Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-11-2021 Exécuté par drche (administrateur) sur DESKTOP-JJFESLT (Dell Inc. Inspiron 5379) (10-11-2021 23:06:08) Exécuté depuis C:\Users\drche\Downloads Profils chargés: drche Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.318 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Inc -> Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (Dell Inc.) [Fichier non signé] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe (Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_e12f514e96bb8edd\aesm_service.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3a5ee891ed2d147b\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3a5ee891ed2d147b\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3a5ee891ed2d147b\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_3a5ee891ed2d147b\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.67.0_x64__wafk5atnkzcwy\mcafee-security.exe (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.67.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe (Microsoft Corporation -> ) C:\Program Files (x86)\Microsoft\Edge\Application\95.0.1020.44\identity_helper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.44\msedgewebview2.exe <12> (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14527.20234.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIVAE.EXE (SonicWall Inc. -> ) C:\Program Files (x86)\SonicWall\SSL-VPN\NetExtender\NEIdle.exe (SonicWall Inc. -> SonicWall Inc.) C:\Program Files (x86)\SonicWall\SSL-VPN\NetExtender\NEService64.exe (SonicWall Inc. -> SonicWall) C:\Program Files (x86)\SonicWall\SSL-VPN\NetExtender\NEGui.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3910656 2017-05-04] (Dell Inc.) [Fichier non signé] HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228776 2017-06-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489896 2017-06-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-11-28] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [340480 2018-07-26] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [337720 2020-11-12] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [SonicWallNetExtender] => C:\Program Files (x86)\SonicWall\SSL-VPN\NetExtender\NEGui.exe [3733968 2020-06-13] (SonicWall Inc. -> SonicWall) HKLM\...\Run: [SonicWallNEIdle] => C:\Program Files (x86)\SonicWall\SSL-VPN\NetExtender\NEIdle.exe [116864 2018-10-31] (SonicWall Inc. -> ) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1189744 2017-06-27] (Waves Inc -> Waves Audio Ltd.) HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [466312 2020-05-20] (Express Vpn LLC -> ExpressVPN) HKU\S-1-5-21-552047028-3048408597-1423828684-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIVAE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-552047028-3048408597-1423828684-1001\...\Run: [MicrosoftEdgeAutoLaunch_85FCC96ABAE3E0701ABF796E3B70429B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKU\S-1-5-21-552047028-3048408597-1423828684-1001\...\Run: [ExpressVPN4] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe [1162632 2020-05-20] (Express Vpn LLC -> ExpressVPN) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2021-06-28] (pdfforge GmbH) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-10-31] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {04DE33DA-0D4A-4927-A8C2-888E6EA573C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {64888C68-5990-44AB-907D-0829309A9907} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-26] (Google LLC -> Google LLC) Task: {9987D2BC-58BC-4BEC-93F9-A59EB959F54C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {AF771A70-9AE8-457A-A9A8-C040860D6261} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-26] (Google LLC -> Google LLC) Task: {BF5F160F-6938-4F90-BC1B-FC6B009E6907} - System32\Tasks\EPSON XP-452 455 Series Update {2826E79E-E22C-4785-9BEB-D8E0E4A43154} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier) Task: {E1FB8204-2339-459C-8BE4-FC81A19FBDD9} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-08-20] (Dell Inc -> Dell Inc.) Task: {E4D4AABC-D8DD-451B-B477-B817F24F51FF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FF37ED0E-3A70-45E4-9FD0-4EF8F4AD1536} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON XP-452 455 Series Update {2826E79E-E22C-4785-9BEB-D8E0E4A43154}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE:/EXE:{2826E79E-E22C-4785-9BEB-D8E0E4A43154} /F:UpdateWORKGROUP\DESKTOP-JJFESLT$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{21cef920-0a80-451c-a37a-e7980862e89d}: [DhcpNameServer] 10.189.0.1 Tcpip\..\Interfaces\{2caecd1d-83af-4f95-8a3a-c1b463329a7b}: [DhcpNameServer] 172.51.1.171 Tcpip\..\Interfaces\{752b7245-6816-4412-82ce-5cd00269ef21}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d59c1d24-8efc-4bd5-afa4-a53ab1489b5c}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{F9B6A1A1-794D-4DC1-AA9D-8B9086BA44D1}: [NameServer] 192.168.10.1 91.121.61.147 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Profile 1 Edge Profile: C:\Users\drche\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-27] Edge Profile: C:\Users\drche\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2021-01-28] Edge Profile: C:\Users\drche\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2021-11-10] FireFox: ======== FF DefaultProfile: rtxfuvq0.default FF ProfilePath: C:\Users\drche\AppData\Roaming\Zotero\Zotero\Profiles\rtxfuvq0.default [2021-11-08] Chrome: ======= CHR Profile: C:\Users\drche\AppData\Local\Google\Chrome\User Data\Default [2021-11-09] CHR Notifications: Default -> hxxps://www.epson.fr CHR Extension: (Slides) - C:\Users\drche\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-26] CHR Extension: (Zotero Connector) - C:\Users\drche\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekhagklcjbdpajgpjgmbionohlpdbjgc [2021-08-26] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\drche\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.) S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [312864 2017-07-20] (Dell Inc -> Dell Inc.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [426528 2021-08-02] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3835424 2021-08-02] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [452640 2021-08-02] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1020584 2021-07-28] (PC-Doctor, Inc. -> PC-Doctor, Inc.) R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2021-07-08] (Dell Inc -> Dell INC.) S3 Dell.CommandPowerManager.Service; C:\Windows\system32\dllhost.exe /Processid:{5205E109-BAF4-4035-BCBE-8C0DC3308684} [45368 2021-06-05] (Microsoft Windows -> Microsoft Corporation) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-10-12] (Dell Inc -> ) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2017-11-13] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [438664 2020-05-20] (Express Vpn LLC -> ExpressVPN) R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.) S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1633040 2021-08-13] (Rivet Networks LLC -> Rivet Networks) R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2390800 2021-08-13] (Rivet Networks LLC -> Rivet Networks) R2 SONICWALL_NetExtender; C:\Program Files (x86)\SonicWall\SSL-VPN\NetExtender\NEService64.exe [930272 2020-06-13] (SonicWall Inc. -> SonicWall Inc.) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-08-20] (Dell Inc -> Dell Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24968 2021-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell) R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies) S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation) R2 DpmLiteDrv; c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [15080 2014-10-16] (Wistron Corporation -> Wistron Corp.) S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [28440 2020-05-20] (ExprsVPN LLC -> ExpressVPN) R3 NxDrv; C:\WINDOWS\System32\drivers\NxDrv.sys [43976 2018-10-31] (SonicWall Inc. -> SonicWall Inc.) R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [166032 2021-08-13] (Intel Corporation -> Rivet Networks, LLC.) R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [44304 2020-05-20] (ExprsVPN LLC -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-02] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-02] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-10 23:06 - 2021-11-10 23:06 - 000022160 _____ C:\Users\drche\Downloads\FRST.txt 2021-11-10 23:05 - 2021-11-10 23:06 - 000000000 ____D C:\FRST 2021-11-10 23:04 - 2021-11-10 23:05 - 002312192 _____ (Farbar) C:\Users\drche\Downloads\FRST64.exe 2021-11-10 23:00 - 2021-11-10 23:01 - 002386148 _____ C:\WINDOWS\Minidump\111021-8687-01.dmp 2021-11-09 22:59 - 2021-11-09 22:59 - 002478828 _____ C:\WINDOWS\Minidump\110921-7625-01.dmp 2021-11-09 22:25 - 2021-11-09 22:26 - 002396108 _____ C:\WINDOWS\Minidump\110921-7796-01.dmp 2021-11-09 21:47 - 2021-11-09 21:47 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe 2021-11-09 21:47 - 2021-11-09 21:47 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-09 21:47 - 2021-11-09 21:47 - 000014756 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-11-09 21:45 - 2021-11-09 21:45 - 000000000 ___HD C:\$WinREAgent 2021-11-09 21:42 - 2021-11-09 21:42 - 002377108 _____ C:\WINDOWS\Minidump\110921-7687-02.dmp 2021-11-09 21:08 - 2021-11-09 21:08 - 002360100 _____ C:\WINDOWS\Minidump\110921-8062-01.dmp 2021-11-09 19:43 - 2021-11-10 23:01 - 000000000 ____D C:\WINDOWS\Minidump 2021-11-09 19:28 - 2021-11-09 19:28 - 000024968 _____ (Dell) C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys 2021-11-09 19:26 - 2021-11-09 19:26 - 000000000 ____D C:\WINDOWS\{2F366A08-5179-4948-A3AD-CB3F835A5AD5} 2021-11-09 19:25 - 2021-11-09 19:25 - 000000000 ____D C:\Program Files\Rivet Networks 2021-11-08 23:09 - 2021-11-10 23:05 - 001802056 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-11-08 23:09 - 2021-11-08 23:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2021-11-08 23:09 - 2021-11-08 23:09 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-11-08 23:07 - 2021-11-10 23:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-11-08 23:07 - 2021-11-08 23:07 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-11-08 23:07 - 2021-11-08 23:07 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-11-08 23:07 - 2021-11-08 23:07 - 000003510 _____ C:\WINDOWS\system32\Tasks\EPSON XP-452 455 Series Update {2826E79E-E22C-4785-9BEB-D8E0E4A43154} 2021-11-08 23:07 - 2021-11-08 23:07 - 000003368 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d70e241fa74cd0 2021-11-08 23:07 - 2021-11-08 23:07 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-11-08 23:07 - 2021-11-08 23:07 - 000003318 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{39A06B10-DB01-45E8-B7A4-604474C824C5} 2021-11-08 23:07 - 2021-11-08 23:07 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-11-08 23:07 - 2021-11-08 23:07 - 000003276 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate 2021-11-08 23:07 - 2021-11-08 23:07 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-552047028-3048408597-1423828684-1005 2021-11-08 23:07 - 2021-11-08 23:07 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-552047028-3048408597-1423828684-1001 2021-11-08 23:07 - 2021-11-08 23:07 - 000000020 ___SH C:\Users\drche\ntuser.ini 2021-11-08 23:07 - 2021-11-08 23:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2021-11-08 23:06 - 2021-11-08 23:07 - 000017148 _____ C:\WINDOWS\diagwrn.xml 2021-11-08 23:06 - 2021-11-08 23:07 - 000017148 _____ C:\WINDOWS\diagerr.xml 2021-11-08 22:54 - 2021-11-09 22:26 - 000000000 ____D C:\Users\drche 2021-11-08 22:54 - 2021-11-08 23:02 - 000000000 ____D C:\Users\djihen 2021-11-08 22:54 - 2021-11-08 22:54 - 000001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves MaxxAudioPro.lnk 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\Voisinage réseau 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\Voisinage d'impression 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\Modèles 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\Mes documents 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\Menu Démarrer 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\Documents\Mes vidéos 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\Documents\Mes images 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\Documents\Ma musique 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\drche\AppData\Local\Historique 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\Voisinage réseau 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\Voisinage d'impression 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\Modèles 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\Mes documents 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\Menu Démarrer 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\Documents\Mes vidéos 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\Documents\Mes images 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\Documents\Ma musique 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 _SHDL C:\Users\djihen\AppData\Local\Historique 2021-11-08 22:54 - 2021-11-08 22:54 - 000000000 ____D C:\Program Files\Waves 2021-11-08 22:54 - 2021-06-05 13:04 - 000001281 _____ C:\Users\drche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk 2021-11-08 22:54 - 2021-06-05 13:04 - 000001281 _____ C:\Users\djihen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk 2021-11-08 22:54 - 2021-06-05 13:04 - 000000407 _____ C:\Users\drche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk 2021-11-08 22:54 - 2021-06-05 13:04 - 000000407 _____ C:\Users\djihen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk 2021-11-08 22:53 - 2021-11-10 23:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-11-08 22:53 - 2021-11-08 22:53 - 000480296 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-11-08 22:52 - 2021-11-08 23:07 - 000000000 ____D C:\Windows.old 2021-11-08 22:50 - 2021-11-08 22:52 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-11-08 22:49 - 2021-11-08 22:50 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-11-08 22:49 - 2021-11-08 22:49 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-11-08 22:44 - 2021-11-08 22:44 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-11-08 22:44 - 2021-11-08 22:44 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-11-08 22:44 - 2021-11-08 22:44 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll 2021-11-08 22:44 - 2021-11-08 22:44 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr 2021-11-08 22:44 - 2021-11-08 22:44 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll 2021-11-08 22:44 - 2021-11-08 22:44 - 000121344 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-11-08 22:44 - 2021-11-08 22:44 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json 2021-11-08 22:44 - 2021-11-08 22:44 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList 2021-11-08 22:44 - 2021-11-08 22:44 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList 2021-11-08 22:44 - 2021-11-08 22:44 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList 2021-11-08 22:44 - 2021-11-08 22:44 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost 2021-11-08 22:44 - 2021-11-08 22:44 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList 2021-11-08 22:44 - 2021-11-08 22:44 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost 2021-11-08 22:44 - 2021-11-08 22:44 - 000006656 _____ C:\WINDOWS\SysWOW64\nrtapi.dll 2021-11-08 22:44 - 2021-11-08 22:44 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml 2021-11-08 22:43 - 2021-11-08 22:43 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000208896 _____ C:\WINDOWS\system32\IHDS.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-11-08 22:43 - 2021-11-08 22:43 - 000167936 _____ C:\WINDOWS\system32\TpmTool.exe 2021-11-08 22:43 - 2021-11-08 22:43 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000041594 _____ C:\WINDOWS\system32\ctac.json 2021-11-08 22:43 - 2021-11-08 22:43 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000024576 _____ C:\WINDOWS\system32\nrtapi.dll 2021-11-08 22:43 - 2021-11-08 22:43 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml 2021-11-08 22:37 - 2021-11-08 22:52 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-11-08 22:37 - 2021-11-08 22:37 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2021-11-08 22:37 - 2021-11-08 22:37 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-11-08 22:37 - 2021-11-08 22:37 - 000000000 ____D C:\Program Files\MSBuild 2021-11-08 22:37 - 2021-11-08 22:37 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-11-07 21:16 - 2021-11-07 21:34 - 000000000 ____D C:\Users\drche\Desktop\assurance auto 2021-11-07 21:15 - 2021-11-08 23:07 - 000000000 ___DC C:\WINDOWS\Panther 2021-11-07 21:13 - 2021-11-07 21:13 - 000000000 ___HD C:\$SysReset 2021-11-04 21:49 - 2021-11-04 21:49 - 000000000 ____D C:\Users\drche\Downloads\memtest86-usb 2021-11-04 21:44 - 2021-11-04 21:44 - 000000000 ____D C:\Users\drche\Desktop\Lecteur USB 2021-11-04 21:12 - 2021-11-04 21:12 - 008673549 _____ C:\Users\drche\Downloads\memtest86-usb.zip 2021-11-02 22:54 - 2021-11-02 22:54 - 000001347 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhoneRescue for iOS ( DrZero For Sanet.st) .lnk 2021-11-02 22:54 - 2021-11-02 22:54 - 000000000 ____D C:\Users\drche\AppData\Roaming\iMobie 2021-11-02 22:54 - 2021-11-02 22:54 - 000000000 ____D C:\Users\drche\AppData\Local\iMobie_Inc 2021-11-02 22:54 - 2021-11-02 22:54 - 000000000 ____D C:\Program Files (x86)\PhoneRescue for iOS ( DrZero For Sanet.st) 2021-11-02 22:12 - 2021-11-08 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed 2021-11-02 22:12 - 2021-11-02 22:12 - 000000889 _____ C:\Users\drche\Desktop\WhoCrashed.lnk 2021-11-02 22:12 - 2021-11-02 22:12 - 000000000 ____D C:\Program Files\WhoCrashed 2021-11-02 22:11 - 2021-11-02 22:11 - 010692312 _____ (Resplendence Software Projects Sp. ) C:\Users\drche\Downloads\whocrashed_6-70_en_317674.exe 2021-11-01 20:00 - 2021-11-01 20:00 - 001620137 _____ C:\Users\drche\Downloads\MN28909_Encart_Murcef_Part_Septembre_2021_V12.pdf 2021-10-23 20:12 - 2021-10-23 20:12 - 030293488 _____ C:\Users\drche\Desktop\justificatif.pdf 2021-10-23 19:51 - 2021-10-23 19:51 - 000000000 ____D C:\Program Files\EpsonNet 2021-10-19 20:34 - 2021-10-19 20:34 - 000282519 _____ C:\Users\drche\Documents\img20211019_21340062.pdf 2021-10-18 21:16 - 2021-10-18 21:16 - 000255253 _____ C:\Users\drche\Documents\le tenturier lettre recommandation.pdf 2021-10-17 20:05 - 2020-12-01 22:29 - 000001905 ____T C:\Users\drche\Desktop\CHERFAOUI-Certificat de scolarité.pdf 2021-10-17 17:49 - 2021-10-17 17:49 - 000064359 _____ C:\Users\drche\Documents\img20211017_18493250.pdf 2021-10-17 17:31 - 2021-10-17 17:31 - 000307322 _____ C:\Users\drche\Documents\img20211017_18313655.pdf 2021-10-17 16:40 - 2021-10-17 16:40 - 000000000 ____D C:\spellings 2021-10-17 16:37 - 2021-10-17 16:37 - 035881416 _____ (pdfforge GmbH) C:\Users\drche\Downloads\PDFCreator-4_2_0-Setup (1).exe ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-10 23:05 - 2021-06-05 19:14 - 000809232 _____ C:\WINDOWS\system32\perfh00C.dat 2021-11-10 23:05 - 2021-06-05 19:14 - 000156838 _____ C:\WINDOWS\system32\perfc00C.dat 2021-11-10 23:05 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF 2021-11-10 23:03 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-11-10 23:03 - 2020-04-26 11:51 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-10 23:02 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-10 23:01 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-10 23:01 - 2020-04-26 10:31 - 000000000 ___RD C:\Users\drche\OneDrive 2021-11-10 23:00 - 2021-07-30 10:00 - 1074960251 _____ C:\WINDOWS\MEMORY.DMP 2021-11-10 23:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-11-10 23:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState 2021-11-10 23:00 - 2021-02-28 23:45 - 000012288 ___SH C:\DumpStack.log.tmp 2021-11-10 23:00 - 2020-04-26 10:29 - 000000000 __SHD C:\Users\drche\IntelGraphicsProfiles 2021-11-10 22:57 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-09 21:53 - 2020-05-17 20:53 - 000000000 ____D C:\Users\drche\AppData\Local\D3DSCache 2021-11-09 21:51 - 2021-06-05 13:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-11-09 21:51 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-09 21:49 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-11-09 21:49 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-09 21:49 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources 2021-11-09 21:49 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-11-09 21:49 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-11-09 21:49 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-11-09 21:48 - 2020-05-01 07:53 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-11-09 21:48 - 2020-05-01 07:53 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-11-09 21:08 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-11-09 19:27 - 2020-04-26 10:29 - 000000000 ____D C:\Users\drche\AppData\Local\Packages 2021-11-09 19:26 - 2020-04-26 10:33 - 000000000 ____D C:\ProgramData\Packages 2021-11-09 19:25 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Registration 2021-11-09 19:25 - 2018-09-17 16:41 - 000000000 ____D C:\ProgramData\RivetNetworks 2021-11-09 19:23 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-11-08 23:11 - 2020-11-12 00:20 - 000000000 ____D C:\Users\drche\Zotero 2021-11-08 23:07 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-11-08 23:07 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows NT 2021-11-08 23:07 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows Defender 2021-11-08 23:07 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-11-08 23:07 - 2020-04-26 12:53 - 000000290 __RSH C:\ProgramData\ntuser.pol 2021-11-08 23:07 - 2018-09-17 16:57 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-11-08 23:03 - 2020-05-01 17:02 - 000026620 _____ C:\WINDOWS\system32\emptyregdb.dat 2021-11-08 22:55 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-11-08 22:55 - 2021-04-11 14:49 - 000000000 ____D C:\Users\djihen\AppData\Local\Packages 2021-11-08 22:55 - 2021-01-02 14:40 - 000000000 ____D C:\Users\drche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DjVuLibre 2021-11-08 22:54 - 2018-09-17 16:28 - 000000000 ____D C:\WINDOWS\system32\RTCOM 2021-11-08 22:54 - 2018-09-17 16:27 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2021-11-08 22:53 - 2020-06-13 11:20 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-08 22:53 - 2020-06-13 11:20 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-11-08 22:52 - 2021-06-05 13:14 - 000000000 ____D C:\WINDOWS\Setup 2021-11-08 22:52 - 2021-06-05 13:10 - 000000000 __RHD C:\Users\Public\Libraries 2021-11-08 22:52 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2021-11-08 22:52 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-11-08 22:52 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\spool 2021-11-08 22:52 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-11-08 22:52 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\USOPrivate 2021-11-08 22:52 - 2021-06-05 13:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-11-08 22:52 - 2021-03-23 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software 2021-11-08 22:52 - 2021-02-16 22:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SonicWall NetExtender 2021-11-08 22:52 - 2020-12-13 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2021-11-08 22:52 - 2020-06-06 00:03 - 000000000 ____D C:\WINDOWS\SysWOW64\rufus_files 2021-11-08 22:52 - 2020-06-04 22:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2021-11-08 22:52 - 2020-06-04 22:46 - 000000000 ____D C:\WINDOWS\SHELLNEW 2021-11-08 22:52 - 2020-05-01 05:08 - 000000000 ____D C:\Program Files\UNP 2021-11-08 22:52 - 2020-04-26 11:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual BCD 2021-11-08 22:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-11-08 22:52 - 2018-09-17 17:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sda 2021-11-08 22:52 - 2018-09-17 16:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2021-11-08 22:52 - 2018-09-17 16:28 - 000000000 ____D C:\WINDOWS\system32\ihvmanager 2021-11-08 22:52 - 2018-09-17 16:27 - 000000000 ____D C:\Program Files\Intel 2021-11-08 22:52 - 2018-09-17 16:26 - 000000000 ____D C:\Program Files\Realtek 2021-11-08 22:52 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2021-11-08 22:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-11-08 22:51 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Resources 2021-11-08 22:51 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Help 2021-11-08 22:51 - 2020-05-06 02:34 - 000000000 ____D C:\WINDOWS\Firmware 2021-11-08 22:51 - 2018-09-17 16:27 - 000000000 ____D C:\WINDOWS\system32\Intel 2021-11-08 22:50 - 2021-05-23 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2021-11-08 22:50 - 2018-09-17 16:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2021-11-08 22:48 - 2021-06-05 19:22 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-11-08 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System 2021-11-08 22:48 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing 2021-11-08 22:47 - 2021-06-05 19:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2021-11-08 22:47 - 2021-06-05 19:22 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2021-11-08 22:40 - 2021-06-05 19:22 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-11-08 22:40 - 2021-06-05 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2021-11-08 22:40 - 2021-06-05 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2021-11-08 22:40 - 2021-06-05 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2021-11-08 22:40 - 2021-06-05 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2021-11-08 22:40 - 2021-06-05 19:14 - 000000000 ____D C:\WINDOWS\system32\winrm 2021-11-08 22:40 - 2021-06-05 19:14 - 000000000 ____D C:\WINDOWS\system32\WCN 2021-11-08 22:40 - 2021-06-05 19:14 - 000000000 ____D C:\WINDOWS\system32\slmgr 2021-11-08 22:40 - 2021-06-05 19:14 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2021-11-08 22:40 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-11-08 22:40 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\dsc 2021-11-08 22:40 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-11-08 22:40 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-11-08 22:40 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\OCR 2021-11-08 22:40 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-11-08 22:37 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2021-11-08 22:37 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\MUI 2021-11-07 18:11 - 2018-09-17 16:26 - 000000000 ____D C:\ProgramData\PCDr 2021-11-05 23:10 - 2021-02-28 23:46 - 000002419 _____ C:\Users\drche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-11-04 21:06 - 2021-07-07 23:23 - 000000000 ____D C:\Users\drche\AppData\Roaming\PDF Architect 8 2021-11-02 22:48 - 2020-04-26 10:31 - 000000000 ____D C:\Users\drche\AppData\Local\PlaceholderTileLogoFolder 2021-11-02 22:46 - 2021-03-18 16:55 - 000000000 ____D C:\Users\drche\AppData\Roaming\vlc 2021-11-02 22:13 - 2020-04-26 11:16 - 000000000 ____D C:\Users\drche\AppData\Local\DBG 2021-11-02 22:10 - 2018-09-17 16:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-11-01 19:15 - 2021-06-27 21:50 - 000000000 ____D C:\Users\drche\Desktop\DOSSIER equivalence 2021-10-23 19:48 - 2021-05-23 14:18 - 000001240 _____ C:\Users\Public\Desktop\Epson Scan 2.lnk 2021-10-17 11:46 - 2020-05-17 11:58 - 000000000 ____D C:\Users\drche\.VirtualBox 2021-10-17 11:44 - 2020-05-17 11:58 - 000000000 ____D C:\ProgramData\VirtualBox ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================