Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021 Exécuté par alain (administrateur) sur DESKTOP-V6J6QMB (HP HP Pavilion All-in-One 27-xa0xxx) (01-03-2021 11:16:59) Exécuté depuis C:\Users\alain\Downloads Profils chargés: alain Platform: Windows 10 Home Version 20H2 19042.804 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adlice -> ) C:\Program Files\UCheck\UCheck64.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_f98b15466093b28e\x64\TouchpointAnalyticsClientService.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5544a2e7dfd0f875\x64\AppHelperCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5544a2e7dfd0f875\x64\BridgeCommunication.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5544a2e7dfd0f875\x64\NetworkCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5544a2e7dfd0f875\x64\SysInfoCap.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.9.1548.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.21.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7c484f80872e1cd8\jhi_service.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05de635879d45aad\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05de635879d45aad\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_67281896f9be8505\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_67281896f9be8505\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_ccf4cd38f776cb97\RstMwService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.46.23383.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxCalendarAppImm.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7> (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_d4af7152de94ffbc\Display.NvContainer\NVDisplay.Container.exe <2> (Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\HP Display Control Service\DisplayControlService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtAudioServ.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3e0257ced434aaba\RtkAudUService64.exe <2> (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (WildTangent Inc -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Program Files (x86)\Common Files\Zoom\Support\CptService.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [528392 2020-09-06] (HP Inc. -> HP Inc.) HKLM\...\Run: [BtServer] => "C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe" HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81373696 2020-07-06] (Western Digital Technologies, Inc. -> Western Digital Corporation) HKU\S-1-5-21-3314656839-3759112349-1923021311-1002\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [528392 2020-09-06] (HP Inc. -> HP Inc.) HKU\S-1-5-21-3314656839-3759112349-1923021311-1002\...\Run: [HP ENVY Photo 6200 (NET)] => C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\ScanToPCActivationApp.exe [4064160 2019-03-18] (HP Inc -> HP Inc.) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0BF2E74C-B38C-4F0A-AD3F-E4CCF68297A2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [553304 2020-11-04] (HP Inc. -> HP Inc.) Task: {0F25197C-F8B1-49ED-B746-D153FB97EFFB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2020-07-17] (NVIDIA Corporation -> NVIDIA Corporation) Task: {10BFAC73-D38F-4A7E-AF2F-3AA24790B05E} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError Task: {189225ED-8154-41B4-9171-52513B3F9DE0} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF Task: {18A8B16E-D81F-4633-B126-59058F361105} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI Task: {2C891288-966A-48C6-82C9-578A51CD45CD} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3e0257ced434aaba\RtkAudUService64.exe [1179440 2020-09-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {3EDAE9B0-FC5A-45D1-A0B5-7C13418454D5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {431188B6-0A21-4447-8427-43EA54B5AB04} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142152 2021-02-20] (Microsoft Corporation -> Microsoft Corporation) Task: {5AE0D47A-956E-45CD-879D-99DAC8A4BEAE} - System32\Tasks\UCheck => C:\Program Files\UCheck\UCheck64.exe [26952000 2021-02-16] (Adlice -> ) Task: {9E383277-1FC5-4AFB-A5DA-BFB5782C24A3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {A4C52101-3D1D-4B5A-A1BF-960DB5D43F93} - System32\Tasks\WD Device Agent Task alain => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [717824 2020-07-06] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) Task: {A86F30AF-07E2-4F77-9132-10218BA1A212} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice Task: {B9D856E0-F124-4261-876D-476724B11811} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {D446EFFC-B567-4271-9646-6F01D1F73A98} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142152 2021-02-20] (Microsoft Corporation -> Microsoft Corporation) Task: {FD2C9921-7E98-4AD4-AB91-EEFD905FB424} - System32\Tasks\WD Discovery Service Task alain => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [72704 2020-07-06] (Western Digital Technologies, Inc. -> ) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{765f53f7-e6f6-42ca-b5fe-d4cf6810774d}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{a93e1f20-c9b1-49a7-b9ab-a01fe0a4eca8}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\alain\Downloads Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: psnom115.default FF ProfilePath: C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\psnom115.default [2021-02-28] FF ProfilePath: C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\chq8yvyc.default-release-1600704955986 [2021-03-01] FF Homepage: Mozilla\Firefox\Profiles\chq8yvyc.default-release-1600704955986 -> hxxps://www.qwant.com/?client=ext-firefox-hp FF HomepageOverride: Mozilla\Firefox\Profiles\chq8yvyc.default-release-1600704955986 -> Enabled: qwantcomforfirefox@jetpack FF Extension: (Pas de nom) - C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\chq8yvyc.default-release-1600704955986\Extensions\qwantcomforfirefox@jetpack.xpi [2020-12-18] FF Extension: (Google Translator for Firefox) - C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\chq8yvyc.default-release-1600704955986\Extensions\translator@zoli.bod.xpi [2020-09-21] FF Extension: (uBlock Origin) - C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\chq8yvyc.default-release-1600704955986\Extensions\uBlock0@raymondhill.net.xpi [2021-02-02] FF Extension: (Malwarebytes Browser Guard) - C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\chq8yvyc.default-release-1600704955986\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-02-12] FF Extension: (Zoom Scheduler) - C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\chq8yvyc.default-release-1600704955986\Extensions\{bf855ead-d7c3-4c7b-9f88-9a7e75c0efdf}.xpi [2021-02-02] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-25] (Adobe Inc. -> Adobe Systems Inc.) Opera: ======= OPR Profile: C:\Users\alain\AppData\Roaming\Opera Software\Opera Stable [2021-02-28] OPR Extension: (Protection Web Avira) - C:\Users\alain\AppData\Roaming\Opera Software\Opera Stable\Extensions\dalelnnofafalcmkmnhdbigbjjkloabo [2020-07-05] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-13] (Microsoft Corporation -> Microsoft Corporation) R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [356472 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5544a2e7dfd0f875\x64\AppHelperCap.exe [693760 2021-01-06] (HP Inc. -> HP Inc.) R2 HPDCService; C:\Program Files\Portrait Displays\HP Display Control Service\DisplayControlService.exe [298880 2020-11-10] (Portrait Displays, Inc. -> Portrait Displays, Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5544a2e7dfd0f875\x64\NetworkCap.exe [692736 2021-01-06] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [284808 2021-02-08] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5544a2e7dfd0f875\x64\SysInfoCap.exe [693760 2021-01-06] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_f98b15466093b28e\x64\TouchpointAnalyticsClientService.exe [479504 2021-01-06] (HP Inc. -> HP Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-21] (Malwarebytes Inc -> Malwarebytes) R2 RtkAudioUniversalService; C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3e0257ced434aaba\RtkAudUService64.exe [1179440 2020-09-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor) R2 RtkBtAudioServ; C:\WINDOWS\RtkBtAudioServ.exe [197920 2020-05-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1640240 2020-10-05] (WildTangent Inc -> ) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-28] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_d4af7152de94ffbc\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_d4af7152de94ffbc\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem R2 ZoomCptService; "C:\Program Files (x86)\Common Files\Zoom\Support\CptService.exe" -user_path "C:\Users\alain\AppData\Roaming\Zoom" ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-12-21] (Malwarebytes Corporation -> Malwarebytes) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.) R3 IntelReadyModeDriver; C:\WINDOWS\System32\drivers\IntelReadyModeDriver.sys [34704 2017-11-20] (Intel Corporation -> Intel Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-02-20] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198248 2021-02-28] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-02-28] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-02-20] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [142416 2021-02-28] (Malwarebytes Inc -> Malwarebytes) R3 RtkA2dp; C:\WINDOWS\System32\drivers\RtkA2dp.sys [217040 2020-04-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [96984 2020-04-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [213088 2020-02-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49552 2021-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [419040 2021-02-28] (Microsoft Windows -> Microsoft Corporation) R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-28] (Microsoft Windows -> Microsoft Corporation) R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.) S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-03-01 11:16 - 2021-03-01 11:17 - 000020099 _____ C:\Users\alain\Downloads\FRST.txt 2021-03-01 11:06 - 2021-03-01 11:06 - 003324568 _____ (Nicolas Coolman) C:\Users\alain\Downloads\ZHPCleaner.exe 2021-03-01 11:03 - 2021-03-01 11:03 - 000024984 _____ C:\Users\alain\Desktop\ZHPCleaner (R).txt 2021-03-01 10:59 - 2021-03-01 11:13 - 000002767 _____ C:\Users\alain\Desktop\ZHPCleaner (S).txt 2021-03-01 10:53 - 2021-03-01 11:07 - 000000882 _____ C:\Users\alain\Desktop\ZHPCleaner.lnk 2021-03-01 10:50 - 2021-02-28 19:36 - 000018441 _____ C:\Users\alain\Desktop\Fixlog.txt 2021-02-28 19:38 - 2021-02-28 19:38 - 000198248 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2021-02-28 19:38 - 2021-02-28 19:38 - 000142416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2021-02-28 19:38 - 2021-02-28 19:38 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2021-02-28 19:18 - 2021-02-28 19:36 - 000018441 _____ C:\Users\alain\Downloads\Fixlog.txt 2021-02-28 19:17 - 2021-02-28 19:17 - 000000000 ____D C:\Users\alain\Downloads\FRST-OlderVersion 2021-02-28 18:44 - 2021-02-28 18:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2021-02-28 10:58 - 2021-03-01 11:16 - 000001025 _____ C:\Users\alain\Desktop\FRST64 - Raccourci.lnk 2021-02-28 10:58 - 2021-02-28 10:58 - 000001081 _____ C:\Users\alain\Desktop\Addition - Raccourci.lnk 2021-02-28 10:58 - 2021-02-28 10:58 - 000001041 _____ C:\Users\alain\Desktop\FRST - Raccourci.lnk 2021-02-27 10:58 - 2021-03-01 11:17 - 000000000 ____D C:\FRST 2021-02-27 10:57 - 2021-02-28 19:17 - 002301440 _____ (Farbar) C:\Users\alain\Downloads\FRST64.exe 2021-02-27 10:48 - 2021-02-27 10:48 - 000360463 _____ C:\Users\alain\Desktop\ZHPDiag.txt 2021-02-27 10:43 - 2021-03-01 11:15 - 000000000 ____D C:\Users\alain\AppData\Roaming\ZHP 2021-02-27 10:43 - 2021-03-01 10:53 - 000000000 ____D C:\Users\alain\AppData\Local\ZHP 2021-02-27 10:43 - 2021-02-27 10:50 - 000000872 _____ C:\Users\alain\Desktop\ZHPSuite.lnk 2021-02-27 10:42 - 2021-02-27 10:42 - 003466392 _____ (Nicolas Coolman) C:\Users\alain\Downloads\ZHPSuite.exe 2021-02-24 11:03 - 2021-02-28 19:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-02-22 18:14 - 2021-02-22 18:14 - 000000000 ____D C:\Users\alain\AppData\Roaming\dvdcss 2021-02-22 18:08 - 2021-02-24 11:15 - 000000000 ____D C:\Users\alain\AppData\Roaming\vlc 2021-02-22 18:07 - 2021-02-22 18:07 - 000000000 ____D C:\Users\alain\VLC 2021-02-20 17:10 - 2021-02-20 17:10 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf 2021-02-20 17:02 - 2021-02-20 17:02 - 000000000 ____D C:\Users\alain\.android 2021-02-20 17:01 - 2020-02-17 06:41 - 000120416 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys 2021-02-19 21:03 - 2021-02-19 21:03 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-02-16 17:46 - 2021-02-16 17:46 - 026052416 _____ (Adlice Software ) C:\Users\alain\Downloads\UCheck_setup.exe 2021-02-12 07:50 - 2021-02-12 07:50 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2021-02-12 07:50 - 2021-02-12 07:50 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2021-02-12 07:50 - 2021-02-12 07:50 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2021-02-12 07:50 - 2021-02-12 07:50 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2021-02-12 07:50 - 2021-02-12 07:50 - 000002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2021-02-12 07:50 - 2021-02-12 07:50 - 000002408 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2021-02-12 07:50 - 2021-02-12 07:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2021-02-10 21:12 - 2021-02-10 21:12 - 000000000 ____D C:\Users\alain\AppData\Local\OpenOffice 4.1.9 (fr) Installation Files 2021-02-10 19:13 - 2021-02-10 19:13 - 000001092 _____ C:\Users\Public\Desktop\OpenOffice 4.1.9.lnk 2021-02-10 19:13 - 2021-02-10 19:13 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9 2021-02-10 17:55 - 2021-02-10 17:55 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-02-10 17:55 - 2021-02-10 17:55 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-02-09 10:36 - 2021-02-09 10:36 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-02-09 10:36 - 2021-02-09 10:36 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-02-09 10:35 - 2021-02-09 10:35 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-02-08 12:09 - 2021-02-20 13:27 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-02-08 12:09 - 2021-02-20 13:27 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-02-08 12:03 - 2021-02-08 12:03 - 000000000 ____D C:\Program Files\HPPrintScanDoctor ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-03-01 11:15 - 2020-06-30 20:37 - 000000000 ____D C:\ProgramData\Mozilla 2021-03-01 11:14 - 2020-06-30 20:37 - 000000000 ____D C:\Users\alain\AppData\LocalLow\Mozilla 2021-03-01 11:12 - 2020-06-30 20:38 - 000000000 ___HD C:\Program Files\WindowsApps 2021-03-01 11:12 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-03-01 11:12 - 2020-06-30 20:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-03-01 10:51 - 2020-06-30 20:40 - 000755174 _____ C:\WINDOWS\system32\perfh00C.dat 2021-03-01 10:51 - 2020-06-30 20:40 - 000141980 _____ C:\WINDOWS\system32\perfc00C.dat 2021-03-01 10:51 - 2020-06-30 20:37 - 000000000 ____D C:\WINDOWS\INF 2021-03-01 10:51 - 2020-06-30 19:56 - 001705930 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-03-01 10:45 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\ServiceState 2021-03-01 10:45 - 2020-06-30 20:25 - 000000000 __SHD C:\Users\alain\IntelGraphicsProfiles 2021-03-01 10:45 - 2020-06-30 19:45 - 000000134 _____ C:\WINDOWS\system32\regtest.txt 2021-03-01 10:45 - 2020-06-30 19:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-03-01 10:45 - 2020-06-30 19:44 - 000008192 ___SH C:\DumpStack.log.tmp 2021-03-01 10:45 - 2020-06-30 19:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-03-01 10:45 - 2019-12-20 11:25 - 000000000 ____D C:\ProgramData\NVIDIA 2021-02-28 19:37 - 2020-06-30 20:35 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-02-28 18:55 - 2020-10-02 15:25 - 000001604 _____ C:\Users\alain\Desktop\McAfee® Personal Security.lnk 2021-02-28 18:52 - 2020-06-30 20:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-02-28 18:51 - 2020-06-30 20:35 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-02-28 18:51 - 2020-06-30 20:14 - 000000000 ____D C:\Users\alain 2021-02-28 11:26 - 2020-06-30 19:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-02-28 11:25 - 2020-06-30 20:38 - 000000000 ____D C:\Program Files\Windows Defender 2021-02-28 11:15 - 2020-06-30 20:13 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2021-02-28 11:09 - 2020-06-30 20:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-02-28 11:04 - 2019-12-20 11:25 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-02-28 11:04 - 2019-12-20 11:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-02-28 11:04 - 2019-12-20 11:24 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-02-28 10:26 - 2020-07-02 13:01 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-02-27 20:40 - 2020-09-06 19:30 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-02-27 16:38 - 2020-06-30 21:12 - 000001857 _____ C:\Users\alain\Desktop\Spotify.lnk 2021-02-27 16:38 - 2020-06-30 21:12 - 000001843 _____ C:\Users\alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2021-02-27 16:38 - 2020-06-30 21:12 - 000000000 ____D C:\Users\alain\AppData\Local\Spotify 2021-02-27 16:38 - 2020-06-30 21:11 - 000000000 ____D C:\Users\alain\AppData\Roaming\Spotify 2021-02-27 16:36 - 2020-12-16 20:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2021-02-27 16:36 - 2020-07-25 15:36 - 000001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2021-02-27 16:36 - 2020-07-25 15:36 - 000001277 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk 2021-02-27 10:30 - 2020-06-30 20:26 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3314656839-3759112349-1923021311-1002 2021-02-27 10:30 - 2020-06-30 20:26 - 000000000 ___RD C:\Users\alain\OneDrive 2021-02-27 10:30 - 2020-06-30 20:14 - 000002412 _____ C:\Users\alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-02-27 10:22 - 2020-06-30 20:25 - 000000000 ____D C:\Users\alain\AppData\Local\Packages 2021-02-26 19:29 - 2020-06-30 19:44 - 000581040 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-02-25 18:38 - 2020-07-23 14:15 - 000000000 ____D C:\Users\alain\AppData\Local\HP_Inc 2021-02-25 14:27 - 2020-06-30 20:26 - 000000000 ____D C:\Users\alain\AppData\Local\PlaceholderTileLogoFolder 2021-02-24 15:29 - 2020-07-01 09:31 - 000000378 _____ C:\Users\alain\Desktop\Panneaux de configuration.lnk 2021-02-24 15:17 - 2020-11-10 15:00 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-02-24 11:03 - 2020-06-30 20:37 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-02-22 21:22 - 2020-06-30 20:35 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-02-22 17:30 - 2020-07-04 16:41 - 000000000 ____D C:\Users\alain\AppData\Local\ElevatedDiagnostics 2021-02-22 17:09 - 2020-06-30 20:42 - 000000000 ____D C:\Users\alain\AppData\Local\Comms 2021-02-20 20:42 - 2019-07-01 01:25 - 000000000 ____D C:\Program Files\Microsoft Office 2021-02-20 17:54 - 2020-07-01 14:54 - 000000000 ____D C:\Users\alain\AppData\Local\CrashDumps 2021-02-16 17:47 - 2020-06-30 21:22 - 000000844 _____ C:\Users\Public\Desktop\UCheck.lnk 2021-02-16 17:47 - 2020-06-30 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck 2021-02-16 17:47 - 2020-06-30 21:22 - 000000000 ____D C:\Program Files\UCheck 2021-02-11 14:03 - 2020-07-02 13:01 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-02-10 19:13 - 2020-07-01 11:54 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4 2021-02-10 19:09 - 2020-12-09 16:31 - 000001865 _____ C:\Users\Public\Desktop\Zoom.lnk 2021-02-10 19:09 - 2020-12-09 16:30 - 000000000 ____D C:\Program Files (x86)\Zoom 2021-02-10 18:02 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\SystemResources 2021-02-10 18:02 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-02-10 18:02 - 2020-06-30 20:38 - 000000000 ____D C:\Program Files\Common Files\System 2021-02-10 10:58 - 2020-07-02 09:40 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-02-10 10:56 - 2020-07-02 09:40 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-02-09 10:40 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-02-09 10:39 - 2020-06-30 20:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-02-09 10:39 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-02-09 10:39 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-02-09 10:39 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-02-09 10:39 - 2020-06-30 20:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-02-09 10:39 - 2020-06-30 20:35 - 000000000 ____D C:\WINDOWS\servicing 2021-02-09 10:20 - 2020-09-06 19:29 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-02-09 10:20 - 2020-09-06 19:29 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-02-08 12:03 - 2020-06-30 20:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2021-02-06 11:19 - 2020-06-30 20:47 - 000000000 ____D C:\SWSetup ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================