Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2024 Exécuté par nicod (administrateur) sur PCFAMILLE (HP HP Laptop 15s-eq2xxx) (13-11-2024 16:52:35) Exécuté depuis C:\Users\nicod\OneDrive\Bureau\FRST64 (3).exe Profils chargés: nicod Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.4460 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe (C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe (C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.80\msedgewebview2.exe <6> (DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\BridgeCommunication.exe (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6> (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\SysInfoCap.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkWiFiManServ.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_af49968a824c7864\RtkAudUService64.exe <2> (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2444.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_af49968a824c7864\RtkAudUService64.exe [1964328 2024-03-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKU\S-1-5-21-2427002811-2214761284-1915434349-1001\...\Run: [MicrosoftEdgeAutoLaunch_069455200D83C8F604E5CFC54E36EA76] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3856464 2024-11-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2427002811-2214761284-1915434349-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1842944 2024-11-03] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-2427002811-2214761284-1915434349-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45227312 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {A18AB028-CC8E-4FF3-BD82-BA01EAB12CF7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.) Task: {77D15E91-8216-4ECA-B55C-23B85C4B005C} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "8e293f4b-1022-45c4-bd3a-f4dff219356a" --version "6.29.11342" --silent Task: {2BF889F2-E660-4B7A-865A-90E16F1D2CA5} - System32\Tasks\CCleanerSkipUAC - nicod => C:\Program Files\CCleaner\CCleaner.exe [39090480 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd) Task: {4ED55C30-E758-4B19-AF50-6D78914A5795} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [744976 2024-09-25] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show Task: {D58C348C-EA67-4455-96BF-CF032AAC6D76} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-09-25] (HP Inc. -> HP Inc.) Task: {C153AD2F-C18C-412B-85D6-1E9848385058} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [231472 2024-09-25] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show Task: {FC5B9547-B42B-4A3A-BDE8-28B318B1FBE0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-09-25] (HP Inc. -> HP Inc.) Task: {102EDC54-D377-4765-BAFF-E0FC848E31ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN46CDV0Y1 => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-09-25] (HP Inc. -> HP Inc.) Task: {83103455-4AE9-4EA0-9F3C-CFD1F79FC135} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-09-25] (HP Inc. -> HP Inc.) Task: {3A25694F-2FAC-447E-8E8F-54F4829E27C6} - System32\Tasks\HP\Consent Manager Launcher => C:\windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice Task: {3EC10142-A4D2-486C-83E2-527EF5759C9D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28643008 2024-10-27] (Microsoft Corporation -> Microsoft Corporation) Task: {5ABD46A4-5DF8-40C4-B1DD-7BBADBBAB178} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28643008 2024-10-27] (Microsoft Corporation -> Microsoft Corporation) Task: {92D1F894-55FE-4E59-AA23-75593EF73ECF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312464 2024-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {0F8F241D-BDF2-4F7C-9371-1E031050F6C3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312464 2024-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {DE6C575F-0D38-4DA7-A08A-F477EA2A9E9B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [187600 2024-11-01] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {6654FD38-A626-4120-9FED-0B6C3C02C263} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5CEADEBA-A0B6-4D45-8A80-63E1EBF14172} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D911119B-76BB-4F25-B5E5-567C9395A374} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2BBF7727-E07D-47B4-924E-E10758184B28} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6E89AC68-7140-48E8-A11E-8EC5354E2BF2} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2393344 2024-11-03] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{165c3beb-e2ba-4ddc-8672-2aa35eca19cc}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\nicod\AppData\Local\Microsoft\Edge\User Data\Default [2024-11-13] Edge Notifications: Default -> hxxps://bnrj71z9w493qn.baseauthenticity.co.in; hxxps://csq875m071bc73955db0.baseauthenticity.co.in; hxxps://dmzwgixmdgamhx.baseauthenticity.co.in; hxxps://en.softonic.com; hxxps://mail.google.com; hxxps://resertol.co.in Edge StartupUrls: Default -> "hxxps://www.google.fr/" Edge Extension: (Google Docs hors connexion) - C:\Users\nicod\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-12] Edge Extension: (Edge relevant text changes) - C:\Users\nicod\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-08-23] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-08-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-08-23] (Microsoft Corporation -> Microsoft Corporation) ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2573448 2024-10-11] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13650648 2024-10-27] (Microsoft Corporation -> Microsoft Corporation) R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\AppHelperCap.exe [915552 2024-10-27] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\DiagsCap.exe [914552 2024-10-27] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\NetworkCap.exe [910432 2024-10-27] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2024-10-21] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_5fcc4d0255718ecc\x64\SysInfoCap.exe [914528 2024-10-27] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe [569008 2024-05-07] (HP Inc. -> HP Inc.) S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123320 2024-08-09] (The Document Foundation -> The Document Foundation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9424792 2024-11-13] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-11-13] (Malwarebytes Inc. -> Malwarebytes) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2393344 2024-11-03] (Overwolf Ltd -> Overwolf LTD) R2 RtkWiFiManServ; C:\windows\RtkWiFiManServ.exe [822656 2023-04-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AMDAfdAudioService; C:\windows\System32\DriverStore\FileRepository\amdacpafd.inf_amd64_b8f7ebeb2ea11a27\amdacpafd.sys [435632 2023-12-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 amdfendrmgr; C:\windows\System32\drivers\amdfendrmgr.sys [35344 2023-04-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 amdwddmg; C:\windows\System32\DriverStore\FileRepository\u0401681.inf_amd64_636ae48616d7efc4\B401510\amdkmdag.sys [106583664 2024-03-27] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 AmUStor; C:\windows\system32\drivers\AmUStorU.sys [144816 2022-07-28] (Alcorlink Corp. -> ) S3 cpuz158; C:\windows\temp\cpuz158\cpuz158_x64.sys [44576 2024-11-12] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [158640 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R0 fse; C:\windows\System32\drivers\fse.sys [218592 2024-11-13] (Microsoft Windows -> Microsoft Corporation) R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-07] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.) R2 mbamchameleon; C:\windows\System32\Drivers\MbamChameleon.sys [232000 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [21480 2024-11-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\windows\system32\DRIVERS\farflt11.sys [234168 2024-11-13] (Malwarebytes Inc. -> Malwarebytes) R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [80448 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [239568 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [189776 2024-11-13] (Malwarebytes Inc. -> Malwarebytes) S3 rtux64w10; C:\windows\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation) S3 vmbusproxy; C:\windows\system32\drivers\vmbusproxy.sys [94208 2024-05-20] (Microsoft Windows -> ) S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-11-13 16:52 - 2024-11-13 16:52 - 000019942 _____ C:\Users\nicod\OneDrive\Bureau\FRST.txt 2024-11-13 16:52 - 2024-11-13 16:52 - 000000000 ____D C:\FRST 2024-11-13 16:51 - 2024-11-13 16:52 - 002401280 _____ (Farbar) C:\Users\nicod\OneDrive\Bureau\FRST64 (3).exe 2024-11-13 16:21 - 2024-11-13 16:21 - 008790880 _____ (Malwarebytes) C:\Users\nicod\Downloads\adwcleaner.exe 2024-11-13 16:21 - 2024-11-13 16:21 - 002744320 _____ (Malwarebytes) C:\Users\nicod\Downloads\MBSetup.exe 2024-11-13 10:12 - 2024-11-13 10:12 - 000000000 ____D C:\windows\Microsoft Antimalware 2024-11-13 02:02 - 2024-11-13 02:02 - 000772824 _____ C:\windows\system32\perfh00C.dat 2024-11-13 02:02 - 2024-11-13 02:02 - 000148916 _____ C:\windows\system32\perfc00C.dat 2024-11-13 01:55 - 2024-11-13 01:55 - 000234168 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt11.sys 2024-11-13 01:55 - 2024-11-13 01:55 - 000189776 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys 2024-11-13 01:47 - 2024-11-13 01:47 - 000117594 _____ C:\Users\nicod\OneDrive\Documents\cc_20241113_014731.reg 2024-11-13 01:36 - 2024-11-13 01:36 - 000000000 ____D C:\ProgramData\Piriform 2024-11-13 01:34 - 2024-11-13 01:52 - 000000666 _____ C:\windows\Tasks\CCleanerCrashReporting.job 2024-11-13 01:34 - 2024-11-13 01:49 - 000000000 ____D C:\Program Files\CCleaner 2024-11-13 01:34 - 2024-11-13 01:34 - 000003936 _____ C:\windows\system32\Tasks\CCleaner Update 2024-11-13 01:34 - 2024-11-13 01:34 - 000003382 _____ C:\windows\system32\Tasks\CCleanerCrashReporting 2024-11-13 01:34 - 2024-11-13 01:34 - 000002892 _____ C:\windows\system32\Tasks\CCleanerSkipUAC - nicod 2024-11-13 01:34 - 2024-11-13 01:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2024-11-13 01:31 - 2024-11-13 16:49 - 000000000 ____D C:\Users\nicod\AppData\Local\Malwarebytes 2024-11-13 01:31 - 2024-11-13 01:31 - 000002100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-11-13 01:30 - 2024-11-13 01:30 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-11-13 01:30 - 2024-11-13 01:30 - 000000000 ____D C:\Program Files\Malwarebytes 2024-11-13 01:28 - 2024-11-13 01:28 - 000026650 _____ C:\windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-11-13 01:27 - 2024-11-13 01:27 - 000026650 _____ C:\windows\system32\IntegratedServicesRegionPolicySet.json 2024-11-13 01:25 - 2024-11-13 01:28 - 000000000 ____D C:\AdwCleaner 2024-11-13 00:29 - 2024-11-13 00:29 - 000000045 _____ C:\windows\SysWOW64\initdebug.nfo 2024-11-12 03:19 - 2024-11-12 03:19 - 000001241 _____ C:\Users\nicod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Speccy.lnk 2024-11-12 03:18 - 2024-11-12 03:18 - 000000000 ____D C:\Program Files\Speccy 2024-11-01 01:52 - 2024-11-01 01:52 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2024-10-25 20:01 - 2024-10-25 20:08 - 000000000 ____D C:\Users\nicod\OneDrive\Documents\Path of Building 2024-10-25 20:01 - 2024-10-25 20:01 - 000001297 _____ C:\Users\nicod\OneDrive\Bureau\Path of Building Community.lnk 2024-10-25 20:01 - 2024-10-25 20:01 - 000001277 _____ C:\Users\nicod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Path of Building Community.lnk 2024-10-25 20:01 - 2024-10-25 20:01 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Path of Building Community ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-11-13 16:52 - 2022-05-07 06:24 - 000000000 ____D C:\windows\SystemTemp 2024-11-13 16:42 - 2024-05-20 01:51 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2024-11-13 16:40 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-11-13 16:23 - 2023-08-13 07:06 - 000000000 ____D C:\ProgramData\HP 2024-11-13 16:06 - 2024-09-13 21:38 - 000000000 ____D C:\Users\nicod\AppData\Roaming\Microsoft\MMC 2024-11-13 15:57 - 2024-09-17 19:32 - 000002334 _____ C:\Users\nicod\OneDrive\Bureau\Mobalytics.lnk 2024-11-13 15:56 - 2024-09-17 19:29 - 000000000 ____D C:\Users\nicod\AppData\Local\Overwolf 2024-11-13 15:56 - 2024-08-23 16:50 - 000000000 ___RD C:\Users\nicod\OneDrive 2024-11-13 15:56 - 2022-05-07 06:24 - 000000000 ____D C:\windows\AppReadiness 2024-11-13 02:10 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-11-13 02:02 - 2022-11-03 05:39 - 001764464 _____ C:\windows\system32\PerfStringBackup.INI 2024-11-13 02:02 - 2022-05-07 06:22 - 000000000 ____D C:\windows\INF 2024-11-13 01:55 - 2023-08-13 07:01 - 000001607 _____ C:\windows\system32\config\VSMIDK 2024-11-13 01:55 - 2022-11-03 05:32 - 000012288 ___SH C:\DumpStack.log.tmp 2024-11-13 01:55 - 2022-11-03 05:32 - 000000006 ____H C:\windows\Tasks\SA.DAT 2024-11-13 01:55 - 2022-11-03 05:32 - 000000000 ____D C:\windows\system32\SleepStudy 2024-11-13 01:55 - 2022-05-07 06:24 - 000000000 ____D C:\windows\ServiceState 2024-11-13 01:54 - 2022-05-07 06:17 - 001048576 _____ C:\windows\system32\config\BBI 2024-11-13 01:52 - 2022-11-03 05:32 - 000707544 _____ C:\windows\system32\FNTCACHE.DAT 2024-11-13 01:51 - 2024-05-20 11:15 - 000000000 ____D C:\windows\system32\Microsoft-Edge-WebView 2024-11-13 01:51 - 2024-05-20 11:07 - 000000000 ____D C:\windows\HoloShell 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ___SD C:\windows\system32\UNP 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ___RD C:\windows\PrintDialog 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ___RD C:\windows\ImmersiveControlPanel 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\SysWOW64\setup 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\SysWOW64\Dism 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\SystemResources 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\WinBioPlugIns 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\ShellExperiences 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\Sgrm 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\setup 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\SecureBootUpdates 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\PerceptionSimulation 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\oobe 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\HealthAttestationClient 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\Dism 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\system32\appraiser 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\ShellExperiences 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\ShellComponents 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\DiagTrack 2024-11-13 01:51 - 2022-05-07 06:24 - 000000000 ____D C:\windows\bcastdvr 2024-11-13 01:51 - 2022-05-07 06:17 - 000000000 ____D C:\windows\servicing 2024-11-13 01:44 - 2022-11-03 06:29 - 000000000 ____D C:\windows\Panther 2024-11-13 01:43 - 2024-08-23 16:50 - 000000000 ____D C:\Users\nicod\AppData\Local\CrashDumps 2024-11-13 01:35 - 2024-08-23 16:48 - 000000000 ____D C:\Users\nicod\AppData\Local\D3DSCache 2024-11-13 01:33 - 2022-05-07 06:17 - 000000000 ____D C:\windows\CbsTemp 2024-11-13 01:32 - 2024-08-23 17:14 - 000000000 ____D C:\windows\system32\MRT 2024-11-13 01:31 - 2024-08-23 17:14 - 202035632 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe 2024-11-13 01:30 - 2022-05-07 06:24 - 000000000 ___HD C:\windows\ELAMBKUP 2024-11-13 01:28 - 2023-08-13 08:21 - 000000000 ___HD C:\hp 2024-11-13 00:20 - 2024-08-23 16:50 - 000003592 _____ C:\windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2427002811-2214761284-1915434349-1001 2024-11-13 00:20 - 2024-08-23 16:50 - 000003368 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2427002811-2214761284-1915434349-1001 2024-11-13 00:20 - 2024-08-23 16:50 - 000002428 _____ C:\Users\nicod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-11-13 00:20 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-11-12 20:41 - 2024-09-17 19:32 - 000000000 ____D C:\Program Files (x86)\Overwolf 2024-11-10 20:51 - 2022-11-03 05:32 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-11-10 20:50 - 2022-11-03 05:32 - 000003690 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-11-10 20:50 - 2022-11-03 05:32 - 000003566 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-11-08 20:59 - 2024-08-24 19:37 - 000000000 ____D C:\Users\nicod\OneDrive\Documents\Docs Mam's 2024-11-07 23:38 - 2022-05-07 06:24 - 000000000 ____D C:\windows\LiveKernelReports 2024-11-04 16:15 - 2024-08-24 19:37 - 000000000 ____D C:\Users\nicod\OneDrive\Documents\Docs Loulou 2024-11-03 12:32 - 2024-08-23 17:06 - 002872896 _____ (Microsoft Corporation) C:\windows\system32\xgameruntime.dll 2024-11-03 12:32 - 2024-08-23 17:06 - 000775720 _____ (Microsoft Corporation) C:\windows\system32\gameplatformservices.dll 2024-11-03 12:32 - 2024-08-23 17:06 - 000243240 _____ (Microsoft Corporation) C:\windows\system32\gamelaunchhelper.dll 2024-11-03 12:32 - 2024-08-23 17:06 - 000243240 _____ (Microsoft Corporation) C:\windows\system32\gameconfighelper.dll 2024-11-03 12:32 - 2024-08-23 17:06 - 000153152 _____ (Microsoft Corporation) C:\windows\system32\gamingtcuihelpers.dll 2024-11-03 12:32 - 2024-08-23 17:06 - 000124456 _____ (Microsoft Corporation) C:\windows\system32\xgamehelper.exe 2024-11-03 12:32 - 2024-08-23 17:06 - 000075304 _____ (Microsoft Corporation) C:\windows\system32\xgamecontrol.exe 2024-11-01 02:08 - 2023-08-13 07:08 - 000000000 ____D C:\Program Files\Microsoft Office 2024-11-01 02:08 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-10-30 22:31 - 2022-11-03 05:32 - 000000000 ____D C:\windows\system32\Drivers\wd 2024-10-22 10:48 - 2024-08-23 15:48 - 000000000 ____D C:\Users\nicod\AppData\Local\Packages 2024-10-22 10:48 - 2022-11-03 05:35 - 000000000 ____D C:\ProgramData\Packages 2024-10-21 15:27 - 2024-08-24 13:23 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2024-10-21 15:27 - 2024-05-20 01:27 - 000000000 ____D C:\windows\system32\Tasks\HP ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================