RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 18-09-2023
ExÃ©cutÃ© par m-dra (administrateur) sur MAMAD (SAMSUNG ELECTRONICS CO., LTD. 950QED) (19-09-2023 09:12:04)
ExÃ©cutÃ© depuis C:\Users\m-dra\Desktop\FRST64.exe
Profils chargÃ©s: m-dra
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2283 (X64) Langue: FranÃ§ais (Canada)
Navigateur par dÃ©faut: Edge
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.31\msedgewebview2.exe <15>
(C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe
(C:\Program Files\Samsung\SamsungUpdate\SUService.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUEngine.exe
(C:\Program Files\Samsung\sService\sServiceAgentLauncherSvc.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\sService\sServiceKeyMonitor.exe
(drivers\Intel\ICPS\IDBWMService.exe ->) (Intel Corporation -> IntelÂ® Corporation) C:\Windows\System32\drivers\Intel\ICPS\IDBWM.exe
(drivers\Intel\ICPS\IntelConnectService.exe ->) (Intel Corporation -> IntelÂ® Corporation) C:\Windows\System32\drivers\Intel\ICPS\IntelConnect.exe
(DriverStore\FileRepository\aircommandcomp.inf_amd64_4b076b2b8666d882\AircommandService.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\aircommandcomp.inf_amd64_4b076b2b8666d882\AircommandEngine.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_9f9e22715f56ef60\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~4.INF\DAX3API.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_helper.exe
(DriverStore\FileRepository\samsungsarmodecompdrv.inf_amd64_57a51ee125ba8c3b\SamsungSARMode.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\samsungsarmodecompdrv.inf_amd64_57a51ee125ba8c3b\SamsungSARWin.exe
(DriverStore\FileRepository\samsungsecuritysupportservicecomponent.inf_amd64_1df9f790b6fafbfd\SamsungSecuritySupportService.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\samsungsecuritysupportservicecomponent.inf_amd64_1df9f790b6fafbfd\SamsungSecuritySupporter.exe
(DriverStore\FileRepository\sfourswcomp15.inf_amd64_4206cbef2b34497d\SamsungSystemSupportService.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\sfourswcomp15.inf_amd64_4206cbef2b34497d\SamsungSystemSupportEngine.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Arkane Systems) [Fichier non signÃ©] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MouseJiggle.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Maxim Integrated) C:\Windows\System32\MaximAudioService64.exe
(explorer.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <20>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\m-dra\AppData\Local\Microsoft\Teams\current\Teams.exe <9>
(services.exe ->) (14C847C8-791E-46EB-9C0D-7CADAF31C930 -> ) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungQuickShare_1.4.50.0_x64__wyx1vj98g3asy\QuickShareService\QuickShareService.exe
(services.exe ->) (520D4CDF-A287-4423-AB88-D88CCF7E866D -> ) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SmartThingsWindows_1.23364.1.0_x64__3c1yjt4zspk6g\SmartThingsService\SmartThingsService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_9f9e22715f56ef60\DAX3API.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_524cec1494781ee1\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7540d49940133a51\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\Intel\ICPS\IntelAnalyticsService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\Intel\ICPS\IntelConnectivityNetworkService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_f21a18a53fedc854\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel Corporation -> IntelÂ® Corporation) C:\Windows\System32\drivers\Intel\ICPS\IDBWMService.exe
(services.exe ->) (Intel Corporation -> IntelÂ® Corporation) C:\Windows\System32\drivers\Intel\ICPS\IntelConnectService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.11.279.1\mc-fw-host.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncHelper.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\drivers\GoodixWOTService_0.0.0.4.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\MaximServiceShell64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\sysconfigcomp.inf_amd64_8ef31532a2d05fa2\SystemConfiguration.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01de91f5c3258938\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Studiomode\StudiomodeSvc.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Live Wallpaper Service\LiveWallpaperWindowsService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Quick Search Service\QuickSearchService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Recovery\BulletService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Samsung File Tracker Service\SamsungFileTrackerServiceCore.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SmartSwitch\qvWindowsService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\sService\sServiceAgentLauncherSvc.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\aircommandcomp.inf_amd64_4b076b2b8666d882\AircommandService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\samsungsarmodecompdrv.inf_amd64_57a51ee125ba8c3b\SamsungSARMode.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\samsungsecuritysupportservicecomponent.inf_amd64_1df9f790b6fafbfd\SamsungSecuritySupportService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\samsungwificomponent.inf_amd64_957510f9d92dd725\SamsungWiFi_UHB_Setting_Service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\sfourswcomp15.inf_amd64_4206cbef2b34497d\SamsungSystemSupportService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\DriverStore\FileRepository\systemplatformenginecomp.inf_amd64_b41e508b90ec9d7b\SystemPlatformEngine.exe
(sihost.exe ->) (14C847C8-791E-46EB-9C0D-7CADAF31C930 -> Samsung Electronics Co., Ltd.) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungQuickShare_1.4.50.0_x64__wyx1vj98g3asy\Win32\QSSystray.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.MicrosoftAccessoryCenter_5.193.137.0_x64__8wekyb3d8bbwe\AccessoryCenter.DesktopBridge.DeviceService\AccessoryCenter.DesktopBridge.DeviceService.exe
(svchost.exe ->) (14C847C8-791E-46EB-9C0D-7CADAF31C930 -> Samsung Electronics Co., Ltd.) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungQuickShare_1.4.50.0_x64__wyx1vj98g3asy\QuickShare.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.11.279.1\neo\core\mc-neo-host.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.MicrosoftAccessoryCenter_5.193.137.0_x64__8wekyb3d8bbwe\AccessoryCenter.ContainerApp.Main.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_4000.964.11.0_x64__8wekyb3d8bbwe\PushNotificationsLongRunningTask.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\ColorEngine\ColorEngine.exe
(svchost.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\ColorEngine\DisplaySupporter.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [MaximAudioSvc] => C:\Windows\System32\MaximAudioService64.exe [556544 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Maxim Integrated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607648 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607648 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-249673732-4292818198-2684703944-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607648 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-249673732-4292818198-2684703944-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [253816 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
HKU\S-1-5-21-249673732-4292818198-2684703944-1001\...\Run: [MicrosoftEdgeAutoLaunch_1E282115BA3BB6222B0F852425E50D09] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4219448 2023-09-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-249673732-4292818198-2684703944-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11469784 2023-09-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-249673732-4292818198-2684703944-1001\...\Run: [ProFile Hub Service] => "C:\Program Files (x86)\ProFile\Intuit.PCG.ProFile.Hub.Service.exe" (Pas de fichier)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2023-04-04] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-13] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MouseJiggle.exe [2022-08-15] (Arkane Systems) [Fichier non signÃ©]
Startup: C:\Users\m-dra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer Ã  OneNote.lnk [2023-09-18]
ShortcutTarget: Envoyer Ã  OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {0AE9676A-E2BB-44E6-BAD7-C512ECEC3FD4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {9BD92053-831D-4389-AD40-6934131A2F65} - System32\Tasks\ColorEngine => C:\Program Files\Samsung\ColorEngine\ColorEngine.exe [613032 2021-12-23] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {C53C7E05-BF5E-4278-AEFD-AD78E475CFC2} - System32\Tasks\ColorSettings => C:\Program Files\Samsung\ColorEngine\SetParam3264.exe [41128 2021-12-23] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {0EDD718F-34BD-45E4-804D-F711DD95F534} - System32\Tasks\DisplaySupporter => C:\Program Files\Samsung\ColorEngine\DisplaySupporter.exe [238248 2021-12-23] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {A78FA7F3-7BC2-42F9-9AE2-0922B35D1C2B} - System32\Tasks\GoogleUpdateTaskMachineCore{A2CF0C15-497B-4DB9-BEE1-5AD5D1A87A97} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-15] (Google LLC -> Google LLC)
Task: {1BB21D63-934D-4801-8B9A-E71276C720B2} - System32\Tasks\GoogleUpdateTaskMachineUA{7EF62F66-8CEA-4F37-A6D9-9E736E86C394} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-15] (Google LLC -> Google LLC)
Task: {E8A20E91-A300-41E7-AA82-A1D869A16CD3} - System32\Tasks\Intuit_BU\ProFile_Updater => C:\Users\m-dra\AppData\Roaming\Intuit\BU\Install\1.1.14\Intuit.BU.SelfUpdater.exe [35072 2023-08-28] (INTUIT INC. -> )
Task: {CD0209A9-F677-43A9-9A4E-E8A1FC3102E2} - System32\Tasks\McAfee\WPS\amwebapitriggertask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {A8390A5C-E70A-4F2B-A393-D26BA94831DA} - System32\Tasks\McAfee\WPS\DAD.WPS.Execute.Updates => C:\Program Files\McAfee\WPS\1.11.279.1\dad\mc-dad.exe [4379528 2023-09-11] (McAfee, LLC -> McAfee, LLC)
Task: {0D1781C3-4FE5-42FA-8DAB-B658B10452EE} - System32\Tasks\McAfee\WPS\datupdatetask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {914A260C-74AD-4E72-91A8-4B7D1836C278} - System32\Tasks\McAfee\WPS\McAfee Sustainability => C:\Program Files\McAfee\WPS\1.11.279.1\sustainability\mc-sustainability.exe [778816 2023-09-11] (McAfee, LLC -> McAfee, LLC)
Task: {0AD75A5F-401F-4B9E-8A30-7FD1D2E97510} - System32\Tasks\McAfee\WPS\mcpcoscanner => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {AB87102E-F83A-42EC-AED0-45551C84C58F} - System32\Tasks\McAfee\WPS\NGMCadence => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {8128D031-56A5-4668-B624-781F20280AEB} - System32\Tasks\McAfee\WPS\odsscheduledtask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {455E2E55-5033-44C9-9DC5-0D162513FCC7} - System32\Tasks\McAfee\WPS\systemrebootedtask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {D9BEE5CE-BE91-4B7A-A895-0E91A046DBC5} - System32\Tasks\McAfee\WPS\Update => {81A7CB63-BB07-4DAD-8E72-07B3A9BB08E2}
Task: {9047CFBC-90EA-467B-9B26-C109112677E9} - System32\Tasks\McAfee\WPS\WPSPush => \\?\C:\Program Files\McAfee\WPS\1.11.279.1\mc-wns-client\mc-wns-client.exe [819400 2023-09-11] (McAfee, LLC -> )
Task: {52C67827-A548-4882-80D2-A84030B0AAB0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {DC1F6194-D8E2-4063-A79B-5087CC3EE6D9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B2BED3D1-0D1D-4EC7-B1B0-65AA28C6471A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-09-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {69523FEE-64E5-4882-B053-55FB89EF094C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-09-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E59F0AFE-B4C7-44DD-8F35-8D8BE67A4867} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [167864 2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3F39F45-9E67-4C0C-8504-2DC458DD6F0D} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4377392 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {F380F68F-0286-45F5-A215-2F6160D514AA} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Pas de fichier)
Task: {A5CE21BD-0B35-459B-B48B-D2EE5AF03356} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {62F8F8DD-5830-440A-8571-73B21D6BC06F} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-249673732-4292818198-2684703944-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {18DDC147-9A1A-475C-905C-2EBE4796C8B4} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01de91f5c3258938\RtkAudUService64.exe [1910056 2023-07-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1A30F092-C7A0-4FB3-81F1-0F94502AD740} - System32\Tasks\Samsung\Recovery8\BulletUserModeWorker => C:\Program Files\Samsung\Recovery\BulletUserModeWorker.exe [498928 2022-03-01] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {386A6916-516D-40C0-8220-5D7124566AD2} - System32\Tasks\Samsung\SamsungFileTracker\SamsungFileTrackerService => C:\Program Files\Samsung\Samsung File Tracker Service\ServiceLauncher.exe [19704 2021-12-01] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {CBA25B64-8600-415D-A91F-A4C1724E87D2} - System32\Tasks\Samsung\SamsungUpdate\UserModeWorker => C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe [25952 2023-08-21] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {A94C7514-7659-4B6E-B0E0-25676DC45DBC} - System32\Tasks\SecTimeSync\TimeSyncInit => C:\Windows\SecTimeSync.exe [1971048 2021-04-28] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)


==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 207.164.234.193
Tcpip\..\Interfaces\{02f5b2a2-5dcf-451a-927c-73e97c77905c}: [DhcpNameServer] 192.168.2.1 207.164.234.193
Tcpip\..\Interfaces\{774ef611-3916-4e3a-a94d-7a23c0414417}: [DhcpNameServer] 103.86.96.100 103.86.99.100
Tcpip\..\Interfaces\{fc01fcd5-2b9d-2fd8-78d8-cb78b313e2b2}: [NameServer] 103.86.96.100,103.86.99.100

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\m-dra\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-19]
Edge Extension: (GoogleÂ Documents hors connexion) - C:\Users\m-dra\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
Edge Extension: (Edge relevant text changes) - C:\Users\m-dra\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13]
Edge Profile: C:\Users\m-dra\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-08-29]
Edge Extension: (NordVPN - VPN Proxy for Privacy and Security) - C:\Users\m-dra\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fphgeikpdcdcheaochkhldmnfblfogla [2023-08-29]
Edge Extension: (GoogleÂ Documents hors connexion) - C:\Users\m-dra\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-29]
Edge Extension: (Edge relevant text changes) - C:\Users\m-dra\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-29]
Edge HKLM-x32\...\Edge\Extension: [fphgeikpdcdcheaochkhldmnfblfogla]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)

Chrome: 
=======
CHR Profile: C:\Users\m-dra\AppData\Local\Google\Chrome\User Data\Default [2023-09-18]
CHR DownloadDir: C:\Users\m-dra\Desktop
CHR DefaultSearchURL: Default -> hxxps://ca.search.yahoo.com/search?fr=mcafee&type=E210CA1484G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://ca.search.yahoo.com/sugg/gossip/gossip-ca-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (AdobeÂ AcrobatÂ : outils de modification, de conversion et de signature de PDF) - C:\Users\m-dra\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-08-25]
CHR Extension: (Yoroi) - C:\Users\m-dra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffnbelfdoeiohenkjibnmadjiehjhajb [2023-09-14]
CHR Extension: (McAfeeÂ® WebAdvisor) - C:\Users\m-dra\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-09-16]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\m-dra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-24]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\m-dra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-15]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-249673732-4292818198-2684703944-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817040 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_9f9e22715f56ef60\DAX3API.exe [2361864 2023-02-15] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_125373df900d2c8b\ipfsvc.exe [543888 2022-02-02] (Intel Corporation -> Intel Corporation)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncHelper.exe [3518480 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
R2 GoodixWOTService; C:\WINDOWS\System32\drivers\GoodixWOTService_0.0.0.4.exe [33304 2021-12-05] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 IDBWM; C:\WINDOWS\System32\drivers\Intel\ICPS\IDBWMService.exe [79008 2022-06-16] (Intel Corporation -> IntelÂ® Corporation)
R2 Intel Analytics Service; C:\WINDOWS\System32\drivers\Intel\ICPS\IntelAnalyticsService.exe [2043536 2022-06-16] (Intel Corporation -> Intel)
R2 Intel Connectivity Network Service; C:\WINDOWS\System32\drivers\Intel\ICPS\IntelConnectivityNetworkService.exe [2501776 2022-06-16] (Intel Corporation -> Intel)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_f21a18a53fedc854\AS\IAS\IntelAudioService.exe [530560 2023-03-14] (Intel Corporation -> Intel)
R2 IntelConnectService; C:\WINDOWS\System32\drivers\Intel\ICPS\IntelConnectService.exe [79008 2022-06-16] (Intel Corporation -> IntelÂ® Corporation)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_uf.exe [2738360 2022-02-02] (Intel Corporation -> Intel Corporation)
R2 LiveWallpaperService; C:\Program Files\Samsung\Live Wallpaper Service\LiveWallpaperWindowsService.exe [464144 2022-02-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 MaximAudioService; C:\WINDOWS\System32\MaximServiceShell64.exe [217600 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 mc-fw-host; C:\Program Files\McAfee\WPS\1.11.279.1\mc-fw-host.exe [2310472 2023-09-11] (McAfee, LLC -> McAfee, LLC)
S3 mc-wps-update; C:\Program Files\McAfee\WPS\1.11.279.1\mc-update.exe [5075896 2023-09-11] (McAfee, LLC -> McAfee, LLC)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [874384 2023-09-08] (McAfee, LLC -> McAfee, LLC)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-11-21] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [254328 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
S3 OfficeSvcManagerAddons; C:\windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.180.0828.0001\OneDriveUpdaterService.exe [3855376 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
R2 Quick Search Service; C:\Program Files\Samsung\Quick Search Service\QuickSearchService.exe [139016 2022-02-10] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 Quick Share Service; C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungQuickShare_1.4.50.0_x64__wyx1vj98g3asy\QuickShareService\QuickShareService.exe [44544 2023-08-10] (14C847C8-791E-46EB-9C0D-7CADAF31C930 -> )
R2 Samsung WiFi UHB Setting Service; C:\WINDOWS\System32\DriverStore\FileRepository\samsungwificomponent.inf_amd64_957510f9d92dd725\SamsungWiFi_UHB_Setting_Service.exe [277816 2023-04-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 SamsungFileTrackerService; C:\Program Files\Samsung\Samsung File Tracker Service\SamsungFileTrackerServiceCore.exe [167680 2021-12-01] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 SamsungPenService; C:\WINDOWS\System32\DriverStore\FileRepository\aircommandcomp.inf_amd64_4b076b2b8666d882\AircommandService.exe [520024 2023-01-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 SamsungPlatformEngine; C:\WINDOWS\System32\DriverStore\FileRepository\systemplatformenginecomp.inf_amd64_b41e508b90ec9d7b\SystemPlatformEngine.exe [1613688 2023-06-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 SamsungRecoveryService; C:\Program Files\Samsung\Recovery\BulletService.exe [693488 2022-03-01] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 SamsungSARMode; C:\WINDOWS\System32\DriverStore\FileRepository\samsungsarmodecompdrv.inf_amd64_57a51ee125ba8c3b\SamsungSARMode.exe [964448 2022-11-20] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 SamsungSecuritySupportService; C:\WINDOWS\System32\DriverStore\FileRepository\samsungsecuritysupportservicecomponent.inf_amd64_1df9f790b6fafbfd\SamsungSecuritySupportService.exe [2783800 2022-06-08] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 SamsungSystemConfiguration; C:\WINDOWS\System32\DriverStore\FileRepository\sysconfigcomp.inf_amd64_8ef31532a2d05fa2\SystemConfiguration.exe [1010664 2022-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Samsung Electronics Co., Ltd.)
R2 SamsungSystemSupportService; C:\WINDOWS\System32\DriverStore\FileRepository\sfourswcomp15.inf_amd64_4206cbef2b34497d\SamsungSystemSupportService.exe [523592 2023-07-10] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 SamsungUpdateService; C:\Program Files\Samsung\SamsungUpdate\SUService.exe [383840 2023-08-21] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SecondScreenService; C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SecondScreen_1.5.3.0_x64__wyx1vj98g3asy\SecondScreenService\SecondScreenService.exe [17760 2023-07-14] (14C847C8-791E-46EB-9C0D-7CADAF31C930 -> )
R2 SmartSwitchService; C:\Program Files\Samsung\SmartSwitch\qvWindowsService.exe [288144 2021-12-20] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 SmartThingsService; C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SmartThingsWindows_1.23364.1.0_x64__3c1yjt4zspk6g\SmartThingsService\SmartThingsService.exe [7680 2023-09-14] (520D4CDF-A287-4423-AB88-D88CCF7E866D -> )
R2 sService Agent Launcher; C:\Program Files\Samsung\sService\sServiceAgentLauncherSvc.exe [511704 2021-12-27] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 sServiceLoopBack; C:\Program Files\Samsung\sService\sServiceLoopBackSvc.exe [60632 2021-12-27] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 StudiomodeSvc; C:\Program Files (x86)\Samsung\Studiomode\StudiomodeSvc.exe [180392 2022-02-15] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [561152 2023-07-24] (Microsoft Windows -> Microsoft Corporation)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-11-23] (Microsoft Corporation) [Fichier non signÃ©]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-11-23] (Microsoft Corporation) [Fichier non signÃ©]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signÃ©]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218464 2023-02-27] (Microsoft Windows -> Microsoft Corporation)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [139488 2021-08-18] (GENESYS LOGIC, INC. -> Genesys Logic)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_5559a053c66c287c\iaLPSS2_GPIO2_ADL.sys [139928 2021-12-05] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_1c06c20c35bb4d6d\iaLPSS2_I2C_ADL.sys [209552 2021-12-05] (Intel Corporation -> Intel Corporation)
R3 INTCCoSvc; C:\WINDOWS\System32\drivers\Intel\ICPS\IntcCo11X64.sys [180880 2022-06-16] (Intel Corporation -> Intel Corporation)
S3 IntcSdwBus; C:\WINDOWS\System32\DriverStore\FileRepository\intcsdwbus.inf_amd64_a3cb7f232a93fa60\IntcSdwBus.sys [508624 2022-01-13] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_19ceb7ce67a7cf8b\gna.sys [87208 2021-09-16] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_587e92f3084b501f\ipf_acpi.sys [86712 2022-02-02] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_cpu.sys [80568 2022-02-02] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a8fa52ad5fb65cb2\ipf_lf.sys [432312 2022-02-02] (Intel Corporation -> Intel Corporation)
S0 mfeelam; C:\WINDOWS\System32\DRIVERS\mfeelam.sys [18400 2023-09-11] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R0 mfesec; C:\WINDOWS\System32\DRIVERS\mfesec.sys [82696 2023-09-11] (McAfee, LLC -> McAfee, LLC)
R2 NDivert; C:\Program Files\NordVPN\7.13.2.0\Drivers\NDivert.sys [131472 2023-05-24] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [44928 2022-02-22] (nordvpn s.a. -> TEFINCOM S.A.)
R3 PenS2Helper; C:\WINDOWS\System32\drivers\PenS2Helper.sys [50216 2021-08-04] (Samsung Electronics CO., LTD. -> )
S3 rtu53cx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtu53cx22x64.inf_amd64_f20dae1e81a16a5d\rtu53cx22x64.sys [902200 2021-11-09] (Realtek Semiconductor Corp. -> Realtek Corporation)
R3 SamsungEventController; C:\WINDOWS\System32\drivers\SamsungEventController.sys [52896 2021-10-27] (Samsung Electronics CO., LTD. -> Samsung)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [51192 2023-09-11] (OpenVPN Inc. -> The OpenVPN Project)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2022-05-07] (Microsoft Windows -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2023-05-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498944 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
R3 WiManHu; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_c34c898c5c4d0406\WiManHu\WiManHu.sys [205936 2021-12-27] (Intel Corporation -> Intel Corporation)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-12-22] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 vna_ap; \SystemRoot\system32\DRIVERS\vnaap.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2023-09-19 09:12 - 2023-09-19 09:12 - 000041928 _____ C:\Users\m-dra\Desktop\FRST.txt
2023-09-19 09:11 - 2023-09-19 09:12 - 000000000 ____D C:\FRST
2023-09-19 09:10 - 2023-09-19 09:10 - 002382848 _____ (Farbar) C:\Users\m-dra\Desktop\FRST64.exe
2023-09-18 15:05 - 2023-09-18 15:05 - 000809242 _____ C:\WINDOWS\system32\perfh00C.dat
2023-09-18 15:05 - 2023-09-18 15:05 - 000156990 _____ C:\WINDOWS\system32\perfc00C.dat
2023-09-17 14:52 - 2023-09-17 15:02 - 001216862 _____ C:\Users\m-dra\Desktop\t2-fill-23f.pdf
2023-09-17 13:52 - 2023-09-17 18:10 - 000000000 ____D C:\Users\m-dra\Documents\ProFile
2023-09-17 13:48 - 2023-09-17 13:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intuit_BU
2023-09-17 13:48 - 2023-09-17 13:48 - 000000000 ____D C:\Users\m-dra\AppData\Roaming\Intuit
2023-09-17 13:47 - 2023-09-17 18:10 - 000000000 ____D C:\Users\m-dra\AppData\Roaming\ProFile
2023-09-17 13:47 - 2023-09-17 14:00 - 000000000 ____D C:\Users\m-dra\Documents\My ProFile Data
2023-09-17 13:47 - 2023-09-17 13:47 - 000000000 ____D C:\ProgramData\Intuit
2023-09-17 13:45 - 2023-09-17 13:51 - 000000000 ____D C:\Users\m-dra\AppData\Roaming\GreenPoint
2023-09-17 13:44 - 2023-09-17 18:10 - 000000000 ____D C:\ProgramData\GreenPoint
2023-09-17 13:44 - 2023-09-17 14:03 - 000000000 ____D C:\Users\m-dra\AppData\Local\Intuit
2023-09-17 13:44 - 2023-09-17 13:52 - 000000000 ____D C:\Users\m-dra\AppData\Local\GreenPoint
2023-09-17 13:44 - 2023-09-17 13:44 - 000000000 ____D C:\Users\m-dra\AppData\Local\Downloaded Installations
2023-09-17 13:43 - 2023-09-17 18:10 - 000000000 ____D C:\Program Files (x86)\ProFile
2023-09-16 23:43 - 2023-09-16 23:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2023-09-16 21:32 - 2023-09-17 14:51 - 000535578 _____ C:\Users\m-dra\Desktop\CO-17(2022-12)DXI.pdf
2023-09-16 21:09 - 2023-09-16 21:09 - 001362039 _____ C:\Users\m-dra\Desktop\CO-17.Guide.pdf
2023-09-13 12:25 - 2023-09-13 12:26 - 000000000 ___HD C:\$WinREAgent
2023-09-11 18:33 - 2023-09-11 18:33 - 000051192 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tap0901.sys
2023-09-07 16:09 - 2023-09-07 16:10 - 000000000 ____D C:\Users\m-dra\Desktop\TMM-DonnÃ©es
2023-09-07 16:05 - 2023-09-13 17:07 - 000000000 ____D C:\Users\m-dra\Desktop\Formation Dayforce
2023-09-07 16:03 - 2023-09-18 14:29 - 000000000 ____D C:\Users\m-dra\Desktop\TMM-stratÃ©gie de test
2023-09-07 16:03 - 2023-09-13 16:34 - 000000000 ____D C:\Users\m-dra\Desktop\TMM -GÃ©nÃ©ral
2023-09-07 16:03 - 2023-09-07 16:15 - 000000000 ____D C:\Users\m-dra\Desktop\TMM-conformitÃ©
2023-09-05 09:04 - 2023-07-31 03:40 - 006526272 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2023-09-19 08:55 - 2022-05-07 01:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-19 08:53 - 2022-08-15 21:28 - 000000000 ____D C:\Program Files (x86)\Google
2023-09-19 08:53 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-09-19 08:51 - 2022-06-30 11:13 - 000000000 ____D C:\Users\m-dra\AppData\Local\D3DSCache
2023-09-19 08:50 - 2022-08-15 19:42 - 000000000 ____D C:\Users\m-dra\AppData\Roaming\Microsoft\Teams
2023-09-19 08:49 - 2022-08-15 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2023-09-19 08:49 - 2022-08-15 19:48 - 000000000 ____D C:\Program Files\NordVPN
2023-09-19 08:49 - 2022-05-07 01:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-19 08:49 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-09-19 08:49 - 2022-05-07 01:22 - 000000000 ____D C:\WINDOWS\INF
2023-09-19 08:48 - 2022-06-30 11:14 - 000000000 ___RD C:\Users\m-dra\OneDrive
2023-09-18 15:16 - 2022-06-30 11:13 - 000000000 ____D C:\Users\m-dra\AppData\Local\Packages
2023-09-18 15:05 - 2022-11-23 11:08 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-09-18 14:29 - 2022-08-16 09:21 - 000000000 ____D C:\Users\m-dra\AppData\Roaming\Microsoft\Word
2023-09-18 13:03 - 2022-11-23 10:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-09-18 07:38 - 2022-08-15 20:35 - 000000000 ____D C:\Users\m-dra\AppData\Roaming\Microsoft\Office
2023-09-18 05:12 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-09-18 04:24 - 2022-08-15 20:35 - 000000000 ____D C:\Users\m-dra\AppData\Roaming\Microsoft\Excel
2023-09-17 18:10 - 2022-03-18 05:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-09-17 17:52 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\Registration
2023-09-17 15:11 - 2022-11-23 10:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-09-17 15:11 - 2022-11-23 10:55 - 000516984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-17 15:11 - 2022-11-23 10:55 - 000000485 _____ C:\WINDOWS\system32\config\VSMHBK
2023-09-17 15:11 - 2022-03-18 21:05 - 000012288 ___SH C:\DumpStack.log.tmp
2023-09-17 15:10 - 2022-05-07 01:17 - 001572864 _____ C:\WINDOWS\system32\config\BBI
2023-09-17 13:43 - 2022-03-18 05:09 - 000000000 ____D C:\ProgramData\Package Cache
2023-09-17 12:00 - 2022-11-23 10:55 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2023-09-17 12:00 - 2022-08-30 08:44 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-09-17 11:57 - 2022-03-18 21:05 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-16 20:34 - 2023-07-13 15:06 - 000000000 ____D C:\Users\m-dra\Documents\Maltem Canada
2023-09-16 18:28 - 2022-11-23 10:57 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-249673732-4292818198-2684703944-1001
2023-09-16 18:28 - 2022-11-23 10:57 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-09-16 18:28 - 2022-08-29 08:55 - 000002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-16 16:48 - 2022-11-23 10:57 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{7EF62F66-8CEA-4F37-A6D9-9E736E86C394}
2023-09-16 16:48 - 2022-11-23 10:57 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{A2CF0C15-497B-4DB9-BEE1-5AD5D1A87A97}
2023-09-14 12:26 - 2022-03-18 05:30 - 000000000 ____D C:\Program Files\Microsoft Office
2023-09-14 08:44 - 2023-05-02 16:40 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2023-09-14 08:44 - 2023-03-07 21:27 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-09-14 08:44 - 2023-03-07 21:27 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-09-14 08:29 - 2022-05-07 01:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\UUS
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-13 18:25 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-13 18:25 - 2022-03-18 05:39 - 000001307 _____ C:\WINDOWS\system32\config\VSMLKEY
2023-09-13 17:29 - 2022-05-07 01:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-09-13 12:38 - 2022-08-15 19:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-09-13 12:35 - 2022-08-15 19:42 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-13 12:34 - 2022-05-07 01:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-09-13 12:30 - 2022-11-23 10:57 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-11 19:44 - 2022-08-15 19:48 - 000000000 ____D C:\Users\m-dra\AppData\Local\NordVPN
2023-09-11 18:38 - 2022-08-15 22:43 - 000000000 ____D C:\Users\m-dra\AppData\Roaming\Microsoft\PowerPoint
2023-09-11 18:34 - 2023-05-09 12:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2023-09-11 18:33 - 2023-05-15 09:53 - 000082696 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfesec.sys
2023-09-11 18:33 - 2023-05-15 09:53 - 000018400 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfeelam.sys
2023-09-11 18:33 - 2022-05-07 01:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-09-11 18:33 - 2022-03-18 05:12 - 000000000 ____D C:\ProgramData\Packages
2023-09-08 08:51 - 2022-03-18 05:22 - 000000000 ____D C:\ProgramData\ColorMode
2023-09-06 13:44 - 2022-08-16 08:18 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-09-05 09:04 - 2022-11-23 10:57 - 000003366 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2023-08-24 13:27 - 2022-03-18 05:15 - 000000000 ____D C:\Program Files\Samsung
2023-08-21 10:11 - 2022-08-15 19:48 - 000000000 ____D C:\Program Files\NordUpdater
2023-08-20 19:43 - 2022-06-30 11:09 - 000000000 ___SD C:\Users\m-dra\AppData\Roaming\Microsoft\Credentials

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================