Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023 Exécuté par Judith (administrateur) sur PCJUDITH (LENOVO 20BTS1NH0R) (17-10-2023 11:16:34) Exécuté depuis C:\Users\Judith\Desktop\FRST64.exe Profils chargés: Judith Plate-forme: Microsoft Windows 10 Professionnel Version 1903 18362.1256 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Crash Processor.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe (C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe ->) (Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <4> (C:\Program Files\HuionTablet\HuionTablet.exe ->) (Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Program Files\HuionTablet\HuionTabletCore.exe (C:\Program Files\HuionTablet\HuionTablet.exe ->) (Shenzhen Huion Animation Technology Co.,LTD -> TODO: <公司名>) C:\Program Files\HuionTablet\HuionServer.exe (C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe ->) (Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe (C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe (C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCopyAccelerator.exe (C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe <2> (C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2> (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe ->) (LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\ZOOM\tpfsm.exe (DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN32EE~1.INF\driver\shtctky.exe (DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN32EE~1.INF\driver\tpnumlkd.exe (DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN32EE~1.INF\driver\tposd.exe (explorer.exe ->) (Lavasoft Software Canada Inc. -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe (explorer.exe ->) (LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\tpknrres.exe (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files (x86)\ThinkVantage\PrdCtr\LPMGR.EXE (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files (x86)\ThinkVantage\PrdCtr\LPMLCHK.EXE (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (services.exe ->) (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\appprotection.exe (services.exe ->) (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\Receiver\UpdaterService.exe (services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe (services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe (services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel(R) Intel(R) Small Business Advantage -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\SbaService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki134903.inf_amd64_2480319490c96793\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe (services.exe ->) (Lenovo -> ) C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe (services.exe ->) (Lenovo -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe (services.exe ->) (LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe (services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe (services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe (services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe (services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe (services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (Wistron Corporation -> Wistron Corp.) C:\Program Files (x86)\DPR\WisLMSvc.exe (Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.) C:\Program Files\HuionTablet\HuionTablet.exe (svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe (svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe (svchost.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcDeskBandHlpr.exe (svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (valWbioSyncSvc.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [939976 2015-02-20] (LENOVO -> Lenovo) HKLM\...\Run: [LMCSSTART1] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [35920 2016-11-07] (Lenovo -> Lenovo Corporation) HKLM\...\Run: [LMCSSTART2] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [35920 2016-11-07] (Lenovo -> Lenovo Corporation) HKLM\...\Run: [LMCSSTART3] => C:\Program Files\Lenovo\Communications Utility\lmcsctrl.exe [35920 2016-11-07] (Lenovo -> Lenovo Corporation) HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [70760 2017-03-17] (Lenovo -> Lenovo) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [{E5F18DBC-F1FC-4691-9105-D7B9FABA963D}] => C:\Program Files (x86)\DPR\DPR.exe [477184 2016-03-01] (Wistron Corp.) [Fichier non signé] HKLM-x32\...\Run: [LPManager] => C:\Program Files (x86)\ThinkVantage\PrdCtr\LPMGR.EXE [185688 2009-07-23] (Lenovo(Japan)Ltd. -> Lenovo Group Limited) HKLM-x32\...\Run: [LPMailChecker] => C:\Program Files (x86)\ThinkVantage\PrdCtr\LPMLCHK.EXE [124248 2009-07-23] (Lenovo(Japan)Ltd. -> Lenovo Group Limited) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [124599048 2021-08-18] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [HuionTablet] => C:\Program Files\HuionTablet\HuionTablet.exe [4398064 2022-03-12] (Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.) HKLM-x32\...\Run: [AnalyticsSrv] => C:\Program Files (x86)\Citrix\ICA Client\Receiver\AnalyticsSrv.exe [2639464 2022-12-16] (Citrix Systems, Inc. -> Citrix Systems, Inc.) HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [2973656 2022-12-14] (Citrix Systems, Inc. -> Citrix Systems, Inc.) HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [561112 2022-12-14] (Citrix Systems, Inc. -> Citrix Systems, Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-04-23] (Adobe Inc. -> ) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2023-09-28] (Adobe Inc. -> Adobe Inc.) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-2125208441-208938178-2730981122-1004\...\Run: [utweb] => "C:\Users\Judith\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Pas de fichier) HKU\S-1-5-21-2125208441-208938178-2730981122-1004\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2022-04-10] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION HKU\S-1-5-21-2125208441-208938178-2730981122-1004\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Judith\AppData\Local\Microsoft\Teams\Update.exe [2587432 2023-03-08] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.71\Installer\chrmstp.exe [2023-10-16] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{60f15951-e7ef-11ea-b28e-c4b301b9ed33}] -> C:\Program Files (x86)\Citrix\ICA Client\CitrixEnterpriseBrowser\107.1.1.13\Installer\chrmstp.exe [2023-01-16] (Citrix Systems, Inc. -> Citrix Systems, Inc.) Startup: C:\Users\Judith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2023-02-07] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {73058BF9-8990-4C18-A2DE-8188877A2FD0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.) Task: {445DEE7F-EABC-4629-8A3C-41CC4061AA97} - System32\Tasks\CorelUpdateHelperTask-3E6D4F68822FC85EDB7768DC40CD95E4 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3827728 2022-10-21] (Corel Corporation -> Corel Corporation) Task: {68E46CCA-8B5F-4A0D-9D1A-A55FA697772F} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3827728 2022-10-21] (Corel Corporation -> Corel Corporation) Task: {9106C354-B61E-4EC6-A290-4C69F975B784} - System32\Tasks\DolbySelectorTask => %ProgramFiles%\Dolby Digital Plus\ddp.exe -autostart (Pas de fichier) Task: {8F79B179-F2F9-40AF-A657-09F3B0838DB6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-23] (Google LLC -> Google LLC) Task: {793EB14B-0E23-4D9A-8F87-108D7BF2BE2D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-23] (Google LLC -> Google LLC) Task: {C422AFB5-CEF3-4372-923A-A12F294B44BF} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [916840 2019-06-07] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {67123BF0-25BC-4FA6-BD36-EE18C68E2C93} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1285328 2015-06-05] (Intel(R) Software -> Intel Corporation) Task: {05730020-2257-4328-B522-BD9B7D821C41} - System32\Tasks\Intel\Intel® Management and Security Status => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [231400 2019-08-05] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) -> "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60 Task: {DB8ED067-C2DB-4DFC-8921-B08DCD5259AB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-10-08] (Intel(R) Update Manager -> Intel Corporation) Task: {29AEE959-DE97-4AD4-8D42-03CF0C14F785} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-10-08] (Intel(R) Update Manager -> Intel Corporation) Task: {CF220955-3DD2-466C-BFD3-2A07E6184B5E} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe [949632 2019-12-11] (Lenovo -> Lenovo.) Task: {C7C87D9E-C832-4404-A3AE-8068FE8AB699} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\Windows\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {DB7FC5EA-0146-4D9F-B37A-DA44E615C8BE} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\Windows\system32\sc.exe [69632 2019-03-19] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService Task: {C21D5FB9-ABF4-48D1-B70F-2954C819BFB8} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\Windows\System32\reg.exe [74240 2019-11-21] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {3F5B1422-1ABF-414A-8D0D-D745A1FEBF3A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\350bf9d4-0d69-4300-a69c-3863200a9492 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {E1FF2C7F-A473-4CDD-AE01-AC874E16E634} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a58e0f85-c269-4e30-a7b4-9477c8759eef => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {04E68C69-7044-4F55-8C6C-77E79B0C2E03} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a6800a98-438c-4826-9991-65323f2107eb => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {5486F535-9A8E-412A-8957-50AD958A10B6} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2125208441-208938178-2730981122-1002 => "C:\Users\ACTIF IS\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe" (Pas de fichier) Task: {521469C6-4CE7-48D1-B1E7-C108BDC82907} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [129016 2022-12-05] (Lenovo -> Lenovo) Task: {B9F2782B-BB13-418F-94D5-A022F98640F8} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\Windows\SysWOW64\PowerMgrInst.exe [65016 2022-12-05] (Lenovo -> ) Task: {A60D8E77-6145-4106-BECF-8A00DD540AA7} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\Windows\system32\sc.exe [69632 2019-03-19] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService Task: {3E6C6402-3EB7-48BF-BEB6-0636DBEB3536} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.) Task: {B266C911-83B8-48D9-A1EC-1CDFD9CEA558} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.) Task: {80D6DF9C-E525-4E30-A0C3-1E9E00F1F55C} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.) Task: {44FDC55B-5EA4-4B0F-8CB5-E9139333C4A7} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier) Task: {B8E648DC-62A7-4087-91A4-42A31A39E386} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-10-07] (Microsoft Corporation -> Microsoft Corporation) Task: {0E54F0E0-EB37-4F81-BD51-D06BD3FAD03D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-10-07] (Microsoft Corporation -> Microsoft Corporation) Task: {BB00812F-CDA8-480C-9D14-1989B466EDAA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-07] (Microsoft Corporation -> Microsoft Corporation) Task: {366E3B78-6E72-45A6-82A4-BD66875CCF3A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-07] (Microsoft Corporation -> Microsoft Corporation) Task: {D4ADACBF-36FD-4C7C-8FDA-C655BA7106ED} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169136 2023-10-07] (Microsoft Corporation -> Microsoft Corporation) Task: {808959A8-9CE9-4748-BE55-9E72C7AF7D4A} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4413368 2023-10-07] (Microsoft Corporation -> Microsoft Corporation) Task: {1DB19FFC-A988-49A6-B0F6-3C204EEFD6D5} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé] Task: {E36FF85E-C413-4619-BF36-488A1CD685E2} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1831744 2016-12-06] (Conexant Systems, Inc. -> Conexant Systems, Inc.) Task: {6DCCE1C8-4830-44AC-9250-0F0CE0FE47C8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\Windows\system32\mrt.exe [177941912 2023-09-19] (Microsoft Windows -> Microsoft Corporation) Task: {9B898B81-8826-47F1-909E-3D4338468C3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E37847D0-147C-4E06-9DE8-AC6697BBBEAC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {43DC886B-9DDE-41A9-98E5-EA946BB42AD6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B83D5180-B4B6-40BB-8F8C-6895E2A6A686} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {69A2C69D-55FC-4150-97A1-7BFF6A78B24A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-05-28] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {1887F396-1F08-4914-8526-490A8DFB478D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-05-28] (Mozilla Corporation -> Mozilla Foundation) Task: {49AE21BC-8158-45C8-8B7C-3148B86E80D1} - System32\Tasks\New Task => TpShUI.exe t (Pas de fichier) Task: {EF71E84C-7878-494C-B055-2AE5F68B1A7E} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617584 2020-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {C003EC4F-6BE5-4D74-AEBA-07AE3C03EBB7} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617584 2020-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {25F2CA6C-4472-4341-A61B-B0A0E7E4E3AC} - System32\Tasks\RtsCM => %windir%\RtsCM64.exe (Pas de fichier) Task: {80DCAFA9-A6D7-4163-89C9-88BDB707A651} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> ) Task: {FD94596E-2C82-4FA4-99A9-D1B97F6ACDA7} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> ) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe Task: C:\Windows\Tasks\New Task.job => TpShUI exetWORKGROUP DESKTOP MQ6S7NU 05 ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{68db6842-b146-4c52-ad20-a4d8f8c75385}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{ed75af94-6ac2-4453-ae29-0071fc829375}: [DhcpNameServer] 192.168.0.254 FireFox: ======== FF DefaultProfile: wxtw4f4f.default FF ProfilePath: C:\Users\Judith\AppData\Roaming\Mozilla\Firefox\Profiles\wxtw4f4f.default [2023-05-27] FF ProfilePath: C:\Users\Judith\AppData\Roaming\Mozilla\Firefox\Profiles\ngek7rq9.default-release [2023-05-27] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-09-28] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-07] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-09-28] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default [2023-10-17] CHR Notifications: Default -> hxxps://meet.google.com CHR Extension: (Theme Creator) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2022-02-09] CHR Extension: (WOT pour la sécurité des sites Web et une navigation sûre) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2023-10-08] CHR Extension: (Honey: Automatic Coupons & Rewards) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2023-09-14] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-08-24] CHR Extension: (Google Docs hors connexion) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17] CHR Extension: (Constellation Mix) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdnbphngjjojcnnapaegdgjpgadlhbke [2023-03-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-09] CHR Profile: C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-10] CHR Profile: C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-04-23] CHR Extension: (Google Docs hors connexion) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-19] CHR Extension: (Web Safety) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2022-10-19] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Judith\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-28] CHR Profile: C:\Users\Judith\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-17] CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-09-28] (Adobe Inc. -> Adobe Inc.) R2 appprotectionsvc; C:\Program Files (x86)\Citrix\ICA Client\appprotection.exe [527464 2022-12-13] (Citrix Systems, Inc. -> Citrix Systems, Inc.) R2 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [566352 2016-11-07] (Lenovo -> Lenovo Corporation) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12859472 2023-10-07] (Microsoft Corporation -> Microsoft Corporation) R2 CWAUpdaterService; C:\Program Files (x86)\Citrix\ICA Client\Receiver\UpdaterService.exe [65968 2022-12-16] (Citrix Systems, Inc. -> Citrix Systems, Inc.) S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2022-04-10] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-05-10] (HP Inc. -> HP Inc.) R2 ImControllerService; C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) R3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-10-08] (Intel(R) Update Manager -> Intel Corporation) R2 Lenovo Instant On; C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2352344 2022-12-05] (Lenovo -> Lenovo Group Limited) R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2023592 2015-09-25] (LENOVO -> Lenovo Group Limited) S2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [631376 2016-11-07] (Lenovo -> Lenovo Corporation) R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [120400 2017-04-03] (Lenovo -> Lenovo Group Limited) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe [31016 2021-12-14] (Lenovo -> Lenovo Group Ltd.) S3 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [480712 2015-03-23] (LENOVO -> Lenovo) R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [469720 2016-11-14] (Lenovo -> ) S2 LPlatSvc; C:\Windows\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.) R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R2 SbaService; C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\SbaService.exe [25328 2016-03-24] (Intel(R) Intel(R) Small Business Advantage -> Intel Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264152 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TPHKLOAD; C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\TPHKLOAD.exe [465192 2021-03-30] (Lenovo -> Lenovo Group Limited) R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) R2 valWbioSyncSvc; C:\Windows\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2022-04-10] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WisLMSvc; C:\Program Files (x86)\DPR\WisLMSvc.exe [119608 2013-09-12] (Wistron Corporation -> Wistron Corp.) S3 CitrixEnterpriseBrowserElevationService; "C:\Program Files (x86)\Citrix\ICA Client\CitrixEnterpriseBrowser\107.1.1.13\elevation_service.exe" [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [367096 2022-04-10] (Bitdefender SRL -> Bitdefender) R2 ctxusbm; C:\Windows\system32\DRIVERS\ctxusbmon.sys [156072 2022-12-14] (Citrix Systems, Inc. -> Citrix Systems, Inc.) R2 entryprotectdrv; C:\Program Files (x86)\Citrix\ICA Client\entryprotect.sys [78888 2022-12-13] (Citrix Systems, Inc. -> Citrix Systems, Inc.) R1 epinject6; C:\Program Files (x86)\Citrix\ICA Client\epinject.sys [161832 2022-12-13] (Citrix Systems, Inc. -> ) S4 epusbfilter; C:\Program Files (x86)\Citrix\ICA Client\epusbfilter.sys [48712 2022-12-13] (Citrix Systems, Inc. -> Citrix Systems, Inc.) R3 LnvHIDHW; C:\Windows\System32\drivers\LnvHIDHW.sys [29496 2014-04-07] (Lenovo(Japan)Ltd. -> Lenovo) R0 PMDRVS; C:\Windows\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.) R1 SMIDriverGen; C:\Windows\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated) R3 vmulti; C:\Windows\System32\drivers\vmulti.sys [10752 2022-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [572712 2023-10-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-10-17 11:16 - 2023-10-17 11:17 - 000039134 _____ C:\Users\Judith\Desktop\FRST.txt 2023-10-17 11:15 - 2023-10-17 11:17 - 000000000 ____D C:\FRST 2023-10-17 11:14 - 2023-10-17 11:14 - 002383360 _____ (Farbar) C:\Users\Judith\Desktop\FRST64.exe 2023-10-14 15:21 - 2023-10-14 15:21 - 000225739 _____ C:\Users\Judith\Downloads\cem-11123.pdf 2023-10-14 14:41 - 2023-10-14 14:41 - 017929800 _____ C:\Users\Judith\Downloads\rae-9401.pdf 2023-10-14 14:34 - 2023-10-14 14:34 - 000215190 _____ C:\Users\Judith\Downloads\cem-640.pdf 2023-10-12 15:56 - 2023-10-12 15:56 - 000249912 _____ C:\Users\Judith\Downloads\[1002428996]FP.SIM.1004336170$$FP.SIM.1080700311913445600223996.pdf_bill (3).pdf 2023-10-12 15:56 - 2023-10-12 15:56 - 000249912 _____ C:\Users\Judith\Downloads\[1002428996]FP.SIM.1004336170$$FP.SIM.1080700311913445600223996.pdf_bill (2).pdf 2023-10-12 15:56 - 2023-10-12 15:56 - 000249912 _____ C:\Users\Judith\Downloads\[1002428996]FP.SIM.1004336170$$FP.SIM.1080700311913445600223996.pdf_bill (1).pdf 2023-10-12 10:49 - 2023-10-12 10:49 - 000039243 _____ C:\Users\Judith\Downloads\Certificat_de_Scolarité_IPMGM1_2023-2024_JUDITH_SEURRET (2).pdf 2023-10-12 10:39 - 2023-10-12 10:39 - 001235362 _____ C:\Users\Judith\Downloads\CPAM A IMPRIMER ET COMPLETER.pdf 2023-10-11 19:12 - 2023-10-11 19:12 - 000523389 _____ C:\Users\Judith\Downloads\Pieces-pour-le-passeport-biometrique.pdf 2023-10-11 10:51 - 2023-10-12 15:57 - 000000000 ____D C:\Users\Judith\Desktop\DOSSIER CPAM 2023-10-10 17:17 - 2023-10-10 17:17 - 000144955 _____ C:\Users\Judith\Downloads\Présentation du projet Kerliver.pdf 2023-10-10 15:59 - 2023-10-10 15:59 - 000088479 _____ C:\Users\Judith\Downloads\Glossaire-UNESCO.pdf 2023-10-08 19:47 - 2023-10-08 19:49 - 536091284 _____ C:\Users\Judith\Downloads\wetransfer_expo-photos_2023-10-03_1044.zip 2023-10-08 11:53 - 2023-10-08 11:53 - 000819248 _____ C:\Users\Judith\Downloads\EDT Agenda.pdf 2023-10-08 11:53 - 2023-10-08 11:53 - 000756957 _____ C:\Users\Judith\Downloads\Visionner-emploi-temps-smartphone.pdf 2023-10-08 11:41 - 2023-10-08 11:41 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2023-10-03 14:02 - 2023-10-03 14:02 - 003190833 _____ C:\Users\Judith\Downloads\cours5 infographie 2013.pdf 2023-10-03 14:02 - 2023-10-03 14:02 - 000145323 _____ C:\Users\Judith\Downloads\cours 1 infographie 2013.pdf 2023-10-03 14:02 - 2023-10-03 14:02 - 000073140 _____ C:\Users\Judith\Downloads\Cours 2 Infographie 2013.pdf 2023-10-03 14:01 - 2023-10-03 14:01 - 000125539 _____ C:\Users\Judith\Downloads\cours 4 infographie 2013.pdf 2023-10-03 14:00 - 2023-10-03 14:00 - 004316436 _____ C:\Users\Judith\Downloads\Lexiques graphisme et liens infographie 2023.pdf 2023-10-01 22:02 - 2023-10-01 22:14 - 000000000 ____D C:\Users\Judith\Documents\A sauvegarder 2023-09-29 13:43 - 2023-09-29 13:43 - 000000010 _____ C:\Users\Judith\Desktop\Note.txt 2023-09-29 10:42 - 2023-09-29 10:57 - 000000227 _____ C:\Users\Judith\Desktop\Recup Kerzellec.txt 2023-09-29 08:27 - 2023-09-29 08:27 - 000109726 _____ C:\Users\Judith\Downloads\Master PAT. MCC-mcc23-fr-shs-master-mention-patrimoine-et-musees-2023-05-11 (1).pdf 2023-09-28 10:15 - 2023-09-28 10:15 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2023-09-27 09:08 - 2023-09-27 09:08 - 000116772 _____ C:\Users\Judith\Downloads\Master PAT. MCC-mcc23-fr-shs-master-mention-patrimoine-et-musees-2023-05-11.pdf 2023-09-21 19:06 - 2023-09-21 19:06 - 000002159 _____ C:\Users\Public\Desktop\HP Scan Assistant.lnk 2023-09-21 19:06 - 2023-09-21 19:06 - 000001126 _____ C:\Users\Public\Desktop\HP Scan.lnk 2023-09-21 19:06 - 2023-09-21 19:06 - 000000000 ____D C:\Windows\twain_64 2023-09-21 19:06 - 2023-09-21 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2023-09-21 19:06 - 2023-09-21 19:06 - 000000000 ____D C:\Program Files\HP 2023-09-21 19:06 - 2023-09-21 19:06 - 000000000 ____D C:\Program Files (x86)\HP 2023-09-21 19:05 - 2023-09-21 19:05 - 000000000 ____D C:\Users\Judith\AppData\Local\HP 2023-09-21 19:01 - 2023-09-21 19:01 - 000000000 ___RD C:\Users\Judith\Documents\Scanned Documents 2023-09-21 19:01 - 2023-09-21 19:01 - 000000000 ____D C:\Users\Judith\Documents\Fax 2023-09-21 18:21 - 2023-09-21 19:06 - 000000000 ____D C:\ProgramData\HP 2023-09-21 18:17 - 2023-09-21 18:17 - 000000000 ____D C:\Windows\system32\Tasks\HP 2023-09-21 17:14 - 2023-09-21 17:14 - 000146792 _____ C:\Users\Judith\Downloads\texte liverpool cathedral.pdf 2023-09-21 17:14 - 2023-09-21 17:14 - 000034513 _____ C:\Users\Judith\Downloads\fiche étudiants liverpool cathedral.pdf 2023-09-21 15:31 - 2023-09-21 15:31 - 009571548 _____ C:\Users\Judith\Downloads\Note_de_rentree_2020-2021_cle09ed6b.pdf 2023-09-21 13:48 - 2023-09-21 13:48 - 013916734 _____ C:\Users\Judith\Downloads\Panneaux_kerliver_1_JEP_20_09_2015.pdf 2023-09-21 13:48 - 2023-09-21 13:48 - 004816589 _____ C:\Users\Judith\Downloads\Panneaux_kerliver_2_JEP_20_09_2015.pdf 2023-09-21 13:48 - 2023-09-21 13:48 - 001325568 _____ C:\Users\Judith\Downloads\ppt conf space 2012 v6 2.ppt 2023-09-21 13:43 - 2023-09-21 13:43 - 000033867 _____ C:\Users\Judith\Downloads\liste documents Kerliver.xlsx 2023-09-21 10:07 - 2023-09-21 10:07 - 000039247 _____ C:\Users\Judith\Downloads\Certificat_de_Scolarité_IPMGM1_2023-2024_JUDITH_SEURRET (1).pdf 2023-09-21 10:07 - 2023-09-21 10:07 - 000020929 _____ C:\Users\Judith\Downloads\Quittance_droits_universitaires_2023-2024_JUDITH_SEURRET.pdf 2023-09-21 10:00 - 2023-09-21 10:00 - 000141178 _____ C:\Users\Judith\Downloads\Guide projet tutoré 2023.pdf 2023-09-19 22:52 - 2023-09-19 22:52 - 000223169 _____ C:\Users\Judith\Downloads\demande_aide_au_logement.pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-10-17 11:14 - 2020-09-23 14:00 - 000000000 ____D C:\Program Files (x86)\Google 2023-10-17 11:13 - 2022-12-14 23:02 - 000000000 ___RD C:\Users\Judith\OneDrive - Universite de Lorraine 2023-10-17 11:13 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-10-17 11:12 - 2022-02-09 21:44 - 000000000 ___RD C:\Users\Judith\OneDrive 2023-10-17 11:12 - 2020-06-23 22:02 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2023-10-17 11:11 - 2020-06-23 21:07 - 000000000 ____D C:\ProgramData\Synaptics 2023-10-17 11:11 - 2019-07-24 07:42 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-10-16 23:17 - 2019-03-19 06:37 - 001048576 _____ C:\Windows\system32\config\BBI 2023-10-16 23:00 - 2019-07-24 07:42 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-10-16 16:43 - 2022-02-10 11:09 - 000000000 ____D C:\Users\Judith\AppData\Roaming\Microsoft\Word 2023-10-16 15:12 - 2020-09-23 13:57 - 000774164 _____ C:\Windows\system32\perfh00A.dat 2023-10-16 15:12 - 2020-09-23 13:57 - 000152832 _____ C:\Windows\system32\perfc00A.dat 2023-10-16 15:12 - 2020-09-23 13:53 - 000769826 _____ C:\Windows\system32\perfh010.dat 2023-10-16 15:12 - 2020-09-23 13:53 - 000145944 _____ C:\Windows\system32\perfc010.dat 2023-10-16 15:12 - 2019-07-24 07:49 - 003613872 _____ C:\Windows\system32\PerfStringBackup.INI 2023-10-16 15:12 - 2019-03-19 14:01 - 000793206 _____ C:\Windows\system32\perfh00C.dat 2023-10-16 15:12 - 2019-03-19 14:01 - 000150238 _____ C:\Windows\system32\perfc00C.dat 2023-10-16 15:12 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF 2023-10-16 15:07 - 2022-02-09 21:40 - 000000000 __SHD C:\Users\Judith\IntelGraphicsProfiles 2023-10-15 14:15 - 2023-02-08 19:14 - 000003324 _____ C:\Windows\system32\Tasks\CorelUpdateHelperTask-3E6D4F68822FC85EDB7768DC40CD95E4 2023-10-13 18:42 - 2022-02-09 21:45 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2125208441-208938178-2730981122-1004 2023-10-13 18:42 - 2022-02-09 21:44 - 000003366 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2125208441-208938178-2730981122-1004 2023-10-13 18:42 - 2022-02-09 21:44 - 000002420 _____ C:\Users\Judith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-10-13 13:59 - 2022-02-09 21:40 - 000000000 ____D C:\Users\Judith 2023-10-12 18:12 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\LiveKernelReports 2023-10-12 08:32 - 2022-02-09 21:40 - 000000000 ____D C:\Users\Judith\AppData\Local\Packages 2023-10-09 14:26 - 2022-02-10 11:09 - 000000000 ____D C:\Users\Judith\AppData\Roaming\Microsoft\Office 2023-10-08 11:39 - 2020-09-23 13:42 - 000000000 ____D C:\Program Files\Microsoft Office 2023-10-07 11:10 - 2019-07-24 07:42 - 000000000 ____D C:\Windows\system32\Drivers\wd 2023-10-07 11:03 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness 2023-10-03 21:42 - 2022-02-09 22:20 - 000000000 ____D C:\Users\Judith\AppData\Roaming\discord 2023-10-03 14:08 - 2022-02-09 22:19 - 000000000 ____D C:\Users\Judith\AppData\Local\Discord 2023-10-03 14:07 - 2022-02-09 22:20 - 000002232 _____ C:\Users\Judith\Desktop\Discord.lnk 2023-09-28 10:15 - 2022-02-20 15:36 - 000000000 ____D C:\Program Files\Adobe 2023-09-28 10:15 - 2022-02-20 15:35 - 000000000 ____D C:\Program Files\Common Files\Adobe 2023-09-28 10:15 - 2022-02-14 16:20 - 000000000 ____D C:\Users\Judith\AppData\LocalLow\Adobe 2023-09-28 10:15 - 2022-02-14 16:20 - 000000000 ____D C:\Users\Judith\AppData\Local\Adobe 2023-09-28 10:15 - 2019-07-24 12:01 - 000000000 ____D C:\Program Files (x86)\Adobe 2023-09-28 10:10 - 2022-09-12 12:38 - 000000000 ____D C:\Users\Judith\AppData\Roaming\com.adobe.dunamis 2023-09-21 19:35 - 2019-07-24 07:42 - 000746784 _____ C:\Windows\system32\FNTCACHE.DAT 2023-09-21 18:17 - 2021-06-09 07:49 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-09-21 18:03 - 2022-04-27 11:12 - 000000000 ____D C:\Users\Judith\AppData\Roaming\Microsoft\Excel 2023-09-21 10:56 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2023-09-19 19:23 - 2019-07-24 13:40 - 000000000 ____D C:\Windows\system32\MRT 2023-09-19 19:06 - 2019-07-24 13:40 - 177941912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2023-09-18 13:55 - 2022-02-09 21:41 - 000000000 ____D C:\Users\Judith\AppData\Local\PlaceholderTileLogoFolder 2023-09-17 20:16 - 2020-09-23 14:00 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2023-09-17 20:16 - 2020-09-23 14:00 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================