Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022 Exécuté par WeZ (administrateur) sur WEZ (ASUS System Product Name) (20-08-2022 21:33:24) Exécuté depuis C:\Users\WeZ\Desktop Profils chargés: WeZ Plate-forme: Microsoft Windows 10 Éducation Version 20H2 19042.1889 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe (C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe (C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (D:\LOGICIELS\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.204.0.1\OverwolfHelper.exe (D:\LOGICIELS\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.204.0.1\OverwolfHelper64.exe (D:\LOGICIELS\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) D:\LOGICIELS\Overwolf\0.204.0.1\OverwolfBrowser.exe <3> (D:\STEAM\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe <7> (explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3> (explorer.exe ->) (cFos Software GmbH -> cFos Software GmbH) C:\Program Files\ASUS\Turbo LAN\cfosspeed.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\steam.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Overwolf Ltd -> Overwolf LTD) D:\LOGICIELS\Overwolf\Overwolf.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe (services.exe ->) (cFos Software GmbH -> cFos Software GmbH) C:\Program Files\ASUS\Turbo LAN\spd.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe (services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe (services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_944ac9a3321ebe76\RstMwService.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_49599d441c87af7f\Intel_PIE_Service.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.67.21001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_171a8092a51ff342\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <2> (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SpaceAgent.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) D:\LOGICIELS\MSI Afterburner\MSIAfterburner.exe (svchost.exe ->) (TODO: ) [Fichier non signé] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [213760 2022-08-01] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [436896 2021-03-12] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1081648 2021-03-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Turbo LAN] => C:\Program Files\ASUS\Turbo LAN\cFosSpeed.exe [2494280 2021-03-18] (cFos Software GmbH -> cFos Software GmbH) HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4114688 2022-07-28] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [850208 2022-06-27] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-1088116096-1600674307-2983624722-1001\...\Run: [Steam] => D:\STEAM\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1088116096-1600674307-2983624722-1001\...\Run: [Discord] => C:\Users\WeZ\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub) HKU\S-1-5-21-1088116096-1600674307-2983624722-1001\...\Run: [Overwolf] => D:\LOGICIELS\Overwolf\OverwolfLauncher.exe [1802584 2022-08-04] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-1088116096-1600674307-2983624722-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13926752 2021-09-30] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-1088116096-1600674307-2983624722-1001\...\Run: [MicrosoftEdgeAutoLaunch_5CA0D99C7F601653D8376D634AA083C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-17] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02198406-FBCC-4735-AF28-E98A33C7362F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {05EDD650-9B65-4334-BE3E-6D12795D15F5} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {082EAE35-14A7-4D83-834F-7E547EF50EE9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0F222200-06E6-4D91-BFB9-04429753F7F6} - System32\Tasks\cFos\Registration Tasks\Open Browser => "c:\program files\google\chrome\application\chrome.exe" "hxxps://www.cfos.de/fr/cfosspeed/documentation/status.htm?reg-10.51.2342-asus" Task: {224F199B-6E32-44EF-BFAB-A549C02968A0} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2021-03-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {2ECB6BDF-E1EE-4ACF-85DE-381B805B4095} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {33484800-FCC2-4061-A887-8BD5493477B4} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {34CBAA18-E40C-49EC-BBDB-FF880E76D0D0} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {37F924F9-B1D1-4138-A635-9DAE51301E95} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (Pas de fichier) Task: {39C801A6-E4AC-4851-AFCC-2C77665E654F} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [2025488 2021-01-22] (ASUSTeK Computer Inc. -> ASUS) Task: {3C88CE7D-6A52-4282-BC62-0B0F48623FF5} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {450A8BCD-6844-4899-A93C-35C83001EDCD} - System32\Tasks\ASUS\ArmouryAIOFanServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe [1039360 2020-11-10] (TODO: ) [Fichier non signé] Task: {4623D72D-843E-48CC-8F3F-88FFEB579832} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD) Task: {482D8876-1DCC-4373-BEC3-2E7DA2E636AC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {53CA26A6-ECA0-4A08-9B67-9589847AF3E8} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4928768 2022-08-01] (Avast Software s.r.o. -> AVAST Software) Task: {6D4E2640-6DDF-4AA0-8194-2BE2C243DF2F} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [6667600 2022-07-28] (Avast Software s.r.o. -> Avast Software) Task: {77070F8F-B85B-41C5-8278-B1D6F0670759} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4614912 2022-07-28] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid e798c069-99be-4443-bb08-c01866531ac1 Task: {7C1BC333-0CBE-47CC-B8C8-72CABFF5C86E} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d71c1bbead43c5 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2021-03-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {7E9053C9-59DC-4F1C-B4E8-E62B84CED794} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-18] (Google LLC -> Google LLC) Task: {7F84DB70-F315-449B-B884-5F43CA36287A} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-12] (Microsoft Windows -> Microsoft Corporation) Task: {84352D8D-666F-4E6D-A61A-3DEC5C94A5E5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {88C80DBD-10FD-48D1-AC3E-6C7FF2199522} - System32\Tasks\ASUS\NoiseCancelingEngine.exe => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1238328 2021-01-21] (ASUSTeK Computer Inc. -> ASUS) Task: {A14D4D27-9562-4425-9CD8-36F01E7B6696} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A93C7CD3-B4F9-4268-BD58-F4D76ADBAB49} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-12] (Microsoft Windows -> Microsoft Corporation) Task: {AA0B6904-576A-41D9-8B9E-07820B69EE6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-18] (Google LLC -> Google LLC) Task: {B18D5037-797C-45AC-B173-510F69A946BA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C6A1706D-C23C-42C0-A4C8-6F321EBD491F} - System32\Tasks\MSIAfterburner => D:\LOGICIELS\MSI Afterburner\MSIAfterburner.exe [791608 2021-03-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {C89A0C31-B03E-4B1F-A61A-772775AA2C2E} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [45540760 2021-01-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {C9C57B9B-0B3C-4779-A22B-DDC66A1001DE} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D13599C6-F77A-493A-A175-C303B650C1E2} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Pas de fichier) Task: {DAA90EFD-051D-445C-9116-4558931AE36E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F59BA188-0BD4-4D8A-9463-76E9F49D62B2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{613f8571-4cbd-4db3-8a2a-0bb53f31a080}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{f05cbd19-f8b3-4b19-a596-d17002f5c3f2}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\WeZ\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-20] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\WeZ\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-17] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 075tptky.default FF ProfilePath: C:\Users\WeZ\AppData\Roaming\Mozilla\Firefox\Profiles\075tptky.default [2021-03-19] FF ProfilePath: C:\Users\WeZ\AppData\Roaming\Mozilla\Firefox\Profiles\ab9ib6fa.default-release [2022-08-19] FF Extension: (MetaMask) - C:\Users\WeZ\AppData\Roaming\Mozilla\Firefox\Profiles\ab9ib6fa.default-release\Extensions\webextension@metamask.io.xpi [2022-08-11] FF Extension: (minerBlock) - C:\Users\WeZ\AppData\Roaming\Mozilla\Firefox\Profiles\ab9ib6fa.default-release\Extensions\xd4rker@gmail.com.xpi [2022-04-04] FF Extension: (No Coin - Block miners on the web!) - C:\Users\WeZ\AppData\Roaming\Mozilla\Firefox\Profiles\ab9ib6fa.default-release\Extensions\{5657c026-efc3-4860-b43b-16e4eaa8a9aa}.xpi [2022-04-04] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\WeZ\AppData\Roaming\Mozilla\Firefox\Profiles\ab9ib6fa.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-07-05] FF Plugin: @videolan.org/vlc,version=3.0.12 -> D:\LOGICIELS\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> D:\LOGICIELS\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-06-27] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-06-27] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\WeZ\AppData\Local\Google\Chrome\User Data\Default [2022-08-20] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\WeZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-07-11] CHR Extension: (Google Docs hors connexion) - C:\Users\WeZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-27] CHR Extension: (Chrome Remote Desktop) - C:\Users\WeZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-02-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\WeZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-18] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [919328 2022-06-27] (Adobe Inc. -> Adobe Inc.) R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [382112 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe [468504 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2021-03-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2022-08-18] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2021-03-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1191040 2022-08-20] (ASUSTeK Computer Inc. -> ) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8507448 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [589568 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [589056 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8915368 2022-01-22] (BattlEye Innovations e.K. -> ) R2 cFosSpeedS; C:\Program Files\ASUS\Turbo LAN\spd.exe [927560 2021-03-18] (cFos Software GmbH -> cFos Software GmbH) R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [15703296 2022-07-28] (Avast Software s.r.o. -> AVAST Software) R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616368 2021-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [456352 2021-03-12] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairMsiPluginService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe [459936 2021-03-12] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [80544 2021-03-12] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 DTSAPO3Service; C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe [222104 2021-03-18] (DTS, Inc. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812520 2022-03-24] (EasyAntiCheat Oy -> Epic Games, Inc) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2021-03-16] (FUTUREMARK INC -> Futuremark) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1990496 2021-09-30] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-08-29] (GOG Sp. z o.o. -> GOG.com) R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> ) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [225368 2022-07-12] (HP Inc. -> HP Inc.) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11099200 2022-03-23] (Logitech Inc -> Logitech, Inc.) R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3210232 2021-03-03] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) S3 LxssManagerUser; C:\Windows\system32\lxss\wslclient.dll [301056 2022-06-15] (Microsoft Windows -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-11] (Malwarebytes Inc -> Malwarebytes) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD) R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [6694520 2022-08-15] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_171a8092a51ff342\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_171a8092a51ff342\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> ) R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2022-08-18] (ASUSTeK Computer Inc. -> ) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [41832 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [235576 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [389120 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [258048 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [104960 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [24528 2022-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [47976 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [275024 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [553928 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [113968 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [89032 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [859872 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [670776 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [221512 2022-08-01] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [324840 2022-08-01] (Avast Software s.r.o. -> AVAST Software) S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2355952 2022-01-05] (Activision Publishing Inc -> Activision Blizzard, Inc.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1600352 2021-03-18] (cFos Software GmbH -> cFos Software GmbH) S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60336 2021-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2021-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [45984 2021-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [21920 2021-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) S3 cpuz150; C:\Windows\temp\cpuz150\cpuz150_x64.sys [44832 2021-12-06] (CPUID S.A.R.L.U. -> CPUID) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> ) R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [33528 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech) S3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [21704 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech) R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [62904 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210352 2022-08-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-03-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2022-08-20] (Malwarebytes Inc -> Malwarebytes) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R3 RTCore64; D:\LOGICIELS\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project) R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29680 2021-10-17] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 ALSysIO; \??\C:\Users\WeZ\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION S3 rsDwf; \SystemRoot\system32\DRIVERS\rsDwf.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-20 21:33 - 2022-08-20 21:33 - 000035981 _____ C:\Users\WeZ\Desktop\FRST.txt 2022-08-20 21:32 - 2022-08-20 21:33 - 000000000 ____D C:\FRST 2022-08-20 21:32 - 2022-08-20 21:32 - 002371072 _____ (Farbar) C:\Users\WeZ\Desktop\FRST64.exe 2022-08-20 19:13 - 2022-08-20 19:13 - 000000033 _____ C:\Users\WeZ\Desktop\nouveau 15.txt 2022-08-20 19:06 - 2022-08-20 21:30 - 000477253 _____ C:\Users\WeZ\Desktop\ZHPDiag.html 2022-08-20 19:06 - 2022-08-20 21:30 - 000391477 _____ C:\Users\WeZ\Desktop\ZHPDiag.txt 2022-08-20 19:02 - 2022-08-20 21:31 - 000972122 _____ C:\Windows\ntbtlog.txt 2022-08-20 18:55 - 2022-08-20 18:55 - 003557576 _____ (Nicolas Coolman) C:\Users\WeZ\Downloads\ZHPSuite.exe 2022-08-20 18:47 - 2022-08-20 21:30 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\ZHP 2022-08-20 18:47 - 2022-08-20 18:59 - 000000863 _____ C:\Users\WeZ\Desktop\ZHPSuite.lnk 2022-08-20 18:47 - 2022-08-20 18:47 - 000000000 ____D C:\Users\WeZ\AppData\Local\ZHP 2022-08-20 18:43 - 2022-08-20 18:43 - 000000000 ___HD C:\$AV_ASW 2022-08-20 18:37 - 2022-08-20 18:37 - 000000000 ____D C:\Windows\system32\Tasks\cFos 2022-08-18 21:07 - 2022-08-18 21:07 - 000016286 _____ C:\GetDeviceStatus.xml 2022-08-18 21:07 - 2022-08-18 21:07 - 000009899 _____ C:\GetDeviceCap.xml 2022-08-18 21:07 - 2022-08-18 21:07 - 000001555 _____ C:\QueryAllDevice.xml 2022-08-18 21:07 - 2022-08-18 21:07 - 000000228 _____ C:\SetMatrixLEDScript.xml 2022-08-14 19:42 - 2022-08-14 19:42 - 000000000 ____D C:\Users\WeZ\AppData\LocalLow\IronOak Games 2022-08-13 11:46 - 2022-08-13 11:46 - 000000000 ____D C:\Users\WeZ\AppData\LocalLow\Innersloth 2022-08-12 22:20 - 2022-08-12 22:20 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-08-12 22:20 - 2022-08-12 22:20 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2022-08-12 22:20 - 2022-08-12 22:20 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-08-12 22:20 - 2022-08-12 22:20 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-08-12 22:20 - 2022-08-12 22:20 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-12 22:20 - 2022-08-12 22:20 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-12 22:20 - 2022-08-12 22:20 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-08-12 22:20 - 2022-08-12 22:20 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-08-12 22:17 - 2022-08-12 22:17 - 000000000 ___HD C:\$WinREAgent 2022-08-12 20:11 - 2022-08-12 20:11 - 000000000 ____D C:\Users\WeZ\AppData\LocalLow\Clever Endeavour Games 2022-08-10 21:25 - 2022-08-10 21:26 - 175627044 _____ C:\Users\WeZ\Downloads\changelog.csv 2022-08-10 20:56 - 2022-08-10 20:56 - 000087136 _____ C:\Users\WeZ\Downloads\modulo_rientro_sintetico_05_marzo_2021_eng_.pdf 2022-08-10 20:56 - 2022-08-10 20:56 - 000047682 _____ C:\Users\WeZ\Downloads\aut.-eng-NEW.pdf 2022-08-10 10:14 - 2022-08-18 23:49 - 000000000 ____D C:\Users\WeZ\AppData\Local\Discord 2022-08-09 23:24 - 2022-08-09 23:49 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-08-09 22:41 - 2022-08-09 22:41 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TransMac 2022-08-09 22:41 - 2022-08-09 22:41 - 000000000 ____D C:\Users\WeZ\AppData\Local\TransMac 2022-08-09 22:40 - 2022-08-09 22:40 - 002196835 _____ C:\Users\WeZ\Downloads\tmsetup.zip 2022-08-09 21:37 - 2022-08-09 21:37 - 000000000 ____D C:\Users\WeZ\AppData\Local\Disc_Soft_Ltd 2022-08-09 21:37 - 2022-08-09 21:37 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2022-08-09 21:36 - 2022-08-10 00:08 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\Disc-Soft 2022-08-09 21:36 - 2022-08-10 00:08 - 000000000 ____D C:\ProgramData\Disc-Soft 2022-08-09 21:36 - 2022-08-09 21:36 - 000000000 ____D C:\Users\Public\Documents\Catch! 2022-08-09 21:35 - 2022-08-09 21:35 - 028116640 _____ (Disc Soft Ltd) C:\Users\WeZ\Downloads\DAEMONToolsUltra610-1753.exe 2022-08-09 21:29 - 2022-08-09 21:29 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\PowerISO 2022-08-09 21:01 - 2022-08-09 21:28 - 000000000 ____D C:\Program Files\RAVAntivirus 2022-08-09 18:24 - 2022-08-09 22:55 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\Apple Computer 2022-08-09 18:24 - 2022-08-09 18:24 - 000002507 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk 2022-08-09 18:24 - 2022-08-09 18:24 - 000000000 ____D C:\Users\WeZ\AppData\Local\Apple Computer 2022-08-09 18:24 - 2022-08-09 18:24 - 000000000 ____D C:\ProgramData\Apple Computer 2022-08-09 18:23 - 2022-08-09 18:23 - 038494576 _____ (Apple Inc.) C:\Users\WeZ\Downloads\SafariSetup-5.1.7.exe 2022-08-09 18:23 - 2022-08-09 18:23 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2022-08-09 18:23 - 2022-08-09 18:23 - 000000000 ____D C:\Users\WeZ\AppData\Local\Apple 2022-08-09 18:23 - 2022-08-09 18:23 - 000000000 ____D C:\ProgramData\Apple 2022-08-09 18:23 - 2022-08-09 18:23 - 000000000 ____D C:\Program Files (x86)\Apple Software Update 2022-08-09 18:04 - 2022-08-09 23:04 - 1423106952 _____ C:\Users\WeZ\Downloads\InstallMacOSX.dmg 2022-08-02 19:30 - 2022-08-02 19:30 - 001257472 _____ C:\Users\WeZ\Downloads\Calculateur_de_rentabilite_Monsieur_Rodolphe_V2_6.xls 2022-08-01 14:49 - 2022-08-01 14:49 - 000270592 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2022-08-01 14:49 - 2022-08-01 14:49 - 000221512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2022-08-01 12:54 - 2022-08-01 12:54 - 000713707 _____ C:\Users\WeZ\Downloads\Dépot plainte SASU DEWEVER.pdf 2022-07-22 16:24 - 2022-07-22 16:24 - 000004528 _____ C:\Users\WeZ\Downloads\QPtmp000 (2).PDF 2022-07-22 16:24 - 2022-07-22 16:24 - 000004416 _____ C:\Users\WeZ\Downloads\QPtmp000.PDF 2022-07-22 16:24 - 2022-07-22 16:24 - 000004413 _____ C:\Users\WeZ\Downloads\QPtmp000 (1).PDF 2022-07-18 22:40 - 2022-07-18 22:46 - 1448170127 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E08.FRENCH.1080p.WEB.H264-Wawacity.red.mkv 2022-07-18 22:40 - 2022-07-18 22:46 - 1405990770 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E07.FRENCH.1080p.WEB.H264-Wawacity.red.mkv 2022-07-18 22:40 - 2022-07-18 22:46 - 1330819751 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E05.FRENCH.1080p.WEB.H264-Wawacity.red.mkv 2022-07-18 22:40 - 2022-07-18 22:46 - 1264071565 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E09.FiNAL.FRENCH.1080p.WEB.H264-Wawacity.red.mkv 2022-07-18 22:40 - 2022-07-18 22:45 - 1336936453 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E01.FRENCH.1080p.WEB.H264-Wawacity.blue.mkv 2022-07-18 22:40 - 2022-07-18 22:45 - 1212041176 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E06.FRENCH.1080p.WEB.H264-Wawacity.red.mkv 2022-07-18 22:40 - 2022-07-18 22:45 - 1210365504 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E02.FRENCH.1080p.WEB.H264-Wawacity.blue.mkv 2022-07-18 22:40 - 2022-07-18 22:45 - 1173735605 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E04.FRENCH.1080p.WEB.H264-Wawacity.red.mkv 2022-07-18 22:40 - 2022-07-18 22:45 - 1149951430 _____ C:\Users\WeZ\Downloads\Le.Flambeau.Les.Aventuriers.de.Chupacabra.S01E03.FRENCH.1080p.WEB.H264-Wawacity.blue.mkv 2022-07-17 21:23 - 2022-07-17 21:23 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-07-17 21:23 - 2022-07-17 21:23 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-07-17 21:23 - 2022-07-17 21:23 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-07-17 21:23 - 2022-07-17 21:23 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-07-17 21:23 - 2022-07-17 21:23 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-07-17 21:23 - 2022-07-17 21:23 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-07-17 21:23 - 2022-07-17 21:23 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-07-17 21:23 - 2022-07-17 21:23 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-07-17 21:23 - 2022-07-17 21:23 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-07-17 21:23 - 2022-07-17 21:23 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-07-17 21:23 - 2022-07-17 21:23 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-07-17 21:23 - 2022-07-17 21:23 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-07-17 21:23 - 2022-07-17 21:23 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-07-17 21:23 - 2022-07-17 21:23 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-07-17 21:22 - 2022-07-17 21:22 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-07-17 21:22 - 2022-07-17 21:22 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-07-17 21:22 - 2022-07-17 21:22 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-06-27 17:58 - 2022-08-01 14:49 - 000024528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys 2022-06-27 12:36 - 2022-06-27 12:36 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecsTier2 2022-06-27 12:29 - 2022-06-27 12:29 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\com.adobe.dunamis 2022-06-27 11:43 - 2022-06-27 12:29 - 000000000 ____D C:\Users\WeZ\Documents\Adobe 2022-06-27 11:43 - 2022-06-27 11:43 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2022.lnk 2022-06-27 11:42 - 2022-06-27 11:42 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2022.lnk 2022-06-27 11:42 - 2022-06-27 11:42 - 000000000 ____D C:\Users\Public\Documents\Adobe 2022-06-27 11:41 - 2022-07-12 21:45 - 000000000 __RHD C:\Users\WeZ\Creative Cloud Files 2022-06-27 11:39 - 2022-06-27 11:43 - 000000000 ____D C:\Program Files\Adobe 2022-06-27 11:39 - 2022-06-27 11:42 - 000000000 ____D C:\Users\WeZ\AppData\Local\Adobe 2022-06-27 11:39 - 2022-06-27 11:42 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-06-27 11:39 - 2022-06-27 11:41 - 000000000 ____D C:\Program Files (x86)\Adobe 2022-06-27 11:39 - 2022-06-27 11:40 - 000000000 ____D C:\ProgramData\Adobe 2022-06-27 11:39 - 2022-06-27 11:39 - 000001386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2022-06-27 11:39 - 2022-06-27 11:39 - 000001356 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk 2022-06-27 11:39 - 2022-06-27 11:39 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo 2022-06-15 18:33 - 2022-06-15 18:33 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2022-06-15 18:33 - 2022-06-15 18:33 - 000479744 _____ C:\Windows\system32\AssignedAccessCsp.dll 2022-06-15 18:33 - 2022-06-15 18:33 - 000104448 _____ C:\Windows\system32\nettraceex.dll 2022-06-15 18:33 - 2022-06-15 18:33 - 000040960 _____ C:\Windows\system32\uwfservicingapi.dll 2022-06-15 18:32 - 2022-06-15 18:32 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll 2022-06-12 20:28 - 2022-06-12 20:28 - 000263793 _____ C:\Users\WeZ\Downloads\Passaporte Fernanda.pdf 2022-06-12 20:28 - 2022-06-12 20:28 - 000039891 _____ C:\Users\WeZ\Downloads\attestation-vaccination-de-souza-leao-fernanda.pdf 2022-06-09 11:40 - 2022-06-09 11:40 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2022-06-09 11:40 - 2022-06-09 11:40 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput 2022-06-06 18:58 - 2022-06-06 18:58 - 000619215 _____ C:\Users\WeZ\Downloads\Egypt eVisa Form (1).pdf 2022-06-04 18:21 - 2022-06-04 18:21 - 000086325 _____ C:\Users\WeZ\Downloads\Egypt eVisa Application Form (1).pdf 2022-06-04 18:09 - 2022-06-04 18:09 - 000086328 _____ C:\Users\WeZ\Downloads\Egypt eVisa Application Form.pdf 2022-05-28 20:09 - 2022-05-28 21:13 - 2708366137 _____ C:\Users\WeZ\Downloads\The.Matrix.4.Resurrections.2021.MULTi.TRUEFRENCH.1080p.BluRay.x264.AC3-Wawacity.blue.mkv 2022-05-28 20:08 - 2022-05-28 20:53 - 2233069426 _____ C:\Users\WeZ\Downloads\Eternals.2021.Hybrid.MULTi.VFF.2160p.10bit.4KLight.DOLBY.VISION.BluRay.TrueHD.Atmos.7.1.x265-Wawacity.work.mkv 2022-05-28 20:08 - 2022-05-28 20:12 - 1059793149 _____ C:\Users\WeZ\Downloads\The.Matrix.4.Resurrections.2021.TRUEFRENCH.BDRip.x264-Wawacity.blue.mkv 2022-05-25 13:11 - 2022-05-25 13:11 - 000525305 _____ C:\Users\WeZ\Downloads\700DEW - Bordereau TA 2021.pdf 2022-05-25 13:02 - 2022-05-25 13:02 - 000336021 _____ C:\Users\WeZ\Downloads\BD T1 2022 30 000 272 (2).pdf 2022-05-25 13:01 - 2022-05-25 13:01 - 000336021 _____ C:\Users\WeZ\Downloads\BD T1 2022 30 000 272 (1).pdf 2022-05-25 12:59 - 2022-05-25 12:59 - 000125117 _____ C:\Users\WeZ\Downloads\BD AJUSTEMENT 2021 30 000 272 (2).pdf 2022-05-25 12:59 - 2022-05-25 12:59 - 000125117 _____ C:\Users\WeZ\Downloads\BD AJUSTEMENT 2021 30 000 272 (1).pdf 2022-05-25 12:56 - 2022-05-25 12:56 - 000310626 _____ C:\Users\WeZ\Downloads\BD T1 2022 30 000 272.pdf 2022-05-25 12:56 - 2022-05-25 12:56 - 000115150 _____ C:\Users\WeZ\Downloads\BD AJUSTEMENT 2021 30 000 272.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-20 21:33 - 2021-03-18 19:27 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-20 21:33 - 2021-03-18 19:22 - 000000000 ____D C:\ProgramData\NVIDIA 2022-08-20 21:31 - 2021-11-11 03:07 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2022-08-20 21:31 - 2021-03-18 20:06 - 000000000 ____D C:\Users\WeZ\AppData\Local\Overwolf 2022-08-20 21:31 - 2021-03-18 19:30 - 000000000 ____D C:\ProgramData\Avast Software 2022-08-20 21:31 - 2021-03-18 19:17 - 001229576 _____ C:\Windows\system32\wpbbin.exe 2022-08-20 21:31 - 2021-03-18 19:17 - 001191040 _____ C:\Windows\system32\AsusUpdateCheck.exe 2022-08-20 21:31 - 2021-03-18 19:17 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-20 21:31 - 2020-11-19 01:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-20 21:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-20 21:31 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-08-20 21:26 - 2021-09-18 01:44 - 000210352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2022-08-20 21:26 - 2021-03-18 20:14 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job 2022-08-20 21:24 - 2021-06-23 11:38 - 000003094 _____ C:\Windows\system32\Tasks\MSIAfterburner 2022-08-20 19:20 - 2021-03-18 19:21 - 001771354 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-20 19:20 - 2019-12-07 16:50 - 000791866 _____ C:\Windows\system32\perfh00C.dat 2022-08-20 19:20 - 2019-12-07 16:50 - 000150032 _____ C:\Windows\system32\perfc00C.dat 2022-08-20 19:20 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-08-20 18:48 - 2021-03-19 10:08 - 000000000 ____D C:\Users\WeZ\AppData\LocalLow\Mozilla 2022-08-20 17:43 - 2020-11-19 00:44 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-08-19 20:52 - 2021-03-18 19:17 - 000000000 ____D C:\ProgramData\ASUS 2022-08-19 17:05 - 2022-02-09 11:31 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-19 15:08 - 2021-12-15 00:35 - 000003066 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1088116096-1600674307-2983624722-1001 2022-08-19 15:08 - 2021-03-18 20:15 - 000003220 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification 2022-08-19 15:08 - 2021-03-18 20:07 - 000003250 _____ C:\Windows\system32\Tasks\Overwolf Updater Task 2022-08-19 15:08 - 2021-03-18 20:06 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:06 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:05 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:05 - 000003196 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:05 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:05 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:05 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:05 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:05 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 20:05 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-19 15:08 - 2021-03-18 19:30 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software 2022-08-19 15:08 - 2021-03-18 19:27 - 000003518 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-08-19 15:08 - 2021-03-18 19:27 - 000003294 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-08-19 15:08 - 2021-03-18 19:25 - 000002862 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1088116096-1600674307-2983624722-1001 2022-08-19 15:08 - 2021-03-18 19:17 - 000002858 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1088116096-1600674307-2983624722-500 2022-08-19 15:08 - 2020-11-19 01:46 - 000003618 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-08-19 15:08 - 2020-11-19 01:46 - 000003394 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-08-19 10:24 - 2021-03-18 20:02 - 000000000 ____D C:\ProgramData\Riot Games 2022-08-19 00:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-19 00:23 - 2021-03-18 19:41 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\discord 2022-08-18 21:07 - 2021-03-18 19:29 - 000000000 ____D C:\Users\WeZ\AppData\Local\ASUS 2022-08-18 21:07 - 2021-03-18 19:28 - 000151608 _____ (©ASUSTeK Computer Inc.) C:\Windows\system32\AsIO3.dll 2022-08-18 21:07 - 2021-03-18 19:28 - 000123744 _____ (©ASUSTeK Computer Inc.) C:\Windows\SysWOW64\AsIO3.dll 2022-08-18 21:07 - 2021-03-18 19:28 - 000043168 _____ C:\Windows\system32\Drivers\AsIO3.sys 2022-08-18 19:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-17 23:00 - 2021-03-18 19:32 - 000000000 ____D C:\Users\WeZ\AppData\Local\AVAST Software 2022-08-17 22:29 - 2021-03-22 13:06 - 000000000 ____D C:\Users\WeZ\AppData\Local\CrashDumps 2022-08-17 22:27 - 2021-03-20 18:19 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\vlc 2022-08-17 21:43 - 2021-03-18 19:27 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-17 21:43 - 2021-03-18 19:27 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-08-17 21:42 - 2021-03-18 19:37 - 000000000 ____D C:\Users\WeZ\AppData\Local\Corsair 2022-08-14 18:58 - 2021-03-18 19:23 - 000002415 _____ C:\Users\WeZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-08-13 11:05 - 2020-11-19 01:47 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-13 10:53 - 2022-04-24 20:18 - 000267528 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-13 10:52 - 2021-05-19 15:02 - 000000000 ___SD C:\Windows\system32\lxss 2022-08-13 10:52 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-08-13 10:52 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-08-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-08-13 00:37 - 2021-03-18 19:23 - 000000000 ____D C:\Users\WeZ 2022-08-12 22:22 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-08-12 22:20 - 2020-11-19 01:46 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-08-12 22:16 - 2021-03-19 09:23 - 000000000 ____D C:\Windows\system32\MRT 2022-08-12 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2022-08-12 22:14 - 2021-03-19 09:23 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-12 18:04 - 2021-03-18 19:48 - 000000000 ____D C:\Users\WeZ\AppData\Local\D3DSCache 2022-08-12 16:11 - 2021-03-18 19:41 - 000002221 _____ C:\Users\WeZ\Desktop\Discord.lnk 2022-08-12 16:07 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF 2022-08-10 10:14 - 2021-06-27 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2022-08-10 10:14 - 2021-06-27 20:17 - 000000000 ____D C:\Program Files\7-Zip 2022-08-10 10:14 - 2021-03-20 19:12 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2022-08-10 10:14 - 2021-03-18 19:41 - 000000000 ____D C:\Users\WeZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2022-08-10 10:14 - 2021-03-18 19:40 - 000000000 ____D C:\Users\WeZ\AppData\Local\SquirrelTemp 2022-08-10 09:57 - 2021-03-18 19:30 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2022-08-10 00:13 - 2021-05-12 10:02 - 000007593 _____ C:\Users\WeZ\AppData\Local\Resmon.ResmonCfg 2022-08-09 23:49 - 2021-03-19 10:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-09 23:47 - 2021-10-09 20:10 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-08-09 23:47 - 2021-03-19 10:08 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-09 22:56 - 2021-03-18 19:23 - 000000000 ____D C:\Users\WeZ\AppData\Local\VirtualStore 2022-08-01 14:49 - 2021-03-18 19:30 - 000859872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000670776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000553928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000389120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000324840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000275024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000258048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000235576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000113968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000104960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000089032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000047976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2022-08-01 14:49 - 2021-03-18 19:30 - 000041832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2022-08-01 14:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-07-31 19:47 - 2021-03-18 19:27 - 000000000 ____D C:\Program Files\Google 2022-07-30 13:38 - 2022-01-16 15:43 - 002754000 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-07-30 13:38 - 2022-01-16 15:43 - 000402904 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-07-30 13:38 - 2022-01-16 15:43 - 000234960 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-07-30 13:38 - 2022-01-16 15:43 - 000198096 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-07-30 13:38 - 2022-01-16 15:43 - 000144856 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-07-30 13:38 - 2022-01-16 15:43 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-07-30 13:38 - 2022-01-16 15:43 - 000067032 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-07-25 14:06 - 2021-05-01 20:42 - 000000000 ____D C:\Users\WeZ\AppData\Local\ElevatedDiagnostics ==================== Fichiers à la racine de certains dossiers ======== 2021-05-12 10:02 - 2022-08-10 00:13 - 000007593 _____ () C:\Users\WeZ\AppData\Local\Resmon.ResmonCfg ==================== SigCheckExt ========================= 2022-01-16 15:43 - 2022-07-30 13:38 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2012-09-28 21:45 - 2012-09-28 21:45 - 000246272 _____ C:\Windows\system32\rtvcvfw64.dll 2021-03-18 19:25 - 2021-03-18 19:25 - 000366592 _____ C:\Windows\system32\syncas.dll 2012-09-28 21:45 - 2012-09-28 21:45 - 000247296 _____ C:\Windows\SysWOW64\rtvcvfw32.dll 2022-08-20 21:32 - 2022-08-20 21:32 - 002371072 _____ (Farbar) C:\Users\WeZ\Desktop\FRST64.exe 2022-08-20 18:55 - 2022-08-20 18:55 - 003557576 _____ (Nicolas Coolman) C:\Users\WeZ\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {aa2f35a1-20be-11ed-b14b-806e6f6e6963} {aa2f35a2-20be-11ed-b14b-806e6f6e6963} {aa2f35a3-20be-11ed-b14b-806e6f6e6963} timeout 1 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {9a48258b-880d-11eb-8000-da313cca50fc} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {aa2f35a1-20be-11ed-b14b-806e6f6e6963} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {aa2f35a2-20be-11ed-b14b-806e6f6e6963} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {aa2f35a3-20be-11ed-b14b-806e6f6e6963} description UEFI:Network Device Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {9a48258d-880d-11eb-8000-da313cca50fc} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {9a48258b-880d-11eb-8000-da313cca50fc} nx OptIn bootmenupolicy Standard hypervisorlaunchtype Auto Chargeur de d‚marrage Windows ----------------------------- identificateur {9a48258d-880d-11eb-8000-da313cca50fc} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{9a48258e-880d-11eb-8000-da313cca50fc} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-fr inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{9a48258e-880d-11eb-8000-da313cca50fc} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {9a48258b-880d-11eb-8000-da313cca50fc} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {9a48258d-880d-11eb-8000-da313cca50fc} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {9a48258e-880d-11eb-8000-da313cca50fc} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================