Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-01-2022
Exécuté par Cash (administrateur) sur DESKTOP-9CNL042 (HP HP EliteBook 820 G3) (23-01-2022 19:08:40)
Exécuté depuis C:\Users\Cash\Downloads
Profils chargés: Cash
Plate-forme: Microsoft Windows 10 Professionnel Version 1903 18362.1316 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files\Intel Corporation\Intel WiDi\WRU.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(Conexant Systems LLC -> Conexant) C:\Windows\System32\MicTray64.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <31>
(Hewlett-Packard -> HP) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\HP\HP Touchpoint Manager\Discover HP Touchpoint Manager\LHBeacon.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\HotKeyServiceUWP.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\HPHotkeyNotification.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\LanWlanWwanSwitchingServiceUWP.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Skype) C:\Program Files\WindowsApps\microsoft.skypeapp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\microsoft.skypeapp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Synaptics Incorporated -> Conexant Systems, Inc) C:\Windows\CxSvc\CxMonSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Intel(R) WiDi Receiver Updater] => C:\Program Files\Intel Corporation\Intel WiDi\WRU.exe [89600 2015-10-27] () [Fichier non signé]
HKLM-x32\...\Run: [Discover HP Touchpoint Manager] => C:\Program Files (x86)\HP\HP Touchpoint Manager\Discover HP Touchpoint Manager\LHBeacon.exe [426208 2015-10-22] (Hewlett-Packard -> HP)
HKLM-x32\...\Run: [HPNotifications] => C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe [853728 2015-10-20] (Hewlett-Packard -> HP)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [258784 2015-11-11] (Hewlett-Packard -> HP)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [430304 2015-11-17] (Hewlett-Packard -> HP)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe, <==== ATTENTION
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [432648 2015-07-11] (Microsoft Windows Hardware Compatibility Publisher -> HP)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-23] (Google LLC -> Google LLC)
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2015-09-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {047937D6-E63F-4A74-BFE7-3D41ECB4C7F0} - System32\Tasks\Microsoft\Windows\Conexant\SA3 => C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {0AB4315B-94DB-402A-8B36-97291B15A554} - System32\Tasks\GoogleUpdateTaskMachineCore{C65C2C6B-A6FE-426F-B7C8-AC62266F175E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-23] (Google LLC -> Google LLC)
Task: {0FCC762A-F2DA-4ABE-8ACF-0262E1CE75E6} - System32\Tasks\GoogleUpdateTaskMachineUA{EDCF3198-3253-478C-8F28-B2424F5E3615} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-23] (Google LLC -> Google LLC)
Task: {1270B6D9-2B26-4C17-ADAD-B1810A3508EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [595656 2015-11-13] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {14DD65B7-78A5-4FB6-B57F-0AB8707D0B59} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {1F4980EF-784C-40D5-9586-82077F308ABA} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {25A5DAA1-6CC1-4CBE-A8F1-AB5F6E028372} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-19] (Microsoft Windows -> Microsoft Corporation)
Task: {3CB373C0-131A-45E9-85E2-EA525C80369F} - System32\Tasks\HPGenoobeReminder => C:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HP GenOOBE\HPGenOOBE.exe [29184 2015-11-17] () [Fichier non signé]
Task: {4323858F-A066-4E0A-8E95-EF19B2036CF6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [458296 2015-12-21] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {71E10DFF-0AE4-4DC2-AA5B-38F7F965C446} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {7ADCC82A-BF3A-4BFC-B5AA-EAF5D83B2873} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [2938448 2020-07-02] (Conexant Systems LLC -> Conexant)
Task: {89A6A549-2489-460A-8A76-8AC19EF2A87F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [190504 2015-12-20] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {9E165419-732C-4EEC-94DC-ADF037295F51} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A0C17830-B425-4681-9BFC-2FD24281C221} - System32\Tasks\HPCeeScheduleForCash => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2015-06-16] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {C3A409D4-22E5-4495-9D7F-AA2CA6C6A111} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E14A377D-2E6F-40F5-9284-CAD267520DD7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E44E4923-0C3A-4033-A7A9-4878038FD71F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {E8212EC9-2A2C-4D8C-ABE8-C0066DCB76EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [458296 2015-12-21] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {F97A2798-F079-497C-8F84-B7DBA11120E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FB814B37-B8DC-4220-A420-EC5A00DCEC6B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-19] (Microsoft Windows -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForCash.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5706be01-1641-467f-b918-7f836a3a1128}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\Cash\Downloads
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome
FF Extension: (HP Client Security Manager) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome [2021-05-15] [] [non signé]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-11] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-11] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll [2015-09-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Chrome:
=======
CHR Profile: C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default [2022-01-23]
CHR Extension: (Slides) - C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-23]
CHR Extension: (Docs) - C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-23]
CHR Extension: (Google Drive) - C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-23]
CHR Extension: (YouTube) - C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-23]
CHR Extension: (Sheets) - C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-23]
CHR Extension: (Gmail) - C:\Users\Cash\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-23]
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome.crx [2015-09-28]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 CxMonSvc; C:\WINDOWS\CxSvc\CxMonSvc.exe [56496 2020-09-09] (Synaptics Incorporated -> Conexant Systems, Inc)
R2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [502232 2015-09-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\HotKeyServiceUWP.exe [1596496 2021-06-16] (HP Inc. -> HP Inc.)
R2 HP Hotkey Service; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [782048 2015-11-17] (Hewlett-Packard -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26168 2015-12-20] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 ibtsiva.exe; c:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [165616 2015-09-21] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\LanWlanWwanSwitchingServiceUWP.exe [788576 2021-06-16] (HP Inc. -> HP Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-02-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 hidemi; C:\WINDOWS\System32\drivers\hidemi.sys [30544 2015-08-21] (Microchip Technology Inc. -> Microchip)
S3 mchpemi; C:\WINDOWS\System32\drivers\mchpemi.sys [37728 2015-08-21] (Microchip Technology Inc. -> Microchip)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64864 2019-07-09] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-01-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-01-16] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-16] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
U3 aspnet_state; pas de ImagePath
S3 MpKsl4ed97b31; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CD172CC4-8AA1-46B1-8516-726A6742C9A9}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-23 19:06 - 2022-01-23 19:07 - 000029268 _____ C:\Users\Cash\Downloads\Addition.txt
2022-01-23 19:04 - 2022-01-23 19:09 - 000022031 _____ C:\Users\Cash\Downloads\FRST.txt
2022-01-23 19:03 - 2022-01-23 19:08 - 000000000 ____D C:\FRST
2022-01-23 19:03 - 2022-01-23 19:03 - 002311680 _____ (Farbar) C:\Users\Cash\Downloads\FRST64.exe
2022-01-23 18:12 - 2022-01-23 18:22 - 000277878 _____ C:\Users\Cash\Desktop\ZHPDiag.txt
2022-01-23 18:12 - 2022-01-23 18:16 - 000347907 _____ C:\Users\Cash\Desktop\ZHPDiag.html
2022-01-23 18:04 - 2022-01-23 18:22 - 000000000 ____D C:\Users\Cash\AppData\Roaming\ZHP
2022-01-23 18:04 - 2022-01-23 18:06 - 000000871 _____ C:\Users\Cash\Desktop\ZHPSuite.lnk
2022-01-23 18:04 - 2022-01-23 18:04 - 003479192 _____ (Nicolas Coolman) C:\Users\Cash\Downloads\ZHPSuite.exe
2022-01-23 18:04 - 2022-01-23 18:04 - 000000000 ____D C:\Users\Cash\AppData\Local\ZHP
2022-01-23 15:50 - 2022-01-23 16:18 - 000000000 ____D C:\Program Files\ruxim
2022-01-23 15:50 - 2022-01-23 15:53 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-23 12:57 - 2022-01-23 12:57 - 000000000 ____D C:\Users\Cash\AppData\Roaming\Macromedia
2022-01-23 12:47 - 2022-01-23 12:47 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-23 12:47 - 2022-01-23 12:47 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-01-23 12:47 - 2022-01-23 12:47 - 000000000 ____D C:\Program Files\Google
2022-01-23 12:43 - 2022-01-23 18:48 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-23 12:43 - 2022-01-23 16:20 - 000000000 ____D C:\Users\Cash\AppData\Local\Google
2022-01-23 12:43 - 2022-01-23 12:43 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{EDCF3198-3253-478C-8F28-B2424F5E3615}
2022-01-23 12:43 - 2022-01-23 12:43 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{C65C2C6B-A6FE-426F-B7C8-AC62266F175E}
2022-01-23 12:40 - 2022-01-23 18:41 - 000004174 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{C4B4F216-037A-425E-8115-DB8112D866D0}
2022-01-23 12:26 - 2022-01-23 12:38 - 000000360 _____ C:\WINDOWS\Tasks\HPCeeScheduleForCash.job
2022-01-23 12:26 - 2022-01-23 12:26 - 000003248 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForCash
2022-01-20 08:35 - 2022-01-20 08:35 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2022-01-16 15:55 - 2022-01-16 15:55 - 000000000 ___HD C:\$SysReset
2022-01-16 15:38 - 2022-01-16 15:38 - 000000000 ___HD C:\$WinREAgent
2022-01-16 13:37 - 2022-01-16 13:37 - 000000000 ____D C:\Program Files\UNP
2022-01-14 13:38 - 2022-01-23 17:44 - 000000000 ____D C:\Users\Cash\AppData\Roaming\etwin
2022-01-14 13:38 - 2022-01-14 13:38 - 000002373 _____ C:\Users\Cash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eternaltwin.lnk
2022-01-14 13:38 - 2022-01-14 13:38 - 000002365 _____ C:\Users\Cash\Desktop\Eternaltwin.lnk
2022-01-14 13:38 - 2022-01-14 13:38 - 000000000 ____D C:\Users\Cash\AppData\Roaming\Eternaltwin
2022-01-14 13:38 - 2022-01-14 13:38 - 000000000 ____D C:\Users\Cash\AppData\Local\etwin-updater
2022-01-14 13:22 - 2022-01-14 13:25 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2421924554-2060261381-264514081-1001
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-23 18:07 - 2021-05-15 11:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-23 17:52 - 2021-05-15 11:56 - 000793190 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-23 17:52 - 2021-05-15 11:56 - 000150222 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-23 17:52 - 2021-05-15 11:50 - 000000000 ____D C:\WINDOWS\INF
2022-01-23 17:52 - 2015-11-03 18:22 - 001841656 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-23 17:50 - 2021-05-16 04:57 - 000000000 __SHD C:\Users\Cash\IntelGraphicsProfiles
2022-01-23 17:46 - 2021-05-15 12:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-23 17:46 - 2021-05-15 12:13 - 000000000 ____D C:\Intel
2022-01-23 17:45 - 2021-05-15 11:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-23 16:47 - 2021-05-15 11:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-01-23 16:47 - 2016-06-17 09:04 - 000015225 _____ C:\WINDOWS\diagwrn.xml
2022-01-23 16:47 - 2016-06-17 09:04 - 000015225 _____ C:\WINDOWS\diagerr.xml
2022-01-23 16:43 - 2021-05-15 11:52 - 000000000 ____D C:\WINDOWS\Registration
2022-01-23 16:43 - 2019-12-07 16:54 - 000000000 ___HD C:\$WINDOWS.~BT
2022-01-23 16:42 - 2021-05-15 11:44 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-23 16:31 - 2021-05-15 12:05 - 000000000 ____D C:\WINDOWS\Panther
2022-01-23 16:31 - 2021-05-15 11:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-23 16:16 - 2021-05-16 05:41 - 000000000 ____D C:\Users\Cash\AppData\Local\D3DSCache
2022-01-23 15:50 - 2021-05-16 05:00 - 000000000 ____D C:\Users\Cash\AppData\Local\HP
2022-01-23 15:10 - 2021-05-15 12:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-23 12:36 - 2021-05-15 11:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-01-23 12:09 - 2021-05-15 12:14 - 000000000 ____D C:\WINDOWS\CxSvc
2022-01-23 12:08 - 2021-05-15 12:13 - 001705080 _____ (TODO: ) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2022-01-20 08:56 - 2021-05-16 04:57 - 000000000 ____D C:\Users\Cash
2022-01-20 08:53 - 2021-05-15 12:42 - 000003834 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2022-01-16 15:37 - 2021-05-16 04:58 - 000000000 ____D C:\Users\Cash\AppData\Local\Packages
2022-01-16 15:37 - 2021-05-15 11:52 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-16 15:37 - 2021-05-15 11:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-16 14:03 - 2021-05-15 12:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-01-16 14:03 - 2021-05-15 11:52 - 000000000 ____D C:\Program Files\Windows Defender
2022-01-16 13:37 - 2021-05-15 11:52 - 000000000 ____D C:\WINDOWS\appcompat
2022-01-14 13:51 - 2021-05-18 06:07 - 000000000 ____D C:\Users\Cash\AppData\Local\PlaceholderTileLogoFolder
2022-01-14 13:51 - 2021-05-16 04:58 - 000000000 ____D C:\ProgramData\Packages
2022-01-14 13:44 - 2021-05-16 04:59 - 000000000 ____D C:\Users\Cash\AppData\Local\MicrosoftEdge
2022-01-14 13:25 - 2021-05-16 05:01 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2421924554-2060261381-264514081-1001
2022-01-14 13:25 - 2021-05-16 04:57 - 000002421 _____ C:\Users\Cash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================