Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-09-2021 Exécuté par julie (administrateur) sur DESKTOP-4R5T2R6 (Gigabyte Technology Co., Ltd. X470 AORUS ULTRA GAMING) (12-09-2021 06:44:00) Exécuté depuis C:\Users\julie\Downloads Profils chargés: julie Platform: Windows 10 Home Version 21H1 19043.1202 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <7> (Discord Inc. -> Discord Inc.) C:\Users\julie\AppData\Local\Discord\app-1.0.9002\Discord.exe <6> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <31> (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Logitech, Inc. -> ) C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe (Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe (mylivewallpapers.com) [Fichier non signé] C:\Users\julie\OneDrive\Bureau\MLWapp2-1.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b8346c359fcd6093\Display.NvContainer\NVDisplay.Container.exe <2> (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\APO0521Drv\Drivers\x64\THXHelper0521.exe (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\THXVAD\Drivers\x64\THXHelper22AD.exe (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe (Razer USA Ltd. -> THX) C:\Program Files (x86)\Razer\THXService\Drivers\x64\THXService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c51a65fb5ec70f9d\RtkAudUService64.exe <2> (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) C:\Users\julie\AppData\Local\Programs\Blitz\Blitz.exe <8> (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c51a65fb5ec70f9d\RtkAudUService64.exe [1249848 2021-03-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3180256 2021-08-30] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [THX22adHelper] => C:\Program Files (x86)\Razer\THXVAD\Drivers\x64\THXHelper22ad.exe [386008 2019-09-18] (Razer USA Ltd. -> ) HKLM\...\Run: [THX0521Helper] => C:\Program Files (x86)\Razer\APO0521Drv\Drivers\x64\THXHelper0521.exe [386008 2019-09-18] (Razer USA Ltd. -> ) HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [321240 2021-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) HKU\S-1-5-21-1296677047-392915713-862773781-1001\...\Run: [GoogleChromeAutoLaunch_C4A64905E7D06538188DC188CB73DC02] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 HKU\S-1-5-21-1296677047-392915713-862773781-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282600 2021-09-10] (Valve -> Valve Corporation) HKU\S-1-5-21-1296677047-392915713-862773781-1001\...\Run: [Discord] => C:\Users\julie\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub) HKU\S-1-5-21-1296677047-392915713-862773781-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33310688 2021-09-01] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1296677047-392915713-862773781-1001\...\Run: [MLWapp2-1] => C:\Users\julie\OneDrive\Bureau\MLWapp2-1.exe [4267520 2021-06-23] (mylivewallpapers.com) [Fichier non signé] HKU\S-1-5-21-1296677047-392915713-862773781-1001\...\Run: [com.blitz.app] => C:\Users\julie\AppData\Local\Programs\Blitz\Blitz.exe [122577672 2021-09-08] (Swift Media Entertainment, Inc. -> Blitz, Inc.) HKU\S-1-5-21-1296677047-392915713-862773781-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519608 2021-07-26] (Razer USA Ltd. -> Razer Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\93.0.4577.63\Installer\chrmstp.exe [2021-09-03] (Google LLC -> Google LLC) Startup: C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Enregistrement du produit.lnk [2021-08-28] ShortcutTarget: Logitech . Enregistrement du produit.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Logitech -> Leader Technologies/Logitech) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {3A027B68-4EC8-4920-ADC0-C2DE4CC9689F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {46E7A7A8-E461-457A-95AE-C915566503D7} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {4963430E-DFDE-4FAF-ACDE-85A59DB56DAF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-07] (Google LLC -> Google LLC) Task: {53067C7C-021E-4873-A1AE-7A39EF5DFB9C} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {58ADC1CF-C623-4015-916F-A9DE4DC208F5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8D31BABE-2815-4443-85BD-BD6EAF04FA00} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9138291A-CC55-4EE6-9061-3A2973968B5C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {95084137-1BF8-47CC-8F97-22491FD8ED4C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9B9712FD-04D4-435B-ADCC-283283A9E447} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B60ABA92-A00D-4299-BAAC-40E1091EDA52} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B61E05F9-F491-488F-8118-FE1588CBD20C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-07] (Google LLC -> Google LLC) Task: {BAAB7951-3551-4B14-BE44-FA2F5DDA145A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C7C6BC28-BA6E-48BE-A1A5-3FEB1E8C6289} - System32\Tasks\StandByMemory => C:\StandByMemory\EmptyStandbyList.exe [139424 2021-08-07] (Wen Jia Liu -> ) Task: {C7D8D45B-C294-4290-8853-820A1BBC9F05} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DE6F385C-8F9A-4354-8134-079F8583EA5D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E4EC8A8D-63A1-4033-8DAB-DC1CDC014101} - System32\Tasks\update-S-1-5-21-1296677047-392915713-862773781-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {EC3B21E0-1BC4-4AE3-9514-4EF5E599F9C7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F74D52D4-346D-4407-A223-2F7025E32176} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FBE47AB9-D252-407D-B445-17D7E3EB464D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-1296677047-392915713-862773781-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\..\Interfaces\{d80d79d9-4202-4a4d-b938-60fa9172134f}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\julie\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-10] Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default [2021-08-07] CHR Session Restore: Default -> est activé. CHR Extension: (Slides) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-07] CHR Extension: (Docs) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-07] CHR Extension: (Google Drive) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-07] CHR Extension: (YouTube) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-07] CHR Extension: (Sheets) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-07] CHR Extension: (Google Docs hors connexion) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-07] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-07] CHR Extension: (Gmail) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-07] CHR Extension: (Chrome Media Router) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-07] CHR Profile: C:\Users\julie\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-07] CHR Profile: C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-09-12] CHR HomePage: Profile 1 -> hxxps://www.google.com/ CHR StartupUrls: Profile 1 -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://start.mysearchdial.com/?f=1&a=tele0202ch&cd=2XzuyEtN2Y1L1Qzuzz0Czzzy0AyDtD0DtDyB0AtA0B0A0EtAtN0D0Tzu0CyBzzzytN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=587009246&ir=","hxxps://www.google.com/","hxxp://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/" CHR Session Restore: Profile 1 -> est activé. CHR Extension: (Slides) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-07] CHR Extension: (BetterTTV) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-08-29] CHR Extension: (Docs) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-07] CHR Extension: (Google Drive) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-07] CHR Extension: (YouTube) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-07] CHR Extension: (Honey) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2021-09-01] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-01] CHR Extension: (Watch2Gether) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cimpffimgeipdhnhjohpbehjkcdpjolg [2021-08-07] CHR Extension: (Steam Inventory Helper) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2021-08-07] CHR Extension: (Dashlane - Gestionnaire de mots de passe) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2021-08-30] CHR Extension: (Sheets) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-07] CHR Extension: (Google Docs hors connexion) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-07] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-09-09] CHR Extension: (Into The Mist) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mgihmkgobaljfehcadcckdggpeojaadh [2021-08-07] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-07] CHR Extension: (Netflix Party is now Teleparty) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2021-09-11] CHR Extension: (Assistant Amazon pour Chrome) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2021-08-18] CHR Extension: (Gmail) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-07] CHR Extension: (Mes Envies) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\polapjjgommcmlcbbplneckjgblmgfmk [2021-08-07] CHR Profile: C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-08-07] CHR Extension: (Slides) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-07] CHR Extension: (Docs) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-07] CHR Extension: (Google Drive) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-07] CHR Extension: (YouTube) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-07] CHR Extension: (Sheets) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-07] CHR Extension: (Google Docs hors connexion) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-07] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-07] CHR Extension: (Gmail) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-07] CHR Extension: (Chrome Media Router) - C:\Users\julie\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-07] CHR Profile: C:\Users\julie\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-07] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2705032 2021-09-09] (PROXIMA BETA PTE. LIMITED -> ) R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616360 2021-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [456416 2021-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairMsiPluginService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairMsiPluginService.exe [451800 2021-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [80608 2021-07-26] (Corsair Memory, Inc. -> Corsair Memory, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2021-08-07] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1134616 2021-05-20] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [356376 2021-09-07] (Razer USA Ltd. -> Razer Inc.) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-03-22] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294520 2021-07-25] (Razer USA Ltd. -> Razer Inc.) R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533824 2021-08-30] (Razer USA Ltd. -> Razer Inc.) R2 THXService; C:\Program Files (x86)\Razer\THXService\Drivers\x64\THXService.exe [356312 2019-09-18] (Razer USA Ltd. -> THX) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10202040 2021-08-30] (Riot Games, Inc. -> Riot Games, Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b8346c359fcd6093\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b8346c359fcd6093\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [1732736 2021-09-09] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM) S3 ACE-GAME; C:\WINDOWS\system32\drivers\ACE-GAME.sys [752768 2021-09-09] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM) S3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2019-03-05] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2019-03-05] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60328 2021-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2021-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2021-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2021-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-09-11] (CPUID S.A.R.L.U. -> CPUID) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-03-29] (Disc Soft Ltd -> Disc Soft Ltd) R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) S3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [57368 2018-10-05] (Logitech Inc -> Logitech Inc.) S3 LGJoyHidLo; C:\WINDOWS\system32\drivers\LGJoyHidLo.sys [47256 2018-10-05] (Logitech Inc -> Logitech Inc.) S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.) S3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.) S3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2018-10-05] (Logitech -> Logitech Inc.) R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0521; C:\WINDOWS\System32\drivers\RzDev_0521.sys [53144 2020-08-24] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0f19; C:\WINDOWS\System32\drivers\RzDev_0f19.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc) S3 SAlphamHid; C:\WINDOWS\System32\drivers\SAlpham64.sys [39168 2018-08-08] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries Corporation) S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48936 2020-07-24] (SteelSeries ApS -> SteelSeries ApS) S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.) S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.) R3 sTHXVAD; C:\WINDOWS\System32\drivers\THXVAD.sys [162184 2019-09-17] (Razer USA Ltd. -> Windows (R) Win 7 DDK provider) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8234240 2021-08-30] (Riot Games, Inc. -> Riot Games, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation) S3 dot4usb; \SystemRoot\System32\drivers\dot4usb.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-12 06:44 - 2021-09-12 06:44 - 000030432 ____C C:\Users\julie\Downloads\FRST.txt 2021-09-12 06:41 - 2021-09-12 06:44 - 000000000 ___DC C:\FRST 2021-09-12 06:34 - 2021-09-12 06:35 - 002302976 ____C (Farbar) C:\Users\julie\Downloads\FRST64.exe 2021-09-12 06:32 - 2021-09-12 06:39 - 000000000 ___DC C:\Users\julie\AppData\Roaming\ZHP 2021-09-12 06:32 - 2021-09-12 06:32 - 003475608 ____C (Nicolas Coolman) C:\Users\julie\Downloads\ZHPSuite.exe 2021-09-12 06:32 - 2021-09-12 06:32 - 000000000 ___DC C:\Users\julie\AppData\Local\ZHP 2021-09-10 21:21 - 2021-09-10 21:21 - 000000000 ___DC C:\WINDOWS\LastGood.Tmp 2021-09-10 03:23 - 2021-09-11 03:05 - 000000000 ___DC C:\Users\julie\AppData\Local\LogMeIn Hamachi 2021-09-10 03:23 - 2021-09-10 03:23 - 000000000 ___DC C:\Users\julie\AppData\Local\LogMeIn 2021-09-10 03:23 - 2021-09-10 03:23 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2021-09-10 03:23 - 2021-09-10 03:23 - 000000000 ___DC C:\ProgramData\LogMeIn 2021-09-10 03:23 - 2021-09-10 03:23 - 000000000 ___DC C:\Program Files (x86)\LogMeIn Hamachi 2021-09-10 03:22 - 2021-09-10 03:22 - 009142272 ____C C:\Users\julie\Downloads\hamachi.msi 2021-09-09 04:26 - 2021-09-09 04:49 - 000000000 ___DC C:\ProgramData\AntiCheatExpert 2021-09-09 04:26 - 2021-09-09 04:31 - 000000000 ___DC C:\Program Files\AntiCheatExpert 2021-09-09 04:26 - 2021-09-09 04:26 - 001732736 ____C (ANTICHEATEXPERT.COM) C:\WINDOWS\system32\Drivers\ACE-BASE.sys 2021-09-09 04:26 - 2021-09-09 04:26 - 000752768 ____C (ANTICHEATEXPERT.COM) C:\WINDOWS\system32\Drivers\ACE-GAME.sys 2021-09-09 04:26 - 2021-09-09 04:26 - 000000000 ___DC C:\WINDOWS\Minidump 2021-09-09 04:14 - 2021-09-09 04:49 - 000000000 ___DC C:\Users\julie\AppData\Local\Tiger 2021-09-08 23:18 - 2021-09-08 23:19 - 013069582 ____C C:\Users\julie\Downloads\Menace Sura 2.mp4 2021-09-08 11:16 - 2021-09-08 11:16 - 002295296 ____C (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2021-09-08 11:16 - 2021-09-08 11:16 - 002260992 ____C C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-09-08 11:16 - 2021-09-08 11:16 - 002111488 ____C (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2021-09-08 11:16 - 2021-09-08 11:16 - 001823304 ____C (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-09-08 11:16 - 2021-09-08 11:16 - 001393480 ____C (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-09-08 11:16 - 2021-09-08 11:16 - 001333760 ____C C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-09-08 11:16 - 2021-09-08 11:16 - 001313608 ____C (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-09-08 11:16 - 2021-09-08 11:16 - 001163776 ____C C:\WINDOWS\system32\MBR2GPT.EXE 2021-09-08 11:16 - 2021-09-08 11:16 - 000672768 ____C C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-09-08 11:16 - 2021-09-08 11:16 - 000570368 ____C (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-09-08 11:16 - 2021-09-08 11:16 - 000452096 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-09-08 11:16 - 2021-09-08 11:16 - 000272384 ____C C:\WINDOWS\system32\TpmTool.exe 2021-09-08 11:16 - 2021-09-08 11:16 - 000223744 ____C C:\WINDOWS\SysWOW64\TpmTool.exe 2021-09-08 11:16 - 2021-09-08 11:16 - 000162816 ____C C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-09-08 11:16 - 2021-09-08 11:16 - 000098816 ____C C:\WINDOWS\system32\Drivers\cimfs.sys 2021-09-08 11:16 - 2021-09-08 11:16 - 000011345 ____C C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-09-08 11:10 - 2021-09-08 11:10 - 000000000 __HDC C:\$WinREAgent 2021-09-05 17:44 - 2021-09-07 00:23 - 000000000 ___DC C:\WINDOWS\pss 2021-09-03 20:10 - 2021-08-28 14:22 - 000645240 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2021-09-03 20:10 - 2021-08-28 14:20 - 005681280 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2021-09-03 20:09 - 2021-08-28 14:25 - 001858664 ____C C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-09-03 20:09 - 2021-08-28 14:25 - 001858664 ____C C:\WINDOWS\system32\vulkaninfo.exe 2021-09-03 20:09 - 2021-08-28 14:25 - 001474704 ____C (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-09-03 20:09 - 2021-08-28 14:25 - 001438848 ____C C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-09-03 20:09 - 2021-08-28 14:25 - 001438848 ____C C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-09-03 20:09 - 2021-08-28 14:25 - 001212536 ____C (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-09-03 20:09 - 2021-08-28 14:25 - 001097856 ____C C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-09-03 20:09 - 2021-08-28 14:25 - 001097856 ____C C:\WINDOWS\system32\vulkan-1.dll 2021-09-03 20:09 - 2021-08-28 14:25 - 000951936 ____C C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-09-03 20:09 - 2021-08-28 14:25 - 000951936 ____C C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-09-03 20:09 - 2021-08-28 14:22 - 001520760 ____C (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-09-03 20:09 - 2021-08-28 14:22 - 001171064 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-09-03 20:09 - 2021-08-28 14:22 - 000716920 ____C C:\WINDOWS\system32\nvofapi64.dll 2021-09-03 20:09 - 2021-08-28 14:22 - 000676480 ____C (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-09-03 20:09 - 2021-08-28 14:22 - 000577168 ____C C:\WINDOWS\SysWOW64\nvofapi.dll 2021-09-03 20:09 - 2021-08-28 14:22 - 000564344 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-09-03 20:09 - 2021-08-28 14:21 - 001595536 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-09-03 20:09 - 2021-08-28 14:21 - 000706192 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2021-09-03 20:09 - 2021-08-28 14:20 - 008854144 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-09-03 20:09 - 2021-08-28 14:20 - 007920760 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-09-03 20:09 - 2021-08-28 14:20 - 004987512 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-09-03 20:09 - 2021-08-28 14:20 - 002925688 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-09-03 20:09 - 2021-08-28 14:20 - 000447104 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2021-09-03 20:09 - 2021-08-28 14:19 - 000849016 ____C (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2021-09-03 20:09 - 2021-08-28 14:18 - 006216336 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-09-03 20:09 - 2021-08-27 18:54 - 000083133 ____C C:\WINDOWS\system32\nvinfo.pb 2021-09-03 06:52 - 2021-09-03 06:52 - 057013733 ____C C:\Users\julie\Downloads\video0 (4).mp4 2021-09-03 06:51 - 2021-09-03 06:52 - 057013733 ____C C:\Users\julie\Downloads\video0 (3).mp4 2021-09-03 06:51 - 2021-09-03 06:51 - 057013733 ____C C:\Users\julie\Downloads\video0.mp4 2021-09-03 06:51 - 2021-09-03 06:51 - 057013733 ____C C:\Users\julie\Downloads\video0 (2).mp4 2021-09-03 06:51 - 2021-09-03 06:51 - 057013733 ____C C:\Users\julie\Downloads\video0 (1).mp4 2021-09-03 02:13 - 2021-09-07 02:15 - 000000000 ___DC C:\Users\julie\AppData\Roaming\vlc 2021-09-03 02:10 - 2021-09-03 02:10 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2021-09-03 02:10 - 2021-09-03 02:10 - 000000000 ___DC C:\Program Files (x86)\VideoLAN 2021-09-03 02:09 - 2021-09-03 02:09 - 041372992 ____C C:\Users\julie\Downloads\vlc-3.0.16-win32.exe 2021-08-30 10:00 - 2021-08-30 10:00 - 000041470 ____C C:\Users\julie\Downloads\heroes_legend.zip 2021-08-30 09:48 - 2021-08-30 09:48 - 000272027 ____C C:\Users\julie\Downloads\blue-nebula-stars-galaxy-outer-space-space-34697-1680x1050.jpeg 2021-08-28 02:05 - 2021-08-28 02:11 - 000000000 ___DC C:\Users\julie\OneDrive\Documents\Adobe 2021-08-27 11:47 - 2021-08-27 11:47 - 004521046 ____C C:\Users\julie\Downloads\Desktop_2021.08.27_-_02.00.35.25.DVR_Trim.mp4 2021-08-26 01:33 - 2021-08-26 01:33 - 001005118 ____C C:\Users\julie\Downloads\Qeavo.mp4 2021-08-25 04:04 - 2021-08-25 04:04 - 007986530 ____C C:\Users\julie\Downloads\nice_kill.mp4 2021-08-25 02:56 - 2021-08-25 02:56 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Corsair 2021-08-25 02:56 - 2021-08-25 02:56 - 000000000 ___DC C:\Users\julie\AppData\Local\Corsair 2021-08-25 02:54 - 2021-08-25 02:54 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Corsair 2021-08-25 02:53 - 2021-08-25 02:54 - 000000000 ___DC C:\ProgramData\Corsair 2021-08-25 02:53 - 2021-08-25 02:53 - 000000000 ___DC C:\Program Files\Corsair 2021-08-25 02:53 - 2021-06-30 19:08 - 002437440 ____C (A-Volute) C:\WINDOWS\system32\9EarsSurroundSound.dll 2021-08-25 02:53 - 2021-06-30 19:08 - 001819208 ____C (Corsair Memory, Inc.) C:\WINDOWS\system32\CorsairGamingAudioPO64.dll 2021-08-25 02:53 - 2021-06-30 19:08 - 000616360 ____C (Corsair Memory, Inc.) C:\WINDOWS\system32\CorsairGamingAudioCfgService64.exe 2021-08-25 02:53 - 2021-06-30 19:08 - 000060328 ____C (Corsair Memory, Inc.) C:\WINDOWS\system32\Drivers\CorsairGamingAudio64.sys 2021-08-25 02:52 - 2021-08-25 02:52 - 000000000 ___DC C:\Users\julie\AppData\Local\cache 2021-08-25 02:51 - 2021-08-25 02:51 - 786771968 ____C C:\Users\julie\Downloads\iCUESetup_4.14.179_release.msi 2021-08-22 20:12 - 2021-08-22 20:12 - 000906059 ____C C:\Users\julie\Downloads\SPOILER_Desktop_2021.08.04_-_22.43.54.05.DVR_Trim.mp4 2021-08-19 01:28 - 2021-09-07 11:22 - 000000000 ___DC C:\Users\julie\AppData\Local\molotov 2021-08-19 01:28 - 2021-09-07 00:24 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov 2021-08-19 01:28 - 2021-08-19 12:04 - 000000000 ___DC C:\Users\julie\AppData\Roaming\molotov 2021-08-19 01:28 - 2021-08-19 01:28 - 082890352 ____C (Molotov) C:\Users\julie\Downloads\MolotovSetup-4.4.4.exe 2021-08-18 20:32 - 2021-08-18 20:32 - 066575069 ____C (BetterDiscord) C:\Users\julie\Downloads\BetterDiscord-Windows.exe 2021-08-18 17:55 - 2021-08-18 17:55 - 000000000 ___DC C:\Users\julie\AppData\LocalLow\Adobe 2021-08-18 17:52 - 2021-08-18 17:52 - 000021689 ____C C:\Users\julie\Downloads\a_abstract_groovy.zip 2021-08-15 18:44 - 2021-08-15 18:44 - 000000000 ___DC C:\Users\julie\OneDrive\Documents\Lightshot 2021-08-13 18:10 - 2021-08-13 18:10 - 000002235 ____C C:\Users\julie\Downloads\LlunaPlena.theme.css 2021-08-13 16:09 - 2021-08-13 16:09 - 000881066 ____C C:\Users\julie\Downloads\Masterclass.wav 2021-08-13 14:25 - 2021-08-13 14:25 - 002755584 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-08-13 14:25 - 2021-08-13 14:25 - 002755584 ____C (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-08-12 17:16 - 2021-08-12 17:18 - 2145676469 ____C C:\Users\julie\Downloads\EUROPE ROADS.rar 2021-08-12 15:56 - 2021-08-12 15:56 - 000001068 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk 2021-08-12 15:55 - 2021-08-12 15:56 - 000000000 ___DC C:\Program Files\Common Files\Adobe 2021-08-12 15:54 - 2021-08-12 15:54 - 000000000 ___DC C:\Program Files\Adobe 2021-08-12 15:53 - 2021-08-30 07:43 - 000000000 ___DC C:\Users\julie\AppData\Local\Adobe 2021-08-12 15:53 - 2021-08-12 15:55 - 000000000 ___DC C:\ProgramData\Adobe 2021-08-12 15:31 - 2021-08-12 15:31 - 000000000 ___DC C:\Users\julie\AppData\Roaming\WinRAR 2021-08-12 15:31 - 2021-08-12 15:31 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-08-12 15:31 - 2021-08-12 15:31 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-08-12 15:31 - 2021-08-12 15:31 - 000000000 ___DC C:\Program Files\WinRAR 2021-08-12 01:57 - 2021-08-12 01:57 - 000000000 ___DC C:\Users\julie\AppData\Roaming\NVIDIA 2021-08-12 01:50 - 2021-08-12 01:50 - 000000000 ___DC C:\Users\julie\AppData\Local\Logitech® Webcam Software 2021-08-12 01:48 - 2021-08-12 01:48 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Leadertech 2021-08-12 01:48 - 2021-08-12 01:48 - 000000000 ___DC C:\ProgramData\LogiShrd 2021-08-12 01:47 - 2021-08-12 01:48 - 000000000 ___DC C:\Program Files\Common Files\logishrd 2021-08-12 01:47 - 2021-08-12 01:48 - 000000000 ___DC C:\Program Files (x86)\Logitech 2021-08-12 01:47 - 2021-08-12 01:47 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2021-08-11 13:20 - 2021-08-11 13:20 - 035954586 ____C C:\Users\julie\Downloads\GF_Familis.mp4 2021-08-11 13:02 - 2021-08-11 13:02 - 037669737 ____C C:\Users\julie\Downloads\amine.mp4 2021-08-11 11:46 - 2021-08-11 12:08 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Leppsoft 2021-08-11 11:46 - 2021-08-11 11:46 - 000261432 ____C (Leppsoft) C:\WINDOWS\system32\UniteFx.dll 2021-08-10 04:58 - 2021-08-10 04:58 - 000000000 ___DC C:\Users\julie\AppData\Local\Comms 2021-08-08 15:08 - 2021-08-08 15:08 - 000000000 ___DC C:\Users\julie\AppData\Local\VALORANT 2021-08-08 15:02 - 2021-08-08 15:02 - 000000000 ___DC C:\Users\julie\AppData\LocalLow\Kinetic Games 2021-08-08 00:25 - 2021-08-08 00:26 - 000000000 ___DC C:\Users\julie\AppData\Local\DeadByDaylight 2021-08-08 00:24 - 2021-09-07 00:23 - 000000000 ___DC C:\Program Files (x86)\EasyAntiCheat 2021-08-07 21:17 - 2021-08-07 21:17 - 000000000 ___DC C:\Users\julie\AppData\Local\ElevatedDiagnostics 2021-08-07 21:14 - 2021-09-07 00:24 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2021-08-07 21:14 - 2021-08-07 21:14 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Synapse3 2021-08-07 21:14 - 2021-08-07 21:14 - 000000000 ___DC C:\Users\julie\AppData\Local\Razer 2021-08-07 21:14 - 2021-08-07 21:14 - 000000000 ___DC C:\temp 2021-08-07 21:12 - 2021-09-09 19:55 - 000000000 ___DC C:\Program Files (x86)\Razer Chroma SDK 2021-08-07 21:12 - 2021-09-07 00:24 - 000000000 ___DC C:\Program Files\Razer Chroma SDK 2021-08-07 21:12 - 2021-09-07 00:24 - 000000000 ___DC C:\Program Files\Razer 2021-08-07 19:31 - 2021-09-11 03:06 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Blitz 2021-08-07 19:31 - 2021-09-11 03:05 - 000000032 ____C C:\Users\julie\AppData\Roaming\.machineId 2021-08-07 19:31 - 2021-08-30 21:43 - 000002217 ____C C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk 2021-08-07 19:31 - 2021-08-12 12:19 - 000000000 ___DC C:\Users\julie\AppData\Local\blitz-updater 2021-08-07 19:29 - 2021-08-07 19:29 - 000000000 ___DC C:\Users\julie\OneDrive\Documents\League of Legends 2021-08-07 19:22 - 2021-08-07 19:22 - 000000000 ___DC C:\Users\julie\AppData\Local\Back4BloodBeta 2021-08-07 19:18 - 2021-08-07 19:18 - 000007605 ____C C:\Users\julie\AppData\Local\Resmon.ResmonCfg 2021-08-07 19:17 - 2021-08-07 19:17 - 000003354 ____C C:\WINDOWS\system32\Tasks\StandByMemory 2021-08-07 19:14 - 2021-08-07 19:14 - 000000000 ___DC C:\StandByMemory 2021-08-07 16:23 - 2021-08-07 16:23 - 000288768 ____C C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2021-08-07 16:14 - 2021-09-11 03:07 - 000000001 ____C C:\WINDOWS\vgkbootstatus.dat 2021-08-07 15:33 - 2021-08-07 16:14 - 000000420 ____C C:\WINDOWS\Tasks\update-sys.job 2021-08-07 15:33 - 2021-08-07 16:14 - 000000420 ____C C:\WINDOWS\Tasks\update-S-1-5-21-1296677047-392915713-862773781-1001.job 2021-08-07 15:33 - 2021-08-07 15:33 - 000003406 ____C C:\WINDOWS\system32\Tasks\update-S-1-5-21-1296677047-392915713-862773781-1001 2021-08-07 15:33 - 2021-08-07 15:33 - 000003346 ____C C:\WINDOWS\system32\Tasks\update-sys 2021-08-07 15:33 - 2021-08-07 15:33 - 000000424 ____C C:\Users\julie\AppData\Local\UserProducts.xml 2021-08-07 15:33 - 2021-08-07 15:33 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot 2021-08-07 15:33 - 2021-08-07 15:33 - 000000000 ___DC C:\Program Files (x86)\Skillbrains 2021-08-07 14:02 - 2021-09-10 21:21 - 000000000 ___DC C:\Program Files\Microsoft Update Health Tools 2021-08-07 14:01 - 2021-08-13 14:20 - 000000000 ___DC C:\WINDOWS\system32\MRT 2021-08-07 13:20 - 2021-09-11 02:59 - 000000000 ___DC C:\Program Files\Riot Vanguard 2021-08-07 13:20 - 2021-09-10 23:02 - 000000000 ___DC C:\ProgramData\Riot Games 2021-08-07 13:20 - 2021-08-08 15:08 - 000000000 ___DC C:\Users\julie\AppData\Local\Riot Games 2021-08-07 13:20 - 2021-08-07 13:21 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2021-08-07 13:20 - 2021-08-07 13:20 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games 2021-08-07 13:20 - 2021-08-07 13:20 - 000000000 ___DC C:\Riot Games 2021-08-07 13:19 - 2021-08-07 13:19 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Super macro 2021-08-07 13:19 - 2021-08-07 13:19 - 000000000 ___DC C:\Program Files (x86)\Super macro 2021-08-07 13:14 - 2021-09-11 15:08 - 000000000 ___DC C:\Users\julie\AppData\Roaming\TS3Client 2021-08-07 13:14 - 2021-08-07 13:14 - 000000000 ___DC C:\Users\julie\AppData\Local\TeamSpeak 3 2021-08-07 13:13 - 2021-08-07 13:13 - 000000974 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk 2021-08-07 13:13 - 2021-08-07 13:13 - 000000000 ___DC C:\Program Files\TeamSpeak 3 Client 2021-08-07 12:59 - 2021-09-07 23:41 - 000000000 ___DC C:\Users\julie\AppData\Roaming\slobs-client 2021-08-07 12:59 - 2021-08-30 11:26 - 000000000 ___DC C:\Program Files\Streamlabs OBS 2021-08-07 12:59 - 2021-08-07 12:59 - 000001980 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk 2021-08-07 12:59 - 2021-08-07 12:59 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Streamlabs OBS 2021-08-07 12:59 - 2021-08-07 12:59 - 000000000 ___DC C:\Users\julie\AppData\Roaming\slobs-plugins 2021-08-07 12:59 - 2021-08-07 12:59 - 000000000 ___DC C:\Users\julie\AppData\Roaming\obs-studio-node-server 2021-08-07 12:59 - 2021-08-07 12:59 - 000000000 ___DC C:\Users\julie\AppData\Local\slobs-client-updater 2021-08-07 12:59 - 2021-08-07 12:59 - 000000000 ___DC C:\ProgramData\obs-studio-hook 2021-08-07 12:23 - 2021-09-10 02:55 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-08-07 11:34 - 2021-09-07 00:32 - 000000000 ___DC C:\Users\julie\AppData\Local\FiveM 2021-08-07 11:34 - 2021-08-07 11:34 - 000002136 ____C C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk 2021-08-07 11:26 - 2021-08-07 14:00 - 000003976 ____C C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:26 - 2021-08-07 14:00 - 000003940 ____C C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:26 - 2021-08-07 11:26 - 000000000 ___DC C:\Users\julie\ansel 2021-08-07 11:26 - 2021-08-07 11:26 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2021-08-07 11:26 - 2021-06-09 16:17 - 002838384 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2021-08-07 11:26 - 2021-06-09 16:17 - 002186608 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2021-08-07 11:26 - 2021-06-09 16:17 - 001293680 ____C (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll 2021-08-07 11:26 - 2021-05-15 09:19 - 000078192 ____C C:\WINDOWS\system32\FvSDK_x64.dll 2021-08-07 11:26 - 2021-05-15 09:19 - 000067952 ____C C:\WINDOWS\SysWOW64\FvSDK_x86.dll 2021-08-07 11:25 - 2021-08-10 18:09 - 000000000 ___DC C:\Program Files (x86)\NVIDIA Corporation 2021-08-07 11:25 - 2021-08-07 14:00 - 000004308 ____C C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:25 - 2021-08-07 14:00 - 000004106 ____C C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:25 - 2021-08-07 14:00 - 000003894 ____C C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:25 - 2021-08-07 14:00 - 000003858 ____C C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:25 - 2021-08-07 14:00 - 000003858 ____C C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:25 - 2021-08-07 14:00 - 000003858 ____C C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:25 - 2021-08-07 14:00 - 000003858 ____C C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:25 - 2021-08-07 14:00 - 000003654 ____C C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-08-07 11:25 - 2021-08-07 14:00 - 000000000 ___DC C:\Program Files\NVIDIA Corporation 2021-08-07 11:25 - 2021-06-04 14:22 - 000168304 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2021-08-07 11:25 - 2021-06-04 14:22 - 000144240 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2021-08-07 11:25 - 2021-05-04 09:49 - 000001951 ____C C:\WINDOWS\NvContainerRecovery.bat 2021-08-07 11:24 - 2021-08-07 10:32 - 000000000 ___DC C:\WINDOWS\Panther 2021-08-07 11:23 - 2021-09-07 00:23 - 000000000 ___DC C:\Program Files (x86)\Razer 2021-08-07 11:23 - 2021-08-07 11:23 - 000000000 ___DC C:\Program Files\SteelSeries 2021-08-07 11:22 - 2021-09-11 03:11 - 000791594 ____C C:\WINDOWS\system32\perfh00C.dat 2021-08-07 11:22 - 2021-09-11 03:11 - 000149760 ____C C:\WINDOWS\system32\perfc00C.dat 2021-08-07 11:22 - 2021-09-07 00:13 - 000000000 ___DC C:\Users\julie\AppData\Local\CrashDumps 2021-08-07 11:22 - 2021-08-10 10:39 - 000000000 ___DC C:\WINDOWS\OCR 2021-08-07 11:22 - 2021-08-07 11:22 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-08-07 11:22 - 2021-08-07 11:22 - 000001476 ____C C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\XPSViewer 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\MailContactsCalendarSync 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\FxsTmp 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\fr 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\OpenSSH 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\MailContactsCalendarSync 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\fr 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\Setup 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\addins 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\ProgramData\ssh 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\Program Files\Reference Assemblies 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\Program Files\MSBuild 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\Program Files (x86)\Reference Assemblies 2021-08-07 11:22 - 2021-08-07 11:22 - 000000000 ___DC C:\Program Files (x86)\MSBuild 2021-08-07 11:22 - 2021-08-07 11:21 - 000351124 ____C C:\WINDOWS\system32\perfi00C.dat 2021-08-07 11:22 - 2021-08-07 11:21 - 000040694 ____C C:\WINDOWS\system32\perfd00C.dat 2021-08-07 11:22 - 2021-08-07 10:34 - 000000000 ___DC C:\WINDOWS\system32\FxsTmp 2021-08-07 11:21 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\winrm 2021-08-07 11:21 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\WCN 2021-08-07 11:21 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\slmgr 2021-08-07 11:21 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2021-08-07 11:21 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\winrm 2021-08-07 11:21 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\WCN 2021-08-07 11:21 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\slmgr 2021-08-07 11:21 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\Printing_Admin_Scripts 2021-08-07 11:21 - 2021-08-07 11:21 - 000000000 ___DC C:\WINDOWS\SysWOW64\sysprep 2021-08-07 11:21 - 2021-08-07 11:21 - 000000000 ___DC C:\WINDOWS\SysWOW64\0409 2021-08-07 11:21 - 2021-08-07 11:21 - 000000000 ___DC C:\WINDOWS\system32\0409 2021-08-07 11:21 - 2021-08-07 11:21 - 000000000 ___DC C:\WINDOWS\DigitalLocker 2021-08-07 11:19 - 2021-09-12 06:34 - 000000000 ___DC C:\ProgramData\regid.1991-06.com.microsoft 2021-08-07 11:19 - 2021-09-11 07:43 - 000000000 __HDC C:\Program Files\WindowsApps 2021-08-07 11:19 - 2021-09-11 07:43 - 000000000 ___DC C:\WINDOWS\AppReadiness 2021-08-07 11:19 - 2021-09-11 03:04 - 000000000 ___DC C:\WINDOWS\ServiceState 2021-08-07 11:19 - 2021-09-10 03:23 - 000000000 __RDC C:\Program Files (x86) 2021-08-07 11:19 - 2021-09-09 04:26 - 000000000 ___DC C:\WINDOWS\tracing 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 __RDC C:\WINDOWS\ImmersiveControlPanel 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\SysWOW64\WinMetadata 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\SysWOW64\oobe 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\SysWOW64\Dism 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\SystemResources 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\system32\WinMetadata 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\system32\WinBioPlugIns 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\system32\oobe 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\system32\migwiz 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\system32\Dism 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\system32\DDFs 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\system32\appraiser 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\ShellComponents 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\Provisioning 2021-08-07 11:19 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\bcastdvr 2021-08-07 11:19 - 2021-09-07 08:37 - 000000000 ___DC C:\WINDOWS\LiveKernelReports 2021-08-07 11:19 - 2021-09-07 00:24 - 000000000 ___DC C:\WINDOWS\system32\Sysprep 2021-08-07 11:19 - 2021-09-07 00:22 - 000000000 ___DC C:\WINDOWS\registration 2021-08-07 11:19 - 2021-08-08 13:42 - 000000000 ___DC C:\WINDOWS\appcompat 2021-08-07 11:19 - 2021-08-08 00:24 - 000000000 ___DC C:\Program Files\Common Files\microsoft shared 2021-08-07 11:19 - 2021-08-07 20:53 - 000000000 __SDC C:\WINDOWS\system32\UNP 2021-08-07 11:19 - 2021-08-07 12:41 - 000000000 ___DC C:\Program Files\Windows Defender 2021-08-07 11:19 - 2021-08-07 11:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 __SDC C:\WINDOWS\SysWOW64\F12 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 __SDC C:\WINDOWS\SysWOW64\DiagSvcs 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 __SDC C:\WINDOWS\system32\F12 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 __SDC C:\WINDOWS\system32\dsc 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\MUI 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\SysWOW64\Com 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\SystemResetPlatform 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\setup 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\PerceptionSimulation 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\system32\MUI 2021-08-07 11:19 - 2021-08-07 11:22 - 000000000 ___DC C:\WINDOWS\PolicyDefinitions 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 __SDC C:\WINDOWS\system32\DiagSvcs 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\WINDOWS\SysWOW64\setup 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\WINDOWS\system32\Com 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\WINDOWS\IME 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\WINDOWS\Help 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\Program Files\Windows Photo Viewer 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\Program Files\Common Files\System 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\Program Files (x86)\Windows Photo Viewer 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\Program Files (x86)\Windows NT 2021-08-07 11:19 - 2021-08-07 11:21 - 000000000 ___DC C:\Program Files (x86)\Windows Defender 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 _SHDC C:\Program Files\Windows Sidebar 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 _SHDC C:\Program Files (x86)\Windows Sidebar 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 _RSDC C:\WINDOWS\Media 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 _RHDC C:\Users\Public\Libraries 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 __SDC C:\WINDOWS\SysWOW64\Nui 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 __SDC C:\WINDOWS\SysWOW64\Configuration 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 __SDC C:\WINDOWS\system32\Nui 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 __SDC C:\WINDOWS\system32\Configuration 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 __SDC C:\WINDOWS\Downloaded Program Files 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 __RDC C:\WINDOWS\Offline Web Pages 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 __HDC C:\WINDOWS\LanguageOverlayCache 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 __HDC C:\WINDOWS\ELAMBKUP 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\Web 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\WaaS 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\Vss 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\TAPI 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\SMI 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\ras 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\PerceptionSimulation 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\NDF 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\Msdtc 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\migwiz 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\Macromed 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\Keywords 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\Ipmi 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\InputMethod 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\inetsrv 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\IME 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\icsxml 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\GroupPolicyUsers 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\GroupPolicy 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\downlevel 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\Bthprops 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\AppLocker 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SysWOW64\AdvancedInstallers 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SystemApps 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\winevt 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ti-et 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ta-lk 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ta-in 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\si-lk 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ShellExperiences 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\Sgrm 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\SecureBootUpdates 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ras 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ProximityToast 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\PointOfService 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\osa-Osge-001 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\NDF 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\my-mm 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\MsDtc 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\Macromed 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\Keywords 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\Ipmi 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\InputMethod 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\inetsrv 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\IME 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\icsxml 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ias 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\Hydrogen 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\GroupPolicyUsers 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\GroupPolicy 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ff-Adlm-SN 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\DriverState 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\Drivers\DriverData 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\downlevel 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\ContainerSettingsProviders 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\config\systemprofile 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\config\RegBack 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\config\Journal 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\Bthprops 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\AppLocker 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\am-et 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\AdvancedInstallers 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\System 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SKB 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\ShellExperiences 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\security 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\schemas 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\SchCache 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\Resources 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\rescache 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\PLA 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\Performance 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\ModemLogs 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\L2Schemas 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\InputMethod 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\IdentityCRL 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\Globalization 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\GameBarPresenceWriter 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\DiagTrack 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\Cursors 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\Containers 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\Branding 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\ProgramData\WindowsHolographicDevices 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\ProgramData\USOShared 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\Program Files\Windows Security 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\Program Files\Windows Portable Devices 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\Program Files\Windows Multimedia Platform 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\Program Files\ModifiableWindowsApps 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\Program Files\Common Files\Services 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\Program Files (x86)\Windows Portable Devices 2021-08-07 11:19 - 2021-08-07 11:19 - 000000000 ___DC C:\Program Files (x86)\Windows Multimedia Platform 2021-08-07 11:19 - 2021-08-07 11:18 - 000215943 ____C C:\WINDOWS\SysWOW64\dssec.dat 2021-08-07 11:19 - 2021-08-07 11:18 - 000215943 ____C C:\WINDOWS\system32\dssec.dat 2021-08-07 11:19 - 2021-08-07 11:18 - 000020908 ____C C:\WINDOWS\system32\OEMDefaultAssociations.xml 2021-08-07 11:19 - 2021-08-07 11:18 - 000017635 ____C C:\WINDOWS\system32\Drivers\etc\services 2021-08-07 11:19 - 2021-08-07 11:18 - 000003683 ____C C:\WINDOWS\system32\Drivers\etc\lmhosts.sam 2021-08-07 11:19 - 2021-08-07 11:18 - 000003103 ____C C:\WINDOWS\SysWOW64\mmc.exe.config 2021-08-07 11:19 - 2021-08-07 11:18 - 000003103 ____C C:\WINDOWS\system32\mmc.exe.config 2021-08-07 11:19 - 2021-08-07 11:18 - 000001358 ____C C:\WINDOWS\system32\Drivers\etc\protocol 2021-08-07 11:19 - 2021-08-07 11:18 - 000000858 ____C C:\WINDOWS\system32\DefaultQuestions.json 2021-08-07 11:19 - 2021-08-07 11:18 - 000000741 ____C C:\WINDOWS\SysWOW64\NOISE.DAT 2021-08-07 11:19 - 2021-08-07 11:18 - 000000741 ____C C:\WINDOWS\system32\NOISE.DAT 2021-08-07 11:19 - 2021-08-07 11:18 - 000000407 ____C C:\WINDOWS\system32\Drivers\etc\networks 2021-08-07 11:19 - 2021-08-07 11:18 - 000000219 ____C C:\WINDOWS\system.ini 2021-08-07 11:19 - 2021-08-07 11:18 - 000000092 ____C C:\WINDOWS\win.ini 2021-08-07 11:19 - 2021-08-07 10:55 - 000000000 __RDC C:\WINDOWS\PrintDialog 2021-08-07 11:19 - 2021-08-07 10:36 - 000000000 ___DC C:\WINDOWS\system32\WinBioDatabase 2021-08-07 11:19 - 2021-08-07 10:34 - 000000000 ___DC C:\WINDOWS\system32\spool 2021-08-07 11:19 - 2021-08-07 10:32 - 000000000 ___DC C:\ProgramData\USOPrivate 2021-08-07 11:19 - 2021-08-07 10:32 - 000000000 ___DC C:\Program Files\Windows NT 2021-08-07 11:19 - 2021-08-07 10:30 - 000000000 ___DC C:\WINDOWS\system32\config\TxR 2021-08-07 11:18 - 2021-09-11 03:11 - 000000000 ___DC C:\WINDOWS\INF 2021-08-07 11:15 - 2021-09-11 03:04 - 083361792 _____ C:\WINDOWS\system32\config\SOFTWARE 2021-08-07 11:15 - 2021-09-11 03:04 - 018874368 _____ C:\WINDOWS\system32\config\SYSTEM 2021-08-07 11:15 - 2021-09-11 03:04 - 003145728 _____ C:\WINDOWS\system32\config\DEFAULT 2021-08-07 11:15 - 2021-09-11 03:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-08-07 11:15 - 2021-09-11 03:04 - 000131072 _____ C:\WINDOWS\system32\config\SAM 2021-08-07 11:15 - 2021-09-11 03:04 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY 2021-08-07 11:15 - 2021-09-08 19:10 - 000000000 ___DC C:\WINDOWS\servicing 2021-08-07 11:15 - 2021-09-08 11:19 - 000000000 ___DC C:\WINDOWS\CbsTemp 2021-08-07 11:15 - 2021-08-07 11:19 - 000000000 ___DC C:\WINDOWS\system32\SMI 2021-08-07 11:15 - 2021-08-07 10:47 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-08-07 11:13 - 2021-08-07 11:13 - 000000000 ___DC C:\Users\julie\AppData\Local\OneDrive 2021-08-07 11:10 - 2021-09-07 00:24 - 000000000 ___DC C:\Users\julie\AppData\Roaming\CitizenFX 2021-08-07 11:10 - 2021-08-07 11:11 - 000000000 ___DC C:\Users\julie\AppData\Local\Rockstar Games 2021-08-07 11:10 - 2021-08-07 11:10 - 000000000 ___DC C:\Users\julie\OneDrive\Documents\Rockstar Games 2021-08-07 11:10 - 2021-08-07 11:10 - 000000000 ___DC C:\ProgramData\Rockstar Games 2021-08-07 11:05 - 2021-08-07 11:38 - 000000000 ___DC C:\Program Files\Epic Games 2021-08-07 11:01 - 2021-08-10 15:54 - 000000000 ___DC C:\Users\julie\AppData\Local\NVIDIA Corporation 2021-08-07 11:00 - 2021-09-09 04:14 - 000000000 ___DC C:\Users\julie\AppData\Local\UnrealEngine 2021-08-07 11:00 - 2021-09-09 04:14 - 000000000 ___DC C:\ProgramData\Epic 2021-08-07 11:00 - 2021-08-07 11:01 - 000000000 ___DC C:\Program Files (x86)\Epic Games 2021-08-07 11:00 - 2021-08-07 11:00 - 000001270 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2021-08-07 11:00 - 2021-08-07 11:00 - 000000000 ___DC C:\Users\julie\AppData\Local\UnrealEngineLauncher 2021-08-07 11:00 - 2021-08-07 11:00 - 000000000 ___DC C:\Users\julie\AppData\Local\EpicGamesLauncher 2021-08-07 10:57 - 2021-08-07 10:57 - 000000000 ___DC C:\Program Files (x86)\Fivem 2021-08-07 10:56 - 2021-08-18 20:41 - 000000000 ___DC C:\Users\julie\AppData\Roaming\BetterDiscord 2021-08-07 10:56 - 2021-08-07 10:56 - 000000000 ___DC C:\Users\julie\AppData\Roaming\BetterDiscord Installer 2021-08-07 10:53 - 2021-09-12 06:39 - 000000000 ___DC C:\Users\julie\AppData\Roaming\discord 2021-08-07 10:53 - 2021-09-12 06:05 - 000000000 ___DC C:\Users\julie\AppData\Local\Discord 2021-08-07 10:53 - 2021-08-19 01:28 - 000000000 ___DC C:\Users\julie\AppData\Local\SquirrelTemp 2021-08-07 10:53 - 2021-08-07 10:53 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2021-08-07 10:52 - 2021-08-07 11:34 - 000002128 ____C C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM - Cfx.re Development Kit (FxDK).lnk 2021-08-07 10:52 - 2021-08-07 11:11 - 000000000 ___DC C:\Users\julie\AppData\Local\DigitalEntitlements 2021-08-07 10:50 - 2021-09-12 06:39 - 000000000 ___DC C:\Program Files (x86)\Steam 2021-08-07 10:50 - 2021-08-07 10:50 - 000000000 ___DC C:\Users\julie\AppData\Local\Steam 2021-08-07 10:50 - 2021-08-07 10:50 - 000000000 ___DC C:\Users\julie\AppData\Local\CEF 2021-08-07 10:50 - 2021-08-07 10:50 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2021-08-07 10:45 - 2021-09-03 20:24 - 000000000 ___DC C:\Users\julie\AppData\Local\NVIDIA 2021-08-07 10:43 - 2021-09-12 05:48 - 000000000 ___DC C:\Program Files (x86)\Google 2021-08-07 10:43 - 2021-09-03 03:31 - 000002249 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-08-07 10:43 - 2021-08-07 16:16 - 000000000 ___DC C:\Users\julie\AppData\Local\Google 2021-08-07 10:43 - 2021-08-07 10:43 - 000003590 ____C C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-07 10:43 - 2021-08-07 10:43 - 000003466 ____C C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-08-07 10:43 - 2021-08-07 10:43 - 000000000 ___DC C:\Program Files\Google 2021-08-07 10:41 - 2021-08-07 11:27 - 000000000 __HDC C:\OneDriveTemp 2021-08-07 10:40 - 2021-09-08 11:11 - 000000000 __RDC C:\Users\julie\OneDrive 2021-08-07 10:40 - 2021-09-07 00:29 - 000003376 ____C C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1296677047-392915713-862773781-1001 2021-08-07 10:40 - 2021-08-28 17:56 - 000000000 ___DC C:\Users\julie\AppData\Local\PlaceholderTileLogoFolder 2021-08-07 10:40 - 2021-08-07 10:40 - 000000000 ___DC C:\ProgramData\Microsoft OneDrive 2021-08-07 10:39 - 2021-09-05 17:46 - 000000000 ___DC C:\Users\julie\AppData\Local\D3DSCache 2021-08-07 10:39 - 2021-08-28 02:11 - 000000000 ___DC C:\Users\julie\AppData\Roaming\Adobe 2021-08-07 10:39 - 2021-08-28 02:02 - 000000000 ___DC C:\Users\julie\AppData\Local\Packages 2021-08-07 10:39 - 2021-08-14 01:19 - 000000000 ___DC C:\Users\julie\AppData\Local\VirtualStore 2021-08-07 10:39 - 2021-08-07 16:14 - 000000000 ___DC C:\Users\julie\AppData\Local\ConnectedDevicesPlatform 2021-08-07 10:39 - 2021-08-07 15:37 - 000000000 ___DC C:\ProgramData\Packages 2021-08-07 10:39 - 2021-08-07 10:40 - 000000000 _RHDC C:\Users\Public\AccountPictures 2021-08-07 10:39 - 2021-08-07 10:39 - 000000000 __RDC C:\Users\julie\3D Objects 2021-08-07 10:36 - 2021-09-11 03:11 - 001770906 ____C C:\WINDOWS\system32\PerfStringBackup.INI 2021-08-07 10:36 - 2021-09-07 00:29 - 000002421 ____C C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-08-07 10:36 - 2021-09-07 00:27 - 000000000 ___DC C:\Users\julie 2021-08-07 10:36 - 2021-08-07 10:36 - 000000020 __SHC C:\Users\julie\ntuser.ini 2021-08-07 10:36 - 2021-08-07 10:36 - 000000000 SHDCL C:\Users\julie\Voisinage réseau 2021-08-07 10:36 - 2021-08-07 10:36 - 000000000 SHDCL C:\Users\julie\Voisinage d'impression 2021-08-07 10:36 - 2021-08-07 10:36 - 000000000 SHDCL C:\Users\julie\Modèles 2021-08-07 10:36 - 2021-08-07 10:36 - 000000000 SHDCL C:\Users\julie\Mes documents 2021-08-07 10:36 - 2021-08-07 10:36 - 000000000 SHDCL C:\Users\julie\Menu Démarrer 2021-08-07 10:36 - 2021-08-07 10:36 - 000000000 SHDCL C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-08-07 10:36 - 2021-08-07 10:36 - 000000000 SHDCL C:\Users\julie\AppData\Local\Historique 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\Default\Voisinage réseau 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\Default\Voisinage d'impression 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\Default\Modèles 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\Default\Mes documents 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\Default\Menu Démarrer 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\Default\AppData\Local\Historique 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\Default User 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Users\All Users 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\ProgramData\Modèles 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\ProgramData\Menu Démarrer 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\ProgramData\Bureau 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Program Files\Fichiers communs 2021-08-07 10:32 - 2021-08-07 10:32 - 000000000 SHDCL C:\Documents and Settings 2021-08-07 10:31 - 2021-09-09 04:26 - 000000000 ___DC C:\ProgramData\Package Cache 2021-08-07 10:30 - 2021-09-12 06:29 - 000000000 ___DC C:\WINDOWS\system32\SleepStudy 2021-08-07 10:30 - 2021-09-11 12:25 - 000000000 ___DC C:\ProgramData\NVIDIA 2021-08-07 10:30 - 2021-09-11 07:43 - 000002446 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-08-07 10:30 - 2021-09-11 03:04 - 000008192 ___SH C:\DumpStack.log.tmp 2021-08-07 10:30 - 2021-09-11 03:04 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT 2021-08-07 10:30 - 2021-09-09 09:31 - 000000000 ___DC C:\WINDOWS\system32\Drivers\wd 2021-08-07 10:30 - 2021-09-08 19:11 - 000342160 ____C C:\WINDOWS\system32\FNTCACHE.DAT 2021-08-07 10:30 - 2021-08-16 04:37 - 000003634 ____C C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-08-07 10:30 - 2021-08-16 04:37 - 000003510 ____C C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-08-07 10:30 - 2021-08-10 18:06 - 000000000 ___DC C:\ProgramData\NVIDIA Corporation 2021-08-07 10:30 - 2021-08-07 21:12 - 000000000 ___DC C:\ProgramData\Razer 2021-08-07 10:30 - 2021-08-07 10:30 - 000000000 ___DC C:\WINDOWS\system32\lxss 2021-08-07 10:30 - 2021-08-07 10:30 - 000000000 ___DC C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2021-08-07 10:30 - 2021-08-07 10:30 - 000000000 ___DC C:\WINDOWS\ServiceProfiles 2021-08-07 10:29 - 2021-08-07 10:29 - 000000112 ___SH C:\bootTel.dat 2021-08-07 10:10 - 2021-08-07 11:24 - 000000000 __HDC C:\$SysReset 2021-07-31 06:36 - 2021-07-12 13:32 - 000136472 ____C (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2021-07-31 06:36 - 2021-07-12 13:32 - 000037664 ____C (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll 2021-07-31 06:36 - 2021-06-02 16:03 - 000067464 ____C (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys 2021-07-21 23:44 - 2021-08-28 14:21 - 002112128 ____C (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-07-21 23:44 - 2021-08-28 14:21 - 000919184 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-07-21 23:44 - 2021-08-28 14:21 - 000750224 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-07-21 23:44 - 2021-08-28 14:18 - 007280848 ____C (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-07-21 23:44 - 2021-08-06 10:41 - 002112144 ____C (NVIDIA Corporation) C:\WINDOWS\system32\SET7BD5.tmp 2021-07-21 23:44 - 2021-08-06 10:41 - 000919184 ____C (NVIDIA Corporation) C:\WINDOWS\system32\SET7CC4.tmp 2021-07-21 23:44 - 2021-08-06 10:41 - 000750200 ____C (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET81D6.tmp 2021-07-21 23:44 - 2021-08-06 10:38 - 007280848 ____C (NVIDIA Corporation) C:\WINDOWS\system32\SET7DDF.tmp 2021-07-15 20:00 - 2021-07-15 20:00 - 001328376 _____ C:\WINDOWS\system32\FaceTrackerInternal.dll 2021-07-15 20:00 - 2021-07-15 20:00 - 001324032 _____ C:\WINDOWS\system32\FaceProcessor.dll 2021-07-15 20:00 - 2021-07-15 20:00 - 000512864 _____ C:\WINDOWS\system32\FaceProcessorCore.dll 2021-07-15 20:00 - 2021-07-15 20:00 - 000007680 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb 2021-07-15 20:00 - 2021-07-15 20:00 - 000007680 ____N (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb 2021-07-15 20:00 - 2021-07-15 20:00 - 000006656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb 2021-07-15 20:00 - 2021-07-15 20:00 - 000006656 ____N (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb 2021-07-15 19:52 - 2021-08-31 02:02 - 000079840 ____C (Razer Inc) C:\WINDOWS\system32\RazerS3Coinstaller.dll 2021-07-10 19:18 - 2021-03-03 18:25 - 006398952 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2021-07-10 19:18 - 2021-03-03 18:25 - 000276712 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTHDASIO64.dll 2021-07-10 19:18 - 2021-03-03 18:25 - 000231648 ____C (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RTHDASIO.dll 2021-07-10 19:18 - 2021-03-03 18:15 - 045000435 ____C C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2021-07-10 17:17 - 2021-07-10 17:17 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-07-10 17:17 - 2021-07-10 17:17 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-07-10 17:17 - 2021-07-10 17:17 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-07-10 17:17 - 2021-07-10 17:17 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-07-09 00:29 - 2021-07-09 00:29 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2021-07-09 00:29 - 2021-07-09 00:29 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2021-07-09 00:29 - 2021-07-09 00:29 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-07-09 00:29 - 2021-07-09 00:29 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2021-07-09 00:29 - 2021-07-09 00:29 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-07-09 00:29 - 2021-07-09 00:29 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2021-07-09 00:29 - 2021-07-09 00:29 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2021-07-09 00:29 - 2021-07-09 00:29 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2021-07-09 00:29 - 2021-07-09 00:29 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax 2021-07-09 00:29 - 2021-07-09 00:29 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax 2021-07-09 00:29 - 2021-07-09 00:29 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2021-07-09 00:29 - 2021-07-09 00:29 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2021-07-09 00:29 - 2021-07-09 00:29 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2021-07-09 00:29 - 2021-07-09 00:29 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2021-07-09 00:28 - 2021-07-09 00:28 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2021-07-09 00:28 - 2021-07-09 00:28 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-07-09 00:28 - 2021-07-09 00:28 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2021-07-09 00:28 - 2021-07-09 00:28 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl 2021-07-09 00:28 - 2021-07-09 00:28 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2021-07-09 00:28 - 2021-07-09 00:28 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl 2021-07-09 00:28 - 2021-07-09 00:28 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl 2021-07-09 00:28 - 2021-07-09 00:28 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2021-07-09 00:28 - 2021-07-09 00:28 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe 2021-07-09 00:27 - 2021-07-09 00:27 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-07-09 00:27 - 2021-07-09 00:27 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2021-07-09 00:27 - 2021-07-09 00:27 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2021-07-09 00:27 - 2021-07-09 00:27 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2021-07-09 00:27 - 2021-07-09 00:27 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2021-07-09 00:27 - 2021-07-09 00:27 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-07-09 00:27 - 2021-07-09 00:27 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt 2021-07-04 16:03 - 2019-10-15 13:53 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml 2021-07-04 16:03 - 2019-04-18 18:49 - 000076060 ____N C:\WINDOWS\SysWOW64\xpsrchvw.xml 2021-06-30 03:48 - 2021-06-30 03:48 - 000168544 ____C (Razer Inc.) C:\WINDOWS\system32\RzChromaBroadcastManager64.dll 2021-06-30 03:48 - 2021-06-30 03:48 - 000135264 ____C (Razer Inc.) C:\WINDOWS\SysWOW64\RzChromaBroadcastManager.dll 2021-06-29 05:55 - 2021-06-29 05:55 - 000190032 ____C (Razer Inc.) C:\WINDOWS\system32\RzChromaConnectAPI64.dll 2021-06-29 05:55 - 2021-06-29 05:55 - 000044632 ____C (Razer Inc.) C:\WINDOWS\system32\RzChromaBroadcastAPI64.dll 2021-06-29 05:54 - 2021-06-29 05:54 - 000154192 ____C (Razer Inc.) C:\WINDOWS\SysWOW64\RzChromaConnectAPI.dll 2021-06-29 05:54 - 2021-06-29 05:54 - 000035928 ____C (Razer Inc.) C:\WINDOWS\SysWOW64\RzChromaBroadcastAPI.dll 2021-06-25 16:58 - 2020-09-07 22:29 - 000593264 ____C (Intel Corporation) C:\WINDOWS\system32\Drivers\e1r68x64.sys 2021-06-25 16:58 - 2020-09-07 22:29 - 000118128 ____C (Intel Corporation) C:\WINDOWS\system32\e1rmsg.dll 2021-06-25 16:58 - 2020-09-07 22:29 - 000003096 ____C C:\WINDOWS\system32\e1r68x64.din ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) ==================== Fichiers à la racine de certains dossiers ======== 2021-08-07 19:31 - 2021-09-11 03:05 - 000000032 ____C () C:\Users\julie\AppData\Roaming\.machineId 2021-08-07 19:18 - 2021-08-07 19:18 - 000007605 ____C () C:\Users\julie\AppData\Local\Resmon.ResmonCfg 2021-08-07 15:33 - 2021-08-07 15:33 - 000000003 ____C () C:\Users\julie\AppData\Local\updater.log 2021-08-07 15:33 - 2021-08-07 15:33 - 000000424 ____C () C:\Users\julie\AppData\Local\UserProducts.xml ==================== SigCheckExt ========================= 2021-08-18 20:32 - 2021-08-18 20:32 - 066575069 ____C (BetterDiscord) C:\Users\julie\Downloads\BetterDiscord-Windows.exe 2021-09-12 06:34 - 2021-09-12 06:35 - 002302976 ____C (Farbar) C:\Users\julie\Downloads\FRST64.exe 2021-09-12 06:32 - 2021-09-12 06:32 - 003475608 ____C (Nicolas Coolman) C:\Users\julie\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {2f2bd27a-f761-11eb-b7fe-a06b20f054b2} displayorder {current} toolsdisplayorder {memdiag} timeout 0 Chargeur de d‚marrage Windows ----------------------------- identificateur {1ecd4d1a-40ee-11e4-bac3-995d0b96198a} device ramdisk=[C:]\Recovery\1ecd4d1a-40ee-11e4-bac3-995d0b96198a\Winre.wim,{1ecd4d1b-40ee-11e4-bac3-995d0b96198a} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\1ecd4d1a-40ee-11e4-bac3-995d0b96198a\Winre.wim,{1ecd4d1b-40ee-11e4-bac3-995d0b96198a} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {63cb5872-dceb-11eb-96f9-e9a866a5617b} truncatememory 0x400000000 displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {2f2bd27a-f761-11eb-b7fe-a06b20f054b2} nx OptIn numproc 12 bootmenupolicy Standard usefirmwarepcisettings No Chargeur de d‚marrage Windows ----------------------------- identificateur {51fcb887-52af-11e6-a1d2-8c747e91ba91} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{51fcb888-52af-11e6-a1d2-8c747e91ba91} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{51fcb888-52af-11e6-a1d2-8c747e91ba91} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {63cb5872-dceb-11eb-96f9-e9a866a5617b} device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{63cb5873-dceb-11eb-96f9-e9a866a5617b} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{63cb5873-dceb-11eb-96f9-e9a866a5617b} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {2f2bd27a-f761-11eb-b7fe-a06b20f054b2} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {63cb5872-dceb-11eb-96f9-e9a866a5617b} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {1ecd4d1b-40ee-11e4-bac3-995d0b96198a} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\1ecd4d1a-40ee-11e4-bac3-995d0b96198a\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {63cb5873-dceb-11eb-96f9-e9a866a5617b} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume3 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================