Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28-08-2023 Exécuté par 33658 (administrateur) sur DESKTOP-BL5LHNV (Dell Inc. Inspiron 15 5518) (28-08-2023 22:44:16) Exécuté depuis C:\Users\33658\Desktop\FRST64-2.1.exe Profils chargés: 33658 Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2134 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe ->) (Rivet Networks LLC) [Fichier non signé] C:\Program Files\Rivet Networks\SmartByte\RAPS.exe (C:\Program Files\WindowsApps\MicrosoftTeams_23195.1511.2279.823_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.62\msedgewebview2.exe <6> (DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <18> (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesSvc64.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_1e611bd77bc260c3\igfxEMN.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6673c5322430fc8a\igfxCUIServiceN.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_15c9ea6001a5206d\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a687edda40db3316\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d4564390a9b1e980\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\TbtP2pShortcutService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_f21a18a53fedc854\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_2f1c847ecdfad6a7\RtkAudUService64.exe <3> (services.exe ->) (Rivet Networks) [Fichier non signé] C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe (services.exe ->) (Rivet Networks) [Fichier non signé] C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe (services.exe ->) (Rivet Networks, LLC.) [Fichier non signé] C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe (services.exe ->) (Shenzhen Goodix Technology Co., Ltd. -> Goodix) C:\Windows\System32\drivers\GoodixSessionService.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd) C:\Windows\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesAudioService.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesSysSvc64.exe (svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.21300.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_2f1c847ecdfad6a7\RtkAudUService64.exe [1670992 2023-05-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesSvc64.exe [5147736 2023-05-04] (Waves Inc -> Waves Audio Ltd.) HKU\S-1-5-21-1461485193-2194240545-3802442472-1001\...\Run: [MicrosoftEdgeAutoLaunch_2F9113C4D8D23B7645A9ACE3CBD08004] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4107728 2023-08-25] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {B45AA8D8-2AB2-46C3-9B2E-4D77B907C72C} - \EOSv3 Scheduler onLogOn -> Pas de fichier <==== ATTENTION Task: {E6FB7A1B-B1B6-497F-8A60-36702430CAD3} - \EOSv3 Scheduler onTime -> Pas de fichier <==== ATTENTION Task: {70ED9C85-0EE1-451F-BF16-590B5880E36A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe [5158128 2023-08-09] (Microsoft Windows -> Microsoft Corporation) Task: {CEE1CE52-6AC4-4542-AA5F-B783B45AE080} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [738144 2023-04-07] (Dell Inc -> Dell Inc.) Task: {B485C452-0A40-4455-8DCD-124574A6BDC6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656848 2023-08-04] (Microsoft Corporation -> Microsoft Corporation) Task: {009DAA35-849C-428C-91E7-3DD2B92DF0C3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656848 2023-08-04] (Microsoft Corporation -> Microsoft Corporation) Task: {1A461327-EAD8-4908-87A5-6019BCC5E011} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158872 2023-08-15] (Microsoft Corporation -> Microsoft Corporation) Task: {985795C7-097E-4AEE-AD4F-7E629BD822D4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158872 2023-08-15] (Microsoft Corporation -> Microsoft Corporation) Task: {1F713AE7-69AF-4ADB-9258-EBC30F869E4F} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [167864 2023-08-01] (Microsoft Corporation -> Microsoft Corporation) Task: {C1C3D18D-618B-497F-A1CD-F67CA87CF622} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {33563867-715A-495B-9989-271615CF87F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5C8C545C-E028-42DA-9C31-C1A82A358628} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9A351F89-25AD-476A-AC40-E97FD572C3C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-24] (Microsoft Windows Publisher -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{d3eb4b8b-0a1a-4870-a5fa-94cb62faad45}: [DhcpNameServer] 172.31.1.174 Tcpip\..\Interfaces\{fb66c2b2-d898-4060-bc99-d3804bb34c70}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-28] Edge HomePage: Default -> hxxp://www.msn.com/?pc=DCTE Edge Extension: (Malwarebytes Browser Guard) - C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-08-01] Edge Extension: (Edge relevant text changes) - C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-08] Edge Extension: (uBlock Origin) - C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2023-07-21] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-08-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11878368 2023-08-04] (Microsoft Corporation -> Microsoft Corporation) S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [315008 2021-08-23] (Dell Inc -> Dell Inc.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [161488 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [55712 2023-05-15] (Dell Inc -> ) R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [22224 2023-06-07] (Dell Inc -> Dell INC.) S3 Dell.CommandPowerManager.Service; C:\Windows\system32\dllhost.exe /Processid:{D9784BF4-3712-4A80-BB4F-5EB6CE8AD9B9} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49880 2023-07-28] (Dell Inc -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [156064 2022-12-09] (Dell Inc -> Dell) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_f21a18a53fedc854\AS\IAS\IntelAudioService.exe [530560 2023-03-14] (Intel Corporation -> Intel) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9283096 2023-08-28] (Malwarebytes Inc. -> Malwarebytes) R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [56832 2022-07-28] (Rivet Networks, LLC.) [Fichier non signé] S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [56832 2022-07-28] (Rivet Networks, LLC.) [Fichier non signé] R2 SessionSvc; C:\WINDOWS\System32\drivers\GoodixSessionService.exe [44160 2021-03-18] (Shenzhen Goodix Technology Co., Ltd. -> Goodix) R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1623552 2022-07-28] (Rivet Networks) [Fichier non signé] R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2381824 2022-07-28] (Rivet Networks) [Fichier non signé] R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [160096 2023-04-07] (Dell Inc -> Dell Inc.) R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256608 2022-06-29] (Intel Corporation -> Intel Corporation) R2 WavesAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_9599ba4917111eeb\WavesAudioService.exe [160856 2023-05-04] (Waves Inc -> Waves Audio Ltd) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-24] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-24] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-10-12] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-10-12] (Microsoft Corporation) [Fichier non signé] S3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24968 2022-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Dell) R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [46528 2023-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [137040 2021-01-21] (GENESYS LOGIC, INC. -> Genesys Logic) R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_c330c09d72f3e083\iaLPSS2_GPIO2_TGL.sys [128664 2021-01-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_312c3014729186bd\iaLPSS2_I2C_TGL.sys [201376 2021-01-27] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1548488 2022-10-27] (Intel Corporation -> Intel Corporation) R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_1013b3c009bce5af\IntcUSB.sys [917672 2023-03-14] (Intel Corporation -> Intel(R) Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222672 2023-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-08-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MpKsld91ac0eb; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{572B30BC-08BD-4C73-A5D4-391357E5CBB2}\MpKslDrv.sys [222464 2023-08-28] (Microsoft Windows -> Microsoft Corporation) R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [167080 2022-07-28] (Intel Corporation -> Rivet Networks, LLC.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-08-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-08-24] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-24] (Microsoft Windows -> Microsoft Corporation) R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_f54d0a27ac206b8c\WiManH\WiManH.sys [175672 2021-07-28] (Intel Corporation -> Intel Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-08-28 22:44 - 2023-08-28 22:44 - 002382336 _____ (Farbar) C:\Users\33658\Desktop\FRST64-2.1.exe 2023-08-28 10:37 - 2023-06-21 04:19 - 000549744 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2023-08-28 10:37 - 2023-06-21 04:19 - 000488896 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2023-08-28 10:37 - 2023-06-21 04:18 - 000979064 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2023-08-28 10:37 - 2023-06-21 04:18 - 000737784 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2023-08-28 10:37 - 2023-06-21 04:18 - 000621720 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2023-08-28 10:37 - 2023-06-21 04:18 - 000521656 _____ C:\WINDOWS\SysWOW64\IntelControlLib32.dll 2023-08-28 10:37 - 2023-06-21 04:18 - 000480640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 027983792 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 020707800 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 002209200 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2023-08-28 10:37 - 2023-06-21 04:17 - 002209200 _____ C:\WINDOWS\system32\vulkaninfo.exe 2023-08-28 10:37 - 2023-06-21 04:17 - 001643480 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-08-28 10:37 - 2023-06-21 04:17 - 001643480 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2023-08-28 10:37 - 2023-06-21 04:17 - 001506736 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 001506736 _____ C:\WINDOWS\system32\vulkan-1.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 001239472 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 001239472 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 000522672 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 000462808 _____ C:\WINDOWS\system32\ze_loader.dll 2023-08-28 10:37 - 2023-06-21 04:17 - 000313216 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2023-08-28 10:37 - 2023-06-21 04:16 - 000304280 _____ C:\WINDOWS\system32\ControlLib.dll 2023-08-28 10:37 - 2023-06-21 04:16 - 000252592 _____ C:\WINDOWS\SysWOW64\ControlLib32.dll 2023-08-24 14:38 - 2023-08-24 14:38 - 000773806 _____ C:\WINDOWS\system32\perfh00C.dat 2023-08-24 14:38 - 2023-08-24 14:38 - 000148830 _____ C:\WINDOWS\system32\perfc00C.dat 2023-08-24 14:32 - 2023-08-24 14:32 - 000001871 _____ C:\Users\33658\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MaxxAudio Pro de Waves - Contrôle audio du microphone et des haut-parleurs et son 3D Nx.lnk 2023-08-24 14:29 - 2023-05-08 18:52 - 000299912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTHDASIO64.dll 2023-08-24 14:29 - 2023-05-08 18:52 - 000253320 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RTHDASIO.dll 2023-08-21 19:46 - 2023-08-21 19:46 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1461485193-2194240545-3802442472-1001 2023-08-21 19:46 - 2023-08-21 19:46 - 000002423 _____ C:\Users\33658\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-08-19 14:52 - 2023-08-19 14:52 - 000029757 _____ C:\Users\33658\Desktop\N230819063.pdf 2023-08-18 14:42 - 2023-08-18 14:42 - 000000000 ____D C:\WINDOWS\{0F05E98A-0E91-4DA4-A367-CE4E7BB6A9FB} 2023-08-09 08:33 - 2023-08-09 08:35 - 000000000 ___HD C:\$WinREAgent ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-08-28 22:44 - 2023-03-13 10:13 - 000020559 _____ C:\Users\33658\Desktop\FRST.txt 2023-08-28 22:44 - 2023-03-13 10:12 - 000000000 ____D C:\Users\33658\Desktop\FRST-OlderVersion 2023-08-28 22:44 - 2023-03-13 10:12 - 000000000 ____D C:\FRST 2023-08-28 22:38 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-08-28 22:33 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-08-28 19:33 - 2022-10-10 00:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-08-28 18:54 - 2021-07-26 20:40 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services 2023-08-28 13:21 - 2023-04-29 10:54 - 000000000 ____D C:\Users\33658\AppData\Local\Malwarebytes 2023-08-28 11:02 - 2021-12-17 22:54 - 000000000 ____D C:\Users\33658\AppData\Local\CrashDumps 2023-08-28 10:42 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-08-28 10:37 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-08-28 10:37 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-08-28 10:37 - 2021-07-26 20:34 - 000000000 ____D C:\Intel 2023-08-28 09:40 - 2021-09-14 13:20 - 000000000 ____D C:\Users\33658\AppData\Local\D3DSCache 2023-08-28 09:37 - 2021-09-14 13:20 - 000000000 __SHD C:\Users\33658\IntelGraphicsProfiles 2023-08-26 09:34 - 2023-01-16 10:34 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-08-26 09:34 - 2021-07-19 10:37 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-08-24 14:37 - 2022-10-10 00:24 - 001711138 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-08-24 14:33 - 2022-10-10 00:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-08-24 14:33 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-08-24 14:33 - 2021-07-19 10:22 - 000012288 ___SH C:\DumpStack.log.tmp 2023-08-24 14:32 - 2022-11-17 23:20 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2023-08-24 14:32 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-08-24 14:31 - 2021-09-16 20:53 - 000000000 ___HD C:\Program Files (x86)\Temp 2023-08-24 00:22 - 2021-07-19 10:22 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-08-21 19:46 - 2022-10-10 00:24 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1461485193-2194240545-3802442472-1001 2023-08-18 14:43 - 2021-09-14 13:20 - 000000000 ____D C:\Users\33658\AppData\Local\Packages 2023-08-18 14:43 - 2021-07-26 20:39 - 000000000 ____D C:\Program Files\Dell 2023-08-18 14:43 - 2021-07-26 20:39 - 000000000 ____D C:\Program Files (x86)\Dell 2023-08-15 11:38 - 2021-07-19 10:37 - 000000000 ____D C:\Program Files\Microsoft Office 2023-08-10 09:54 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-08-10 00:19 - 2022-10-10 00:20 - 000470512 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\id-ID 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\et-EE 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\es-MX 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-08-10 00:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\appcompat 2023-08-09 10:01 - 2021-09-16 17:38 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-08-09 09:59 - 2021-09-16 17:37 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-08-09 08:39 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-08-09 08:37 - 2022-10-10 00:20 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================