Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-07-2023
Exécuté par Michèle (administrateur) sur LAPTOP-F6FMIHIN (LENOVO 80XM) (31-07-2023 10:24:11)
Exécuté depuis C:\Users\Michèle\Desktop\FRST64.exe
Profils chargés: Michèle
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3208 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(BatteryWidgetAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(GenericTelemetryAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoAccountAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoBatteryGaugeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoSecurityAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoSystemUpdateAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(SettingsWidgetAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(SmartDisplayAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(SmartInteractAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(SmartNoiseCancelledAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(ThinkSmartSenseAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2305.16.0_x64__k1h2ywk1493x8\LenovoVantage\LenovoVantage.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.188\msedgewebview2.exe <8>
(C:\Users\Michèle\AppData\Local\Apps\2.0\E5XH16A6.R18\4KBNK7LN.6DV\scre..tion_2c2536e5112611c9_0006.0003_6a29a996530af03e\ScreenConnect.ClientService.exe ->) (ScreenConnect Software -> ScreenConnect Software) C:\Users\Michèle\AppData\Local\Apps\2.0\E5XH16A6.R18\4KBNK7LN.6DV\scre..tion_2c2536e5112611c9_0006.0003_6a29a996530af03e\ScreenConnect.WindowsClient.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxEM.exe
(explorer.exe ->) (Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(explorer.exe ->) (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\LenovoUtility\utility.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <28>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6d34ac0763025a06\IntelCpHeciSvc.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (ScreenConnect Software -> ) C:\Users\Michèle\AppData\Local\Apps\2.0\E5XH16A6.R18\4KBNK7LN.6DV\scre..tion_2c2536e5112611c9_0006.0003_6a29a996530af03e\ScreenConnect.ClientService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (8F32EFB2-B494-4AEC-A27C-4B0736252363 -> Lenovo Group Ltd.) C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2305.16.0_x64__k1h2ywk1493x8\LenovoVantage\LenovoVantage.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\Michèle\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [894376 2017-04-14] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1882168 2017-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [829632 2016-06-24] (Dolby Laboratories, Inc. -> )
HKU\S-1-5-21-220774408-312320921-1916889893-1001\...\Run: [PCPrivacyShield2018] => "C:\Program Files (x86)\PC Privacy Shield 2018\PCPrivacyShield2018.exe" minimized (Pas de fichier)
HKU\S-1-5-21-220774408-312320921-1916889893-1001\...\Run: [MicrosoftEdgeAutoLaunch_0D6BCF941152C48E091CD82320B6C321] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4088256 2023-07-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.110\Installer\chrmstp.exe [2023-07-31] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0CDCE0F5-A940-4E93-A71F-5AD2A951AF4A} - System32\Tasks\App Explorer => C:\Users\Michèle\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7578648 2023-04-22] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {F515B568-9A9A-4109-91AB-59A16C01C4C8} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink)
Task: {AC10EA91-6471-4E6B-8A73-958AB42E37DE} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {A4C2265C-E97F-41B6-936F-9E48F1B942A6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2021-12-17] (Google Inc -> Google Inc.)
Task: {8F17228D-30C5-4DAB-AD66-E263CB8A98CD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2021-12-17] (Google Inc -> Google Inc.)
Task: {E5A387A9-2FDC-4D3A-88CA-46F2AC2CCFDD} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C9F265C0-735F-472B-A315-F56F7B57BE8B} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {AE5BC231-69E1-43EC-A769-AC0C1AE25A7D} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {2FA47A85-21C8-4777-B59D-15CD4FE254B2} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2bdf85a0-5a07-4723-acfa-58a93903e698 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {EE85FC0F-6787-4A2B-B6BA-D49A59950180} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\58891bdf-1184-4b28-b1c2-1167e5df4437 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {836AD278-3D39-4DDB-807E-3D50409DED72} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\79191d57-9769-465e-b435-132571cb00e4 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {0BA7A786-33AB-469A-991F-194F999CE387} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c80dd111-77ac-45a2-b3b1-e6383623f1ba => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {277CA735-710C-4D2F-BE09-97400779A5FB} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {E03AC56D-81F3-4690-9AB8-C945E7418006} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {05E25D75-C352-496E-902F-737B5947FE42} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {CE94AA2C-4309-46C7-BABA-99F48FC6689A} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {60CE9689-998B-4EF2-A599-784574BAC30D} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {F200BA6B-A2E8-48DA-BDEB-713600D2BF70} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {ADD41F3E-96CD-4CE8-A5E1-6009A4B27581} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {1E5F1612-A197-4144-B315-27F04B23C3F0} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {6841DDB5-AAD4-4782-AA95-2F93DFF5AFB0} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {67BD2FA2-E42D-4A21-8A21-BF8D392D99E0} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {38AE9FE6-03EF-42D2-9501-718949FA553C} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {B669068B-5489-4F4B-ACB5-2F7C7274A0B6} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier)
Task: {5BD994BE-26EA-4B67-B200-9E6423AE359B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616832 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {49F678D2-7628-417E-9BBD-B5715241FDA5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616832 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {6B9044C5-EEAA-4C4D-9042-4FFCAC74FBF0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124296 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9B1FE37B-5C86-420F-A223-1EA90482DB58} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124296 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {485BC813-EC15-472B-A74C-C7DEE839E8F8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {78AD1BD0-A504-406D-9927-DDE17A5E8F34} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3A424D3-3AC3-46E3-8377-EAFB664AF5C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {792671E8-7037-437C-BE7F-215ECAF2F921} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B3AA3415-74AB-42D7-988E-666503242A97} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-02-23] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {EA357FCE-3045-4E54-825B-8666B8FD4420} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947256 2017-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {45FE5173-EF9A-4E03-97F1-477253045D5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [648248 2017-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2ECC3C9-9D71-488A-B919-6570D5EF0490} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [648248 2017-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3B632A6B-D754-4E72-AAF4-A2CA1FB69EE2} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [437816 2017-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9E930FEC-B3C9-4A1C-B8D8-46E4CC53DA2C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [718904 2017-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BB20F388-EE2A-4209-B5C8-D52322D48F9C} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [718904 2017-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EFF4A4EF-ADF8-491C-A959-DCE6AAA69A2E} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2017-02-17] (CyberLink Corp. -> CyberLink Corp.)
Task: {AE103B17-CC8A-4E88-93FA-5CA7127E2D69} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {494BCE84-EFCA-462D-9C79-52DD69158DEC} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {63A949AC-08B2-4064-8717-EDF99ACE7DA7} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 62.197.111.140 109.88.203.3
Tcpip\..\Interfaces\{6427be1e-ac43-439a-9998-aaef7e9b6fb9}: [DhcpNameServer] 150.209.1.2
Tcpip\..\Interfaces\{88604ef5-73d7-4e82-ae86-e6b6bd934dac}: [DhcpNameServer] 62.197.111.140 109.88.203.3

Edge:
=======
DownloadDir: C:\Users\Michèle\Downloads
Edge Notifications: HKU\S-1-5-21-220774408-312320921-1916889893-1001 -> hxxps://www.facebook.com; hxxps://www.tui.be; hxxps://www.rustica.fr; hxxps://grandsmeres.notification.services; hxxps://onlinebanking.deutschebank.be; hxxps://www.recette-chinoise.fr; hxxps://immo.vlan.be; hxxps://www.grands-meres.net; hxxps://astucesdegrandmere.net; hxxps://www.aufeminin.com; hxxps://www.ricardocuisine.com; hxxps://www.comment-economiser.fr; hxxps://www.mesrecettesfaciles.fr; hxxps://www.750g.com; hxxps://offers.plantingo.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Michèle\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-31]
Edge DownloadDir: Default -> C:\Users\Michèle\Downloads
Edge Notifications: Default -> hxxps://a.bigcaptchahere.top; hxxps://astucesdegrandmere.net; hxxps://fr.temex2020.com; hxxps://grandsmeres.notification.services; hxxps://immo.vlan.be; hxxps://offers.plantingo.com; hxxps://onlinebanking.deutschebank.be; hxxps://www.750g.com; hxxps://www.aufeminin.com; hxxps://www.comment-economiser.fr; hxxps://www.facebook.com; hxxps://www.gererseul.com; hxxps://www.grands-meres.net; hxxps://www.marmiton.org; hxxps://www.mesrecettesfaciles.fr; hxxps://www.recette-chinoise.fr; hxxps://www.ricardocuisine.com; hxxps://www.rustica.fr; hxxps://www.tips-and-tricks.co; hxxps://www.tui.be; hxxps://www.youtube.com
Edge StartupUrls: Default -> "hxxps://google.be/"
Edge Extension: (Edge relevant text changes) - C:\Users\Michèle\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-07-31]

FireFox:
========
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-04] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Michèle\AppData\Local\Google\Chrome\User Data\Default [2023-07-31]
CHR StartupUrls: Default -> "hxxps://www.bing.com/?PC=PV04"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?q={searchTerms}&PC=PV01&FORM=PVSBDF
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Google Docs hors connexion) - C:\Users\Michèle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Michèle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-15]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851240 2023-07-18] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-26] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.)
R2 ScreenConnect Client (4cb81818-79e8-48d5-b2e9-bfeea5778ef6); C:\Users\Michèle\AppData\Local\Apps\2.0\E5XH16A6.R18\4KBNK7LN.6DV\scre..tion_2c2536e5112611c9_0006.0003_6a29a996530af03e\ScreenConnect.ClientService.exe [90768 2021-12-17] (ScreenConnect Software -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\NisSrv.exe [3244928 2023-07-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe [133576 2023-07-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2023-07-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-07-31] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-07-31] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-07-31 10:28 - 2023-07-31 10:08 - 101974016 _____ C:\WINDOWS\system32\config\SOFTWARE
2023-07-31 10:24 - 2023-07-31 10:24 - 000029111 _____ C:\Users\Michèle\Desktop\FRST.txt
2023-07-31 10:23 - 2023-07-31 10:24 - 000000000 ____D C:\FRST
2023-07-31 10:17 - 2023-07-31 10:21 - 002384384 _____ (Farbar) C:\Users\Michèle\Desktop\FRST64.exe
2023-07-31 09:50 - 2023-07-31 09:50 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2023-07-31 09:50 - 2023-07-31 09:50 - 000000000 ____D C:\WINDOWS\pss
2023-07-15 12:26 - 2023-07-15 12:26 - 000000000 ___HD C:\$WinREAgent
2023-07-04 21:00 - 2023-07-04 21:01 - 000000124 _____ C:\Users\Michèle\Desktop\Messenger.url

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-07-31 10:28 - 2021-12-17 12:46 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2023-07-31 10:22 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-31 10:17 - 2021-09-13 14:26 - 000000000 ____D C:\Users\Michèle\AppData\Local\D3DSCache
2023-07-31 10:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-07-31 10:13 - 2020-11-29 01:34 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-31 10:13 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2023-07-31 10:13 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2023-07-31 10:10 - 2021-12-17 12:09 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-31 10:10 - 2021-12-17 11:23 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-31 10:09 - 2023-06-19 18:30 - 000000000 ____D C:\ProgramData\scre..tion_2c2536e5112611c9_0006.0003_6a29a996530af03e
2023-07-31 10:09 - 2017-11-26 16:38 - 000000000 __SHD C:\Users\Michèle\IntelGraphicsProfiles
2023-07-31 10:08 - 2020-11-29 01:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-31 10:08 - 2020-11-29 01:23 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-31 10:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-07-31 10:08 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-07-31 10:08 - 2017-08-21 08:50 - 000000000 ____D C:\ProgramData\NVIDIA
2023-07-31 09:33 - 2018-05-17 23:01 - 000000000 ____D C:\Users\Michèle\AppData\Local\Host App Service
2023-07-31 09:30 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-31 09:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-31 09:29 - 2020-11-29 01:23 - 000431800 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-31 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-07-31 09:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-07-31 09:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-31 09:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-31 09:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-31 09:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-07-31 09:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-31 09:15 - 2020-06-07 09:11 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-31 09:15 - 2020-06-07 09:11 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-07-31 09:13 - 2021-12-17 11:24 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-07-31 09:13 - 2021-12-17 11:24 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-07-31 09:13 - 2018-02-21 02:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-07-31 09:12 - 2017-12-03 16:14 - 000918960 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-07-31 09:11 - 2021-12-11 22:00 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-220774408-312320921-1916889893-1001
2023-07-31 09:11 - 2020-11-29 01:31 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-220774408-312320921-1916889893-1001
2023-07-31 09:11 - 2020-11-29 01:25 - 000002430 _____ C:\Users\Michèle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-22 15:47 - 2020-11-29 01:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-07-18 14:11 - 2017-08-21 08:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-07-15 12:35 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-15 12:32 - 2020-11-29 01:26 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-07-15 12:26 - 2017-11-28 20:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-07-15 12:10 - 2017-11-28 20:42 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-07-12 12:40 - 2020-11-29 01:31 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-12 12:40 - 2020-11-29 01:31 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-10 13:32 - 2018-01-01 23:52 - 000000000 ____D C:\Users\Michèle\AppData\Local\Packages
2023-07-10 13:31 - 2020-02-16 21:17 - 000000000 ____D C:\Users\Michèle\AppData\Roaming\Microsoft\Word

==================== Fichiers à la racine de certains dossiers ========

2023-06-19 18:37 - 2023-06-19 18:37 - 000007605 _____ () C:\Users\Michèle\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================