RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 11-07-2021
ExÃ©cutÃ© par hamdo (administrateur) sur DESKTOP-PVL5088 (Dell Inc. Inspiron 3593) (13-07-2021 09:50:43)
ExÃ©cutÃ© depuis C:\Users\hamdo\Desktop
Profils chargÃ©s: hamdo
Platform: Windows 10 Home Single Language Version 20H2 19042.1052 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: FF
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\hamdo\AppData\Local\WebEx\ciscowebexstart.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\hamdo\AppData\Local\WebEx\WebEx\Meetings\atmgr.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_c0fd909ca6e7d672\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxCUIServiceN.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f51939e52b944f4b\igfxEMN.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_02cb1e2f1d9586a9\IntelCpHDCPSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_34f570cbe7f3d6c7\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Projector\Epson USB Display V1.7\EMP_UDSA.exe
(Smadsoft) [Fichier non signÃ©] C:\Program Files (x86)\SMADAV\SMÎRTP.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_f9e3e5f664173b9e\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_f9e3e5f664173b9e\WavesSysSvc64.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1141544 2020-09-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_f9e3e5f664173b9e\WavesSvc64.exe [1774688 2020-09-02] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWelcome.exe [345848 2019-06-20] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
HKLM-x32\...\Run: [SMÎRT-Protection] => C:\Program Files (x86)\Smadav\SMÎRTP.exe [1932368 2020-11-05] (Smadsoft) [Fichier non signÃ©]
HKLM-x32\...\Run: [EPSON_UD_START] => C:\Program Files (x86)\EPSON Projector\Epson USB Display V1.7\EMP_UD.exe [538728 2014-04-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\hamdo\AppData\Local\Microsoft\Teams\Update.exe [2452112 2020-10-17] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default
HKU\S-1-5-21-574398650-3765043527-585314370-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize 
HKU\S-1-5-21-574398650-3765043527-585314370-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\hamdo\AppData\Local\WebEx\ciscowebexstart.exe [4525896 2021-06-26] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-574398650-3765043527-585314370-1001\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-574398650-3765043527-585314370-1001\...\Policies\Explorer\DisallowRun: [1] Mshta.exe
HKU\S-1-5-21-574398650-3765043527-585314370-1001\...\Policies\Explorer\DisallowRun: [2] powershell.exe
HKU\S-1-5-21-574398650-3765043527-585314370-1001\...\Policies\Explorer\DisallowRun: [3] bitsadmin.exe
HKU\S-1-5-21-574398650-3765043527-585314370-1001\...\MountPoints2: {013dc777-cbbd-11eb-873b-98e74346db26} - "E:\EMP_UDSe.exe" /autorun
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-06-30] (Google LLC -> Google LLC)

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) ============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {01594C6C-DDDD-4177-B9F7-977AA687F336} - System32\Tasks\G2MUpdateTask-S-1-5-21-574398650-3765043527-585314370-1001 => C:\Users\hamdo\AppData\Local\GoToMeeting\19796\g2mupdate.exe [31176 2021-06-26] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {03AF2068-A2FF-4A3D-A7DD-DF5FECB76324} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-16] (Google LLC -> Google LLC)
Task: {0911D7F0-9B42-4512-A722-B447F4D08633} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147304 2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {0BDC15E8-C022-4448-8CB7-E41DC6C1CC6A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {160EBE3A-6D22-46E1-80AA-F4A2DD8E8F5D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1E9DFC70-BEA4-4CD9-AEF8-0AFA6B640AFF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {396CE9A1-EEB1-4848-9440-5AE690D6440C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {3FA13198-DF4F-4ADE-9600-CEC5DBB1675D} - System32\Tasks\Opera scheduled Autoupdate 1602878380 => C:\Users\hamdo\AppData\Local\Programs\Opera\launcher.exe
Task: {4944F658-9FA9-45CB-A097-6BC5E71781D3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147304 2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {5CB7BAB5-0459-4455-BE90-284BD172C86D} - System32\Tasks\smadav => C:\Program Files (x86)\Smadav\SMÎRTP.exe [1932368 2020-11-05] (Smadsoft) [Fichier non signÃ©]
Task: {7AFE4726-644F-4CBD-BD8F-E6C38DEBC331} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8D0BD8F1-453C-46C5-8ABA-19F8500D123D} - System32\Tasks\Opera scheduled assistant Autoupdate 1602878382 => C:\Users\hamdo\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\hamdo\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {ACF4909D-3C47-4888-8244-AEAF50965E21} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5311432 2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {B899456A-7A9D-4021-B889-10D7B22060A6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3A3B38F-486B-4CFE-8A3D-C2C4A8346A30} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D0A8B0F0-F8D1-4386-8CF7-23599D6F41DA} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060896 2021-06-03] (Dell Inc -> Dell Inc.)
Task: {DA4DA447-F25F-414D-BB0D-46E082F6D8C2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-16] (Google LLC -> Google LLC)
Task: {DC648F7F-65C9-49CF-9A3E-8FF52E80A6F6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5311432 2021-07-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5DD526A-77E1-4503-98C6-6B318F566216} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4082288 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {F73A6B2C-0F77-4755-8541-AD1ADABA191C} - System32\Tasks\G2MUploadTask-S-1-5-21-574398650-3765043527-585314370-1001 => C:\Users\hamdo\AppData\Local\GoToMeeting\19796\g2mupload.exe [31176 2021-06-26] (LogMeIn, Inc. -> LogMeIn, Inc.)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-574398650-3765043527-585314370-1001.job => C:\Users\hamdo\AppData\Local\GoToMeeting\19796\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-574398650-3765043527-585314370-1001.job => C:\Users\hamdo\AppData\Local\GoToMeeting\19796\g2mupload.exe

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.51.78
Tcpip\..\Interfaces\{0a51db20-ced1-486e-b68f-81c911992ffc}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{8928d172-3698-429b-94d5-5ec7c72e0e27}: [DhcpNameServer] 192.168.51.78

Edge: 
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvÃ©(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvÃ©(e)]
Edge Profile: C:\Users\hamdo\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-13]

FireFox:
========
FF DefaultProfile: qy1lluyb.default
FF ProfilePath: C:\Users\hamdo\AppData\Roaming\Mozilla\Firefox\Profiles\qy1lluyb.default [2021-04-26]
FF NewTab: Mozilla\Firefox\Profiles\qy1lluyb.default -> hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-10-16 07:58:22&bName=
FF ProfilePath: C:\Users\hamdo\AppData\Roaming\Mozilla\Firefox\Profiles\r9mb8e8v.default-release [2021-07-13]
FF NewTab: Mozilla\Firefox\Profiles\r9mb8e8v.default-release -> hxxps://securesearch.org/homepage?hp=2&pId=BT170603&iDate=2020-10-16 07:58:22&bName=
FF NetworkProxy: Mozilla\Firefox\Profiles\r9mb8e8v.default-release -> backup.ftp", ""
FF Session Restore: Mozilla\Firefox\Profiles\r9mb8e8v.default-release -> est activÃ©.
FF Notifications: Mozilla\Firefox\Profiles\r9mb8e8v.default-release -> hxxps://mail.google.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)

Chrome: 
=======
CHR Profile: C:\Users\hamdo\AppData\Local\Google\Chrome\User Data\Default [2021-07-12]
CHR Extension: (Safe Torrent Scanner) - C:\Users\hamdo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-01-25]
CHR Extension: (Pas de nom) - C:\Users\hamdo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-07-13]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\hamdo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-13]
CHR Extension: (Chrome Media Router) - C:\Users\hamdo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-13]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056656 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [313488 2019-10-10] (Dell Inc -> Dell Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [422432 2021-05-23] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3981856 2021-05-23] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [623136 2021-05-23] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [48832 2020-11-19] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1009264 2021-03-30] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2021-04-01] (Dell Inc -> Dell INC.)
S3 Dell.CommandPowerManager.Service; C:\Windows\system32\dllhost.exe /Processid:{9E7D14D9-0522-42A8-AB74-5E9063A000C9} [21312 2021-04-27] (Microsoft Windows -> Microsoft Corporation)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-05-10] (Dell Inc -> )
R2 EMP_UDSA; C:\Program Files (x86)\EPSON Projector\Epson USB Display V1.7\EMP_UDSA.exe [166504 2014-04-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [2357864 2020-08-31] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2021-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [64184 2019-08-07] (Rivet Networks LLC -> CloudBees, Inc.)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2353352 2019-08-07] (Rivet Networks LLC -> Rivet Networks)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-06-03] (Dell Inc -> Dell Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-12] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 eppvad_simple; C:\WINDOWS\system32\drivers\EMP_UDAU.sys [23040 2011-01-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
R3 iaLPSS2_GPIO2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [132952 2019-08-07] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-07-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425192 2021-07-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2021-07-13 09:50 - 2021-07-13 09:55 - 000022866 _____ C:\Users\hamdo\Desktop\FRST.txt
2021-07-13 09:46 - 2021-07-13 09:43 - 002301440 _____ (Farbar) C:\Users\hamdo\Desktop\FRST64.exe
2021-07-13 09:44 - 2021-07-13 09:52 - 000000000 ____D C:\FRST
2021-07-13 09:43 - 2021-07-13 09:43 - 002301440 _____ (Farbar) C:\Users\hamdo\Downloads\FRST64.exe
2021-07-12 21:24 - 2021-07-12 21:24 - 000079883 _____ C:\Users\hamdo\Downloads\the-chronicles-of-narnia-the-lion-the-witch-and-the-ward_arabic-2374274.zip
2021-07-12 21:07 - 2021-07-12 21:07 - 000019520 _____ C:\Users\hamdo\Downloads\ice-age_HI_arabic-293580.zip
2021-07-12 21:06 - 2021-07-12 21:06 - 000019402 _____ C:\Users\hamdo\Downloads\ice-age_arabic-245864.zip
2021-07-12 21:05 - 2021-07-12 21:05 - 000019328 _____ C:\Users\hamdo\Downloads\ice-age_arabic-636232.zip
2021-07-12 21:04 - 2021-07-12 21:04 - 000013298 _____ C:\Users\hamdo\Downloads\ice-age_arabic-207828.zip
2021-07-12 21:03 - 2021-07-12 21:03 - 000019498 _____ C:\Users\hamdo\Downloads\ice-age_arabic-887038.zip
2021-07-12 21:02 - 2021-07-12 21:02 - 000031466 _____ C:\Users\hamdo\Downloads\home-alone-2--lost-in-new-york_arabic-2113432.zip
2021-07-12 15:43 - 2021-07-12 15:43 - 000031297 _____ C:\Users\hamdo\Downloads\frozen-2013-arabic-yify-69923.zip
2021-07-12 15:40 - 2021-07-12 15:40 - 000031297 _____ C:\Users\hamdo\Downloads\frozen-2013-arabic-yify-69920.zip
2021-07-04 19:05 - 2021-07-04 19:05 - 000343093 _____ C:\Users\hamdo\Downloads\CIN.pdf
2021-07-04 19:01 - 2021-07-04 19:01 - 000247468 _____ C:\Users\hamdo\Downloads\cv-converti.pdf
2021-07-04 19:00 - 2021-07-04 19:00 - 000510878 _____ C:\Users\hamdo\Downloads\formulaire-converti.pdf
2021-07-04 18:52 - 2021-07-04 18:52 - 000402327 _____ C:\Users\hamdo\Downloads\appel_proposition.pdf
2021-07-04 18:51 - 2021-07-04 18:51 - 000750315 _____ C:\Users\hamdo\Downloads\circu26.pdf
2021-07-04 14:01 - 2021-07-04 14:01 - 000637651 _____ C:\Users\hamdo\Downloads\rrid-3-024.pdf
2021-07-04 13:13 - 2021-07-04 13:13 - 002082803 _____ C:\Users\hamdo\Downloads\CV Hamdoun Tome I.pdf
2021-07-04 13:04 - 2021-07-04 13:04 - 000053868 _____ C:\Users\hamdo\Downloads\jumanji-the-next-level-2019-arabic-yify-3203.zip
2021-07-04 12:52 - 2021-07-04 12:52 - 000043206 _____ C:\Users\hamdo\Downloads\jumanji-the-next-level-2019-arabic-yify-3204.zip
2021-07-02 20:57 - 2021-07-02 20:57 - 000059881 _____ C:\Users\hamdo\Downloads\HAO-COVID-02-07-2021.xlsx
2021-07-02 18:43 - 2021-07-02 18:44 - 000013218 _____ C:\Users\hamdo\Downloads\a-quiet-place-part-ii-2020-english-yify-332361.zip
2021-07-02 17:54 - 2021-07-02 18:17 - 000000000 ____D C:\Users\hamdo\Downloads\A Quiet Place Part II (2020) [720p] [WEBRip] [YTS.MX]
2021-07-02 17:53 - 2021-07-02 17:53 - 000021431 _____ C:\Users\hamdo\Downloads\A Quiet Place Part II (2020) [720p] [WEBRip] [YTS.MX].torrent
2021-06-28 17:05 - 2021-06-28 17:05 - 002206882 _____ C:\Users\hamdo\Downloads\PFE_Sassi_Nesrine.pdf
2021-06-27 13:35 - 2021-06-27 13:36 - 004055981 _____ C:\Users\hamdo\Downloads\Epi_Info_V6_1_dpp_.pdf
2021-06-27 13:32 - 2021-06-27 13:34 - 000000000 ____D C:\Epi_Info
2021-06-27 13:32 - 2021-06-27 13:32 - 000002469 _____ C:\Users\Public\Desktop\Epi Info.lnk
2021-06-27 13:32 - 2021-06-27 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epi Info
2021-06-27 13:32 - 2021-06-27 13:32 - 000000000 ____D C:\Program Files (x86)\VideoSoft
2021-06-27 13:32 - 2021-06-27 13:32 - 000000000 ____D C:\Program Files (x86)\FathZip
2021-06-27 13:32 - 2021-06-27 13:32 - 000000000 ____D C:\Program Files (x86)\DCube
2021-06-27 13:32 - 2001-05-24 12:59 - 000162304 _____ C:\Program Files (x86)\UNWISE.EXE
2021-06-27 13:32 - 1998-06-17 23:00 - 000089360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vb5db.dll
2021-06-27 13:28 - 2021-06-27 13:31 - 067594240 _____ C:\Users\hamdo\Downloads\epiinfosetup3_5_1_0008.exe
2021-06-27 11:53 - 2021-06-26 19:36 - 001790133 _____ C:\Users\hamdo\Downloads\copie finale thÃ¨se bactÃ©riÃ©mies Ã  BMR 11-07-2019 pdf (1) - Copie.pdf
2021-06-26 21:50 - 2021-06-26 21:50 - 000557232 _____ C:\Users\hamdo\Downloads\relevÃ© sensibilitÃ© 2018 final.pptx
2021-06-26 19:39 - 2021-07-01 15:23 - 000000000 ____D C:\Users\hamdo\Desktop\PFE Anis-Insaf
2021-06-26 19:36 - 2021-06-26 19:36 - 001790133 _____ C:\Users\hamdo\Downloads\copie finale thÃ¨se bactÃ©riÃ©mies Ã  BMR 11-07-2019 pdf (1).pdf
2021-06-26 19:18 - 2021-06-26 19:18 - 000055959 _____ C:\Users\hamdo\Downloads\HAO-COVID-26-06-2021.xlsx
2021-06-26 19:16 - 2021-06-26 19:16 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d73bbc36e06cd5
2021-06-26 19:14 - 2021-06-26 19:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-24 21:32 - 2021-07-07 19:39 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-06-24 13:40 - 2021-06-24 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Projector
2021-06-23 20:50 - 2021-06-23 20:50 - 000223758 _____ C:\Users\hamdo\Downloads\TJH-33-216.pdf
2021-06-23 20:48 - 2021-06-23 20:48 - 000600687 _____ C:\Users\hamdo\Downloads\mjhid-7-1-e2015045.pdf
2021-06-18 17:57 - 2021-06-18 18:01 - 000000000 ____D C:\Users\hamdo\Desktop\Nouveau dossier
2021-06-18 17:57 - 2021-06-18 17:58 - 019912266 _____ C:\Users\hamdo\Downloads\PFE Anis-Insaf.rar
2021-06-18 17:56 - 2021-06-18 17:57 - 007801705 _____ C:\Users\hamdo\Downloads\fwthesefiniepdf.zip

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2021-07-13 09:52 - 2020-01-30 16:27 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2021-07-13 09:46 - 2020-10-16 18:28 - 000000000 ____D C:\Users\hamdo\AppData\LocalLow\Mozilla
2021-07-13 09:40 - 2021-04-28 00:26 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-13 09:40 - 2019-12-07 15:49 - 000757852 _____ C:\WINDOWS\system32\perfh00C.dat
2021-07-13 09:40 - 2019-12-07 15:49 - 000142606 _____ C:\WINDOWS\system32\perfc00C.dat
2021-07-13 09:40 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-13 09:37 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-13 09:36 - 2020-10-17 14:30 - 000000000 ____D C:\Users\hamdo\AppData\Roaming\Smadav
2021-07-13 09:35 - 2021-04-28 00:12 - 000000000 ____D C:\Users\hamdo
2021-07-13 09:35 - 2020-10-16 17:14 - 000000000 __SHD C:\Users\hamdo\IntelGraphicsProfiles
2021-07-13 09:34 - 2021-04-28 00:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-13 09:34 - 2021-04-28 00:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-13 09:34 - 2021-04-28 00:03 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-13 09:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-07-13 07:05 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-13 07:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-13 02:21 - 2020-10-28 23:09 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-13 02:21 - 2020-10-28 23:09 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-07-13 00:57 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-13 00:40 - 2021-05-01 11:54 - 000000000 ____D C:\Users\defaultuser100000
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\L2Schemas
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-07-13 00:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-13 00:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-07-12 23:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2021-07-12 23:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-07-12 22:44 - 2020-01-30 16:23 - 000000000 ____D C:\ProgramData\PCDr
2021-07-12 15:43 - 2020-01-30 16:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2021-07-12 15:41 - 2020-01-30 16:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-07-12 15:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-07-07 19:40 - 2021-05-27 11:59 - 000000666 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-574398650-3765043527-585314370-1001.job
2021-07-07 19:40 - 2021-05-27 11:59 - 000000570 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-574398650-3765043527-585314370-1001.job
2021-07-07 19:39 - 2020-10-16 18:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-06 21:52 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-07-06 21:43 - 2020-01-30 16:51 - 000000000 ____D C:\Program Files\Microsoft Office
2021-07-06 21:40 - 2020-10-16 20:25 - 000000000 ____D C:\Users\hamdo\AppData\Roaming\vlc
2021-07-04 18:01 - 2021-05-31 22:34 - 000000000 ____D C:\Users\hamdo\Desktop\mÃ©moire Aya
2021-07-04 13:26 - 2020-10-16 17:14 - 000000000 ____D C:\Users\hamdo\AppData\Local\Packages
2021-07-02 21:00 - 2020-10-16 21:09 - 000000000 ____D C:\Users\hamdo\AppData\Local\BitTorrentHelper
2021-07-02 21:00 - 2020-10-16 20:57 - 000000000 ____D C:\Users\hamdo\AppData\Roaming\uTorrent
2021-07-02 17:55 - 2021-01-18 19:24 - 000000000 ____D C:\Users\hamdo\AppData\LocalLow\uTorrent
2021-07-02 17:48 - 2020-11-02 19:00 - 000000000 ____D C:\Users\hamdo\AppData\Local\WebEx
2021-06-30 16:43 - 2020-10-16 18:34 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoogleÂ Chrome.lnk
2021-06-30 16:43 - 2020-10-16 18:34 - 000002206 _____ C:\Users\Public\Desktop\GoogleÂ Chrome.lnk
2021-06-30 16:35 - 2020-11-02 19:00 - 000000000 ____D C:\Users\hamdo\AppData\LocalLow\WebEx
2021-06-27 13:33 - 2006-11-30 11:14 - 000000542 _____ C:\WINDOWS\openrda.ini
2021-06-26 19:16 - 2021-04-28 00:43 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-26 19:14 - 2021-05-27 11:59 - 000003832 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-574398650-3765043527-585314370-1001
2021-06-26 19:14 - 2021-05-27 11:59 - 000003736 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-574398650-3765043527-585314370-1001
2021-06-26 19:14 - 2021-05-27 11:59 - 000000000 ____D C:\Users\hamdo\AppData\Local\GoToMeeting
2021-06-26 19:14 - 2020-10-16 18:28 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-24 21:28 - 2020-10-17 22:48 - 000000000 ____D C:\Users\hamdo\AppData\Local\ElevatedDiagnostics
2021-06-24 14:43 - 2020-10-16 20:49 - 000000000 ____D C:\prÃ©sentations
2021-06-24 13:40 - 2020-11-26 08:32 - 000000000 ____D C:\Program Files (x86)\EPSON Projector
2021-06-23 20:46 - 2020-10-17 04:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-18 20:54 - 2021-01-18 19:50 - 000000000 ____D C:\Users\hamdo\AppData\Roaming\dvdcss

==================== Fichiers Ã  la racine de certains dossiers ========

2021-06-27 13:32 - 2001-05-24 12:59 - 000162304 _____ () C:\Program Files (x86)\UNWISE.EXE

==================== FLock ==============================

2021-05-23 12:13 C:\Recovery

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================