Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-05-2023 01
Exécuté par HP (administrateur) sur DESKTOP-4VJV54I (HP HP Slim Desktop PC) (18-05-2023 00:52:38)
Exécuté depuis C:\Users\HP\Desktop\FRST64.exe
Profils chargés: HP
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2965 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCopyAccelerator.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0369840.inf_amd64_9adec0a7f9b57873\B369081\atiesrxx.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.0.1.1462\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_54a828a51f6769c8\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_6838598e8963231b\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_6838598e8963231b\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_6838598e8963231b\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_6838598e8963231b\x64\SysInfoCap.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3738160 2022-06-29] (Autodesk, Inc. -> Autodesk)
HKU\S-1-5-21-1283348373-237056699-1289496819-1002\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\HP\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-1283348373-237056699-1289496819-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\HP\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-1283348373-237056699-1289496819-1002\...\RunOnce: [Uninstall 23.081.0416.0001] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\HP\AppData\Local\Microsoft\OneDrive\23.081.0416.0001" (Pas de fichier)
HKU\S-1-5-21-1283348373-237056699-1289496819-1002\...\Policies\Explorer: []
HKU\S-1-5-21-1283348373-237056699-1289496819-1002\...\MountPoints2: {9d4d4775-e2c8-11ed-9c29-5c3a454759a2} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1283348373-237056699-1289496819-1002\...\MountPoints2: {d826a7fc-c166-11ec-9c08-5c3a454759a2} - "D:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\UDC: udcpm.dll (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\113.0.5672.92\Installer\chrmstp.exe [2023-05-09] (Google LLC -> Google LLC)
Startup: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GenuineService.lnk [2022-02-20]
ShortcutTarget: GenuineService.lnk -> C:\Users\HP\Autodesk\Genuine Service\GenuineService.exe (Pas de fichier)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {020F3F91-8768-4DEC-95EF-C6C0888A1B55} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-05-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {101FA0AF-E5D5-416A-8B7E-C9C287C35E7D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-10-26] (HP Inc. -> HP Inc.)
Task: {1A355068-237B-4FDF-B94A-EE783A25629E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [62864 2021-06-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {218765C9-4714-44C0-AD89-4A0EEC64EC4E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2022-10-26] (HP Inc. -> HP Inc.)
Task: {22E3F582-5B10-4178-8EA9-0C33052CF445} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-05-12] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {3528BF8B-DDFA-41D8-AC24-B8B42A9AD3E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3A2F7530-7793-4F11-BD6C-077730A4698B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-10-26] (HP Inc. -> HP Inc.)
Task: {4B90A140-7C0F-4146-B2D6-3248B1067A6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-19] (Google Inc -> Google LLC)
Task: {6C2987D6-4CA7-47D7-951E-E85059E20D9B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {70424E88-E5CB-435C-AABC-40718FF1A002} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-19] (Google Inc -> Google LLC)
Task: {8B5BA4F6-F999-4402-BC89-C2D530512EA1} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe (Pas de fichier)
Task: {9710ABC2-6F9B-4B80-94FF-46408B7ECFB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A3A051D1-EB5D-44B4-94C6-639FEB061901} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AAA81CF7-C766-4D65-926B-9B3C02AF2CBB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe/from_scheduler:1
Task: {AB107DE2-19C6-461F-8FBF-391F3F6848AE} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [268688 2021-06-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {AE98D43C-F7C0-4670-9A22-87466EDA06DE} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {C18C55C0-BFF5-4DB0-8DC8-EA7BFCA14A3A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_backup => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-10-26] (HP Inc. -> HP Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{28f07b35-8955-49e9-82a7-282425379f0f}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{99162481-ee13-4364-8fb3-bb981954ca91}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-15]

FireFox:
========
FF DefaultProfile: c9gmai92.default
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\c9gmai92.default [2023-05-15]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\9s4pum41.default-release [2023-05-18]
FF Extension: (Privacy Badger) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\9s4pum41.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2023-05-16]
FF Extension: (uBlock Origin) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\9s4pum41.default-release\Extensions\uBlock0@raymondhill.net.xpi [2023-05-15]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Pas de fichier]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-1283348373-237056699-1289496819-1002: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-1283348373-237056699-1289496819-1002: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-1283348373-237056699-1289496819-1002: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]

Chrome:
=======
CHR DefaultProfile: Profile 4
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2023-05-01]
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-19]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-12]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-05-09]
CHR StartupUrls: Profile 1 -> "hxxps://www.google.com/?FORM=SLBRDF&PC=SL07"
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-22]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3 [2023-01-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-30]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 4 [2023-05-15]
CHR Notifications: Profile 4 -> hxxps://www.pinterest.fr
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-11]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-12]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16939312 2019-01-09] (Autodesk, Inc. -> Autodesk)
R2 HPAppHelperCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_6838598e8963231b\x64\AppHelperCap.exe [757280 2021-12-02] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_6838598e8963231b\x64\DiagsCap.exe [755184 2021-12-02] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_6838598e8963231b\x64\NetworkCap.exe [752120 2021-12-02] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_6838598e8963231b\x64\SysInfoCap.exe [755192 2021-12-02] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_54a828a51f6769c8\x64\TouchpointAnalyticsClientService.exe [494672 2021-11-22] (HP Inc. -> HP Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9246536 2023-05-15] (Malwarebytes Inc. -> Malwarebytes)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [17029944 2023-05-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AmdSMBusSdk; C:\Windows\System32\drivers\amdembsmbus.sys [42808 2021-04-07] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdWDT; C:\Windows\System32\drivers\amdwdt.sys [40136 2021-02-04] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 HPCustomCapDriver; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-11-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49616 2023-05-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [498944 2023-05-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-15] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-05-18 00:52 - 2023-05-18 00:54 - 000020118 _____ C:\Users\HP\Desktop\FRST.txt
2023-05-18 00:51 - 2023-05-18 00:53 - 000000000 ____D C:\FRST
2023-05-18 00:35 - 2023-05-18 00:35 - 000003435 _____ C:\Users\HP\Desktop\mbam-résultats-20230518.txt
2023-05-15 23:04 - 2023-05-15 23:04 - 000001197 _____ C:\Users\Public\Desktop\LibreOffice 7.5.lnk
2023-05-15 23:04 - 2023-05-15 23:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.5
2023-05-15 22:52 - 2023-05-15 22:55 - 359837696 _____ C:\Users\HP\Downloads\LibreOffice_7.5.3_Win_x86-64.msi
2023-05-15 22:52 - 2023-05-15 22:52 - 003489792 _____ C:\Users\HP\Downloads\LibreOffice_7.5.3_Win_x86-64_helppack_fr.msi
2023-05-15 22:29 - 2023-05-15 22:30 - 000000000 ____D C:\Users\HP\Downloads\CrystalDiskInfo8_17_14
2023-05-15 22:28 - 2023-05-15 22:28 - 006214888 _____ C:\Users\HP\Downloads\CrystalDiskInfo8_17_14.zip
2023-05-15 21:32 - 2023-05-15 21:32 - 002382848 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2023-05-15 21:27 - 2023-05-15 21:27 - 000000000 ___HD C:\$WinREAgent
2023-05-15 21:17 - 2023-05-15 21:17 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2023-05-15 21:16 - 2023-05-15 21:16 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2023-05-15 21:16 - 2023-05-15 21:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2023-05-15 21:13 - 2023-05-15 21:13 - 000000000 ____D C:\Program Files\VideoLAN
2023-05-15 21:11 - 2023-05-15 21:12 - 044283624 _____ C:\Users\HP\Downloads\vlc-3.0.18-win64.exe
2023-05-15 20:56 - 2023-05-15 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2023-05-15 20:56 - 2023-05-15 20:56 - 000000000 ____D C:\Program Files\7-Zip
2023-05-15 20:55 - 2023-05-15 20:55 - 001575742 _____ (Igor Pavlov) C:\Users\HP\Downloads\7z2201-x64.exe
2023-05-15 20:48 - 2023-05-15 21:25 - 000000000 ____D C:\Users\HP\AppData\Local\SumatraPDF
2023-05-15 20:48 - 2023-05-15 20:48 - 000001938 _____ C:\ProgramData\Microsoft\Windows\Start Menu\SumatraPDF.lnk
2023-05-15 20:48 - 2023-05-15 20:48 - 000001932 _____ C:\Users\Public\Desktop\SumatraPDF.lnk
2023-05-15 20:48 - 2023-05-15 20:48 - 000000000 ____D C:\Program Files\SumatraPDF
2023-05-15 20:46 - 2023-05-15 20:46 - 007470040 _____ (Krzysztof Kowalczyk) C:\Users\HP\Downloads\SumatraPDF-3.4.6-64-install.exe
2023-05-15 20:12 - 2023-05-15 20:12 - 000000914 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2023-05-15 20:12 - 2023-05-15 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2023-05-15 20:12 - 2023-05-15 20:12 - 000000000 ____D C:\Program Files\CPUID
2023-05-15 20:11 - 2023-05-15 20:11 - 002160936 _____ (CPUID, Inc. ) C:\Users\HP\Downloads\cpu-z_2.05-en.exe
2023-05-15 19:59 - 2023-05-15 20:19 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-05-15 19:59 - 2023-05-15 20:00 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2023-05-15 19:59 - 2023-05-15 19:59 - 000002046 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigation privée de Firefox.lnk
2023-05-15 19:59 - 2023-05-15 19:59 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-05-15 19:59 - 2023-05-15 19:59 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2023-05-15 19:59 - 2023-05-15 19:59 - 000000000 ____D C:\Users\HP\AppData\Roaming\Mozilla
2023-05-15 19:59 - 2023-05-15 19:59 - 000000000 ____D C:\Users\HP\AppData\Local\Mozilla
2023-05-15 19:59 - 2023-05-15 19:59 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-05-15 19:58 - 2023-05-15 19:58 - 000398928 _____ (Mozilla) C:\Users\HP\Downloads\Firefox Installer.exe
2023-05-15 19:47 - 2023-05-15 19:47 - 000000000 ____D C:\Users\HP\AppData\Local\Apps\2.0
2023-05-15 18:38 - 2023-05-15 18:38 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2023-05-15 18:31 - 2023-05-15 18:31 - 000007624 _____ C:\Users\HP\AppData\Local\Resmon.ResmonCfg
2023-05-15 18:30 - 2023-05-15 18:31 - 017535496 _____ (AVAST Software) C:\Users\HP\Downloads\avastclear.exe
2023-05-15 18:06 - 2023-05-17 23:15 - 000000000 ____D C:\Users\HP\AppData\Local\Malwarebytes
2023-05-09 18:01 - 2022-09-30 05:24 - 000174112 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudmdm.sys
2023-05-09 18:00 - 2022-09-30 05:24 - 000050720 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ss_conn_usb_driver2.sys
2023-05-09 13:43 - 2023-05-09 13:43 - 000011403 _____ C:\Users\HP\Downloads\Vinted-FR-S781762872.pdf
2023-05-06 14:29 - 2023-05-06 14:29 - 000044545 _____ C:\Users\HP\Downloads\download.pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-05-18 00:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-05-18 00:36 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-18 00:34 - 2022-02-19 13:03 - 000000000 ____D C:\Program Files (x86)\Google
2023-05-18 00:33 - 2022-01-26 17:23 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-05-17 22:52 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-05-17 22:51 - 2022-01-27 11:32 - 000000000 ____D C:\Users\HP\AppData\Local\D3DSCache
2023-05-16 14:05 - 2022-01-27 11:50 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1283348373-237056699-1289496819-1002
2023-05-16 14:05 - 2022-01-27 11:36 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1283348373-237056699-1289496819-1002
2023-05-16 14:04 - 2022-01-27 11:31 - 000002408 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-16 04:23 - 2022-01-26 17:25 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-16 04:23 - 2022-01-26 17:25 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-05-16 04:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-16 03:55 - 2022-01-26 17:24 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-16 03:55 - 2022-01-26 17:24 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-15 23:17 - 2023-01-08 13:59 - 000000000 ____D C:\Users\HP\AppData\LocalLow\IGDump
2023-05-15 23:08 - 2022-11-26 21:18 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2023-05-15 23:04 - 2022-02-20 11:45 - 000000000 ____D C:\Program Files\LibreOffice
2023-05-15 22:49 - 2022-02-20 16:32 - 000000000 ____D C:\Program Files\TeamViewer
2023-05-15 22:49 - 2022-01-26 17:36 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2023-05-15 22:49 - 2019-12-07 16:49 - 000755174 _____ C:\Windows\system32\perfh00C.dat
2023-05-15 22:49 - 2019-12-07 16:49 - 000141980 _____ C:\Windows\system32\perfc00C.dat
2023-05-15 22:42 - 2022-01-26 17:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-05-15 22:42 - 2022-01-26 17:23 - 000582624 _____ C:\Windows\system32\FNTCACHE.DAT
2023-05-15 22:42 - 2022-01-26 17:23 - 000008192 ___SH C:\DumpStack.log.tmp
2023-05-15 22:40 - 2022-02-19 13:36 - 000000000 ____D C:\Program Files\Tracker Software
2023-05-15 22:39 - 2022-01-26 18:08 - 000065536 _____ C:\Windows\psp_storage.bin
2023-05-15 22:39 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-05-15 22:37 - 2019-12-07 16:49 - 000000000 ____D C:\Windows\SysWOW64\fr
2023-05-15 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-05-15 22:36 - 2019-12-07 16:49 - 000000000 ____D C:\Windows\system32\fr
2023-05-15 22:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-05-15 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-05-15 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-05-15 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-05-15 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-05-15 22:32 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-05-15 22:10 - 2022-01-27 11:31 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2023-05-15 22:10 - 2022-01-26 17:26 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-05-15 21:23 - 2022-01-26 17:50 - 000000000 ____D C:\Windows\system32\MRT
2023-05-15 21:23 - 2022-01-26 17:47 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-15 21:05 - 2022-01-26 17:50 - 159583304 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-05-15 20:21 - 2022-02-20 13:59 - 000000000 ____D C:\Users\HP\AppData\Roaming\Autodesk
2023-05-15 20:19 - 2022-02-20 14:03 - 000000000 ____D C:\Program Files (x86)\Autodesk
2023-05-15 20:19 - 2022-02-20 13:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2023-05-15 20:19 - 2022-02-20 13:53 - 000000000 ____D C:\ProgramData\Autodesk
2023-05-15 20:08 - 2022-01-27 11:38 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\MMC
2023-05-15 19:57 - 2022-01-26 17:24 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-05-15 19:51 - 2022-02-22 11:15 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2023-05-15 19:50 - 2022-02-20 16:19 - 000000000 ____D C:\Users\HP\AppData\Local\ElevatedDiagnostics
2023-05-15 19:50 - 2022-02-20 14:03 - 000000000 ____D C:\Users\HP\AppData\Local\Autodesk
2023-05-15 19:47 - 2022-02-20 14:05 - 000000000 ____D C:\Users\HP\Autodesk
2023-05-15 19:42 - 2022-04-02 10:19 - 000000000 ___SD C:\Users\HP\Nextcloud
2023-05-15 19:42 - 2022-02-20 16:36 - 000000000 ____D C:\Users\HP\AppData\Roaming\Nextcloud
2023-05-15 18:34 - 2022-02-19 12:51 - 000000000 ____D C:\ProgramData\Avast Software
2023-05-15 18:34 - 2022-01-27 11:31 - 000000000 ____D C:\Users\HP
2023-05-15 18:24 - 2022-02-19 12:54 - 000003990 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2023-05-15 18:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2023-05-09 18:37 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
2023-05-09 14:28 - 2022-02-27 20:45 - 000000000 ____D C:\Users\HP\Documents\NADEGE
2023-05-09 09:28 - 2022-02-19 13:05 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-05-09 09:28 - 2022-02-19 13:05 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-05-06 11:57 - 2022-03-05 11:15 - 000000000 ____D C:\Users\HP\AppData\Local\AMD_Common
2023-04-21 17:18 - 2022-02-19 13:03 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-04-21 17:18 - 2022-02-19 13:03 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

==================== Fichiers à la racine de certains dossiers ========

2023-05-15 18:31 - 2023-05-15 18:31 - 000007624 _____ () C:\Users\HP\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================