Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024 Exécuté par Alain (administrateur) sur DESKTOP-7NEMSGF (Dell Inc. XPS 13 9305) (01-10-2024 23:36:35) Exécuté depuis C:\Users\Alain\OneDrive\Desktop\FRST64.exe Profils chargés: Alain Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.4249 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <4> (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (C:\Program Files\McAfee\WPS\1.22.203.1\mc-fw-host.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.22.203.1\mc-web-view.exe (C:\Program Files\McAfee\WPS\1.22.203.1\mc-fw-host.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.22.203.1\vpn\mc-vpn.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.24900.80.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.65\msedgewebview2.exe <13> (C:\Users\Alain\AppData\Local\Apps\2.0\56Y4QQEC.J0A\W3YOPHXQ.K6W\scre..tion_2c2536e5112611c9_0006.0003_5aee660e2d4532f1\ScreenConnect.ClientService.exe ->) (ScreenConnect Software -> ScreenConnect Software) C:\Users\Alain\AppData\Local\Apps\2.0\56Y4QQEC.J0A\W3YOPHXQ.K6W\scre..tion_2c2536e5112611c9_0006.0003_5aee660e2d4532f1\ScreenConnect.WindowsClient.exe (C:\Users\Alain\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Alain\AppData\Local\Programs\Opera\113.0.5230.142\opera_crashreporter.exe (cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe <2> (cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.22.203.1\extnhost\mc-extn-browserhost.exe <2> (drivers\RivetNetworks\Killer\KAPSService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe (drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe (DriverStore\FileRepository\cui_dch.inf_amd64_27208f785dd1204e\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_27208f785dd1204e\igfxEMN.exe (DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <8> (explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Alain\AppData\Local\Programs\Opera\opera.exe <25> (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesSvc64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <25> (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (Dell Inc. -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe (services.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Dell Technologies Inc. -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (services.exe ->) (Dell Technologies Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_27208f785dd1204e\igfxCUIServiceN.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_15c9ea6001a5206d\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_630c90b3d4347f0d\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0cfb7a84e9f43778\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_ab7d4ea1d12c01d4\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_604198d932f43311\Intel_PIE_Service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\TbtP2pShortcutService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.22.203.1\mc-fw-host.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_807802da47ae00a3\RtkAudUService64.exe <3> (services.exe ->) (ScreenConnect Software -> ) C:\Users\Alain\AppData\Local\Apps\2.0\56Y4QQEC.J0A\W3YOPHXQ.K6W\scre..tion_2c2536e5112611c9_0006.0003_5aee660e2d4532f1\ScreenConnect.ClientService.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd) C:\Windows\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesAudioService.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesSysSvc64.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24082.53.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2438.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.22.203.1\neo\mc-neo-host.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.5.0.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Alain\AppData\Local\Microsoft\OneDrive\24.171.0825.0002\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_807802da47ae00a3\RtkAudUService64.exe [1971512 2024-01-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesSvc64.exe [5147736 2023-05-04] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [369504 2024-08-21] (Apple Inc. -> Apple Inc.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-1122655281-3850239576-514751100-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Alain\AppData\Local\Microsoft\Teams\Update.exe [2593600 2024-08-23] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1122655281-3850239576-514751100-1001\...\Run: [MicrosoftEdgeAutoLaunch_BB091E1C7C1412A0B7256BB30DA07242] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3794984 2024-09-26] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1122655281-3850239576-514751100-1001\...\Run: [Opera Stable] => C:\Users\Alain\AppData\Local\Programs\Opera\opera.exe [1386912 2024-09-29] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-1122655281-3850239576-514751100-1001\...\MountPoints2: {4177c60a-a8ae-11ec-af02-b06088b05b7f} - "D:\RTK_NIC_DRIVER_INSTALLER.sfx.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\129.0.6668.60\Installer\chrmstp.exe [2024-09-24] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {7F77D542-6DDE-4E28-ABC7-073AA0CB504B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.) Task: {2DDEAC43-A586-4D00-A3A4-A238690A3D45} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [1000776 2024-09-20] (Dell Technologies Inc. -> Dell Inc.) -> C:\Program Files\Dell\SupportAssistAgent\bin\AutoUpdate Task: {DD6D2B52-B57A-4D7C-8DE8-89599940E129} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{73D02D11-6853-4429-B5EC-C0EFA30848C0} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC) Task: {E24CD58E-57BD-43BF-B465-E8509CC1F585} - System32\Tasks\McAfee\WPS\McAfee Anti-tracker notification => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {7D4B39F2-FBEF-4572-8FFD-2B94202154F1} - System32\Tasks\McAfee\WPS\McAfee Anti-Tracker Scanner => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {FC2D7D45-47BC-4CAB-8291-614C5E10E90A} - System32\Tasks\McAfee\WPS\McAfee Cloud Configuration Check => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {45F84154-F1D7-4344-BC28-16A8B524B6D7} - System32\Tasks\McAfee\WPS\McAfee Health Check => C:\Program Files\McAfee\WPS\1.22.203.1\sustainability\mc-sustainability.exe [955576 2024-10-01] (McAfee, LLC -> McAfee, LLC) Task: {EA3942F1-3EAC-4E58-AAB5-B99554E046D0} - System32\Tasks\McAfee\WPS\McAfee Hotfix => C:\Program Files\McAfee\wps\1.22.203.1\dad\mc-dad.exe [2641984 2024-10-01] (McAfee, LLC -> McAfee, LLC) Task: {9448E89B-F9B6-4C78-999B-17FE55D6B4C4} - System32\Tasks\McAfee\WPS\McAfee Message Check => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {E2801F3B-8DD1-4331-B369-3A6260E71812} - System32\Tasks\McAfee\WPS\McAfee PC Optimizer Task => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {C6C0AAC0-156C-4E29-8EEB-91BBD7E8DBF4} - System32\Tasks\McAfee\WPS\McAfee restart of PC => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {2B11CD5E-44D7-432B-863F-B4622B32DE34} - System32\Tasks\McAfee\WPS\McAfee Scheduled AV Scan => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {FE09A075-DACF-45FF-B3DC-5E52AA29DED2} - System32\Tasks\McAfee\WPS\McAfee Scheduled Tracker Remover => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {ED1F49E9-036B-47F6-BA1C-813DEA41E527} - System32\Tasks\McAfee\wps\McAfee Updater => {81A7CB63-BB07-4DAD-8E72-07B3A9BB08E2} C:\Program Files\McAfee\wps\1.22.203.1\mc-update.exe [3305664 2024-10-01] (McAfee, LLC -> McAfee, LLC) Task: {39E64AD7-E47B-4A68-81F7-E14DFE8E2FA7} - System32\Tasks\McAfee\WPS\McAfee Virus Definition Update => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {66D68959-27E4-4343-98D0-5D943AE6450E} - System32\Tasks\McAfee\WPS\McAfee Windows Notification Token => \\?\C:\Program Files\McAfee\WPS\1.22.203.1\mc-wns-client\mc-wns-client.exe [919960 2024-10-01] (McAfee, LLC -> ) Task: {8932FD49-E40B-4CE5-84CD-DB6629694F6E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-09-24] (Microsoft Corporation -> Microsoft Corporation) Task: {24743618-CBF8-4053-89B4-219BF80EB6CD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-09-24] (Microsoft Corporation -> Microsoft Corporation) Task: {4E3D290E-9E1B-4BE9-B3C2-F8088A18C917} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312472 2024-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {2789979C-76CA-4230-A96F-09D80D79A98D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312472 2024-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {4AC6713D-8C0A-4B16-AA5D-06615E843A94} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [187328 2024-10-01] (Microsoft Corporation -> Microsoft Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier) Task: {7A1FA474-D335-4D29-8323-FCCC4DCB0A4F} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier) Task: {EEB42C6B-0522-4F05-9B4C-BD72C967D5C8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {079FA558-870E-4FA3-80F9-950F5B69827E} - System32\Tasks\Opera scheduled Autoupdate 1698168778 => C:\Users\Alain\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5570464 2024-09-27] (Opera Norway AS -> Opera Software) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{24810bd8-1211-446a-82b4-77fcadd982fa}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{24810bd8-1211-446a-82b4-77fcadd982fa}\34163796E6F6023547022427566796E6: [DhcpNameServer] 10.40.32.254 Tcpip\..\Interfaces\{24810bd8-1211-446a-82b4-77fcadd982fa}\34163796E6F6023547022427566796E6: [DhcpDomain] inroom.direct-streams.com Tcpip\..\Interfaces\{24810bd8-1211-446a-82b4-77fcadd982fa}\742514E4440514C4143454: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{24810bd8-1211-446a-82b4-77fcadd982fa}\742514E4440514C4143454: [DhcpNameServer] 192.168.3.1 Tcpip\..\Interfaces\{24810bd8-1211-446a-82b4-77fcadd982fa}\84F64756C602351696E6470235165767565727: [DhcpNameServer] 192.168.100.254 Tcpip\..\Interfaces\{24810bd8-1211-446a-82b4-77fcadd982fa}\84F64756C602351696E6470235165767565727: [DhcpDomain] access.network Tcpip\..\Interfaces\{f47947eb-d989-4b5b-b82c-eecbf71d0db2}: [NameServer] 8.8.8.8,8.8.4.4 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Alain\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-01] Edge HomePage: Default -> hxxp://www.msn.com/?pc=DCTE Edge Extension: (Avira Safe Shopping) - C:\Users\Alain\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2023-10-21] Edge Extension: (McAfee® WebAdvisor) - C:\Users\Alain\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2024-10-01] Edge Extension: (Google Docs hors connexion) - C:\Users\Alain\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-11] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Alain\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-10-01] Edge Extension: (Edge relevant text changes) - C:\Users\Alain\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-27] Edge Extension: (FranceVerif) - C:\Users\Alain\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jpkboimponcpijccnmajogiloakfldgo [2024-09-17] Edge Extension: (Total Adblock - Ad Blocker) - C:\Users\Alain\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kkkldohdhcfhpjchcefpkfhjfeapdmek [2024-06-26] Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip] Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle] Edge HKLM-x32\...\Edge\Extension: [fphgeikpdcdcheaochkhldmnfblfogla] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default [2024-10-01] CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR1494G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms} CHR Extension: (Avira Password Manager) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-08-06] CHR Extension: (Avira Safe Shopping) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2024-09-27] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-10-01] CHR Extension: (Protection Web Avira) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2024-09-27] CHR Extension: (Google Docs hors connexion) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-06] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-06] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] Opera: ======= OPR DefaultProfile: Default ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-08-27] (Apple Inc. -> Apple Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13861048 2024-09-22] (Microsoft Corporation -> Microsoft Corporation) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [460176 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [154512 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [482704 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [57832 2024-07-15] (Dell Inc. -> ) R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [22232 2024-08-23] (Dell Technologies Inc. -> Dell INC.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [51936 2024-09-06] (Dell Technologies Inc. -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [154544 2024-09-16] (Dell Technologies Inc. -> Dell) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe [530520 2023-10-18] (Intel Corporation -> Intel) R3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [78240 2024-05-14] (Intel Corporation -> Intel® Corporation) R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2354584 2024-05-14] (Intel Corporation -> Intel) R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2629936 2024-05-14] (Intel Corporation -> Intel) S2 Killer Provider Data Helper Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerProviderDataHelperService.exe [1088304 2024-05-14] (Intel Corporation -> Intel) R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [78128 2024-05-14] (Intel Corporation -> Intel® Corporation) R2 mc-fw-host; C:\Program Files\McAfee\WPS\1.22.203.1\mc-fw-host.exe [2580616 2024-10-01] (McAfee, LLC -> McAfee, LLC) S3 mc-wps-update; C:\Program Files\McAfee\wps\1.22.203.1\mc-update.exe [3305664 2024-10-01] (McAfee, LLC -> McAfee, LLC) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [918424 2024-09-27] (McAfee, LLC -> McAfee, LLC) S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-27] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ScreenConnect Client (dae370bd-c9b0-4629-b51c-a5d3570f1fc9); C:\Users\Alain\AppData\Local\Apps\2.0\56Y4QQEC.J0A\W3YOPHXQ.K6W\scre..tion_2c2536e5112611c9_0006.0003_5aee660e2d4532f1\ScreenConnect.ClientService.exe [90768 2024-09-27] (ScreenConnect Software -> ) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [153928 2024-09-20] (Dell Technologies Inc. -> Dell Inc.) R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256608 2022-06-29] (Intel Corporation -> Intel Corporation) R2 WavesAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesAudioService.exe [160856 2023-05-04] (Waves Inc -> Waves Audio Ltd) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-27] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-27] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé] R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [44472 2024-09-04] (Microsoft Windows Hardware Compatibility Publisher -> Dell) R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_c330c09d72f3e083\iaLPSS2_GPIO2_TGL.sys [128664 2021-01-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_312c3014729186bd\iaLPSS2_I2C_TGL.sys [201376 2021-01-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_UART2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_tgl.inf_amd64_0b4251313af34984\iaLPSS2_UART2_TGL.sys [310432 2021-01-27] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1548488 2022-10-27] (Intel Corporation -> Intel Corporation) R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_bc398e7169495415\IntcUSB.sys [922712 2023-10-18] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88776 2022-06-22] (Intel Corporation -> Intel Corporation) R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [255792 2024-05-14] (Intel Corporation -> Rivet Networks, LLC.) S0 mfeelam; C:\WINDOWS\System32\DRIVERS\mfeelam.sys [19536 2024-10-01] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R0 mfesec; C:\WINDOWS\System32\DRIVERS\mfesec.sys [75896 2024-10-01] (McAfee, LLC -> McAfee, LLC) S3 rtu53cx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtu53cx22x64sta.inf_amd64_f5ce923856320889\rtu53cx22x64.sys [1024768 2023-02-23] (Realtek Semiconductor Corp. -> Realtek Corporation) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [51192 2023-09-01] (OpenVPN Inc. -> The OpenVPN Project) S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2023-07-25] (nordvpn s.a. -> The OpenVPN Project) S3 UsbNcm; C:\WINDOWS\System32\drivers\UsbNcm.sys [167936 2023-11-15] (Microsoft Windows -> ) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-09-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602392 2024-09-27] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-27] (Microsoft Windows -> Microsoft Corporation) R3 WiMan; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_fd307d9242e9056e\WiMan\WiMan.sys [170576 2023-11-09] (Intel Corporation -> Intel Corporation) R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_fd307d9242e9056e\WiManH\WiManH.sys [182864 2023-11-09] (Intel Corporation -> Intel Corporation) S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2023-09-10] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 polarbear-split-tunneling; \??\C:\Program Files\McAfee\WPS\1.16.194.1\vpn\Drivers\x64\SplitTunnelingDriver.sys [X] S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-10-01 23:15 - 2024-10-01 23:15 - 000029301 _____ C:\Users\Alain\OneDrive\Desktop\Shortcut.txt 2024-10-01 23:14 - 2024-10-01 23:15 - 000046203 _____ C:\Users\Alain\OneDrive\Desktop\Addition.txt 2024-10-01 23:12 - 2024-10-01 23:36 - 000031477 _____ C:\Users\Alain\OneDrive\Desktop\FRST.txt 2024-10-01 21:03 - 2024-10-01 21:04 - 000000274 _____ C:\Users\Alain\Downloads\Search.txt 2024-10-01 21:02 - 2024-10-01 21:38 - 000029294 _____ C:\Users\Alain\Downloads\Shortcut.txt 2024-10-01 21:00 - 2024-10-01 23:36 - 000000000 ____D C:\FRST 2024-10-01 21:00 - 2024-10-01 21:38 - 000056121 _____ C:\Users\Alain\Downloads\FRST.txt 2024-10-01 20:58 - 2024-10-01 20:58 - 002397696 _____ (Farbar) C:\Users\Alain\OneDrive\Desktop\FRST64.exe 2024-10-01 20:40 - 2024-10-01 20:40 - 005200296 _____ (kernel-panik) C:\Users\Alain\Downloads\kprm_1.9.exe 2024-10-01 20:39 - 2024-10-01 20:39 - 002363664 _____ (kernel-panik) C:\Users\Alain\Downloads\Non confirmé 965705.crdownload 2024-10-01 18:43 - 2024-10-01 18:43 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-10-01 06:25 - 2024-10-01 06:25 - 000056842 _____ C:\Users\Alain\Downloads\3658A3358274_ACCESSAP_NALLATAMBY (1).pdf 2024-10-01 06:19 - 2024-10-01 06:19 - 000075896 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfesec.sys 2024-09-30 15:37 - 2024-09-30 15:37 - 000056842 _____ C:\Users\Alain\Downloads\3658A3358274_ACCESSAP_NALLATAMBY.pdf 2024-09-29 19:15 - 2024-09-29 19:15 - 000004292 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1698168778 2024-09-29 19:15 - 2024-09-29 19:15 - 000001435 _____ C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2024-09-29 04:06 - 2024-09-29 04:06 - 000000162 ____H C:\Users\Alain\Downloads\~$f_692123310130724.pdf 2024-09-28 12:12 - 2024-09-28 12:12 - 000774296 _____ C:\WINDOWS\system32\perfh00C.dat 2024-09-28 12:12 - 2024-09-28 12:12 - 000149372 _____ C:\WINDOWS\system32\perfc00C.dat 2024-09-28 11:01 - 2024-09-28 11:01 - 000000000 ____D C:\Users\Alain\AppData\Local\McAfee 2024-09-27 20:27 - 2024-09-27 20:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2024-09-27 20:27 - 2024-09-27 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2024-09-27 20:26 - 2024-09-27 20:33 - 000000000 ____D C:\ProgramData\WPSInstallerTemp1 2024-09-27 14:30 - 2024-10-01 20:18 - 000000000 ____D C:\ProgramData\scre..tion_2c2536e5112611c9_0006.0003_5aee660e2d4532f1 2024-09-27 14:29 - 2024-09-27 14:29 - 000000000 ____D C:\Users\Alain\AppData\Local\Deployment 2024-09-27 14:29 - 2024-09-27 14:29 - 000000000 ____D C:\Users\Alain\AppData\Local\Apps\2.0 2024-09-26 19:21 - 2024-09-26 19:21 - 000003938 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate 2024-09-26 14:50 - 2024-09-26 14:50 - 000101737 _____ C:\Users\Alain\Downloads\Avenant_AD02C305746_250581_GX-487-ML_NALLATAMBY_ALAIN.pdf 2024-09-25 21:25 - 2024-09-25 21:25 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1122655281-3850239576-514751100-1001 2024-09-25 21:25 - 2024-09-25 21:25 - 000002466 _____ C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-09-25 08:21 - 2024-06-05 22:14 - 005229128 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys 2024-09-25 08:21 - 2024-06-05 22:13 - 001496136 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter10.dll 2024-09-18 17:36 - 2024-09-18 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2024-09-18 17:35 - 2024-09-18 17:35 - 000000000 ____D C:\Program Files\iTunes 2024-09-14 14:00 - 2024-09-14 14:00 - 000002264 _____ C:\Users\Alain\AppData\LocalLow\77e2aeb7d287c591e83df060bd0791395599662b0525d26ab77b624e9c5ab91c 2024-09-13 08:15 - 2024-09-13 08:15 - 000002264 _____ C:\Users\Alain\AppData\LocalLow\8c90dfe160aa4d7986b18c7fec0883014fca29eb8008c982dfaa42b780933236 2024-09-12 23:40 - 2024-08-02 00:47 - 000786688 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2024-09-12 23:40 - 2024-08-02 00:47 - 000671536 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2024-09-12 23:40 - 2024-08-02 00:46 - 000982128 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2024-09-12 23:40 - 2024-08-02 00:46 - 000740744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2024-09-12 23:40 - 2024-08-02 00:46 - 000624680 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2024-09-12 23:40 - 2024-08-02 00:46 - 000600176 _____ C:\WINDOWS\SysWOW64\IntelControlLib32.dll 2024-09-12 23:40 - 2024-08-02 00:46 - 000483680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 027986888 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 020710848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 002118080 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-09-12 23:40 - 2024-08-02 00:43 - 002118080 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-09-12 23:40 - 2024-08-02 00:43 - 002041904 _____ C:\WINDOWS\system32\ze_intel_gpu_raytracing.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 001676224 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-09-12 23:40 - 2024-08-02 00:43 - 001676224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-09-12 23:40 - 2024-08-02 00:43 - 001465896 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 001465896 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 001308208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 001308208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 000799680 _____ C:\WINDOWS\system32\ze_loader.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 000563648 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 000353328 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 000339640 _____ C:\WINDOWS\system32\ControlLib.dll 2024-09-12 23:40 - 2024-08-02 00:43 - 000281888 _____ C:\WINDOWS\SysWOW64\ControlLib32.dll 2024-09-09 22:25 - 2024-09-25 22:56 - 000021287 _____ C:\Users\Alain\AppData\LocalLow\14cec8a688e7e25ec65d0024a12c37be778db19ee974553c79f1bfd71cb3ee51 2024-09-09 22:25 - 2024-09-25 22:56 - 000000130 _____ C:\Users\Alain\AppData\LocalLow\491dfa6c5089e8600099e6d1172d3a6bce2aaa0bc0a8fb3c146b3df0d94a5618 2024-09-06 21:25 - 2024-09-06 21:25 - 000136650 _____ C:\Users\Alain\AppData\LocalLow\6c74a54a0d0bdd1b2c969a6b63986c9e3a5326a039980433366da8dcd178ef03 2024-09-06 21:25 - 2024-09-06 21:25 - 000000026 _____ C:\Users\Alain\AppData\LocalLow\e7982957ebbd5c2201036e164cca986460ce2fbb59aa4658d7c67adbf1838282 ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-10-01 23:35 - 2024-07-02 22:20 - 000000130 _____ C:\Users\Alain\AppData\LocalLow\d184b3a61bf4be513cbb771b07df842ddf56f91b67d9cbe187f53880ca9b5c5d 2024-10-01 23:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-10-01 23:26 - 2024-07-02 22:20 - 000031263 _____ C:\Users\Alain\AppData\LocalLow\7c20ed46f96c41e8f4707573a4b5f44f7b40b89f3834b85911e9c253e71a658b 2024-10-01 23:04 - 2024-07-01 10:51 - 000782611 _____ C:\Users\Alain\AppData\LocalLow\f68745aa7a9338028522371f61f4006042b0b517326f372ba707e936d2a1fab0 2024-10-01 23:03 - 2021-12-29 12:48 - 000000000 ____D C:\Users\Alain\AppData\Local\D3DSCache 2024-10-01 22:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-10-01 22:09 - 2022-10-12 14:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-10-01 22:09 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-10-01 20:42 - 2024-07-01 10:51 - 000000130 _____ C:\Users\Alain\AppData\LocalLow\542c1e7e7a3f794d97a241f547580e15b32e73702c3ce8d5d387f920a571694b 2024-10-01 20:35 - 2022-10-12 14:05 - 000000000 ____D C:\Users\Alain 2024-10-01 20:23 - 2024-07-01 21:51 - 000016811 _____ C:\Users\Alain\AppData\LocalLow\abdfbee3f482f410934d1e17c2f7f6fa1d3b379b2a07284ffda6ea337445c922 2024-10-01 20:19 - 2021-12-29 12:50 - 000000000 ___RD C:\Users\Alain\OneDrive 2024-10-01 20:18 - 2024-07-01 10:29 - 000011216 _____ C:\Users\Alain\AppData\LocalLow\6d1a0d74b8983cab26a68cd0cdace1fb63918ce4f5f6aeaeeefb13009d6d5154 2024-10-01 20:18 - 2022-01-26 11:50 - 000000000 ____D C:\Users\Alain\AppData\Roaming\Microsoft\Teams 2024-10-01 20:18 - 2021-12-29 12:48 - 000000000 __SHD C:\Users\Alain\IntelGraphicsProfiles 2024-10-01 19:33 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-10-01 18:43 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-10-01 18:43 - 2021-07-25 04:21 - 000000000 ____D C:\Program Files\Microsoft Office 2024-10-01 12:46 - 2022-01-09 12:38 - 000000000 ____D C:\Users\Alain\OneDrive\Desktop\Perso 2024-10-01 08:30 - 2021-12-29 12:48 - 000000000 ____D C:\Users\Alain\AppData\Local\Packages 2024-10-01 08:25 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2024-10-01 06:32 - 2024-07-01 10:33 - 000000130 _____ C:\Users\Alain\AppData\LocalLow\a8b141efd5a28a0535a4b1cef38c232052f69977de70ef5ac15dddb5a77f531f 2024-10-01 06:19 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2024-10-01 06:13 - 2021-07-25 11:29 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services 2024-09-30 19:12 - 2021-07-25 11:26 - 000000000 ____D C:\ProgramData\Goodix 2024-09-29 09:22 - 2022-01-07 09:30 - 000000000 ____D C:\Users\Alain\AppData\Roaming\Microsoft\Excel 2024-09-28 20:36 - 2021-07-25 11:30 - 000000000 ____D C:\ProgramData\McAfee 2024-09-28 17:44 - 2021-07-25 04:21 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-09-28 12:12 - 2022-10-12 14:09 - 001713450 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-09-28 07:33 - 2022-10-12 14:09 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-09-28 07:33 - 2022-10-12 14:09 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-09-27 20:27 - 2021-07-25 11:39 - 000000000 ____D C:\ProgramData\Packages 2024-09-27 17:35 - 2021-12-31 14:55 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-09-27 14:37 - 2021-07-25 03:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-09-27 14:31 - 2024-07-02 02:32 - 000021931 _____ C:\Users\Alain\AppData\LocalLow\c471a3f3b88ab9b37460e73f6bb1a3e7a513a2a2866fad587ff56ef5a1ad7e6c 2024-09-27 08:21 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-09-27 04:13 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-09-27 03:58 - 2024-07-02 02:32 - 000000130 _____ C:\Users\Alain\AppData\LocalLow\bef33e67af07b07688c0a6330e732d016df14dc5824def44f89868a00efa36c8 2024-09-27 03:56 - 2022-10-12 14:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-09-27 03:56 - 2022-10-12 14:05 - 000472320 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-09-27 03:56 - 2022-05-07 07:17 - 001835008 _____ C:\WINDOWS\system32\config\BBI 2024-09-27 03:56 - 2021-07-25 11:25 - 000000000 ____D C:\Intel 2024-09-27 03:56 - 2021-07-25 03:58 - 000012288 ___SH C:\DumpStack.log.tmp 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\IME 2024-09-27 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-09-27 03:55 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing 2024-09-27 00:54 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-09-27 00:53 - 2022-10-12 14:08 - 003213312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-09-26 20:51 - 2021-07-25 11:34 - 000000000 ____D C:\ProgramData\Package Cache 2024-09-26 19:29 - 2021-07-25 11:27 - 000000000 ____D C:\Program Files\Dell 2024-09-26 19:20 - 2021-07-25 11:27 - 000000000 ____D C:\Program Files (x86)\Dell 2024-09-26 19:14 - 2022-04-04 13:25 - 000000000 ____D C:\Program Files\dotnet 2024-09-25 21:54 - 2024-07-01 23:11 - 000016811 _____ C:\Users\Alain\AppData\LocalLow\b15d3a108baf677bad705d2193ceb1d29295e9ae5672296ad2f6ec14fa4d226f 2024-09-25 21:54 - 2024-07-01 23:11 - 000000130 _____ C:\Users\Alain\AppData\LocalLow\9efc7b77bc60a484afa1dbca8105b35ad2d2bcddf61075a21cfb283050ad9d1e 2024-09-25 21:25 - 2022-10-12 14:09 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1122655281-3850239576-514751100-1001 2024-09-24 22:57 - 2024-08-06 21:32 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-09-23 19:48 - 2023-08-28 16:47 - 000000000 ____D C:\Users\Alain\AppData\Local\CrashDumps 2024-09-17 03:30 - 2024-07-01 21:51 - 000000026 _____ C:\Users\Alain\AppData\LocalLow\6bdad7e2b2f0e006a1b2964609240b6498c71fd5a1aeb1e97866f9a43779a743 2024-09-17 03:29 - 2024-07-01 10:33 - 000011216 _____ C:\Users\Alain\AppData\LocalLow\183fe6247284088bf5e3cb9f4cf38746039fa07f000070dabdfab908a343a64e 2024-09-13 04:40 - 2024-07-01 10:29 - 000000026 _____ C:\Users\Alain\AppData\LocalLow\7107d4cac2bc4428fa0187dfd88ac646a0a936ba0c71f8a4e27055a4333f4375 2024-09-12 03:25 - 2023-10-13 03:51 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-09-11 08:47 - 2024-07-02 02:52 - 000002264 _____ C:\Users\Alain\AppData\LocalLow\3c75e537297a397e2d2b4b6d032a2ab976f41f013497f2154b6cab043af46d8c 2024-09-11 06:46 - 2021-12-31 14:55 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-09-09 08:31 - 2021-12-29 12:50 - 000000000 ____D C:\Users\Alain\AppData\Local\PlaceholderTileLogoFolder 2024-09-04 15:12 - 2024-07-28 02:40 - 000002264 _____ C:\Users\Alain\AppData\LocalLow\939586214dacc2c607bcbc75fa11015aaf4b1369a498a5b8edffcf4f64d2ee5c 2024-09-03 08:12 - 2024-07-28 18:38 - 000002264 _____ C:\Users\Alain\AppData\LocalLow\74a819003d8539cb848831671c95b476bcae2ec5d7e1a843eba822874c31ea33 ==================== SigCheckExt ========================= 2024-10-01 20:58 - 2024-10-01 20:58 - 002397696 _____ (Farbar) C:\Users\Alain\OneDrive\Desktop\FRST64.exe 2024-10-01 20:40 - 2024-10-01 20:40 - 005200296 _____ (kernel-panik) C:\Users\Alain\Downloads\kprm_1.9.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {1cd832ee-ecf4-11eb-aee4-806e6f6e6963} {16c5ad6e-a1cf-11ee-af48-806e6f6e6963} timeout 5 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} isolatedcontext Yes default {current} resumeobject {6f57f1f0-4a2e-11ed-81ea-8696aff9d845} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {16c5ad6e-a1cf-11ee-af48-806e6f6e6963} device partition=\Device\HarddiskVolume1 path \EFI\Boot\BootX64.efi description UEFI RST PC SN730 NVMe WDC 512GB 21252P807891 isolatedcontext Yes Application logicielle (101fffff) -------------------------------- identificateur {1cd832ee-ecf4-11eb-aee4-806e6f6e6963} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager isolatedcontext Yes Chargeur de démarrage Windows ----------------------------- identificateur {09c405cc-9ec4-11e5-9b46-5ce0c5654d7a} device ramdisk=[\Device\HarddiskVolume6]\sources\sos.wim,{492933ee-cd0d-11e1-9b66-d4bed91b7fc5} path \windows\system32\winload.efi description Dell SupportAssist locale en-US inherit {bootloadersettings} isolatedcontext Yes osdevice ramdisk=[\Device\HarddiskVolume6]\sources\sos.wim,{492933ee-cd0d-11e1-9b66-d4bed91b7fc5} systemroot \Windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {6f57f1f2-4a2e-11ed-81ea-8696aff9d845} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {6f57f1f0-4a2e-11ed-81ea-8696aff9d845} nx OptIn bootmenupolicy Standard bootstatuspolicy DisplayAllFailures Chargeur de démarrage Windows ----------------------------- identificateur {6f57f1f2-4a2e-11ed-81ea-8696aff9d845} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{6f57f1f3-4a2e-11ed-81ea-8696aff9d845} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery isolatedcontext Yes osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{6f57f1f3-4a2e-11ed-81ea-8696aff9d845} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {d2e7514f-8a7b-11ec-aefc-b06088b05b7f} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{d2e75150-8a7b-11ec-aefc-b06088b05b7f} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery isolatedcontext Yes osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{d2e75150-8a7b-11ec-aefc-b06088b05b7f} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {6f57f1f0-4a2e-11ed-81ea-8696aff9d845} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {6f57f1f2-4a2e-11ed-81ea-8696aff9d845} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes isolatedcontext Yes Paramètres EMS -------------- identificateur {emssettings} bootems No isolatedcontext Yes Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local isolatedcontext Yes Erreurs de mémoire RAM ---------------------- identificateur {badmemory} isolatedcontext Yes Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} isolatedcontext Yes Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} isolatedcontext Yes Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} isolatedcontext Yes hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} isolatedcontext Yes Options de périphérique ----------------------- identificateur {492933ee-cd0d-11e1-9b66-d4bed91b7fc5} isolatedcontext Yes ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \sources\boot.sdi Options de périphérique ----------------------- identificateur {6f57f1f3-4a2e-11ed-81ea-8696aff9d845} description Windows Recovery isolatedcontext Yes ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi Options Ramdisk du programme d'installation ------------------------------------------- identificateur {ramdiskoptions} isolatedcontext Yes ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \sources\boot.sdi ==================== Fin de FRST.txt ========================