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.67\msedgewebview2.exe <6>
(DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atieclxx.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\anton\AppData\Roaming\Spotify\Spotify.exe <6>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <33>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\atiesrxx.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe
(services.exe ->) (pdfforge GmbH -> Avanquest pdfforge GmbH) C:\Program Files\PDF Architect 9\activation-service.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3>
(services.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe
(sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\anton\AppData\Local\Microsoft\OneDrive\24.091.0505.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\anton\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.67\Installer\setup.exe [7182888 2024-05-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [Spotify] => C:\Users\anton\AppData\Roaming\Spotify\Spotify.exe [34615112 2024-05-27] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [MicrosoftEdgeAutoLaunch_27C358CB5E42F7E1A720AA41BA227239] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4136912 2024-05-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45430176 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-428499685-2534697496-1257434464-1001\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\PDF Architect 9 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.23.0.2.dll [974120 2024-03-20] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [196096 2023-08-26] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.77\Installer\chrmstp.exe [2024-05-24] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {D823FD2A-F610-457E-9F1E-B7BD4A13E2C5} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971792 2022-05-20] (Acer Incorporated -> ) -> C:\Program Files (x86)\Acer\Care Center\-auto
Task: {6B00A040-6A9F-4735-A73C-ED70D566C6D4} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41616 2022-05-20] (Acer Incorporated -> )
Task: {728EA85C-6C05-4BEF-BBA2-6788DBA0C96B} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836496 2022-05-20] (Acer Incorporated -> )
Task: {C4475ED5-DFB3-4190-A1A4-ECAA6C43F84E} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {6DABBFFA-DF18-41B5-A296-30FB81C22898} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954816 2022-08-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {6E170B2D-5473-4F72-AD91-EFD84FBAC2B0} - System32\Tasks\App Explorer => C:\Users\anton\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {01481AD9-50A4-4363-9306-50611F23EFF5} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification => C:\Program Files\PDF Architect 9\architect-launcher.exe [2313152 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {5092ED20-DD11-408E-94AE-14045CB98662} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification Logon => C:\Program Files\PDF Architect 9\architect-launcher.exe [2313152 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {38A4EE32-7B85-4A4F-9153-49BDCE7C96C5} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [12050872 2024-03-20] (pdfforge GmbH -> )
Task: {AEEA5A60-1723-41AE-A3C0-D203E7A1633B} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3503040 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {55D65461-5D68-4ED3-8ECB-E9FE08786D90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7B6AE709-9C7A-4162-9CFE-2E5918E26A68} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "3e3b2913-f675-4f95-8f3d-5ffb845a26bc" --version "6.24.11060" --silent
Task: {B806FF27-9A5D-4AF9-999A-77BD6D62F35B} - System32\Tasks\CCleanerSkipUAC - anton => C:\Program Files\CCleaner\CCleaner.exe [39169952 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {313A8A70-B970-49B3-94D9-43C79C215F47} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{0931950A-6DFD-43DA-8FE8-973D9D882B32} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
Task: {6F59BFC7-790E-44FD-9652-7D70DB24D430} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C04EE50-5FE6-4857-9A49-50C1692EE93D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D56CBC64-CAE0-43EB-87FF-94775DA9EB35} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {2DFB42F5-7C70-4644-BDB6-865549CCCBA1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {546F6663-BB16-4469-811B-9C22D628A1AD} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168928 2024-05-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {819CA237-191B-4864-BAC1-813159AE9150} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {1070466D-697D-46C0-9DC3-76BF4A0F0B86} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2FCA2F96-7DCF-44AF-A81A-AEEF1C2CA930} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B3CB51D-5049-412E-8227-14250D0FA9BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4071AB47-530C-4C46-A7EC-BB6169843428} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8E7CFCED-AE04-406A-988C-18CE5F15FF1F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {73D868A8-0D21-467F-9012-E404994A14D4} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-428499685-2534697496-1257434464-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {D18F665F-1128-4751-8C97-97395D57B208} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {5FA20006-6DD4-4F89-9BC5-463AAF4CB204} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {8ABF0210-BC5F-4798-A823-EAAFC256B17B} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-428499685-2534697496-1257434464-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {9D9FE47E-0A84-4735-BA23-354A9B6AD8EF} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [12050872 2024-03-20] (pdfforge GmbH -> )
Task: {065EDF48-41F8-4DD6-B597-677665CC24D7} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [3503040 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
Task: {7300A9A3-183D-4658-A386-B58DE5DF50C4} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [450536 2022-05-24] (Acer Incorporated -> Acer Incorporated)
Task: {A6FEE66A-29C2-4B36-A822-377B2F7A65B3} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2022-03-01] (Acer Incorporated -> Acer Incorporated)
Task: {F65F2E58-AF23-4793-AB30-E13E252BACE6} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft)
Task: {D2AD568C-BCF9-438D-A447-7D0819D424E8} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [342672 2022-06-01] (Acer Incorporated -> Acer Incorporated)
Task: {F4F20379-70D0-4290-AEFE-6AE25DB5B483} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2022-05-17] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{27b9c369-9f58-4585-8860-765740fb280b}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{27b9c369-9f58-4585-8860-765740fb280b}: [DhcpDomain] lan
Edge:
=======
Edge Profile: C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-27]
Edge Extension: (Google Docs hors connexion) - C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-26]
Edge Extension: (Edge relevant text changes) - C:\Users\anton\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
FireFox:
========
FF DefaultProfile: 46q9bsgz.default
FF ProfilePath: C:\Users\anton\AppData\Roaming\Mozilla\Firefox\Profiles\46q9bsgz.default [2023-08-28]
FF ProfilePath: C:\Users\anton\AppData\Roaming\Mozilla\Firefox\Profiles\mtr8tk46.default-release [2024-05-27]
FF Homepage: Mozilla\Firefox\Profiles\mtr8tk46.default-release -> hxxps://www.20minutes.fr/
FF Notifications: Mozilla\Firefox\Profiles\mtr8tk46.default-release -> hxxps://www.sports.fr; hxxps://www.facebook.com; hxxps://www.pagesjaunes.fr; hxxps://www.instagram.com; hxxps://forums.futura-sciences.com; hxxps://www.lepoint.fr; hxxps://cursus.edu
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default [2024-05-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\anton\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-21]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259216 2022-05-20] (Acer Incorporated -> Acer Incorporated)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14248016 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [678328 2018-06-11] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887344 2024-05-11] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-05-11] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 PDF Architect 9; C:\Program Files\PDF Architect 9\activation-service.exe [3219392 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 PDF Architect 9 Creator; C:\Program Files\PDF Architect 9\creator-ws.exe [509888 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 PDF Architect 9 Update Service; C:\Program Files\PDF Architect 9\update-service.exe [415680 2024-03-08] (pdfforge GmbH -> Avanquest pdfforge GmbH)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [469992 2022-05-24] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [508392 2022-05-24] (Acer Incorporated -> Acer Incorporated)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [334992 2022-06-01] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
R3 AMDAfdAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\amdacpafd.inf_amd64_f8b7b9ff8b9e6bf2\amdacpafd.sys [429984 2022-12-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [35360 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0399259.inf_amd64_91ce8c34032dc40f\B399013\amdkmdag.sys [94458400 2024-01-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-01-15] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2023-01-15] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218592 2023-11-17] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223184 2024-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-08-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MTKBTFilterX64; C:\WINDOWS\System32\drivers\mtkbtfilterx.sys [371144 2023-01-10] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1614792 2022-11-03] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-11-17] (Microsoft Windows -> )
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-27 14:21 - 2024-05-27 14:22 - 000027642 _____ C:\Users\anton\OneDrive\Bureau\FRST.txt
2024-05-27 14:20 - 2024-05-27 14:21 - 000000000 ____D C:\FRST
2024-05-27 14:19 - 2024-05-27 14:19 - 002395136 _____ (Farbar) C:\Users\anton\OneDrive\Bureau\FRST64.exe
2024-05-27 14:06 - 2024-05-27 14:06 - 000203796 _____ C:\Users\anton\OneDrive\Bureau\ZHPDiag.txt
2024-05-27 13:59 - 2024-05-27 14:06 - 000000000 ____D C:\Users\anton\AppData\Roaming\ZHP
2024-05-27 13:59 - 2024-05-27 13:59 - 000000875 _____ C:\Users\anton\OneDrive\Bureau\ZHPSuite.lnk
2024-05-27 13:59 - 2024-05-27 13:59 - 000000000 ____D C:\Users\anton\AppData\Local\ZHP
2024-05-27 13:57 - 2024-05-27 13:58 - 003539104 _____ (Nicolas Coolman) C:\Users\anton\OneDrive\Bureau\ZHPSuite.exe
2024-05-27 09:17 - 2024-05-27 09:17 - 000082066 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-3.pdf
2024-05-26 15:03 - 2024-05-26 15:05 - 000000000 ____D C:\Users\anton\OneDrive\Bureau\UCheck
2024-05-24 14:25 - 2024-05-24 14:25 - 000082005 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-2.pdf
2024-05-24 14:19 - 2024-05-24 14:19 - 000082815 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment-1.pdf
2024-05-24 14:06 - 2024-05-24 14:06 - 000024160 _____ C:\WINDOWS\system32\lc.dat
2024-05-24 14:05 - 2024-05-24 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2024-05-17 13:29 - 2024-05-17 13:29 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-05-16 17:06 - 2024-05-16 17:06 - 000082864 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment1.pdf
2024-05-16 17:06 - 2024-05-16 17:06 - 000082815 _____ C:\Users\anton\Downloads\Technicien métreur du bâtiment.pdf
2024-05-10 14:23 - 2024-05-10 14:23 - 000058228 _____ C:\Users\anton\OneDrive\Bureau\AFPA Dossier De Demande Formation 2023.pdf
2024-05-10 13:21 - 2024-05-10 13:21 - 000809500 _____ C:\WINDOWS\system32\perfh00C.dat
2024-05-10 13:21 - 2024-05-10 13:21 - 000156952 _____ C:\WINDOWS\system32\perfc00C.dat
2024-05-08 15:04 - 2024-05-01 14:41 - 000082815 _____ C:\Users\anton\OneDrive\Bureau\Technicien métreur du bâtiment.pdf
2024-05-08 14:11 - 2024-05-08 14:11 - 000000000 ___HD C:\OneDriveTemp
2024-05-06 14:33 - 2024-05-06 14:33 - 000056864 _____ C:\Users\anton\Downloads\FICHE_PRODUIT_ALTERNANCE_13990_Technicien_metreur_du_batiment__Contrat_en_alternance.pdf
2024-05-06 14:04 - 2024-05-06 14:04 - 000269700 _____ C:\Users\anton\Downloads\2024-2025_Diplômes_LAURENCEAU.pdf
2024-05-06 14:03 - 2024-05-06 14:03 - 000124699 _____ C:\Users\anton\Downloads\2024-2025_Bulletins_LAURENCEAU.pdf
2024-05-06 14:03 - 2024-05-06 14:03 - 000083128 _____ C:\Users\anton\Downloads\2024-2025_CV_LAURENCEAU.pdf
2024-05-01 11:53 - 2024-05-01 11:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-04-27 13:59 - 2024-04-27 13:59 - 000083128 _____ C:\Users\anton\Downloads\Métreur du bâtiment.pdf
2024-04-25 14:50 - 2024-04-25 14:50 - 000010035 _____ C:\Users\anton\OneDrive\Bureau\lettre de motiv.odt
2024-04-20 14:21 - 2024-04-20 14:21 - 000368710 _____ C:\Users\anton\Downloads\F.L.D.M - Comptes sociaux 2019.pdf
2024-04-19 14:14 - 2024-04-19 14:14 - 000006468 _____ C:\Users\anton\Downloads\details_sessions-1.pdf
2024-04-14 14:36 - 2024-04-14 14:36 - 000082738 _____ C:\Users\anton\Downloads\Opérateur de production mécanique.pdf
2024-04-12 14:56 - 2024-04-12 14:57 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2024-04-12 14:23 - 2024-04-12 14:23 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-12 14:22 - 2024-04-12 14:22 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-09 14:55 - 2024-04-09 14:55 - 000082083 _____ C:\Users\anton\Downloads\Contrôleur qualité mécanique-1.pdf
2024-04-09 14:54 - 2024-04-09 14:54 - 000082999 _____ C:\Users\anton\Downloads\Contrôleur conformité qualité en production.pdf
2024-04-09 14:54 - 2024-04-09 14:54 - 000082205 _____ C:\Users\anton\Downloads\Technicien contrôle qualité.pdf
2024-04-08 14:31 - 2024-04-08 14:31 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-01 14:37 - 2024-04-01 14:37 - 005989784 _____ C:\Users\anton\OneDrive\Bureau\bts-management-economique-de-la-construction (1).pdf
2024-03-22 15:35 - 2024-03-22 15:35 - 000006392 _____ C:\Users\anton\Downloads\details_sessions.pdf
2024-03-22 15:30 - 2024-03-22 15:30 - 000015298 _____ C:\Users\anton\OneDrive\Bureau\lettre mail avant candidature.odt
2024-03-20 15:45 - 2024-03-20 15:46 - 000000000 ____D C:\Program Files\PDF Architect 9
2024-03-20 15:45 - 2024-03-20 15:45 - 000001185 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 9.lnk
2024-03-20 15:33 - 2024-03-20 15:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avanquest pdfforge GmbH
2024-03-17 17:35 - 2024-05-11 14:27 - 028965296 _____ C:\Users\anton\OneDrive\Bureau\UCheck_portable64(2).exe
2024-03-17 15:48 - 2024-03-17 15:48 - 044262456 _____ (Avanquest pdfforge GmbH) C:\Users\anton\Downloads\PDFCreator-5_2_1-Setup.exe
2024-03-16 13:22 - 2024-03-16 13:36 - 000000000 ____D C:\Users\anton\AppData\Roaming\Any Video Converter
2024-03-16 13:22 - 2024-03-16 13:22 - 000000036 _____ C:\Users\anton\AppData\Local\_LOCAL_GUID
2024-03-16 13:22 - 2024-03-16 13:22 - 000000000 ____H C:\Users\anton\MJKJRegInfo_JSOIGNLOFVI6W4DODRL5DLLUHYENUXTM
2024-03-16 13:22 - 2024-03-16 13:22 - 000000000 ____D C:\Users\anton\OneDrive\Documents\Any Video Converter
2024-03-16 13:21 - 2024-03-16 13:38 - 000000000 ____D C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anvsoft
2024-03-16 13:19 - 2024-03-16 13:38 - 000000000 ____D C:\Program Files\Anvsoft
2024-03-15 15:06 - 2024-03-15 15:06 - 000000000 ____D C:\ProgramData\Piriform
2024-03-15 15:05 - 2024-03-15 15:05 - 000000000 ____D C:\ProgramData\Norton
2024-03-12 18:33 - 2024-03-12 18:33 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487-2.pdf
2024-03-12 18:26 - 2024-03-12 18:26 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487-1.pdf
2024-03-12 18:23 - 2024-03-12 18:23 - 000081319 _____ C:\Users\anton\Downloads\MA_treur_chiffreur.pdf.170799487.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-27 14:22 - 2023-08-20 12:43 - 000000000 ____D C:\Users\anton\AppData\Local\Spotify
2024-05-27 14:21 - 2023-08-20 12:39 - 000000000 ____D C:\Users\anton\AppData\Roaming\Spotify
2024-05-27 14:20 - 2023-08-02 02:55 - 000000000 ____D C:\WINDOWS\INF
2024-05-27 14:18 - 2023-08-27 14:13 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-05-27 14:07 - 2023-08-20 21:51 - 000000000 ____D C:\Users\anton\AppData\Local\CrashDumps
2024-05-27 14:01 - 2023-08-02 02:56 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-27 13:56 - 2023-08-19 14:29 - 000000000 ____D C:\Users\anton\AppData\Local\D3DSCache
2024-05-27 13:53 - 2023-08-19 14:55 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-05-27 13:52 - 2023-08-20 18:07 - 000000000 ____D C:\Program Files\CCleaner
2024-05-27 13:52 - 2023-08-19 14:30 - 000000000 ___RD C:\Users\anton\OneDrive
2024-05-27 13:52 - 2023-08-02 02:56 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-27 13:52 - 2023-08-02 02:56 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-05-27 09:16 - 2023-08-19 14:15 - 000000000 ____D C:\Users\anton\AppData\Local\Host App Service
2024-05-27 09:14 - 2023-08-21 14:28 - 000000000 ____D C:\Users\anton\OneDrive\Bureau\CV
2024-05-27 09:13 - 2023-08-19 14:29 - 000000000 ____D C:\Users\anton\AppData\Local\Packages
2024-05-27 09:13 - 2023-08-01 17:09 - 000000000 ____D C:\ProgramData\Packages
2024-05-26 16:52 - 2023-08-01 17:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-26 15:15 - 2023-08-20 18:01 - 000000000 ____D C:\Users\anton\AppData\Local\Malwarebytes
2024-05-26 14:40 - 2023-08-01 17:02 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-26 14:37 - 2023-08-19 14:30 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-428499685-2534697496-1257434464-1001
2024-05-26 14:37 - 2023-08-19 14:30 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-428499685-2534697496-1257434464-1001
2024-05-26 14:37 - 2023-08-19 14:30 - 000002421 _____ C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-26 14:36 - 2023-08-02 02:56 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-26 14:33 - 2023-08-01 17:08 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-05-26 14:33 - 2023-08-01 17:08 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-05-24 14:05 - 2023-08-26 15:02 - 000000000 ____D C:\Program Files\PDFCreator
2024-05-24 13:59 - 2023-08-21 16:43 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-24 13:58 - 2023-08-26 15:09 - 000000000 ____D C:\Users\anton\AppData\Roaming\PDF Architect 9
2024-05-23 15:02 - 2023-08-20 18:07 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-05-23 15:02 - 2023-08-20 18:07 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-05-23 15:02 - 2023-08-20 18:07 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-05-23 14:56 - 2023-01-15 14:20 - 000000000 ____D C:\Program Files\Microsoft Office
2024-05-17 13:57 - 2023-08-19 14:55 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-17 13:41 - 2023-01-15 13:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-05-11 14:34 - 2023-10-29 15:22 - 000000000 ____D C:\Users\anton\AppData\Roaming\Telegram Desktop
2024-05-11 14:34 - 2023-10-29 15:22 - 000000000 ____D C:\Users\anton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2024-05-11 14:34 - 2023-08-20 18:01 - 000002097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-05-11 14:30 - 2023-08-20 17:49 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-05-11 14:30 - 2023-08-20 17:48 - 000000000 ____D C:\Program Files\Malwarebytes
2024-05-10 13:21 - 2023-08-01 17:12 - 001804074 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-01 11:53 - 2023-08-21 15:12 - 000000000 ____D C:\Program Files (x86)\Google
2024-05-01 11:53 - 2023-08-19 14:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
==================== Fichiers à la racine de certains dossiers ========
2024-03-16 13:22 - 2024-03-16 13:22 - 000000036 _____ () C:\Users\anton\AppData\Local\_LOCAL_GUID
==================== SigCheckExt =========================
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll
2023-08-26 15:02 - 2023-08-26 15:02 - 000196096 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2024-05-27 14:19 - 2024-05-27 14:19 - 002395136 _____ (Farbar) C:\Users\anton\OneDrive\Bureau\FRST64.exe
2024-05-27 13:57 - 2024-05-27 13:58 - 003539104 _____ (Nicolas Coolman) C:\Users\anton\OneDrive\Bureau\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{dc6395b8-94cb-11ed-8936-806e6f6e6963}
{dc6395b9-94cb-11ed-8936-806e6f6e6963}
{dc6395ba-94cb-11ed-8936-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {dc6395b8-94cb-11ed-8936-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {dc6395b9-94cb-11ed-8936-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {dc6395ba-94cb-11ed-8936-806e6f6e6963}
description EFI Network
Chargeur de démarrage Windows
-----------------------------
identificateur {44f8fe28-9517-11ed-811a-00e04c68c0b6}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{44f8fe29-9517-11ed-811a-00e04c68c0b6}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale en-us
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride PushButtonReset
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{44f8fe29-9517-11ed-811a-00e04c68c0b6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale fr-FR
inherit {bootloadersettings}
recoverysequence {44f8fe28-9517-11ed-811a-00e04c68c0b6}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2}
nx OptIn
bootmenupolicy Standard
hypervisorlaunchtype Auto
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {d2bccecc-30cf-11ee-ba30-dcbbfdf83bb2}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {44f8fe28-9517-11ed-811a-00e04c68c0b6}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
custom:21000026 partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {44f8fe29-9517-11ed-811a-00e04c68c0b6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================