Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024 Exécuté par Céline (administrateur) sur DESKTOP-UP90LDP (Dell Inc. Vostro 5581) (24-10-2024 13:46:02) Exécuté depuis C:\Users\Céline\Desktop\FRST64.exe Profils chargés: Céline Plate-forme: Microsoft Windows 11 Professionnel Version 24H2 26100.2033 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.24900.130.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.52\msedgewebview2.exe <7> (DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSvc64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rstrui.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Dell Technologies Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4de65d949492707a\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4de65d949492707a\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe (services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_fafb1d329fdfe2c6\aesm_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe <3> (services.exe ->) (Shenzhen Goodix Technology Co., Ltd. -> Goodix) C:\Windows\System32\drivers\SessionService.exe (services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSysSvc64.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24092.24.0_x64__cw5n1h2txyewy\CrossDeviceService.exe (sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\ShellHost.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.5.0.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Céline\AppData\Local\Microsoft\OneDrive\24.192.0923.0006\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe [1343072 2021-08-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSvc64.exe [1570400 2019-08-28] (Waves Inc -> Waves Audio Ltd.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-964256385-3158375656-1982258555-1001\...\Run: [MicrosoftEdgeAutoLaunch_D82297BE8CF7D85C967A7B009A0A6056] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3855400 2024-10-22] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Print\Monitors\Virtual Port Monitor: C:\WINDOWS\system32\VirtualMon.dll [225280 2024-10-21] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\130.0.6723.69\Installer\chrmstp.exe [2024-10-23] (Google LLC -> Google LLC) HKLM\Software\...\Winlogon\GPExtensions: [{9F02E2F5-5A41-4D1A-B473-4617E84BC957}] -> C:\WINDOWS\system32\WindowsProtectedPrintConfiguration.dll [2024-10-21] (Microsoft Windows -> Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {84F30437-2A12-437F-8F65-A5903B75739D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.) Task: {1C39CC60-37C2-4435-A49E-879BCA611E23} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{23DAFA10-A9C1-4057-BB18-0A6260960D4C} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC) Task: {CF894CE8-2943-4684-B5D5-B0F1E9F6F4EE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23570536 2024-09-21] (Microsoft Corporation -> Microsoft Corporation) Task: {BC907FCA-004F-484E-9E61-F1EDF094B7C6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23570536 2024-09-21] (Microsoft Corporation -> Microsoft Corporation) Task: {B592D38C-1216-45D6-AD78-8A39F13F8028} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209784 2024-10-17] (Microsoft Corporation -> Microsoft Corporation) Task: {7D0148D6-130C-40AF-9F0E-FC1D5E61413C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2209784 2024-10-17] (Microsoft Corporation -> Microsoft Corporation) Task: {4FEBE85F-8601-465D-B6FA-E50248565778} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514936 2024-10-17] (Microsoft Corporation -> Microsoft Corporation) Task: {EFEA5F16-372A-4FB1-A5AD-2D685244B88D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3514936 2024-10-17] (Microsoft Corporation -> Microsoft Corporation) Task: {E04C8E4D-ACF1-4267-81DE-9EFB078CE74E} - System32\Tasks\Microsoft\Windows\Containers\CmCleanup => {F50E9363-6BC8-4DC5-8CAB-7D9F8C1B81B4} C:\WINDOWS\System32\cmcleanup.dll [87352 2024-09-06] (Microsoft Windows -> Microsoft Corporation) Task: {D1211565-C8D3-4652-94F0-E7177DB88C70} - System32\Tasks\Microsoft\Windows\Diagnosis\UnexpectedCodepath => C:\WINDOWS\system32\UCConfigTask.exe [77824 2024-10-21] (Microsoft Windows -> ) Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Pas de fichier) Task: {EC4E1419-ADE4-4C7B-B3E1-C4DE54F3DBA8} - System32\Tasks\Microsoft\Windows\PerformanceTrace\RequestTrace => {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} C:\WINDOWS\system32\PerformanceTraceHandler.dll [114688 2024-09-06] (Microsoft Windows -> Microsoft Corporation) Task: {FD953D65-B217-4C79-946C-40F34EA51665} - System32\Tasks\Microsoft\Windows\ReFsDedupSvc\Initialization => {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} C:\WINDOWS\System32\ReFsDedupSvc.exe [2195456 2024-10-21] (Microsoft Windows -> Microsoft Corporation) Task: {A82C5AB5-4D21-4157-AE91-3E9275C5DDEF} - System32\Tasks\Microsoft\Windows\Servicing\OOBEFodSetup => C:\WINDOWS\system32\OOBEFodSetup.exe [40960 2024-09-06] (Microsoft Windows -> Microsoft Corporation) Task: {6E9522D4-5ECB-478B-90ED-91561B8D4524} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => {7750564D-D61C-4557-8A9D-7DF56BDCFF96} C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [270336 2024-10-21] (Microsoft Windows -> Microsoft Corporation) Task: {6B549F30-9F73-486A-9FFB-D9A4B9B0B516} - System32\Tasks\Microsoft\Windows\Sustainability\PowerGridForecastTask => {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} C:\WINDOWS\system32\PowerGridForecastTask.dll [331776 2024-10-21] (Microsoft Windows -> Microsoft Corporation) Task: {E8AF4AEC-BC61-44A6-8D86-1F5F12A67F0B} - System32\Tasks\Microsoft\Windows\Sustainability\SustainabilityTelemetry => {6EE41D75-D091-4FB7-9AD5-018760DD25D4} C:\WINDOWS\system32\EcoScoreTask.dll [90112 2024-10-21] (Microsoft Windows -> Microsoft Corporation) Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {AE889AF2-B6E2-4941-8C89-FCD4EB658F9B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UUS Failover Task => C:\WINDOWS\System32\MLEngineStub.exe [86016 2024-10-21] (Microsoft Windows -> Microsoft Corporation) Task: {5F432674-1419-4669-865D-62FF6F309C79} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-964256385-3158375656-1982258555-1001 => C:\Users\Céline\AppData\Roaming\Zoom\bin\Zoom.exe [432456 2024-09-29] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{37702c04-7e90-4cac-89dc-3e5eff1f8af0}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{c274a923-521c-495b-aeaa-e086e99e4001}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge Profile: C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-24] Edge Notifications: Default -> hxxps://meet.google.com Edge Extension: (Kaspersky Password Manager) - C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2024-09-23] Edge Extension: (Google Docs hors connexion) - C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-19] Edge Extension: (Edge relevant text changes) - C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-08-30] Edge Extension: (AdBlock - bloquez les publicités sur le web) - C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-10-23] Edge Extension: (Authenticator: 2FA Client) - C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ocglkepbibnalbgmbachknglpdipeoio [2024-09-23] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-09-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-09-02] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default [2024-10-24] CHR HomePage: Default -> hxxp://news.google.fr/nwshp?hl=fr&tab=wn CHR StartupUrls: Default -> "hxxp://news.google.fr/nwshp?hl=fr&tab=wn" CHR Extension: (Authenticator) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhghoamapcdpbohphigoooaddinpkbai [2024-08-30] CHR Extension: (Kaspersky Password Manager) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2024-08-30] CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-10-23] CHR Extension: (Google Docs hors connexion) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-09] CHR Extension: (AdBlock - bloquez les publicités sur le web) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-10-24] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-30] CHR Profile: C:\Users\Céline\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-02] CHR HKU\S-1-5-21-964256385-3158375656-1982258555-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.) S3 ApxSvc; C:\WINDOWS\System32\ApxSvc.dll [73728 2024-10-21] (Microsoft Windows -> Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9498088 2024-09-21] (Microsoft Corporation -> Microsoft Corporation) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458128 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [159632 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [481680 2023-12-07] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49880 2023-12-11] (Dell Inc -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [159664 2023-12-22] (Dell Technologies Inc. -> Dell) S3 LocalKdc; C:\WINDOWS\system32\localkdcsvc.dll [794624 2024-10-21] (Microsoft Windows -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9258144 2024-10-23] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-10-23] (Malwarebytes Inc. -> Malwarebytes) S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 PrintDeviceConfigurationService; C:\WINDOWS\System32\PrintDeviceConfigurationService.dll [192512 2024-10-21] (Microsoft Windows -> Microsoft Corporation) S3 PrintScanBrokerService; C:\WINDOWS\System32\PrintScanBrokerService.dll [180224 2024-10-21] (Microsoft Windows -> Microsoft Corporation) S3 refsdedupsvc; C:\WINDOWS\System32\ReFsDedupSvc.exe [2195456 2024-10-21] (Microsoft Windows -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [505608 2024-03-31] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [159048 2024-04-25] (Dell Technologies Inc. -> Dell Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation) S2 Dell SupportAssist Remediation; "C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe" [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 acpipagr; C:\WINDOWS\System32\DriverStore\FileRepository\acpipagr.inf_amd64_d1093347a27ff89c\acpipagr.sys [49152 2024-09-06] (Microsoft Windows -> Microsoft Corporation) S3 AcpiPmi; C:\WINDOWS\System32\DriverStore\FileRepository\acpipmi.inf_amd64_3ced06eb61dcc792\acpipmi.sys [53248 2024-09-06] (Microsoft Windows -> Microsoft Corporation) R0 amdwps; C:\WINDOWS\System32\drivers\amdwps.sys [67144 2024-09-06] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2024-04-01] (Microsoft Corporation) [Fichier non signé] R3 CDD; C:\WINDOWS\System32\cdd.dll [331776 2024-10-21] (Microsoft Windows -> Microsoft Corporation) R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [46640 2024-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 devmap; C:\WINDOWS\System32\DriverStore\FileRepository\devmap.inf_amd64_1993197f4612e967\devmap.sys [53248 2024-09-06] (Microsoft Windows -> Microsoft Corporation) S3 DisplayMux; C:\WINDOWS\System32\DriverStore\FileRepository\displaymux.inf_amd64_da65a70f0c3ce0f3\DisplayMux.sys [57344 2024-09-06] (Microsoft Windows -> Microsoft Corporation) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 I3CHost; C:\WINDOWS\System32\DriverStore\FileRepository\i3chost.inf_amd64_71fb35d9ebcbe45b\I3CHost.sys [296240 2024-10-21] (Microsoft Windows -> Microsoft Corporation) S3 kdnic_legacy; C:\WINDOWS\System32\drivers\kdnic_legacy.sys [70976 2024-09-06] (Microsoft Windows -> Microsoft Corporation) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [232000 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-10-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt11.sys [234168 2024-10-24] (Malwarebytes Inc. -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [80448 2024-10-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2024-10-24] (Malwarebytes Inc. -> Malwarebytes) S3 MsQuicPrev; C:\WINDOWS\System32\drivers\msquicprev.sys [458032 2024-10-21] (Microsoft Windows -> Microsoft Corporation) S2 NetworkPrivacyPolicy; C:\WINDOWS\System32\DriverStore\FileRepository\networkprivacypolicy.inf_amd64_f3940973e0444eec\NetworkPrivacyPolicy.sys [102400 2024-10-21] (Microsoft Windows -> ) S3 PktMonApi; C:\WINDOWS\System32\drivers\PktMonApi.sys [61440 2024-10-21] (Microsoft Windows -> Microsoft Corporation) S3 PlutonHeci; C:\WINDOWS\System32\DriverStore\FileRepository\pluton-heci.inf_amd64_9aaa7a8c15ac7e9a\pluton-heci.sys [58784 2024-09-06] (Microsoft Windows -> ) S3 PlutonHsp2; C:\WINDOWS\System32\DriverStore\FileRepository\plutonhsp2.inf_amd64_0b3fdc25d1dc1c6e\PlutonHsp2.sys [58672 2024-09-06] (Microsoft Windows -> ) S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_feec7a9662e785f0\rtcx21x64.sys [539648 2024-03-28] (Microsoft Windows -> Realtek) U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [443480 2019-07-05] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 uiomap; C:\WINDOWS\System32\DriverStore\FileRepository\uiomap.inf_amd64_11efbd9b4c5f482e\uiomap.sys [69632 2024-09-06] (Microsoft Windows -> Microsoft Corporation) R3 UmPass; C:\WINDOWS\System32\DriverStore\FileRepository\umpass.inf_amd64_06e016c9ffecbf73\umpass.sys [53248 2024-09-06] (Microsoft Windows -> Microsoft Corporation) R2 UnionFS; C:\WINDOWS\system32\drivers\UnionFS.sys [497072 2024-10-21] (Microsoft Windows -> Microsoft Corporation) R3 vwifibus; C:\WINDOWS\System32\DriverStore\FileRepository\netvwifibus.inf_amd64_ab4e111fe8221178\vwifibus.sys [65536 2024-09-06] (Microsoft Windows -> Microsoft Corporation) R3 vwifimp; C:\WINDOWS\System32\DriverStore\FileRepository\netvwifimp.inf_amd64_16c785b9ba77e7b0\vwifimp.sys [86016 2024-09-06] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-09-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602392 2024-09-17] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-17] (Microsoft Windows -> Microsoft Corporation) S3 WinAccelCx0101; C:\WINDOWS\System32\drivers\WinAccelCx.sys [144704 2024-09-06] (Microsoft Windows -> Microsoft Corporation) S3 WinI3C; C:\WINDOWS\System32\DriverStore\FileRepository\wini3c.inf_amd64_a7ed04bfcdb83650\WinI3C.sys [75208 2024-10-21] (Microsoft Windows -> Microsoft Corporation) R0 WinSetupMon; C:\WINDOWS\System32\DRIVERS\WinSetupMon.sys [169440 2024-10-04] (Microsoft Windows -> Microsoft Corporation) S3 WSDPrintDevice; C:\WINDOWS\System32\DriverStore\FileRepository\wsdprint.inf_amd64_1f9e32519098c0b6\WSDPrint.sys [57344 2024-09-06] (Microsoft Windows -> Microsoft Corporation) S3 WSDScan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\WSDScan.sys [61440 2024-09-06] (Microsoft Windows -> Microsoft Corporation) S3 ZTDNS; C:\WINDOWS\System32\drivers\ztdns.sys [107960 2024-10-21] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-10-24 13:46 - 2024-10-24 13:46 - 000027778 _____ C:\Users\Céline\Desktop\FRST.txt 2024-10-24 13:44 - 2024-10-24 13:45 - 002397696 _____ (Farbar) C:\Users\Céline\Desktop\FRST64.exe 2024-10-24 13:36 - 2024-10-24 13:36 - 000162066 _____ C:\Users\Céline\Desktop\ZHPDiag.txt 2024-10-24 13:29 - 2024-10-24 13:29 - 000000000 ____D C:\Users\Céline\AppData\LocalLow\IGDump 2024-10-24 12:06 - 2024-10-24 12:06 - 000234168 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys 2024-10-24 12:06 - 2024-10-24 12:06 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2024-10-24 11:27 - 2024-10-24 11:27 - 000756836 _____ C:\WINDOWS\system32\perfh00C.dat 2024-10-24 11:27 - 2024-10-24 11:27 - 000151172 _____ C:\WINDOWS\system32\perfc00C.dat 2024-10-24 11:16 - 2024-10-24 11:19 - 003536896 _____ (Nicolas Coolman) C:\Users\Céline\Desktop\ZHPSuite.exe 2024-10-23 20:14 - 2024-10-24 13:48 - 000000000 ____D C:\Users\Céline\AppData\Local\Malwarebytes 2024-10-23 20:14 - 2024-10-23 20:14 - 000002095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-10-23 20:14 - 2024-10-23 20:14 - 000002083 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2024-10-23 20:13 - 2024-10-23 20:13 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-10-23 20:13 - 2024-10-23 20:13 - 000000000 ____D C:\Program Files\Malwarebytes 2024-10-23 20:12 - 2024-10-23 20:12 - 002549600 _____ (Malwarebytes) C:\Users\Céline\Desktop\MBSetup.exe 2024-10-23 19:53 - 2024-10-23 19:57 - 000000000 ____D C:\AdwCleaner 2024-10-23 19:51 - 2024-10-23 19:51 - 008790880 _____ (Malwarebytes) C:\Users\Céline\Desktop\adwcleaner.exe 2024-10-23 19:46 - 2024-10-23 19:46 - 000014600 _____ C:\Users\Céline\Desktop\ZHPCleaner (R).txt 2024-10-23 19:43 - 2024-10-23 19:43 - 000014250 _____ C:\Users\Céline\Desktop\ZHPCleaner (S).txt 2024-10-23 19:33 - 2024-10-23 19:33 - 000000878 _____ C:\Users\Céline\Desktop\ZHPCleaner.lnk 2024-10-23 19:32 - 2024-10-23 19:32 - 003362816 _____ (Nicolas Coolman) C:\Users\Céline\Desktop\ZHPCleaner.exe 2024-10-23 19:31 - 2024-10-23 19:31 - 001062573 _____ C:\Users\Céline\Downloads\20241023_191722_vzNiwaN75a.jpeg 2024-10-22 09:49 - 2024-10-22 09:49 - 000000000 ____D C:\Users\Céline\AppData\Local\Dell 2024-10-22 09:32 - 2018-06-24 23:27 - 001106256 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys 2024-10-22 09:24 - 2024-10-23 19:57 - 000000000 ____D C:\Users\Céline\Documents\Dell 2024-10-22 09:18 - 2024-10-22 09:26 - 403820416 _____ (Dell Inc.) C:\Users\Céline\Downloads\Intel-Management-Engine-Components-Installer_PXCYV_WIN_2205.15.0.2623_A05_02.EXE 2024-10-22 09:17 - 2024-10-22 09:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2024-10-22 09:17 - 2024-10-22 09:32 - 000000000 ____D C:\Program Files (x86)\Realtek 2024-10-22 09:17 - 2019-07-05 11:50 - 000443480 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys 2024-10-22 09:15 - 2024-10-24 12:06 - 000000000 ____D C:\ProgramData\Goodix 2024-10-22 09:15 - 2024-10-22 09:15 - 000118032 _____ (Intel Corporation) C:\WINDOWS\system32\sgx_capable.dll 2024-10-22 09:15 - 2024-10-22 09:15 - 000044152 _____ (Goodix) C:\WINDOWS\system32\Drivers\SessionService.exe 2024-10-22 09:15 - 2024-10-22 09:15 - 000000000 ____D C:\Program Files\Goodix 2024-10-22 08:23 - 2024-10-22 08:23 - 000000000 _____ C:\WINDOWS\invcol.tmp 2024-10-22 08:17 - 2024-10-22 09:18 - 000000000 ____D C:\Program Files\Dell 2024-10-22 08:17 - 2024-10-22 08:17 - 000000000 ____D C:\Program Files (x86)\Dell 2024-10-22 08:16 - 2024-10-22 08:16 - 000000000 ____D C:\Program Files\dotnet 2024-10-22 08:15 - 2024-10-23 20:02 - 000000000 ____D C:\ProgramData\Dell 2024-10-22 08:15 - 2024-10-22 08:15 - 001237288 _____ (Dell Inc.) C:\Users\Céline\Downloads\SupportAssistLauncher.exe 2024-10-21 03:18 - 2024-10-21 03:18 - 000000773 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json 2024-10-21 03:11 - 2024-10-23 22:05 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-10-19 19:30 - 2024-10-19 19:30 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2024-10-19 19:28 - 2024-10-19 19:28 - 000000020 ___SH C:\Users\Céline\ntuser.ini 2024-10-19 18:17 - 2024-10-24 11:27 - 001684136 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-10-19 18:16 - 2024-10-24 12:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-10-19 18:16 - 2024-10-23 13:48 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-964256385-3158375656-1982258555-1001 2024-10-19 18:16 - 2024-10-23 13:48 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-964256385-3158375656-1982258555-1001 2024-10-19 18:16 - 2024-10-19 18:16 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-10-19 18:16 - 2024-10-19 18:16 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-10-19 18:16 - 2024-10-19 18:16 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-10-19 18:16 - 2024-10-19 18:16 - 000003378 _____ C:\WINDOWS\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-964256385-3158375656-1982258555-1001 2024-10-19 18:16 - 2024-10-19 18:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2024-10-19 18:16 - 2024-10-19 18:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem 2024-10-19 18:16 - 2024-10-19 18:16 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network 2024-10-19 18:15 - 2024-10-24 12:06 - 000004234 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 2024-10-19 18:14 - 2024-10-24 11:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-10-19 18:14 - 2024-10-22 10:50 - 000471344 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-10-19 18:14 - 2024-10-19 18:16 - 000000000 ____D C:\Windows.old 2024-10-19 18:10 - 2024-10-19 18:14 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Crypto 2024-10-19 18:10 - 2024-10-19 18:10 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\SystemCertificates 2024-10-19 18:10 - 2024-10-19 18:10 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Network 2024-10-19 18:07 - 2024-10-24 11:32 - 000000000 ____D C:\Users\Céline 2024-10-19 18:07 - 2024-10-19 19:30 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows 2024-10-19 18:07 - 2024-10-19 18:14 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2024-10-19 18:07 - 2024-10-19 18:14 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Spelling 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\Voisinage réseau 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\Voisinage d'impression 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\Modèles 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\Mes documents 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\Menu Démarrer 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\Documents\Mes vidéos 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\Documents\Mes images 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\Documents\Ma musique 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2024-10-19 18:07 - 2024-10-19 18:07 - 000000000 _SHDL C:\Users\Céline\AppData\Local\Historique 2024-10-19 18:01 - 2024-10-19 18:01 - 000000000 ____D C:\WINDOWS\system32\cAVS 2024-10-19 18:00 - 2024-10-19 18:07 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2024-10-19 18:00 - 2024-10-19 18:01 - 000000000 ____D C:\WINDOWS\system32\Intel 2024-10-19 17:55 - 2024-10-19 17:55 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2024-10-19 17:30 - 2024-10-19 19:28 - 000000000 ___DC C:\WINDOWS\Panther 2024-10-19 11:48 - 2024-10-24 13:46 - 000000000 ____D C:\FRST 2024-10-19 11:43 - 2024-10-24 13:36 - 000000000 ____D C:\Users\Céline\AppData\Roaming\ZHP 2024-10-19 11:43 - 2024-10-23 19:33 - 000000000 ____D C:\Users\Céline\AppData\Local\ZHP 2024-10-18 15:24 - 2024-10-18 15:24 - 000000000 ____D C:\Users\Céline\AppData\Local\ElevatedDiagnostics 2024-10-18 15:22 - 2024-10-18 15:22 - 000269670 _____ C:\WINDOWS\ntbtlog.txt 2024-10-18 15:22 - 2024-10-18 15:22 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2024-10-17 14:31 - 2024-10-17 14:31 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-10-14 10:39 - 2024-10-14 10:39 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Bibliography 2024-10-05 10:29 - 2024-10-05 10:29 - 000000000 ____D C:\Users\Céline\AppData\Local\TeamViewer 2024-09-29 14:34 - 2022-09-30 05:24 - 000050720 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ss_conn_usb_driver2.sys 2024-09-29 13:45 - 2024-10-19 18:14 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2024-09-29 13:43 - 2021-10-13 19:35 - 001177088 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\IntcOED.sys 2024-09-29 13:43 - 2021-10-13 19:34 - 000301576 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\IntcAudioBus.sys 2024-09-29 13:42 - 2021-10-13 19:35 - 048048648 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTPreprocStreamer.dll 2024-09-29 13:42 - 2021-10-13 19:35 - 001687560 _____ (Intel Corporation) C:\WINDOWS\system32\MultiChannelWoV.dll 2024-09-29 13:42 - 2021-10-13 19:35 - 000879104 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWovSDK.dll 2024-09-29 13:42 - 2021-10-13 19:35 - 000508432 _____ (Intel Corporation) C:\WINDOWS\system32\MultichannelWoVCfg.dll 2024-09-29 13:41 - 2021-08-26 01:56 - 006510656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2024-09-29 13:41 - 2021-08-26 01:56 - 000276848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTHDASIO64.dll 2024-09-29 13:41 - 2021-08-26 01:56 - 000231280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RTHDASIO.dll 2024-09-29 13:41 - 2021-06-08 03:25 - 001859608 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-09-29 13:41 - 2021-06-08 03:25 - 001859608 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-09-29 13:41 - 2021-06-08 03:25 - 001440280 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-09-29 13:41 - 2021-06-08 03:25 - 001440280 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-09-29 13:41 - 2021-06-08 03:25 - 001102304 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-09-29 13:41 - 2021-06-08 03:25 - 000956416 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-09-29 13:41 - 2021-06-08 03:24 - 000309680 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2024-09-29 13:41 - 2021-06-08 03:24 - 000257088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2024-09-29 13:41 - 2021-06-08 03:24 - 000173088 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2024-09-29 13:41 - 2021-06-08 03:24 - 000148392 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2024-09-29 13:39 - 2018-12-14 13:47 - 000403440 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\esif_lf.sys 2024-09-29 13:39 - 2018-12-14 13:47 - 000078832 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_acpi.sys 2024-09-29 13:39 - 2018-12-14 13:47 - 000075248 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_cpu.sys 2024-09-23 11:46 - 2024-09-23 11:46 - 000000000 ____D C:\Users\Céline\AppData\Local\OneDrive 2024-09-23 10:25 - 2024-09-23 10:26 - 000000146 _____ C:\Users\Céline\Desktop\Trello.url 2024-09-17 11:28 - 2024-09-17 11:28 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\QuickStyles 2024-09-14 19:16 - 2024-10-19 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2024-09-14 19:16 - 2024-09-15 16:48 - 000000000 ____D C:\Users\Céline\AppData\Roaming\vlc 2024-09-14 19:16 - 2024-09-14 19:16 - 000000918 _____ C:\Users\Public\Desktop\VLC media player.lnk 2024-09-14 19:15 - 2024-09-14 19:15 - 000000000 ____D C:\Program Files\VideoLAN 2024-09-14 18:59 - 2024-09-14 18:59 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-09-14 18:58 - 2024-09-14 18:58 - 000000879 _____ C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tor Browser.lnk 2024-09-11 14:35 - 2024-09-11 14:40 - 000000445 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2024-09-10 09:53 - 2024-09-10 09:53 - 000000000 ____D C:\Users\Céline\Documents\Zoom 2024-09-10 09:51 - 2024-09-10 09:51 - 000000000 ____D C:\Users\Céline\AppData\Local\Zoom 2024-09-10 09:50 - 2024-09-29 21:36 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Zoom 2024-09-06 06:02 - 2024-09-06 06:02 - 000026169 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-09-06 06:02 - 2024-09-06 06:02 - 000026169 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-09-06 06:02 - 2024-09-06 06:02 - 000005264 _____ C:\WINDOWS\system32\ecoscore_config.json 2024-09-03 09:56 - 2024-09-03 09:56 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2024-09-02 21:28 - 2024-10-19 18:14 - 000000000 ____D C:\Program Files\Intel 2024-09-02 21:27 - 2024-09-02 21:27 - 000349884 _____ C:\Users\Céline\Desktop\Contrat Fabien BREHERET.pdf 2024-09-02 21:22 - 2024-09-02 21:22 - 000000000 ____D C:\Users\Céline\Documents\Modèles Office personnalisés 2024-09-02 20:00 - 2024-10-22 09:36 - 000000000 ____D C:\ProgramData\Package Cache 2024-09-02 19:47 - 2024-09-02 19:47 - 000000000 ____D C:\Users\Céline\AppData\Local\INetHistory 2024-09-02 18:47 - 2024-09-02 18:47 - 000000000 ____D C:\Users\Céline\AppData\Local\CEF 2024-09-02 18:25 - 2024-09-02 18:25 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\MMC 2024-09-02 18:25 - 2024-09-02 18:25 - 000000000 ____D C:\Users\Céline\AppData\Local\VEDetector 2024-09-02 18:25 - 2024-09-02 18:25 - 000000000 ____D C:\Users\Céline\AppData\Local\Bytedance 2024-09-02 18:24 - 2024-10-19 18:14 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CapCut 2024-09-02 18:24 - 2024-09-02 18:24 - 000001267 _____ C:\Users\Céline\Desktop\CapCut.lnk 2024-09-02 18:24 - 2024-09-02 18:24 - 000000000 ____D C:\Users\Céline\AppData\Local\CapCut Drafts 2024-09-02 18:22 - 2024-09-02 19:37 - 000000000 ____D C:\Users\Céline\AppData\Local\CapCut 2024-09-02 11:39 - 2024-10-23 14:00 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Excel 2024-09-02 11:38 - 2024-10-23 14:00 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Word 2024-09-02 11:38 - 2024-09-23 16:06 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\UProof 2024-09-02 11:38 - 2024-09-18 10:07 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Office 2024-09-02 11:38 - 2024-09-02 11:38 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Proof 2024-09-02 11:38 - 2024-09-02 11:38 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\AddIns 2024-09-02 11:36 - 2024-10-19 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2024-09-02 11:36 - 2024-09-02 11:36 - 000002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2024-09-02 11:36 - 2024-09-02 11:36 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2024-09-02 11:36 - 2024-09-02 11:36 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2024-09-02 11:36 - 2024-09-02 11:36 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2024-09-02 11:36 - 2024-09-02 11:36 - 000002397 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2024-09-02 11:28 - 2024-10-17 14:30 - 000000000 ____D C:\Program Files\Microsoft Office 2024-09-02 11:28 - 2024-09-02 11:28 - 000000000 ____D C:\Program Files\Microsoft Office 15 2024-09-02 09:31 - 2024-09-02 09:31 - 000000000 ____D C:\Users\Céline\AppData\LocalLow\Temp 2024-09-01 22:24 - 2024-09-01 22:24 - 000000000 ____D C:\Users\Céline\AppData\Local\PeerDistRepub 2024-08-30 15:55 - 2024-08-30 15:55 - 000000000 ____D C:\ProgramData\Adobe 2024-08-30 15:54 - 2024-09-18 16:26 - 000000000 ____D C:\Users\Céline\AppData\Roaming\com.adobe.dunamis 2024-08-30 15:54 - 2024-08-30 15:55 - 000000000 ____D C:\Users\Céline\AppData\LocalLow\Adobe 2024-08-30 15:54 - 2024-08-30 15:54 - 000000000 ____D C:\Users\Céline\AppData\Local\SolidDocuments 2024-08-30 15:54 - 2024-08-30 15:54 - 000000000 ____D C:\Users\Céline\.ms-ad 2024-08-30 15:50 - 2024-10-10 15:45 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-08-30 15:50 - 2024-10-10 15:45 - 000002063 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2024-08-30 15:50 - 2024-08-30 15:50 - 000000000 ____D C:\Program Files\Adobe 2024-08-30 15:48 - 2024-08-30 15:50 - 000000000 ____D C:\Program Files\Common Files\Adobe 2024-08-30 15:45 - 2024-09-18 16:26 - 000000000 ____D C:\Users\Céline\AppData\Local\Adobe 2024-08-30 14:51 - 2024-10-23 19:46 - 000000000 ____D C:\Users\Céline\AppData\Roaming\discord 2024-08-30 14:51 - 2024-10-23 13:48 - 000002250 _____ C:\Users\Céline\Desktop\Discord.lnk 2024-08-30 14:50 - 2024-10-23 19:31 - 000000000 ____D C:\Users\Céline\AppData\Local\Discord 2024-08-30 14:50 - 2024-10-10 16:18 - 000000000 ____D C:\Users\Céline\AppData\Local\SquirrelTemp 2024-08-30 01:29 - 2024-08-30 01:29 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2024-08-30 01:26 - 2024-09-11 11:45 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-08-30 01:23 - 2024-08-30 01:23 - 000000000 ____D C:\Users\Céline\AppData\Local\VirtualStore 2024-08-30 00:50 - 2024-08-30 00:50 - 000000000 ____D C:\Users\Céline\AppData\Local\Comms 2024-08-30 00:19 - 2024-08-30 00:27 - 000000000 ____D C:\ProgramData\Intel 2024-08-30 00:19 - 2024-08-30 00:19 - 000000000 ____D C:\Users\Céline\AppData\LocalLow\Intel 2024-08-30 00:19 - 2024-08-30 00:19 - 000000000 ____D C:\Users\Céline\AppData\Local\Publishers 2024-08-30 00:18 - 2024-10-24 13:18 - 000000000 __SHD C:\Users\Céline\IntelGraphicsProfiles 2024-08-30 00:18 - 2024-08-30 00:18 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2024-08-30 00:16 - 2024-10-23 20:55 - 000000000 ____D C:\Users\Céline\AppData\Local\D3DSCache 2024-08-30 00:16 - 2024-10-23 13:48 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-08-30 00:16 - 2024-10-23 13:48 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-08-30 00:16 - 2024-08-30 00:16 - 000000000 ____D C:\Users\Céline\AppData\Local\Google 2024-08-30 00:16 - 2024-08-30 00:16 - 000000000 ____D C:\Program Files\Google 2024-08-30 00:16 - 2024-08-30 00:16 - 000000000 ____D C:\Program Files (x86)\Google 2024-08-30 00:14 - 2024-10-23 13:48 - 000002422 _____ C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-08-30 00:14 - 2024-09-06 11:53 - 000000000 ____D C:\Users\Céline\AppData\Local\PlaceholderTileLogoFolder 2024-08-30 00:14 - 2024-08-30 00:14 - 000000000 ___RD C:\Users\Céline\OneDrive 2024-08-30 00:13 - 2024-10-22 08:28 - 000000000 ____D C:\Users\Céline\AppData\Local\Packages 2024-08-30 00:13 - 2024-10-19 19:28 - 000000000 __RHD C:\Users\Public\AccountPictures 2024-08-30 00:13 - 2024-09-18 16:26 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Adobe 2024-08-30 00:13 - 2024-08-30 01:08 - 000000000 ___SD C:\Users\Céline\AppData\Roaming\Microsoft\Protect 2024-08-30 00:13 - 2024-08-30 00:13 - 000000000 ___SD C:\Users\Céline\AppData\Roaming\Microsoft\Credentials 2024-08-30 00:13 - 2024-08-30 00:13 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Vault 2024-08-30 00:13 - 2024-08-30 00:13 - 000000000 ____D C:\Users\Céline\AppData\Local\ConnectedDevicesPlatform 2024-08-29 23:36 - 2024-09-01 22:28 - 000000000 ____D C:\Windows.old.000 2024-08-29 22:44 - 2024-08-29 22:44 - 000000000 ____D C:\WINDOWS\CSC 2024-08-29 22:42 - 2024-10-22 08:28 - 000000000 ____D C:\ProgramData\Packages 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidéos 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Public\Documents\Mes images 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\Modèles 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\Mes documents 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\Documents\Mes images 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\ProgramData\Modèles 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\ProgramData\Bureau 2024-08-29 22:42 - 2024-08-29 22:42 - 000000000 _SHDL C:\Program Files\Fichiers communs 2024-08-29 22:39 - 2024-10-24 10:32 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-08-29 22:39 - 2024-10-24 10:32 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2024-08-29 22:39 - 2024-09-17 09:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-08-29 22:39 - 2024-08-29 22:39 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2024-08-29 22:39 - 2024-08-29 22:39 - 000000000 ____D C:\WINDOWS\system32\config\BFS 2024-08-29 21:45 - 2024-08-29 21:45 - 000000000 ____D C:\ESD 2024-08-29 21:44 - 2024-08-29 21:44 - 000000000 ___HD C:\$Windows.~WS 2024-08-29 19:09 - 2024-08-29 19:10 - 000000000 ___HD C:\$SysReset 2024-08-23 04:19 - 2024-08-23 04:19 - 000000000 _SHDL C:\Documents and Settings 2024-08-23 04:12 - 2024-10-24 12:06 - 000012288 ___SH C:\DumpStack.log.tmp 2024-08-23 04:12 - 2024-10-24 12:06 - 000000000 ____D C:\Intel ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-10-24 13:42 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-10-24 13:37 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-10-24 13:36 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-10-24 12:06 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState 2024-10-24 12:03 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2024-10-24 12:03 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF 2024-10-24 12:03 - 2024-04-01 09:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-10-24 12:03 - 2018-10-04 15:32 - 000000000 ____D C:\dell 2024-10-24 11:35 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps 2024-10-24 11:33 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\registration 2024-10-23 20:46 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps.tmp 2024-10-23 20:14 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2024-10-22 09:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2024-10-21 05:02 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\USOPrivate 2024-10-21 04:16 - 2024-04-01 18:37 - 000000000 ___SD C:\WINDOWS\system32\AppV 2024-10-21 04:16 - 2024-04-01 18:37 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-10-21 04:16 - 2024-04-01 18:37 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-10-21 04:16 - 2024-04-01 18:36 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\UNP 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\setup 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\migwiz 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\IME 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\BrowserCore 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-10-21 04:16 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System 2024-10-21 04:16 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing 2024-10-21 03:21 - 2024-04-01 09:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2024-10-21 03:21 - 2024-04-01 09:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2024-10-20 21:58 - 2024-04-01 18:37 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-10-20 21:58 - 2024-04-01 18:36 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync 2024-10-20 21:58 - 2024-04-01 18:36 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-10-20 21:58 - 2024-04-01 18:36 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync 2024-10-20 21:58 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\fr 2024-10-20 21:58 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\system32\fr 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 __RSD C:\WINDOWS\Media 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\lxss 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\dsc 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\WUModels 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Keywords 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\icsxml 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\downlevel 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\DDFs 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Com 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Bthprops 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\L2Schemas 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\IdentityCRL 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\DiagTrack 2024-10-20 21:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Cursors 2024-10-20 21:57 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod 2024-10-20 21:57 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2024-10-20 21:57 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Pbr 2024-10-20 21:57 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\InputMethod 2024-10-20 21:57 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\IME 2024-10-20 21:57 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Help 2024-10-20 21:57 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-10-20 21:55 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\registration.tmp 2024-10-20 21:22 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\appcompat 2024-10-19 21:27 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2024-10-19 18:27 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\OCR 2024-10-19 18:16 - 2024-04-01 09:26 - 000000000 ___RD C:\Program Files\Windows Defender 2024-10-19 18:16 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Windows NT 2024-10-19 18:15 - 2024-04-01 09:26 - 000000000 __RHD C:\Users\Public\Libraries 2024-10-19 18:14 - 2024-04-01 09:26 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2024-10-19 18:14 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\spool 2024-10-19 18:14 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2024-10-19 18:14 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2024-10-19 18:14 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2024-10-19 18:14 - 2022-05-07 12:35 - 000000000 ____D C:\WINDOWS\system32\Hydrogen 2024-10-19 18:14 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2024-10-19 18:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2024-10-19 18:14 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2024-10-19 18:13 - 2024-04-01 09:29 - 000000000 ____D C:\WINDOWS\Setup 2024-10-19 18:09 - 2024-04-01 09:26 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows 2024-10-19 18:07 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\schemas 2024-10-19 18:07 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2024-10-19 18:07 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2024-10-19 18:02 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2024-10-19 18:02 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2024-10-19 18:02 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2024-10-19 18:02 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2024-10-19 18:02 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\system32\winrm 2024-10-19 18:02 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\system32\WCN 2024-10-19 18:02 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\system32\slmgr 2024-10-19 18:02 - 2024-04-01 18:34 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2024-10-19 18:02 - 2024-04-01 09:26 - 000000000 ___RD C:\Program Files (x86)\Windows Defender ==================== FLock ============================== 2024-08-29 22:39 C:\WINDOWS\system32\config\BFS ==================== SigCheckExt ========================= 2024-10-24 13:44 - 2024-10-24 13:45 - 002397696 _____ (Farbar) C:\Users\Céline\Desktop\FRST64.exe 2024-10-23 19:32 - 2024-10-23 19:32 - 003362816 _____ (Nicolas Coolman) C:\Users\Céline\Desktop\ZHPCleaner.exe 2024-10-24 11:16 - 2024-10-24 11:19 - 003536896 _____ (Nicolas Coolman) C:\Users\Céline\Desktop\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {615e5227-6627-11ef-8cbf-806e6f6e6963} {aa90bee1-9052-11ef-bd56-806e6f6e6963} {aa90bee2-9052-11ef-bd56-806e6f6e6963} {aa90bee3-9052-11ef-bd56-806e6f6e6963} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {18adf78a-8e35-11ef-bd44-f4d1080fec3a} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {615e5227-6627-11ef-8cbf-806e6f6e6963} device partition=\Device\HarddiskVolume1 path \EFI\Boot\BootX64.efi description UEFI: BC501 NVMe SK hynix 256GB, Partition 1 Application logicielle (101fffff) -------------------------------- identificateur {aa90bee1-9052-11ef-bd56-806e6f6e6963} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {aa90bee2-9052-11ef-bd56-806e6f6e6963} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {aa90bee3-9052-11ef-bd56-806e6f6e6963} description UEFI:Network Device Chargeur de démarrage Windows ----------------------------- identificateur {09c405cc-9ec4-11e5-9b46-5ce0c5654d7a} device ramdisk=[\Device\HarddiskVolume7]\sources\sos.wim,{ramdiskoptions} path \windows\system32\winload.efi description Dell SupportAssist locale en-US inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume7]\sources\sos.wim,{ramdiskoptions} systemroot \Windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {1064cc43-664f-11ef-8e3a-c00f96d241fe} device partition=C: path \Windows\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {1064cc42-664f-11ef-8e3a-c00f96d241fe} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {18adf78d-8e35-11ef-bd44-f4d1080fec3a} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {18adf78a-8e35-11ef-bd44-f4d1080fec3a} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {18adf78d-8e35-11ef-bd44-f4d1080fec3a} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{18adf78e-8e35-11ef-bd44-f4d1080fec3a} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{18adf78e-8e35-11ef-bd44-f4d1080fec3a} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Installation de Windows ----------------------- identificateur {7254a080-1510-4e85-ac0f-e7fb3d444736} device ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{18adf78c-8e35-11ef-bd44-f4d1080fec3a} bootstatdevice partition=C: custom:11000083 partition=C: path \windows\system32\winload.efi description Windows Rollback locale fr-FR bootstatfilepath \$WINDOWS.~BT\Sources\SafeOS\bootstat.dat inherit {bootloadersettings} restartonfailure No osdevice ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{18adf78c-8e35-11ef-bd44-f4d1080fec3a} custom:21000152 partition=C: systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {b3d78278-5aed-11ef-8d92-8c8872c9bcb1} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{b3d78279-5aed-11ef-8d92-8c8872c9bcb1} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{b3d78279-5aed-11ef-8d92-8c8872c9bcb1} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {1064cc42-664f-11ef-8e3a-c00f96d241fe} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {18adf78a-8e35-11ef-bd44-f4d1080fec3a} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {18adf78d-8e35-11ef-bd44-f4d1080fec3a} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {18adf78c-8e35-11ef-bd44-f4d1080fec3a} description Windows Setup ramdisksdidevice partition=C: ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi Options de périphérique ----------------------- identificateur {18adf78e-8e35-11ef-bd44-f4d1080fec3a} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi Options Ramdisk du programme d'installation ------------------------------------------- identificateur {ramdiskoptions} ramdisksdidevice partition=\Device\HarddiskVolume7 ramdisksdipath \sources\boot.sdi Options de périphérique ----------------------- identificateur {b3d78279-5aed-11ef-8d92-8c8872c9bcb1} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================