Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 3-07-2019
Ran by Hp (administrator) on DESKTOP-E5GC4SK (HP 24-g014) (03-07-2019 23:02:09)
Running from C:\Users\Hp\Desktop
Loaded Profiles: Hp (Available Profiles: Hp)
Platform: Windows 10 Home Version 1511 10586.1176 (X64) Language: Anglais (États-Unis)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc.) [File not signed] C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Hp\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Power Software Ltd -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTServer.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SFX TEAM) [File not signed] C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(WebToGo GmbH -> ) C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Launcher.exe
(WebToGo GmbH -> ) C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe
(WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8854272 2016-03-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229592 2015-07-10] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-10] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-10] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [377368 2014-03-30] (Power Software Ltd -> Power Software Ltd)
HKLM-x32\...\Run: [InternetEverywhere_InternetEverywhere_Launcher.exe] => C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Launcher.exe [965392 2015-02-16] (WebToGo GmbH -> )
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\...\Run: [SuperCopier2.exe] => C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM) [File not signed]
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21652064 2014-07-25] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\...\Policies\Explorer\DisallowRun: [1] Mshta.exe
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\...\Policies\Explorer\DisallowRun: [2] powershell.exe
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\...\Policies\Explorer\DisallowRun: [3] bitsadmin.exe
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\...\MountPoints2: {304081fb-f95b-11e7-b931-c8ff28fcd1d4} - "G:\.\Setup.exe" AUTORUN=1
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\...\MountPoints2: {949c5859-5e87-11e7-b91e-c8ff28fcd1d4} - "G:\.\Setup.exe" AUTORUN=1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\Installer\chrmstp.exe [2018-05-19] (Google Inc -> Google Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01F6055A-A705-40AC-90B2-E44BF11F9180} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe
Task: {07BB5F19-9A2D-4C0B-A591-89E898EC5956} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_134_Plugin.exe [1447936 2018-07-26] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {10927AF5-A025-44A9-955A-EA983BCDF8A1} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-02] (Dropbox, Inc -> Dropbox, Inc.)
Task: {1A77C6AF-CED8-4780-91A1-5610987F145E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN66SDK28C => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {29DD603E-484B-493E-BAC5-CCF8B913E961} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [584488 2016-09-21] (Dropbox, Inc -> )
Task: {2E397ECE-E50A-443E-9275-EDA2F3D4B0BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [120680 2017-06-22] (HP Inc. -> HP Inc.)
Task: {317107BF-13F6-48B4-AA5A-BA0B03A02F4B} - System32\Tasks\Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate => {FE285C8C-5360-41C1-A700-045501C740DE} C:\Windows\System32\ErrorDetailsUpdate.dll [39936 2015-10-30] (Microsoft Windows -> Microsoft Corporation)
Task: {335BCACF-3914-4EFC-AE63-1DDB461D66AF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {337ADB51-9DEF-415F-AC11-FC83BC471D0A} - System32\Tasks\HPCustParticipation HP OfficeJet Pro 8720 => C:\Program Files\HP\HP OfficeJet Pro 8720\Bin\HPCustPartic.exe [6293000 2015-08-31] (Hewlett Packard -> HP Inc.)
Task: {34433157-6EF6-4E50-BDA1-B3BC85C9BBAB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {3447FE6B-EEA1-45D3-A430-6E183E5B4E49} - System32\Tasks\Opera scheduled Autoupdate 1498933217 => C:\Program Files (x86)\Opera\launcher.exe [1301592 2019-06-14] (Opera Software AS -> Opera Software)
Task: {43C06CE8-25AE-49C9-98CB-80570016A3CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-05] (Google Inc -> Google Inc.)
Task: {4AA30033-C86C-4FE9-8CDF-1006246635A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)
Task: {507B7918-970D-492D-B2C8-565EAFD72DE2} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock => C:\Program Files\rempl\remsh.exe
Task: {5A2B45BB-090E-4A04-9EF0-834F8D52E05A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-05] (Google Inc -> Google Inc.)
Task: {71E53243-3A2D-47EE-9DAB-6D71B2366657} - System32\Tasks\Microsoft\Windows\ErrorDetails\ErrorDetailsUpdate => {9CDA66BE-3271-4723-8D35-DD834C58AD92} C:\Windows\System32\ErrorDetailsUpdate.dll [39936 2015-10-30] (Microsoft Windows -> Microsoft Corporation)
Task: {775AAE8A-261F-4388-8367-731E0893B5E1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {7FE93BC6-0C35-446B-B47E-F88AB4FA07E3} - System32\Tasks\Microsoft\Windows\rempl\shell-maintenance => C:\Program Files\rempl\remsh.exe
Task: {88F8F80C-5142-447B-9B91-FCCB29654464} - System32\Tasks\HPCustPartic.exe_{A2574D08-04A5-4203-A29E-3BCB4BD79FE0} => C:\Program Files\HP\HP OfficeJet Pro 8720\Bin\HPCustPartic.exe [6293000 2015-08-31] (Hewlett Packard -> HP Inc.)
Task: {955E8D5B-0718-411A-9D8F-83454788272B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update => {A6BA00FE-40E8-477C-B713-C64A14F18ADB} C:\Windows\System32\wuautoappupdate.dll [33280 2016-03-29] (Microsoft Windows -> Microsoft Corporation)
Task: {A90EF0A0-BD62-4E0F-8BCC-C028D6EC59B3} - System32\Tasks\Microsoft\Windows\rempl\shell-compact => C:\Program Files\rempl\remsh.exe
Task: {A95A7487-F085-4257-A60C-DA90DBF48BD6} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock-sih => C:\Program Files\rempl\remsh.exe
Task: {AA9F15AC-62A0-47C9-B532-B20AB6C411E4} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-07-26] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {ADBCB3E7-DD82-4951-93E7-2DA8BF607972} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-02] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B3FACABD-B121-4B23-8997-0D024E8593DE} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock-storagesense => C:\Program Files\rempl\remsh.exe
Task: {B52ACE9F-4DDA-4F6E-8003-0B78F43DC7E2} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {D1645602-5069-4F3D-B78E-ADB2D6E2F718} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {D7EFE3CC-4B7D-4314-8BF3-0D95B3EB59ED} - System32\Tasks\Microsoft\Windows\rempl\shell-restore => C:\Program Files\rempl\remsh.exe
Task: {F4B5D5C7-AFBF-44B6-8B70-A0C692E568BB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {F53F76AA-4858-44D3-B8EA-C25BEB217310} - System32\Tasks\HPDAS => C:\Program [Argument = Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe /CheckJobs]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b69e55cb-4c2d-4cee-9ff9-9bf616e0f128}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3256775833-2243426758-3990415360-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
SearchScopes: HKLM -> {4BA93E74-61F5-4453-9818-65704C156BB0} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {4BA93E74-61F5-4453-9818-65704C156BB0} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3256775833-2243426758-3990415360-1001 -> {4BA93E74-61F5-4453-9818-65704C156BB0} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-10] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll => No File

FireFox:
========
FF DefaultProfile: 7f6qy8xb.default
FF ProfilePath: C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\7f6qy8xb.default [2019-07-03]
FF Homepage: Mozilla\Firefox\Profiles\7f6qy8xb.default -> hxxps://outlook.live.com/owa/?authRedirect=true
FF HomepageOverride: Mozilla\Firefox\Profiles\7f6qy8xb.default -> Disabled: _14Members_@download.totalrecipesearch.com
FF NewTabOverride: Mozilla\Firefox\Profiles\7f6qy8xb.default -> Disabled: _14Members_@download.totalrecipesearch.com
FF Extension: (Video DownloadHelper) - C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\7f6qy8xb.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-06-12]
FF Extension: (Telemetry coverage) - C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\7f6qy8xb.default\features\{3e3fcdb6-43a6-4965-b4df-5e55b998bb5f}\telemetry-coverage-bug1487578@mozilla.org.xpi [2019-05-09] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-26] (Adobe Systems Incorporated -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-26] (Adobe Systems Incorporated -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-03] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-03] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] (WildTangent Inc -> )

Chrome:
=======
CHR Profile: C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default [2019-07-03]
CHR Extension: (Slides) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-03]
CHR Extension: (Docs) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-03]
CHR Extension: (Google Drive) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-05]
CHR Extension: (YouTube) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-05]
CHR Extension: (Sheets) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-03]
CHR Extension: (Google Docs Offline) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-03]
CHR Extension: (Skype) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2019-07-03]
CHR Extension: (Kaspersky Protection) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2019-07-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-03]
CHR Extension: (Gmail) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-03]
CHR Extension: (Chrome Media Router) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-03]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AESMService; c:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [3715208 2015-09-30] (Intel(R) Corporation -> Intel Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [127192 2015-11-19] (Realtek Semiconductor Corp -> )
S3 cplspcon; C:\windows\system32\IntelCpHDCPSvc.exe [480216 2017-01-10] (Intel(R) pGFX -> Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-02] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-07-02] (Dropbox, Inc -> Dropbox, Inc.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent Inc -> WildTangent)
R2 HP Comm Recover; c:\Program Files\HPCommRecovery\HPCommRecovery.exe [44032 2016-03-02] (HP Inc.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332656 2018-05-02] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
R2 igfxCUIService2.0.0.0; C:\windows\system32\igfxCUIService.exe [341976 2017-01-10] (Intel(R) pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 InternetEverywhere_Service; C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe [536848 2015-02-16] (WebToGo GmbH -> )
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2016-01-21] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 KSDE2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-15] (CyberLink Corp. -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [310016 2016-03-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-09-05] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 bcmfn; C:\windows\System32\drivers\bcmfn.sys [9728 2015-10-30] (Microsoft Windows -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 jrdusbser; C:\windows\system32\DRIVERS\jrdusbser.sys [123776 2012-03-31] (Microsoft Windows Hardware Compatibility Publisher -> TCT International Mobile Ltd.)
R3 kltap; C:\windows\System32\drivers\kltap.sys [52152 2016-06-07] (AnchorFree Inc -> The OpenVPN Project)
R3 rt640x64; C:\windows\System32\drivers\rt640x64.sys [935168 2015-10-10] (Realtek Semiconductor Corp -> Realtek )
R3 RtkBtFilter; C:\windows\system32\DRIVERS\RtkBtfilter.sys [611608 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [777944 2016-02-02] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 RTSUER; C:\windows\system32\Drivers\RtsUer.sys [413912 2016-02-02] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 RTWlanE; C:\windows\system32\DRIVERS\rtwlane.sys [6895984 2017-08-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R3 SCDModem; C:\windows\system32\DRIVERS\SCDModem.sys [25600 2014-07-31] (Microsoft Windows Hardware Compatibility Publisher -> SCD-MBB Device)
R3 SCDSerials; C:\windows\system32\DRIVERS\SCDSerials.sys [25600 2014-07-31] (Microsoft Windows Hardware Compatibility Publisher -> SCD-MBB Device)
R3 SCDUsbHub; C:\windows\System32\drivers\SCDUsbHub.sys [18600 2014-07-31] (Spreadtrum Communications(Shanghai) Co.Ltd. -> DriverCoding Incorporated.)
S3 SGXEPC; C:\windows\System32\drivers\sgx_driver.sys [54768 2015-09-30] (Intel(R) Corporation -> Windows (R) Win 7 DDK provider)
S3 SIVDRIVER; C:\windows\system32\Drivers\SIVX64.sys [57312 2008-06-14] (RH Software -> Ray Hinchliffe)
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-03 23:02 - 2019-07-03 23:03 - 000026681 _____ C:\Users\Hp\Desktop\FRST.txt
2019-07-03 23:01 - 2019-07-03 23:02 - 000000000 ____D C:\FRST
2019-07-03 22:56 - 2019-07-03 22:57 - 002420224 _____ (Farbar) C:\Users\Hp\Desktop\FRST64.exe
2019-06-12 23:50 - 2019-06-12 23:50 - 000000000 ____D C:\ProgramData\Mozilla

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-03 22:56 - 2017-05-21 08:50 - 000856600 _____ C:\windows\system32\perfh00C.dat
2019-07-03 22:56 - 2017-05-21 08:50 - 000170278 _____ C:\windows\system32\perfc00C.dat
2019-07-03 22:56 - 2015-11-03 06:05 - 001991382 _____ C:\windows\system32\PerfStringBackup.INI
2019-07-03 22:56 - 2015-10-30 07:21 - 000000000 ____D C:\windows\INF
2019-07-03 22:53 - 2017-07-02 20:03 - 000000000 ____D C:\Users\Hp\AppData\LocalLow\Mozilla
2019-07-03 22:52 - 2018-01-14 18:54 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2019-07-03 22:51 - 2017-07-01 18:12 - 000000000 ____D C:\Users\Hp\AppData\Roaming\Skype
2019-07-03 22:50 - 2017-05-21 08:32 - 000000000 __SHD C:\Users\Hp\IntelGraphicsProfiles
2019-07-03 22:50 - 2016-08-16 18:57 - 000000944 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2019-07-03 22:49 - 2015-11-02 18:02 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-07-03 22:49 - 2015-10-30 06:28 - 000262144 _____ C:\windows\system32\config\BBI
2019-07-03 22:30 - 2016-08-16 18:57 - 000000948 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2019-07-03 22:22 - 2015-10-30 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2019-07-03 22:22 - 2015-10-30 07:24 - 000000000 ____D C:\windows\AppReadiness
2019-07-03 21:57 - 2017-07-02 20:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-07-03 21:57 - 2017-07-02 20:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-07-03 21:56 - 2018-01-14 18:54 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2019-07-03 21:56 - 2017-05-21 08:18 - 000000000 ____D C:\Users\Hp
2019-07-03 21:56 - 2015-10-30 07:24 - 000000000 ___HD C:\windows\ELAMBKUP
2019-07-03 21:55 - 2018-01-14 18:54 - 000000000 ____D C:\Program Files\Common Files\AV
2019-07-03 21:52 - 2017-09-22 16:26 - 000000000 ____D C:\Program Files\rempl
2019-07-03 21:47 - 2017-07-02 20:03 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-07-03 21:31 - 2017-07-05 23:28 - 000003418 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-07-03 21:31 - 2017-07-05 23:28 - 000003294 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-07-03 21:17 - 2017-05-21 08:32 - 000000000 ____D C:\Users\Hp\AppData\Local\Packages
2019-07-03 21:09 - 2017-08-01 23:14 - 000003374 _____ C:\windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3256775833-2243426758-3990415360-1001
2019-07-03 21:09 - 2017-05-21 08:34 - 000002403 _____ C:\Users\Hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-07-03 21:09 - 2017-05-21 08:34 - 000000000 ___RD C:\Users\Hp\OneDrive
2019-07-03 00:42 - 2018-07-26 23:06 - 000001156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2019-07-03 00:42 - 2017-07-01 18:20 - 000003996 _____ C:\windows\System32\Tasks\Opera scheduled Autoupdate 1498933217
2019-07-03 00:42 - 2017-07-01 18:20 - 000000000 ____D C:\Program Files (x86)\Opera
2019-07-03 00:37 - 2017-12-07 10:45 - 000000000 ____D C:\Windows10Upgrade

==================== Files in the root of some directories ================

2017-05-21 08:32 - 2019-07-03 22:50 - 000169842 _____ () C:\Users\Hp\AppData\Local\BTServer.log

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-07-03 01:12
==================== End of FRST.txt ============================