Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-06-2022 01 Exécuté par guill (administrateur) sur HP-TOUT-EN-UN (HP HP EliteOne 800 G6 27 All-in-One PC) (03-06-2022 17:11:51) Exécuté depuis C:\Users\guill\Downloads Profils chargés: guill Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1706 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe (C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\26.0.1.222\DiscoverySrv.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (DriverStore\FileRepository\cui_dch.inf_amd64_d74e34a4e4342aac\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d74e34a4e4342aac\igfxEM.exe (DriverStore\FileRepository\hpanalyticscomp.inf_amd64_16362a5f981410f1\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_16362a5f981410f1\x64\TouchpointGpuInfo.exe (DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\NetworkCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\BridgeCommunication.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.myHP_1.10.53228.0_x64__v10z8vjag6ke6\win32\HPBackgroundProcess.exe (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2139.1.194.0_x64__8j3eq9eme6ctt\PrivacyIconClientGui\PrivacyIconClient.exe (KARPOLAN) [Fichier non signé] C:\Program Files (x86)\Keyboard LEDs\KeyboardLeds.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3> (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (services.exe ->) (Bromium, Inc. -> HP) C:\Program Files\HP\Security Update Service\4.3.4.892\SecurityUpdateService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_16362a5f981410f1\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_d63217db82d174f2\HotkeyServiceDSU.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_d63217db82d174f2\LanWlanWwanSwitchingServiceDSU.exe (services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d74e34a4e4342aac\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_d84740239ad86ded\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_2139872f0ddae318\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_8e0fb079c9c9c2fe\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_8e0fb079c9c9c2fe\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_7616b976fc6840bd\LMS.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe <2> (services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (sihost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_136.1.269.0_x64__v10z8vjag6ke6\HP.Smart.exe (svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPQuickDrop_2.5.10203.0_x64__v10z8vjag6ke6\HPQuickDrop.exe (svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.myHP_1.10.53228.0_x64__v10z8vjag6ke6\HP.myHP.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe [3408512 2022-01-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [979592 2022-05-15] (Bitdefender SRL -> Bitdefender) HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [319080 2022-01-31] (Bitdefender SRL -> Bitdefender) HKLM-x32\...\Run: [HPNotifications] => C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe [1607816 2021-02-11] (HP Inc. -> HP) HKU\S-1-5-21-3126763428-1682336808-219925755-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\guill\AppData\Local\Microsoft\Teams\Update.exe [2459304 2022-01-19] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-3126763428-1682336808-219925755-1001\...\Run: [KeyboardLeds.exe] => C:\Program Files (x86)\Keyboard LEDs\KeyboardLeds.exe [912896 2012-09-06] (KARPOLAN) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\102.0.5005.63\Installer\chrmstp.exe [2022-06-01] (Google LLC -> Google LLC) Startup: C:\Users\guill\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2022-04-12] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) GroupPolicy: Restriction - Chrome <==== ATTENTION GroupPolicy\User: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {25570C6B-D726-4931-AD45-63966970AB82} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags: Task: {2AA679F8-5762-4EF2-8BA4-924E0C7E30E1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-12-13] (Google LLC -> Google LLC) Task: {35E504C8-9FAF-48FA-A719-189BB9F1EDF5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144792 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) Task: {46064FED-F759-43E9-B6D2-ADACFC4FCA27} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4215192 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) Task: {49A12F97-8930-4630-9690-2EE46B505B59} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI Task: {638E9CB8-BF4B-45AE-8A4C-068E351E5170} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [411280 2022-05-31] (HP Inc. -> HP Inc.) Task: {71468DDD-4491-4992-9AC7-C280E3A77F63} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [67472 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) Task: {718B3660-73D6-4F15-BD93-788F4D410565} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-05-31] (HP Inc. -> HP Inc.) Task: {781F2BA4-817D-4601-899C-C91116A9BFEF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23244744 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) Task: {7C0232ED-63FE-4188-86CC-FB22F59D4423} - System32\Tasks\Hewlett-Packard\HP Web Products Detection => C:\Program Files (x86)\HP\HP Support Framework\Modules\HPWPD.exe [303792 2022-05-31] (HP Inc. -> HP Inc.) Task: {7EA1D86C-C87A-4730-8242-6294BC5AC818} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-12-13] (Google LLC -> Google LLC) Task: {870F25F7-91EC-4794-8FDE-2209BF3248B2} - System32\Tasks\Hewlett-Packard\HPDeviceCheck => C:\Program Files (x86)\HP\HP Support Framework\Modules\HPDeviceCheck\HPDeviceCheck.exe [304816 2022-05-31] (HP Inc. -> ) Task: {A39CB9EC-007F-4ECB-82C2-AE1A81C29922} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\26.0.1.222\WatchDog.exe [1050728 2022-03-23] (Bitdefender SRL -> Bitdefender) Task: {A41F6F5C-2862-46FD-B2A0-3DB2A517A32A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1148048 2022-05-31] (HP Inc. -> HP Inc.) Task: {AE8DD990-04FC-42CC-B63C-EA21611F2EE1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23244744 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) Task: {AF8F7F51-AD12-4649-BCCF-F5E473636DC4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3126763428-1682336808-219925755-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4215192 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) Task: {B58908DE-6A5E-4EB5-BF42-B4E18C53728D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF Task: {B9AB57D1-6F46-4226-9780-6BFBB5A805E2} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError Task: {BAB4B413-B4C3-49EA-B9F5-CF1A58223CAF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1148048 2022-05-31] (HP Inc. -> HP Inc.) Task: {BC9A865B-6EE6-4A5E-B53A-1E83490E2437} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2 Task: {C4CC6729-48F8-4469-BB08-3260A7D6E8F7} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1 Task: {C7196EC8-F380-4FE4-ACF5-B90F0308CDC0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [221328 2022-05-31] (HP Inc. -> ) Task: {DFC417E1-A15C-436A-847B-DEE5979CFFAD} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError Task: {E21BC348-5F3D-4710-B2BC-AE2876D7D2EB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH9AA5612D => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1148048 2022-05-31] (HP Inc. -> HP Inc.) Task: {E80FBEC8-7B41-49E8-8915-A518C2439BDC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144792 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) Task: {F8B681E1-08F1-4A58-BB0F-B588CDD8A19B} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice Task: {FF0C45B6-948B-474E-AF6B-2D7686F76891} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{a86d5c93-5d81-4257-afd1-9081001bf172}: [DhcpNameServer] 8.8.8.8 Tcpip\..\Interfaces\{cf6a58e4-f49e-4cc9-b84a-4eb6f003e7db}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\guill\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-03] Edge StartupUrls: Default -> "hxxps://calendar.google.com/calendar/u/4/r?tab=mc","hxxps://mail.google.com/mail/u/4/#inbox","hxxps://mail.google.com/mail/u/1/#inbox","hxxps://mail.google.com/mail/u/3/#inbox","hxxps://mail.google.com/mail/u/2/#inbox","hxxps://mail.google.com/mail/u/0/#inbox" Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Edge HKLM-x32\...\Edge\Extension: [pdhdldaneekjpoaldekpgomomeabpnek] FireFox: ======== FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2021-06-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ] FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-09-17] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2021-12-10] [] [non signé] FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-07] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-07] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\guill\AppData\Local\Google\Chrome\User Data\Default [2022-06-03] CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://teams.live.com CHR StartupUrls: Default -> "hxxps://calendar.google.com/calendar/u/1/r/month/2022/4/1?tab=mc","hxxps://mail.google.com/mail/u/1/#inbox","hxxps://mail.google.com/mail/u/2/#inbox","hxxps://mail.google.com/mail/u/3/#inbox","hxxps://mail.google.com/mail/u/0/#inbox" CHR Extension: (Google Docs hors connexion) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-15] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-05-24] CHR Extension: (HP Network Check Launcher) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2022-04-18] CHR Extension: (Bitdefender Anti-tracker) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2021-12-29] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-13] CHR Profile: C:\Users\guill\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-12-13] CHR Profile: C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-02-03] CHR Extension: (Slides) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-13] CHR Extension: (Docs) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-13] CHR Extension: (Google Drive) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-13] CHR Extension: (YouTube) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-13] CHR Extension: (Sheets) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-13] CHR Extension: (Bitdefender Wallet) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2022-02-03] CHR Extension: (Google Docs hors connexion) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-03] CHR Extension: (Bitdefender Anti-tracker) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2022-02-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-13] CHR Extension: (Gmail) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-13] CHR Profile: C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-12-13] CHR Extension: (Slides) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-13] CHR Extension: (Docs) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-13] CHR Extension: (Google Drive) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-13] CHR Extension: (YouTube) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-13] CHR Extension: (Sheets) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-13] CHR Extension: (Google Docs hors connexion) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-13] CHR Extension: (HP Sure Click Secure Browsing) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ialkgjcmgjhnbckmolibjoeeglgbaegf [2021-12-13] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-13] CHR Extension: (Gmail) - C:\Users\guill\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-13] CHR Profile: C:\Users\guill\AppData\Local\Google\Chrome\User Data\System Profile [2021-12-13] CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [198256 2021-01-25] (Pango Inc. -> AnchorFree Inc.) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [827400 2022-05-15] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [827400 2022-05-15] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2161256 2018-03-22] (Bitdefender SRL -> Bitdefender) R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2454632 2022-02-10] (Bitdefender SRL -> Bitdefender) R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [245864 2022-01-31] (Bitdefender SRL -> Bitdefender) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11988424 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.099.0508.0001\FileSyncHelper.exe [3401112 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) R2 HotKeyServiceDSU; C:\windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_d63217db82d174f2\HotKeyServiceDSU.exe [693840 2021-11-29] (HP Inc. -> HP Inc.) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [891256 2020-07-30] (HP Inc. -> HP Inc.) R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\AppHelperCap.exe [764440 2022-03-30] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\DiagsCap.exe [763456 2022-03-30] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\NetworkCap.exe [759336 2022-03-30] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [223904 2022-05-15] (HP Inc. -> HP Inc.) R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149448 2020-07-23] (HP Inc. -> HP) R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_02ea01a452126faa\x64\SysInfoCap.exe [762912 2022-03-30] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_16362a5f981410f1\x64\TouchpointAnalyticsClientService.exe [497328 2022-03-30] (HP Inc. -> HP Inc.) S2 IntelAudioService; C:\windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_86e2e43ca53d9acf\\AS\\IAS\\IntelAudioService.exe [403640 2021-12-19] (Intel Corporation -> Intel) R2 LanWlanWwanSwitchingServiceDSU; C:\windows\System32\DriverStore\FileRepository\hpdsusoftwarecomponent.inf_amd64_d63217db82d174f2\LanWlanWwanSwitchingServiceDSU.exe [583248 2021-11-29] (HP Inc. -> HP Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8524512 2022-05-23] (Malwarebytes Inc. -> Malwarebytes) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.099.0508.0001\OneDriveUpdaterService.exe [3842464 2022-05-30] (Microsoft Corporation -> Microsoft Corporation) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [787608 2022-05-03] (Bitdefender SRL -> Bitdefender) R2 SecurityUpdateService; C:\Program Files\HP\Security Update Service\4.3.4.892\SecurityUpdateService.exe [4340072 2022-01-11] (Bromium, Inc. -> HP) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254856 2022-05-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [289928 2022-05-15] (Bitdefender SRL -> Bitdefender) S3 VssEaseusProvider; C:\windows\system32\dllhost.exe /Processid:{59CDA6D4-5CE6-4524-B653-4B7452AD3262} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [827400 2022-05-15] (Bitdefender SRL -> Bitdefender) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 atc; C:\windows\System32\DRIVERS\atc.sys [4802976 2022-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\windows\System32\DRIVERS\bddci.sys [800672 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S0 bdelam; C:\windows\System32\drivers\bdelam.sys [22976 2020-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R0 bdprivmon; C:\windows\System32\DRIVERS\bdprivmon.sys [33208 2022-03-07] (Microsoft Windows Hardware Compatibility Publisher -> © Bitdefender SRL) S3 bduefiscan; C:\windows\system32\DRIVERS\bduefiscan.sys [55864 2021-07-09] (Bitdefender SRL -> Bitdefender) S3 BthA2dp; C:\windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [103888 2022-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S4 EUBAKUP; C:\windows\system32\drivers\eubakup.sys [74296 2021-07-25] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) S4 EUBKMON; C:\windows\system32\drivers\EUBKMON.sys [54328 2021-07-25] (Microsoft Windows Hardware Compatibility Publisher -> ) S4 EUDSKACS; C:\windows\system32\drivers\eudskacs.sys [22784 2021-07-25] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) S4 EUFDDISK; C:\windows\system32\drivers\EuFdDisk.sys [555072 2021-08-26] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R0 Gemma; C:\windows\System32\DRIVERS\gemma.sys [1190288 2022-05-15] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA) S3 GSCAuxDriver; C:\windows\System32\DriverStore\FileRepository\gscauxdriver.inf_amd64_47dea9773e9dfab7\GSCAuxDriverx64.sys [78896 2021-06-10] (Intel Corporation -> Intel Corporation) R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.) R2 Ignis; C:\windows\System32\DRIVERS\ignis.sys [185312 2020-10-07] (Bitdefender SRL -> Bitdefender) R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [223176 2022-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [21480 2022-05-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [194512 2022-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [70088 2022-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [239560 2022-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [181992 2022-05-23] (Malwarebytes Inc. -> Malwarebytes) S3 plser; C:\windows\System32\drivers\plser64.sys [258040 2020-06-19] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.) S3 Ser2pl; C:\windows\System32\drivers\ser2pl64.sys [265736 2020-06-19] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.) S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\windows\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R0 trufos; C:\windows\System32\DRIVERS\trufos.sys [623008 2021-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R0 vlflt; C:\windows\System32\DRIVERS\vlflt.sys [474048 2022-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S3 WdBoot; C:\windows\system32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\windows\system32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation) R3 WiManH; C:\windows\System32\DriverStore\FileRepository\wiman.inf_amd64_c34c898c5c4d0406\WiManH\WiManH.sys [175688 2021-12-08] (Intel Corporation -> Intel Corporation) S3 ax_pvi; \??\c:\Program Files\HP\Sure Click\bin\ax_pvi.sys [X] S3 uxen; \??\c:\Program Files\HP\Sure Click\bin\uxen.sys [X] S3 WinRing0_1_2_0; \??\C:\Users\guill\AppData\Local\Temp\tmpAD9E.tmp [X] <==== ATTENTION ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-06-03 17:11 - 2022-06-03 17:12 - 000034123 _____ C:\Users\guill\Downloads\FRST.txt 2022-06-03 17:10 - 2022-06-03 17:12 - 000000000 ____D C:\FRST 2022-06-03 17:10 - 2022-06-03 17:10 - 002368000 _____ (Farbar) C:\Users\guill\Downloads\FRST64.exe 2022-06-03 17:08 - 2022-06-03 17:09 - 000000000 ____D C:\Users\guill\Downloads\CrystalDiskInfo8_16_4 (1) 2022-06-03 17:07 - 2022-06-03 17:07 - 006189924 _____ C:\Users\guill\Downloads\CrystalDiskInfo8_16_4.zip 2022-06-03 17:07 - 2022-06-03 17:07 - 006189924 _____ C:\Users\guill\Downloads\CrystalDiskInfo8_16_4 (1).zip 2022-06-03 16:59 - 2022-06-03 16:59 - 000021718 _____ C:\Users\guill\Downloads\FR004379E0100_2022_5.pdf 2022-06-03 16:57 - 2022-06-03 16:57 - 000010896 _____ C:\Users\guill\Downloads\PdfDrmChampagne_FR004379E0100_2022_05_1000323145.pdf 2022-06-03 16:15 - 2022-06-03 16:15 - 000011807 _____ C:\Users\guill\Downloads\PdfDrmChampagne_FR015001E5061_2022_05_1000323037.pdf 2022-06-03 16:13 - 2022-06-03 16:13 - 000022167 _____ C:\Users\guill\Downloads\FR015001E5061_2022_5.pdf 2022-06-03 08:44 - 2022-06-03 08:44 - 000000000 ____D C:\Users\guill\AppData\Local\IsolatedStorage 2022-06-03 07:37 - 2022-06-03 07:37 - 000000000 ____D C:\windows\Firmware 2022-06-01 10:20 - 2022-06-01 10:20 - 008280684 _____ C:\Users\guill\Downloads\IMG_2456 (3).MP4 2022-05-31 11:48 - 2022-05-31 11:48 - 000538159 _____ C:\Users\guill\Downloads\CC_Avis_Opere (1).pdf 2022-05-30 21:54 - 2022-05-30 21:54 - 000000175 ____R C:\Users\guill\OneDrive\Documents\Ordinateur portable de Gérard-HP-TOUT-EN-UN.url 2022-05-30 16:54 - 2022-05-30 16:54 - 000116947 _____ C:\Users\guill\Downloads\E_Releves_de_factures_n_0005248283_02_05_2022_1421228523_6ECarzM2.pdf 2022-05-30 16:52 - 2022-05-30 16:52 - 000160788 _____ C:\Users\guill\Downloads\Releve_de_frais_sur_instruments_financiers_2021(20220415)_1419915354_EepmnsEK.pdf 2022-05-30 16:41 - 2022-05-30 16:41 - 000117585 _____ C:\Users\guill\Downloads\Releve_n_005_du_27_05_2022_1422681746_Td7hZiE5.pdf 2022-05-30 16:34 - 2022-05-30 16:34 - 000101217 _____ C:\Users\guill\Downloads\E_Releve_Business_Differe_PORTEUR_1421414121_qOjZcWmf.pdf 2022-05-30 16:30 - 2022-05-30 16:30 - 000114944 _____ C:\Users\guill\Downloads\Releve_n_004_du_26_04_2022_1420420775_kKM7cfYi.pdf 2022-05-30 16:21 - 2022-05-30 16:21 - 000123015 _____ C:\Users\guill\Downloads\Releve_n_010_du_20_05_2022_1422262869_MBRuxd2s.pdf 2022-05-30 14:34 - 2022-05-30 14:35 - 033407157 _____ C:\Users\guill\Downloads\wetransfer_desordres-suite-a-la-pluie-du-29-mai_2022-05-30_1208.zip 2022-05-30 13:53 - 2022-05-30 13:54 - 008439055 _____ C:\Users\guill\Downloads\20220529_204322.mp4 2022-05-30 13:49 - 2022-05-30 13:49 - 007678677 _____ C:\Users\guill\Downloads\20220529_204205 (2).mp4 2022-05-30 13:48 - 2022-05-30 13:48 - 007678677 _____ C:\Users\guill\Downloads\20220529_204205 (1).mp4 2022-05-23 23:19 - 2022-05-23 23:19 - 000070088 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys 2022-05-23 23:18 - 2022-05-23 23:18 - 000194512 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys 2022-05-23 23:18 - 2022-05-23 23:18 - 000181992 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys 2022-05-23 17:54 - 2022-05-23 23:19 - 000000000 ____D C:\Users\guill\AppData\Local\mbam 2022-05-23 17:54 - 2022-05-23 17:54 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-05-23 17:53 - 2022-05-23 17:53 - 000239560 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys 2022-05-23 17:53 - 2022-05-23 17:53 - 000223176 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys 2022-05-23 17:53 - 2022-05-23 17:53 - 000103888 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys 2022-05-23 17:53 - 2022-05-23 17:53 - 000021480 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamElam.sys 2022-05-23 17:52 - 2022-05-23 17:52 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-05-23 17:52 - 2022-05-23 17:52 - 000000000 ____D C:\Program Files\Malwarebytes 2022-05-23 17:51 - 2022-05-23 17:51 - 002546400 _____ (Malwarebytes) C:\Users\guill\Downloads\MBSetup.exe 2022-05-23 12:08 - 2022-05-23 12:08 - 000133482 _____ C:\Users\guill\Downloads\Releve_n_004_du_20_04_2022_1419885109_kFeH1FcO.pdf 2022-05-23 12:08 - 2022-05-23 12:08 - 000130358 _____ C:\Users\guill\Downloads\Releve_n_005_du_20_05_2022_1422267247_Sv6zuh44.pdf 2022-05-23 12:07 - 2022-05-23 12:07 - 000115124 _____ C:\Users\guill\Downloads\Releve_n_004_du_27_04_2022_1420755037_GR8jc8oS (1).pdf 2022-05-23 12:05 - 2022-05-23 12:05 - 000115124 _____ C:\Users\guill\Downloads\Releve_n_004_du_27_04_2022_1420755037_GR8jc8oS.pdf 2022-05-22 15:25 - 2022-04-12 16:45 - 000000175 ____R C:\Users\guill\OneDrive\Documents\Ordinateur portable de Gérard.url 2022-05-21 16:39 - 2022-05-21 16:39 - 000100380 _____ C:\ProgramData\agent.update.1653143993.bdinstall.v2.bin 2022-05-20 11:10 - 2022-05-20 11:10 - 002167392 _____ C:\Users\guill\Downloads\519000075-2022 05 16-LET à CLIENT cr réu expertise du 29.03.pdf 2022-05-19 17:30 - 2022-05-19 17:30 - 000000000 ____D C:\Merops20220519172958_Data 2022-05-17 17:09 - 2022-05-17 17:09 - 000129957 _____ C:\Users\guill\Downloads\E_Releves_de_factures_n_0005262416_02_05_2022_1421226908_SFjj6MEn.pdf 2022-05-17 17:03 - 2022-05-17 17:03 - 000125389 _____ C:\Users\guill\Downloads\facture_freemobile_20220508.pdf 2022-05-17 15:43 - 2022-05-17 15:43 - 000125267 _____ C:\Users\guill\Downloads\Releve_n_009_du_05_05_2022_1421522717_E21TEe6o.pdf 2022-05-17 15:41 - 2022-05-17 15:41 - 000125464 _____ C:\Users\guill\Downloads\Releve_n_008_du_20_04_2022_1419886934_lEoos9Fe.pdf 2022-05-17 09:32 - 2022-05-17 09:32 - 000110621 _____ C:\Users\guill\Downloads\Colissimo_17-05-2022 (3).pdf 2022-05-17 09:28 - 2022-05-17 09:28 - 000110379 _____ C:\Users\guill\Downloads\Colissimo_17-05-2022 (2).pdf 2022-05-17 09:21 - 2022-05-17 09:21 - 000110543 _____ C:\Users\guill\Downloads\Colissimo_17-05-2022 (1).pdf 2022-05-17 09:16 - 2022-05-17 09:16 - 000111254 _____ C:\Users\guill\Downloads\Colissimo_17-05-2022.pdf 2022-05-16 09:43 - 2022-05-16 09:43 - 000064458 _____ C:\Users\guill\Downloads\40000123808_20224.pdf 2022-05-16 07:35 - 2022-05-16 07:35 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 2022-05-15 15:19 - 2022-05-15 15:19 - 000288768 _____ C:\windows\system32\Windows.Management.InprocObjects.dll 2022-05-15 15:19 - 2022-05-15 15:19 - 000188928 _____ C:\windows\system32\uwfcfgmgmt.dll 2022-05-15 15:19 - 2022-05-15 15:19 - 000093696 _____ C:\windows\system32\Drivers\cimfs.sys 2022-05-15 15:19 - 2022-05-15 15:19 - 000011799 _____ C:\windows\system32\DrtmAuthTxt.wim 2022-05-15 15:14 - 2022-05-15 15:14 - 000000000 ___HD C:\$WinREAgent 2022-05-15 15:13 - 2022-05-15 15:13 - 000000027 _____ C:\windows\system32\ctc.json ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-06-03 17:04 - 2021-12-19 18:22 - 000000000 ____D C:\SauveUSB-67514 2022-06-03 16:14 - 2021-12-13 19:43 - 000000000 ____D C:\Program Files (x86)\Google 2022-06-03 15:25 - 2020-05-05 22:03 - 000000000 ____D C:\windows\system32\SleepStudy 2022-06-03 08:56 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-06-03 08:44 - 2019-12-07 11:13 - 000000000 ____D C:\windows\INF 2022-06-03 07:46 - 2021-12-13 19:21 - 000000000 ____D C:\windows\system32\Tasks\Hewlett-Packard 2022-06-03 07:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-06-03 07:46 - 2019-12-07 11:14 - 000000000 ____D C:\windows\AppReadiness 2022-06-03 07:36 - 2021-12-13 19:04 - 000000000 __SHD C:\Users\guill\IntelGraphicsProfiles 2022-06-02 07:17 - 2019-12-07 11:03 - 000065536 _____ C:\windows\system32\config\ELAM 2022-06-02 07:16 - 2021-11-12 17:30 - 000760806 _____ C:\windows\system32\perfh00C.dat 2022-06-02 07:16 - 2021-11-12 17:30 - 000144028 _____ C:\windows\system32\perfc00C.dat 2022-06-02 07:16 - 2021-11-12 08:51 - 001696854 _____ C:\windows\system32\PerfStringBackup.INI 2022-06-02 07:12 - 2022-04-12 16:51 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-06-02 07:12 - 2021-11-12 08:44 - 000008192 ___SH C:\DumpStack.log.tmp 2022-06-02 07:12 - 2021-11-12 08:44 - 000000000 ___HD C:\Intel 2022-06-02 07:12 - 2020-05-05 22:03 - 000000006 ____H C:\windows\Tasks\SA.DAT 2022-06-02 07:12 - 2019-12-07 11:14 - 000000000 ____D C:\windows\ServiceState 2022-06-01 22:57 - 2021-12-13 19:06 - 000000000 ____D C:\Users\guill\OneDrive\Documents\DOCUMENTS VERONIQUE 2022-06-01 17:56 - 2021-11-12 08:44 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-06-01 14:00 - 2021-12-13 19:45 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-06-01 10:30 - 2020-05-05 22:05 - 000000000 ____D C:\ProgramData\Packages 2022-06-01 07:42 - 2021-12-17 12:30 - 000000000 ____D C:\SWSetup 2022-06-01 07:40 - 2021-12-13 19:04 - 000000000 ____D C:\Users\guill\AppData\Local\Packages 2022-05-30 16:22 - 2021-12-13 19:05 - 000000000 ___RD C:\Users\guill\OneDrive 2022-05-30 16:21 - 2022-04-12 16:51 - 000003194 _____ C:\windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-05-30 16:21 - 2022-04-12 16:51 - 000002178 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-05-30 16:21 - 2021-12-13 19:06 - 000003592 _____ C:\windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3126763428-1682336808-219925755-1001 2022-05-30 14:16 - 2022-01-19 18:09 - 000000000 ____D C:\Users\guill\AppData\Local\ElevatedDiagnostics 2022-05-30 13:45 - 2021-11-12 08:49 - 000000000 ____D C:\Program Files\Microsoft Office 2022-05-24 09:52 - 2019-12-07 11:03 - 000000000 ____D C:\windows\CbsTemp 2022-05-23 23:18 - 2022-01-24 11:50 - 000000000 ____D C:\windows\system32\Tasks\Outbyte 2022-05-23 17:53 - 2019-12-07 11:14 - 000000000 ___HD C:\windows\ELAMBKUP 2022-05-23 17:07 - 2021-12-13 18:59 - 000000000 ____D C:\Users\guill 2022-05-23 14:32 - 2022-01-19 13:03 - 000000000 ____D C:\Users\guill\OneDrive\Documents\Mérops 2022-05-21 16:45 - 2021-12-13 19:06 - 000000000 ____D C:\Users\guill\OneDrive\Documents\SARAH 2022-05-21 16:40 - 2021-12-29 17:32 - 000003846 _____ C:\windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2022-05-21 16:40 - 2021-12-29 17:30 - 000000000 ____D C:\Program Files\Bitdefender Agent 2022-05-21 08:23 - 2019-12-07 11:03 - 000524288 _____ C:\windows\system32\config\BBI 2022-05-20 17:43 - 2021-12-13 19:10 - 000000000 ____D C:\Users\guill\AppData\Local\CrashDumps 2022-05-20 17:16 - 2019-12-07 11:14 - 000000000 ____D C:\windows\Registration 2022-05-18 13:52 - 2021-12-13 19:09 - 000000000 ____D C:\Users\guill\OneDrive\Documents\IDENTIFIANTS & MOTS DE PASSE 2022-05-16 22:52 - 2021-12-18 16:47 - 000000000 ____D C:\Comptes 2022-05-16 07:19 - 2019-12-07 11:14 - 000000000 ____D C:\windows\LiveKernelReports 2022-05-16 06:16 - 2021-12-15 14:54 - 145501456 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe 2022-05-16 06:16 - 2021-12-15 14:54 - 000000000 ____D C:\windows\system32\MRT 2022-05-15 21:07 - 2020-05-05 22:03 - 000544248 _____ C:\windows\system32\FNTCACHE.DAT 2022-05-15 21:06 - 2021-11-12 17:26 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-05-15 21:06 - 2019-12-07 11:14 - 000000000 ___SD C:\windows\system32\UNP 2022-05-15 21:06 - 2019-12-07 11:14 - 000000000 ___RD C:\windows\ImmersiveControlPanel 2022-05-15 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\SystemResources 2022-05-15 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\system32\migwiz 2022-05-15 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\windows\bcastdvr 2022-05-15 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-05-15 15:48 - 2021-12-19 11:53 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2022-05-15 15:48 - 2021-11-12 08:48 - 000000000 ____D C:\windows\system32\Tasks\HP 2022-05-15 15:08 - 2021-12-29 17:39 - 004802976 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\windows\system32\Drivers\atc.sys 2022-05-15 15:07 - 2021-12-29 17:39 - 001190288 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\windows\system32\Drivers\gemma.sys 2022-05-15 15:07 - 2021-12-29 17:38 - 000474048 _____ (Bitdefender) C:\windows\system32\Drivers\vlflt.sys 2022-05-15 14:50 - 2021-11-12 08:44 - 000003690 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-05-15 14:50 - 2021-11-12 08:44 - 000003566 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore ==================== Fichiers à la racine de certains dossiers ======== 2022-01-12 15:15 - 2022-01-12 15:15 - 000052337 _____ () C:\Users\guill\AppData\Roaming\Valeurs séparées par une virgule.ADR 2022-01-12 15:05 - 2022-01-12 15:05 - 000012007 _____ () C:\Users\guill\AppData\Roaming\Valeurs séparées par une virgule.EML ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================