Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 24-01-2023
Exécuté par OLIVIER (administrateur) sur LAPTOP-AQTU8IFT (HP HP Laptop 17-by0xxx) (24-01-2023 20:35:24)
Exécuté depuis C:\Users\somavi\OneDrive\Bureau
Profils chargés: OLIVIER
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.1105 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\109.0.1518.61\identity_helper.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23002.403.1788.1930_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.61\msedgewebview2.exe <12>
(DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\igfxEM.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\BridgeCommunication.exe
(ETDCtrl.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDTouch.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrlHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_e3868713e3d137ef\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7c484f80872e1cd8\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9ea30e7f88626f47\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_caa7639078e34732\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6ce565ec54103c62\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6ce565ec54103c62\IntelCpHeciSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (WildTangent, Inc. -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\somavi\AppData\Local\Microsoft\OneDrive\23.002.0102.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21256.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21256.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22102.229.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1082144 2020-04-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [536152 2022-09-03] (HP Inc. -> HP Inc.)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [536152 2022-09-03] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-3864428051-1494076703-4170726875-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [536152 2022-09-03] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-3864428051-1494076703-4170726875-1001\...\Run: [MicrosoftEdgeAutoLaunch_F195E77EE9F2C0930393B57D86A15181] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188616 2023-01-19] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {31FA8CB4-F05D-4292-98C3-9B331B337B58} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26326520 2023-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BC07673-539E-4D1A-9302-393A6F529154} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-11-28] (HP Inc. -> HP Inc.)
Task: {4D6D2E52-CCF5-45AB-AE47-4302A6735CD5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26326520 2023-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E74738C-E1A7-43A7-84DF-052222056B98} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7790454A-CAE7-4A63-9535-079F687D9EAA} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [160696 2023-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {77FA891B-4FDB-401B-844B-B8B8FCBA7C18} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7F7FF278-677C-4F27-9C6B-4138E7B07FE7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {856C18E2-7288-4B72-B187-7A87896AEDBD} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144288 2023-01-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {87416D9F-6D5F-449B-83BE-45811789472C} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)
Task: {8DBCD6F0-C50D-4126-B220-F0071B7439F5} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC EngagedRebootReminder (Pas de fichier)
Task: {AEEBFAD0-1556-4E6E-BE46-B2BA642E53E6} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {BA1AF165-0C4B-4C29-AEA1-9932147DC546} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-11-28] (HP Inc. -> HP Inc.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Pas de fichier)
Task: {E62AA444-EF59-47BC-8030-3886A756457F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2022-11-28] (HP Inc. -> HP Inc.)
Task: {F46A983F-CB7B-4FC0-9A99-A198AD7ACBE6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery EngagedRebootReminder (Pas de fichier)
Task: {F9D3DAF7-C396-4C97-8A43-E5845B2254B7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FC67A8E8-92DA-4115-A96D-C1BDA6F45B28} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-11-28] (HP Inc. -> HP Inc.)
Task: {FC8F4F08-F768-4801-A671-57FA135A40CA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144288 2023-01-14] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4fec0c8b-05e5-4de2-a657-cd876b90bdee}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\somavi\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\somavi\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-24]
Edge DownloadDir: Default -> C:\Users\somavi\Downloads
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12548520 2023-01-14] (Microsoft Corporation -> Microsoft Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\AppHelperCap.exe [791496 2022-11-29] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\DiagsCap.exe [790472 2022-11-29] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\NetworkCap.exe [787416 2022-11-29] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_9b42a3e82673e3bb\x64\SysInfoCap.exe [791512 2022-11-29] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe [493680 2022-09-28] (HP Inc. -> HP Inc.)
S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-12-29] (Microsoft Windows -> Microsoft Corporation)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8891160 2023-01-24] (Malwarebytes Inc. -> Malwarebytes)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-12-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1689984 2022-03-29] (WildTangent, Inc. -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137552 2022-12-29] (Microsoft Windows -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [108480 2018-10-25] (Alcorlink Corp. -> )
R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-12-29] (Microsoft Windows -> Microsoft Corporation)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-01-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-01-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-12-29] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-01-24 20:34 - 2023-01-24 20:35 - 000000000 ____D C:\FRST
2023-01-24 18:03 - 2023-01-24 18:03 - 000814504 _____ C:\WINDOWS\system32\perfh00C.dat
2023-01-24 18:03 - 2023-01-24 18:03 - 000167180 _____ C:\WINDOWS\system32\perfc00C.dat
2023-01-24 15:52 - 2023-01-24 15:52 - 000000000 ___HD C:\$WinREAgent
2023-01-03 15:17 - 2023-01-24 17:58 - 000001527 _____ C:\WINDOWS\system32\config\VSMIDK
2022-12-29 12:50 - 2022-12-29 12:50 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-12-29 12:47 - 2022-12-29 12:47 - 000000020 ___SH C:\Users\somavi\ntuser.ini
2022-12-29 12:46 - 2023-01-24 17:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-12-29 12:46 - 2023-01-24 15:26 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3864428051-1494076703-4170726875-1001
2022-12-29 12:46 - 2023-01-24 15:26 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3864428051-1494076703-4170726875-1001
2022-12-29 12:46 - 2022-12-29 12:47 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-12-29 12:46 - 2022-12-29 12:47 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3864428051-1494076703-4170726875-500
2022-12-29 12:46 - 2022-12-29 12:46 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2022-12-29 12:46 - 2022-12-29 12:46 - 000011433 _____ C:\WINDOWS\diagerr.xml
2022-12-29 12:46 - 2022-12-29 12:46 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-12-29 12:46 - 2022-12-29 12:46 - 000002766 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2022-12-29 12:46 - 2022-12-29 12:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2022-12-29 12:46 - 2022-12-29 12:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2022-12-29 12:46 - 2022-12-29 12:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-12-29 12:46 - 2022-12-29 12:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2022-12-29 12:46 - 2019-11-21 10:07 - 000002848 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-991794890-618373635-3145085398-500
2022-12-29 12:46 - 2019-06-03 03:28 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2396141977-2676487774-1967645111-500
2022-12-29 12:46 - 2019-04-15 16:41 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-913737145-1433743232-4147240673-500
2022-12-29 12:43 - 2023-01-24 18:03 - 001823396 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-12-29 12:41 - 2023-01-24 20:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-12-29 12:41 - 2023-01-24 16:02 - 000593464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-12-29 12:41 - 2022-12-29 12:41 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2022-12-29 12:13 - 2022-12-29 12:40 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-12-29 12:12 - 2023-01-24 18:37 - 000000000 ____D C:\Users\somavi
2022-12-29 12:12 - 2022-12-29 12:12 - 000000000 _SHDL C:\Users\somavi\Voisinage réseau
2022-12-29 12:12 - 2022-12-29 12:12 - 000000000 _SHDL C:\Users\somavi\Voisinage d'impression
2022-12-29 12:12 - 2022-12-29 12:12 - 000000000 _SHDL C:\Users\somavi\Modèles
2022-12-29 12:12 - 2022-12-29 12:12 - 000000000 _SHDL C:\Users\somavi\Mes documents
2022-12-29 12:12 - 2022-12-29 12:12 - 000000000 _SHDL C:\Users\somavi\Menu Démarrer
2022-12-29 12:12 - 2022-12-29 12:12 - 000000000 _SHDL C:\Users\somavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-12-29 12:12 - 2022-12-29 12:12 - 000000000 _SHDL C:\Users\somavi\AppData\Local\Historique
2022-12-29 12:08 - 2022-12-29 12:13 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-12-29 11:52 - 2022-12-29 13:05 - 000000000 ____D C:\WINDOWS\HoloShell
2022-12-29 11:52 - 2022-12-29 11:52 - 000000000 ____D C:\WINDOWS\TextInput
2022-12-29 11:50 - 2022-05-06 13:02 - 000000002 _____ C:\WINDOWS\system32\hologramcompositor.lock
2022-12-29 11:45 - 2022-12-29 11:45 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2022-12-29 11:45 - 2022-12-29 11:45 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-12-29 11:45 - 2022-12-29 11:45 - 000000000 ____D C:\WINDOWS\addins
2022-12-29 11:27 - 2022-12-29 11:27 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-12-29 08:37 - 2023-01-24 15:26 - 000000000 ___DC C:\WINDOWS\Panther

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-01-24 20:35 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-24 20:34 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-01-24 20:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-01-24 20:22 - 2020-04-01 09:30 - 000000000 ___RD C:\Users\somavi\OneDrive
2023-01-24 20:20 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-24 18:11 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-01-24 18:11 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-01-24 18:11 - 2020-06-13 12:58 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2023-01-24 18:11 - 2020-05-03 14:42 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-01-24 18:10 - 2020-05-03 14:42 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2023-01-24 18:09 - 2020-05-03 14:42 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2023-01-24 18:07 - 2020-05-03 14:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-01-24 18:07 - 2020-05-03 14:34 - 000000000 ____D C:\Program Files\Malwarebytes
2023-01-24 17:58 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-01-24 17:58 - 2021-06-09 11:33 - 000012288 ___SH C:\DumpStack.log.tmp
2023-01-24 17:58 - 2019-11-21 11:17 - 000000000 ____D C:\Intel
2023-01-24 16:07 - 2020-11-06 16:22 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-24 16:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-24 16:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-24 16:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-24 16:01 - 2022-05-07 06:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-01-24 16:00 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-01-24 15:37 - 2020-05-03 15:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-24 15:32 - 2020-05-03 15:30 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-24 15:31 - 2020-08-01 14:03 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-01-24 15:30 - 2019-06-03 03:38 - 000000000 ____D C:\Program Files\Microsoft Office
2023-01-24 15:26 - 2022-09-03 16:10 - 000000000 ____D C:\Users\somavi\AppData\Local\CrashDumps
2023-01-24 15:26 - 2021-06-09 11:35 - 000002431 _____ C:\Users\somavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-05 15:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-01-03 15:29 - 2020-04-01 09:26 - 000000000 ____D C:\Users\somavi\AppData\Local\Packages
2023-01-03 15:28 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\appcompat
2023-01-03 15:15 - 2021-09-09 17:48 - 000000000 ____D C:\Users\somavi\AppData\Local\D3DSCache
2022-12-29 13:06 - 2019-11-21 11:15 - 000000000 ____D C:\ProgramData\Packages
2022-12-29 13:05 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-12-29 13:03 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2022-12-29 12:48 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-12-29 12:47 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows NT
2022-12-29 12:47 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-12-29 12:47 - 2019-04-15 16:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-12-29 12:46 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows Defender
2022-12-29 12:42 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-12-29 12:41 - 2022-05-07 06:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-12-29 12:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-12-29 12:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\spool
2022-12-29 12:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-12-29 12:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-12-29 12:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-12-29 12:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-12-29 12:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ta-in
2022-12-29 12:41 - 2019-11-21 11:30 - 000000000 ____D C:\WINDOWS\SysWOW64\WildTangent
2022-12-29 12:41 - 2019-11-21 11:14 - 000000000 ____D C:\WINDOWS\system32\Intel
2022-12-29 12:40 - 2019-11-21 11:21 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games
2022-12-29 12:40 - 2019-11-21 11:20 - 000000000 ____D C:\Program Files\Intel
2022-12-29 12:40 - 2019-06-03 03:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2022-12-29 12:40 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-12-29 12:22 - 2022-05-07 06:28 - 000000000 ____D C:\WINDOWS\Setup
2022-12-29 12:17 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2022-12-29 12:16 - 2022-05-07 06:24 - 000000000 __RHD C:\Users\Public\Libraries
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemApps
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-12-29 12:06 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2022-12-29 12:04 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-12-29 12:04 - 2022-05-07 06:25 - 000076800 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2022-12-29 12:04 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-12-29 12:04 - 2022-05-07 06:24 - 000118784 _____ (Khronos Group) C:\WINDOWS\system32\opencl.dll
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-12-29 11:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\OCR
2022-12-29 11:44 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-12-29 11:44 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-12-29 11:44 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-12-29 11:44 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-12-29 11:44 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-12-29 11:44 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-12-29 11:44 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-12-29 11:44 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-12-29 11:44 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-12-29 11:44 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-12-29 11:44 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-12-29 11:44 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-12-29 11:44 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-12-29 11:44 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-12-29 11:44 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-12-29 11:44 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-12-29 11:44 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-12-29 11:44 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================