Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021 Exécuté par dan (administrateur) sur DESKTOP-O6662KD (HP HP Pavilion Wave Desktop PC 600-a1xx) (24-11-2021 08:40:38) Exécuté depuis C:\Users\danla\Downloads Profils chargés: dan Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1348 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <27> (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHeciSvc.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MRT.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (SIA AVB Disc Soft -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusServiceUltra.exe (SIA AVB Disc Soft -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DTAgent.exe (SIA AVB Disc Soft -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DTShellHlp.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.) HKU\S-1-5-21-1945953897-2715794965-3388662925-1001\...\Run: [ut] => C:\Users\danla\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-11-11] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-1945953897-2715794965-3388662925-1001\...\Run: [DAEMON Tools Ultra Automount] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [580768 2021-11-18] (SIA AVB Disc Soft -> Disc Soft Ltd) HKU\S-1-5-21-1945953897-2715794965-3388662925-1001\...\RunOnce: [Uninstall 21.220.1024.0005] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\danla\AppData\Local\Microsoft\OneDrive\21.220.1024.0005" HKU\S-1-5-21-1945953897-2715794965-3388662925-1001\...\MountPoints2: {12ef1938-42cb-11ec-bba6-30e37a36a825} - "D:\mSetup.exe" HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\Windows\system32\CNAS0MOK.DLL [1006080 2012-08-09] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-17] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {1AEFD9B1-0F72-4D19-AAF5-93BF9FCA8487} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {34A97FA3-46DF-44A0-AE30-1246D61DD5D6} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-10-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {488F3F49-6437-4403-9A7A-F507CE5928F6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {705343F5-CB4B-4BDA-8A9A-F9BA29CD07CD} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml" Task: {9BA11459-6E41-411D-92D9-2D5C8595FA9C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9F08F505-1901-4004-8FEF-BD3D47544A35} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108888 2021-11-12] (Microsoft Corporation -> Microsoft Corporation) Task: {B67F9D1B-BE3E-4F47-918F-B5DD9946EFDD} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108888 2021-11-12] (Microsoft Corporation -> Microsoft Corporation) Task: {C5F0A0D0-E469-4F50-A239-E3B0EE0F3274} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {CC153349-6C5D-435C-8BDA-4BF449D9E83B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-11] (Google LLC -> Google LLC) Task: {D63DCF8D-C542-4531-B295-692445EAC644} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DEAFDB25-6517-453C-B7C7-978F4DB43383} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6242232 2021-11-12] (Microsoft Corporation -> Microsoft Corporation) Task: {E42AD7CB-B9A7-4B9F-A8A9-141A9E372D9D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EAF3030D-0AC6-4DE8-A443-69FD9EA14122} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6242232 2021-11-12] (Microsoft Corporation -> Microsoft Corporation) Task: {F94EFB45-8BE7-4D1C-A68C-CE25D618EB7C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-11] (Google LLC -> Google LLC) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{c9da6caa-311b-4a27-a988-c73403337c9a}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{f9e74e71-5dd4-4daf-9810-857f8233b177}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge Profile: C:\Users\danla\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-24] FireFox: ======== FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-12] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default [2021-11-24] CHR Notifications: Default -> hxxps://www73.nathanaeldan.pro CHR Extension: (Slides) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-11] CHR Extension: (Docs) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-11] CHR Extension: (Google Drive) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-11] CHR Extension: (YouTube) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-11] CHR Extension: (Sheets) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-11] CHR Extension: (Google Docs hors connexion) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-24] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-11] CHR Extension: (Sea Turtle) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\phoipoigjbbgjcnedafgfnpichbmlbim [2021-11-14] CHR Extension: (Gmail) - C:\Users\danla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-11] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) R3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusServiceUltra.exe [7492256 2021-11-18] (SIA AVB Disc Soft -> Disc Soft Ltd) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [42256 2021-11-11] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [63704 2021-11-18] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 IntelReadyModeDriver; C:\Windows\System32\drivers\IntelReadyModeDriver.sys [33504 2015-10-21] (Intel CASE -> Intel Corporation) R3 MpKsla28c072b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D4EC0D09-D7F7-4CEC-924B-D1BB371FC9D5}\MpKslDrv.sys [130296 2021-11-24] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2021-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435424 2021-11-11] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-11] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-24 08:40 - 2021-11-24 08:41 - 000014839 _____ C:\Users\danla\Downloads\FRST.txt 2021-11-24 08:39 - 2021-11-24 08:41 - 000000000 ____D C:\FRST 2021-11-24 08:39 - 2021-11-24 08:39 - 002311680 _____ (Farbar) C:\Users\danla\Downloads\FRST64.exe 2021-11-23 09:20 - 2021-11-23 09:20 - 000000000 ____D C:\Users\danla\OneDrive\Documents\Modèles Office personnalisés 2021-11-23 08:35 - 2021-11-24 08:02 - 000360448 _____ C:\Users\danla\OneDrive\Documents\Database1.accdb 2021-11-20 16:42 - 2021-11-20 16:42 - 000000000 ____D C:\Users\danla\AppData\Local\ElevatedDiagnostics 2021-11-20 07:37 - 2021-11-20 08:48 - 000007734 _____ C:\Users\danla\Downloads\OCCT.config.json 2021-11-20 07:35 - 2021-11-20 07:35 - 020614896 _____ (OCCT - Ocbase - Adrien Mercier) C:\Users\danla\Downloads\OCCT.exe 2021-11-19 17:09 - 2021-11-19 17:09 - 000000000 ____D C:\Users\danla\AppData\LocalLow\Temp 2021-11-19 17:02 - 2021-11-19 17:02 - 000000000 ____D C:\Windows\system32\Tasks\Canon 2021-11-19 17:02 - 2021-11-19 17:02 - 000000000 ____D C:\ProgramData\Canon 2021-11-19 17:01 - 2021-11-19 17:01 - 000000000 ___HD C:\Windows\system32\CanonMF Uninstaller Information 2021-11-19 17:01 - 2016-04-11 15:54 - 000133120 _____ (CANON INC.) C:\Windows\system32\CNCLSD56c.DLL 2021-11-19 17:01 - 2016-04-11 15:54 - 000118272 _____ (CANON INC.) C:\Windows\system32\CNCLSI56c.DLL 2021-11-19 17:01 - 2016-04-11 15:54 - 000105472 _____ (CANON INC.) C:\Windows\system32\CNCLST56c.DLL 2021-11-19 17:01 - 2016-04-11 15:54 - 000090624 _____ (CANON INC.) C:\Windows\system32\CNCLSC56c.DLL 2021-11-19 17:01 - 2016-04-11 15:54 - 000083968 _____ (CANON INC.) C:\Windows\system32\CNCLSU56c.DLL 2021-11-19 17:01 - 2016-04-11 15:53 - 000443904 _____ (CANON INC.) C:\Windows\system32\CNCC1225.DLL 2021-11-19 17:01 - 2016-04-11 15:53 - 000154624 _____ (CANON INC.) C:\Windows\system32\CNCL1225.DLL 2021-11-19 17:01 - 2016-04-11 15:53 - 000154112 _____ (CANON INC.) C:\Windows\system32\CNCE1225.DLL 2021-11-19 17:01 - 2016-04-11 15:53 - 000118272 _____ (CANON INC.) C:\Windows\system32\CNCI1225.DLL 2021-11-19 17:01 - 2016-03-14 11:42 - 000000522 _____ C:\Windows\system32\CNCMFP56.INI 2021-11-19 17:00 - 2021-11-19 17:02 - 000000000 ____D C:\Program Files\Canon 2021-11-19 17:00 - 2012-08-09 12:59 - 001006080 _____ (CANON INC.) C:\Windows\system32\CNAS0MOK.DLL 2021-11-19 16:49 - 2021-11-19 16:52 - 269709224 _____ C:\Users\danla\Downloads\iRC1225MFDriverV530WPFR (1).exe 2021-11-19 16:48 - 2021-11-19 16:59 - 000000000 ____D C:\Users\danla\Downloads\iRC1225MFDriverV530WPFR 2021-11-19 16:26 - 2021-11-19 16:48 - 269709224 _____ C:\Users\danla\Downloads\iRC1225MFDriverV530WPFR.exe 2021-11-19 16:16 - 2021-11-20 17:54 - 000000000 ____D C:\Users\danla\AppData\Local\CrashDumps 2021-11-19 16:16 - 2021-11-20 17:53 - 000000000 ____D C:\Users\danla\AppData\Local\ForzaHorizon5 2021-11-18 14:55 - 2021-11-18 14:55 - 000063704 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrausbbus.sys 2021-11-18 14:55 - 2021-11-18 14:55 - 000000000 ____D C:\Users\danla\AppData\Roaming\Disc-Soft 2021-11-18 14:55 - 2021-11-18 14:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Ultra 2021-11-18 14:55 - 2021-11-18 14:55 - 000000000 ____D C:\ProgramData\Disc-Soft 2021-11-18 14:55 - 2021-11-18 14:55 - 000000000 ____D C:\Program Files\DAEMON Tools Ultra 2021-11-18 14:54 - 2021-11-18 14:54 - 028132000 _____ (Disc Soft Ltd) C:\Users\danla\Downloads\DAEMONToolsUltra610-1746.exe 2021-11-14 14:07 - 2021-11-14 14:07 - 000000000 ____D C:\ProgramData\McAfee 2021-11-14 13:53 - 2021-11-16 15:05 - 000000000 ____D C:\ProgramData\Avast Software 2021-11-14 13:51 - 2021-11-14 13:53 - 000000000 ____D C:\Users\danla\AppData\Local\AmusementAPPLICATION 2021-11-14 13:35 - 2021-11-14 13:35 - 000000000 ____D C:\Users\danla\AppData\Roaming\WinRAR 2021-11-14 13:34 - 2021-11-14 13:34 - 000000000 ____D C:\Users\danla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-11-14 13:34 - 2021-11-14 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-11-14 13:34 - 2021-11-14 13:34 - 000000000 ____D C:\Program Files (x86)\WinRAR 2021-11-14 09:07 - 2021-11-14 14:05 - 000000000 ____D C:\Users\danla\AppData\Roaming\VLTD App Executable 2021-11-14 08:15 - 2021-11-14 08:15 - 000000000 ___HD C:\Windows\msdownld.tmp 2021-11-13 08:00 - 2021-11-13 08:09 - 000000151 _____ C:\Windows\restoro.ini 2021-11-12 09:39 - 2021-11-12 09:39 - 000000000 ____D C:\Users\danla\AppData\Roaming\HOODLUM 2021-11-12 09:39 - 2021-11-12 09:39 - 000000000 ____D C:\Users\danla\AppData\Local\ForzaHorizon4 2021-11-12 09:05 - 2021-11-12 09:06 - 000102323 _____ C:\Users\danla\Downloads\Grand Theft Auto The Trilogy The Definitive Edition Eur SuperXCi - CLC.torrent 2021-11-12 08:32 - 2021-11-12 08:32 - 000311588 _____ C:\Windows\system32\Drivers\rtkhdasetting.zip 2021-11-12 08:32 - 2021-11-12 08:32 - 000003194 _____ C:\Windows\system32\Tasks\RTKCPL 2021-11-12 08:32 - 2021-11-12 08:32 - 000002074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\B&O Play Audio Control.lnk 2021-11-12 08:32 - 2021-11-12 08:32 - 000000000 ____D C:\ProgramData\SoundResearch 2021-11-12 08:31 - 2021-11-12 08:31 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2021-11-12 08:31 - 2021-11-12 08:31 - 000000000 ____D C:\Windows\system32\SRSLabs 2021-11-12 08:31 - 2021-11-12 08:31 - 000000000 ____D C:\Program Files\Realtek 2021-11-12 08:31 - 2017-10-05 02:46 - 000532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2021-11-12 08:31 - 2017-10-05 02:46 - 000166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 003410832 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 003122648 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 001435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 000984904 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 000467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 000381400 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 000341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 000341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 000221960 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2021-11-12 08:31 - 2017-10-05 02:41 - 000209528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 001016920 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000877424 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000868168 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000866632 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000737960 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000526272 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000231912 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000190536 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFProc64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000096048 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFComm64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000093488 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFSAPO64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000092464 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFHAPO64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000092464 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFDAPO64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000090912 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000088312 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2021-11-12 08:31 - 2017-10-05 02:40 - 000083616 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 003561920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 003509192 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 001348160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 000691672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 000387304 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 000321704 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 000214824 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 000192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 000110976 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2021-11-12 08:31 - 2017-10-05 02:39 - 000088336 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2021-11-12 08:31 - 2017-10-05 02:36 - 003677152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2021-11-12 08:31 - 2017-10-05 02:36 - 003205120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2021-11-12 08:31 - 2017-10-05 02:36 - 000258856 _____ (TODO: ) C:\Windows\system32\slprp64.dll 2021-11-12 08:31 - 2017-10-05 02:35 - 072520704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2021-11-12 08:31 - 2017-10-05 02:35 - 005995944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2021-11-12 08:31 - 2017-10-05 02:35 - 002922976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2021-11-12 08:31 - 2017-10-05 02:35 - 000023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2021-11-12 08:31 - 2017-10-05 02:34 - 000122312 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2021-11-12 08:31 - 2017-10-05 01:50 - 013831786 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2021-11-12 00:39 - 2021-11-12 00:39 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-11-12 00:39 - 2021-11-12 00:39 - 000000000 ____D C:\Program Files\PCHealthCheck 2021-11-11 18:40 - 2021-11-11 18:40 - 000272384 _____ C:\Windows\system32\TpmTool.exe 2021-11-11 18:40 - 2021-11-11 18:40 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2021-11-11 18:40 - 2021-11-11 18:40 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2021-11-11 18:40 - 2021-11-11 18:40 - 000011363 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-11-11 18:34 - 2021-11-11 18:34 - 000000000 ___HD C:\$WinREAgent 2021-11-11 18:01 - 2021-11-11 18:01 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-11-11 17:58 - 2021-11-11 18:00 - 000000000 ____D C:\Windows\system32\MRT 2021-11-11 15:03 - 2021-11-11 15:03 - 000000000 ____D C:\Users\danla\AppData\Local\Logitech 2021-11-11 14:59 - 2021-11-11 14:59 - 000000000 ____D C:\Users\danla\AppData\Roaming\Logitech 2021-11-11 14:59 - 2021-11-11 14:59 - 000000000 ____D C:\Users\danla\AppData\Roaming\Logishrd 2021-11-11 14:59 - 2021-11-11 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2021-11-11 14:59 - 2021-11-11 14:59 - 000000000 ____D C:\Program Files\Logitech 2021-11-11 14:59 - 2021-11-11 14:59 - 000000000 ____D C:\Program Files\Common Files\Logitech 2021-11-11 13:14 - 2021-11-11 13:14 - 000000000 ____D C:\Users\danla\AppData\Roaming\Skype 2021-11-11 13:13 - 2021-11-12 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2021-11-11 13:13 - 2021-11-11 13:13 - 000002588 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise.lnk 2021-11-11 13:13 - 2021-11-11 13:13 - 000002514 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2021-11-11 13:13 - 2021-11-11 13:13 - 000002514 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2021-11-11 13:13 - 2021-11-11 13:13 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2021-11-11 13:13 - 2021-11-11 13:13 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2021-11-11 13:13 - 2021-11-11 13:13 - 000002475 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2021-11-11 13:13 - 2021-11-11 13:13 - 000002437 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2021-11-11 11:55 - 2021-11-12 14:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-11-11 11:23 - 2021-11-18 15:08 - 000000000 ____D C:\Users\danla\OneDrive\Documents\Euro Truck Simulator 2 2021-11-11 11:22 - 2021-11-24 07:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mephisto 2021-11-11 11:22 - 2021-11-11 11:22 - 000001154 _____ C:\Users\Public\Desktop\Euro Truck Simulator 2 x86.lnk 2021-11-11 11:21 - 2021-11-11 11:21 - 000000000 ____D C:\Users\danla\AppData\Local\CEF 2021-11-11 11:20 - 2021-11-11 11:22 - 000000000 ____D C:\Users\danla\OneDrive\Documents\Anno 1800 2021-11-11 11:20 - 2021-11-11 11:20 - 000000000 ____D C:\Users\danla\AppData\Roaming\uplay_emu 2021-11-11 11:19 - 2021-11-11 11:20 - 000000000 ____D C:\Users\danla\AppData\Roaming\EMPRESS 2021-11-11 11:19 - 2021-11-11 11:19 - 000002120 _____ C:\Windows\system32\Drivers\etc\hosts.rollback 2021-11-11 11:19 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts.backup 2021-11-11 11:18 - 2021-11-12 09:35 - 000000000 ____D C:\ProgramData\Package Cache 2021-11-11 11:08 - 2021-11-24 08:15 - 000000000 ____D C:\Games 2021-11-11 11:08 - 2021-11-19 14:26 - 000000000 ____D C:\Users\danla\AppData\Local\Mephisto 2021-11-11 11:06 - 2021-11-14 08:15 - 000000000 ____D C:\Windows\SysWOW64\directx 2021-11-11 11:05 - 2021-11-11 11:05 - 000000000 ____D C:\Users\danla\AppData\Local\OneDrive 2021-11-11 10:32 - 2021-11-11 10:33 - 000000000 ____D C:\Users\danla\AppData\Local\Disc_Soft_Ltd 2021-11-11 10:31 - 2021-11-18 14:55 - 000000844 _____ C:\Users\Public\Desktop\DAEMON Tools Ultra.lnk 2021-11-11 10:31 - 2021-11-11 10:32 - 000000000 ____D C:\Users\danla\AppData\Roaming\DAEMON Tools Ultra 2021-11-11 10:31 - 2021-11-11 10:31 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtultrascsibus.sys 2021-11-11 10:08 - 2021-11-11 10:08 - 000001765 _____ C:\Users\Public\Desktop\Anno 1800.lnk 2021-11-11 10:02 - 2021-11-11 10:08 - 000000000 ____D C:\Program Files\game 2021-11-11 09:28 - 2021-11-12 09:38 - 000000000 ____D C:\ProgramData\Intel 2021-11-11 09:27 - 2021-11-11 09:27 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2021-11-11 09:27 - 2021-11-11 09:27 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-11-11 09:27 - 2021-11-11 09:27 - 000000000 ____D C:\Program Files\MSBuild 2021-11-11 09:27 - 2021-11-11 09:27 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-11-11 09:27 - 2021-11-11 09:27 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-11-11 09:20 - 2021-11-11 09:20 - 000000000 ____D C:\Users\danla\Downloads\lng 2021-11-11 09:20 - 2021-11-11 09:20 - 000000000 ____D C:\Users\danla\Downloads\clients 2021-11-11 09:12 - 2021-11-24 08:31 - 000000000 ____D C:\utorrent 2021-11-11 09:12 - 2021-11-24 08:03 - 000000000 ____D C:\Users\danla\AppData\Local\BitTorrentHelper 2021-11-11 09:10 - 2021-11-24 08:03 - 000000000 ____D C:\Users\danla\AppData\Roaming\uTorrent 2021-11-11 09:10 - 2021-11-11 09:10 - 000000876 _____ C:\Users\danla\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2021-11-11 09:10 - 2021-11-11 09:10 - 000000000 ____D C:\Users\danla\AppData\Local\UT008 2021-11-11 09:09 - 2021-11-14 09:08 - 000000000 ____D C:\Users\danla\AppData\Local\AMD 2021-11-11 09:06 - 2021-11-16 15:05 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2021-11-11 09:06 - 2021-11-11 09:06 - 000000000 ____D C:\Windows\system32\AMD 2021-11-11 09:06 - 2021-11-11 09:06 - 000000000 ____D C:\Program Files\AMD 2021-11-11 09:06 - 2020-10-29 13:33 - 000736880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll 2021-11-11 09:06 - 2020-10-29 13:33 - 000046704 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll 2021-11-11 09:06 - 2020-10-29 13:33 - 000043632 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 064809072 _____ C:\Windows\system32\amd_comgr.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 053684848 _____ C:\Windows\SysWOW64\amd_comgr32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 004630640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 004141168 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 001774192 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 001341552 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 001341552 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000760432 _____ (AMD) C:\Windows\system32\atieclxx.exe 2021-11-11 09:06 - 2020-10-29 13:32 - 000621168 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000496752 _____ C:\Windows\system32\GameManager64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000493168 _____ C:\Windows\system32\dgtrayicon.exe 2021-11-11 09:06 - 2020-10-29 13:32 - 000468592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000456304 _____ C:\Windows\system32\atieah64.exe 2021-11-11 09:06 - 2020-10-29 13:32 - 000432752 _____ C:\Windows\system32\EEURestart.exe 2021-11-11 09:06 - 2020-10-29 13:32 - 000380016 _____ C:\Windows\SysWOW64\GameManager32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000351856 _____ C:\Windows\SysWOW64\atieah32.exe 2021-11-11 09:06 - 2020-10-29 13:32 - 000339568 _____ C:\Windows\system32\clinfo.exe 2021-11-11 09:06 - 2020-10-29 13:32 - 000245360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000213104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000186992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000182392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000167024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000166512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000158656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000156784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000142448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000140912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000135792 _____ (AMD) C:\Windows\system32\atimuixx.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000134768 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000125552 _____ C:\Windows\system32\atidxx64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000122480 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000120432 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000107632 _____ C:\Windows\SysWOW64\atidxx32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000107120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000090736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000075376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000070256 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000019784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2021-11-11 09:06 - 2020-10-29 13:32 - 000019784 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 071030384 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 001686016 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 001365368 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000941168 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000768624 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000553584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000546800 _____ C:\Windows\system32\amdmiracast.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000489584 _____ C:\Windows\system32\amdgfxinfo64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000466544 _____ C:\Windows\system32\amdlogum.exe 2021-11-11 09:06 - 2020-10-29 13:31 - 000383600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000380016 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000198312 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000167400 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000135928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000130232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000130232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000120264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000108248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2021-11-11 09:06 - 2020-10-29 13:31 - 000108248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2021-11-11 09:06 - 2020-10-29 12:29 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin 2021-11-11 09:06 - 2020-10-29 12:29 - 000138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin 2021-11-11 09:06 - 2020-10-29 12:29 - 000125488 _____ C:\Windows\system32\kapp_ci.sbin 2021-11-11 09:06 - 2020-10-29 12:29 - 000121168 _____ C:\Windows\system32\kapp_si.sbin 2021-11-11 09:06 - 2020-10-29 12:28 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2021-11-11 09:06 - 2020-10-29 12:28 - 003437632 _____ C:\Windows\system32\atiumd6a.cap 2021-11-11 09:06 - 2020-10-29 12:28 - 000544256 _____ C:\Windows\SysWOW64\atiapfxx.blb 2021-11-11 09:06 - 2020-10-29 12:28 - 000544256 _____ C:\Windows\system32\atiapfxx.blb 2021-11-11 09:06 - 2020-10-29 12:28 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2021-11-11 09:06 - 2020-10-29 12:28 - 000204952 _____ C:\Windows\system32\ativvsvl.dat 2021-11-11 09:06 - 2020-10-29 12:28 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2021-11-11 09:06 - 2020-10-29 12:28 - 000157144 _____ C:\Windows\system32\ativvsva.dat 2021-11-11 09:06 - 2020-10-29 12:28 - 000069770 _____ C:\Windows\system32\AMDKernelEvents.man 2021-11-11 09:04 - 2021-11-17 01:10 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-11-11 09:04 - 2021-11-17 01:10 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-11-11 09:03 - 2021-11-11 09:03 - 000000000 ____D C:\Program Files\Google 2021-11-11 09:02 - 2021-11-11 13:22 - 000000000 ____D C:\Users\danla\AppData\Local\Comms 2021-11-11 09:01 - 2021-11-24 08:06 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-11 09:01 - 2021-11-11 09:09 - 000000000 ____D C:\Users\danla\AppData\Local\Google 2021-11-11 09:01 - 2021-11-11 09:01 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-11-11 09:01 - 2021-11-11 09:01 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-11-11 08:59 - 2021-11-24 08:26 - 000000000 ___RD C:\Users\danla\OneDrive 2021-11-11 08:59 - 2021-11-24 07:50 - 000000000 ____D C:\Intel 2021-11-11 08:59 - 2021-11-19 17:01 - 000000000 ____D C:\Users\danla\AppData\Local\PlaceholderTileLogoFolder 2021-11-11 08:59 - 2021-11-11 09:29 - 000000000 __SHD C:\Users\danla\IntelGraphicsProfiles 2021-11-11 08:59 - 2021-11-11 09:00 - 000000000 ____D C:\Users\danla\AppData\Local\Intel 2021-11-11 08:59 - 2021-11-11 08:59 - 000000000 ___HD C:\OneDriveTemp 2021-11-11 08:59 - 2021-11-11 08:59 - 000000000 ____D C:\Users\danla\AppData\LocalLow\Intel 2021-11-11 08:59 - 2021-11-11 08:59 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-11-11 08:59 - 2021-11-11 08:59 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin 2021-11-11 08:58 - 2021-11-24 07:54 - 001770906 _____ C:\Windows\system32\PerfStringBackup.INI 2021-11-11 08:57 - 2021-11-24 08:37 - 000000000 ____D C:\Users\danla\AppData\Local\Packages 2021-11-11 08:57 - 2021-11-19 16:16 - 000000000 ____D C:\Users\danla\AppData\Local\D3DSCache 2021-11-11 08:57 - 2021-11-19 14:42 - 000000000 ____D C:\ProgramData\Packages 2021-11-11 08:57 - 2021-11-11 09:29 - 000000000 ____D C:\Users\danla\AppData\Local\ConnectedDevicesPlatform 2021-11-11 08:57 - 2021-11-11 09:02 - 000000000 ____D C:\Users\danla\AppData\Local\Publishers 2021-11-11 08:57 - 2021-11-11 08:59 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-11-11 08:57 - 2021-11-11 08:57 - 000000000 ___RD C:\Users\danla\3D Objects 2021-11-11 08:57 - 2021-11-11 08:57 - 000000000 ____D C:\Users\danla\AppData\Roaming\Adobe 2021-11-11 08:57 - 2021-11-11 08:57 - 000000000 ____D C:\Users\danla\AppData\Local\VirtualStore 2021-11-11 08:57 - 2020-09-11 11:36 - 000305992 _____ C:\Windows\system32\libmfxhw64.dll 2021-11-11 08:57 - 2020-09-11 11:36 - 000254520 _____ C:\Windows\SysWOW64\libmfxhw32.dll 2021-11-11 08:57 - 2020-09-11 11:36 - 000171472 _____ (Intel Corporation) C:\Windows\system32\intel_gfx_api-x64.dll 2021-11-11 08:57 - 2020-09-11 11:36 - 000146752 _____ (Intel Corporation) C:\Windows\SysWOW64\intel_gfx_api-x86.dll 2021-11-11 08:57 - 2020-09-11 11:35 - 026676016 _____ (Intel Corporation) C:\Windows\system32\mfxplugin64_hw.dll 2021-11-11 08:57 - 2020-09-11 11:35 - 013519664 _____ (Intel Corporation) C:\Windows\SysWOW64\mfxplugin32_hw.dll 2021-11-11 08:57 - 2020-09-11 11:35 - 001790192 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-11-11 08:57 - 2020-09-11 11:35 - 001790192 _____ C:\Windows\system32\vulkaninfo.exe 2021-11-11 08:57 - 2020-09-11 11:35 - 001386224 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-11-11 08:57 - 2020-09-11 11:35 - 001386224 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-11-11 08:57 - 2020-09-11 11:35 - 001096800 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2021-11-11 08:57 - 2020-09-11 11:35 - 001096800 _____ C:\Windows\system32\vulkan-1.dll 2021-11-11 08:57 - 2020-09-11 11:35 - 000949856 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-11-11 08:57 - 2020-09-11 11:35 - 000949856 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-11-11 08:57 - 2020-09-11 11:35 - 000462640 _____ C:\Windows\system32\ze_loader.dll 2021-11-11 08:57 - 2020-09-11 11:35 - 000148784 _____ C:\Windows\system32\ze_validation_layer.dll 2021-11-11 08:55 - 2021-11-23 09:19 - 000000000 ____D C:\Users\danla 2021-11-11 08:55 - 2021-11-11 08:55 - 000000020 ___SH C:\Users\danla\ntuser.ini 2021-11-11 08:55 - 2021-11-11 08:55 - 000000000 _SHDL C:\Users\danla\Voisinage réseau 2021-11-11 08:55 - 2021-11-11 08:55 - 000000000 _SHDL C:\Users\danla\Voisinage d'impression 2021-11-11 08:55 - 2021-11-11 08:55 - 000000000 _SHDL C:\Users\danla\Modèles 2021-11-11 08:55 - 2021-11-11 08:55 - 000000000 _SHDL C:\Users\danla\Mes documents 2021-11-11 08:55 - 2021-11-11 08:55 - 000000000 _SHDL C:\Users\danla\Menu Démarrer 2021-11-11 08:55 - 2021-11-11 08:55 - 000000000 _SHDL C:\Users\danla\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-11-11 08:55 - 2021-11-11 08:55 - 000000000 _SHDL C:\Users\danla\AppData\Local\Historique 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Users\Default\Modèles 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Users\Default\Mes documents 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\ProgramData\Modèles 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\ProgramData\Bureau 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Program Files\Fichiers communs 2021-11-11 08:52 - 2021-11-11 08:52 - 000000000 _SHDL C:\Documents and Settings 2021-11-11 08:50 - 2021-11-24 07:50 - 000008192 ___SH C:\DumpStack.log.tmp 2021-11-11 08:50 - 2021-11-24 07:50 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-11-11 08:50 - 2021-11-24 07:50 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-11-11 08:50 - 2021-11-23 08:33 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-11 08:50 - 2021-11-18 02:10 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-11-11 08:50 - 2021-11-18 02:10 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-11-11 08:50 - 2021-11-13 10:34 - 000000000 ____D C:\Windows\Panther 2021-11-11 08:50 - 2021-11-12 08:10 - 000440632 _____ C:\Windows\system32\FNTCACHE.DAT 2021-11-11 08:50 - 2021-11-11 12:53 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-11-11 08:50 - 2021-11-11 08:50 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2021-11-11 08:50 - 2021-11-11 08:50 - 000000000 ____D C:\Windows\ServiceProfiles ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-11-24 08:38 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-24 07:58 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-24 07:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2021-11-24 07:54 - 2019-12-07 15:49 - 000791756 _____ C:\Windows\system32\perfh00C.dat 2021-11-24 07:54 - 2019-12-07 15:49 - 000149922 _____ C:\Windows\system32\perfc00C.dat 2021-11-24 07:54 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2021-11-19 17:01 - 2019-12-07 10:14 - 000000000 __RSD C:\Windows\Media 2021-11-16 15:05 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI 2021-11-14 13:55 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2021-11-12 09:36 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2021-11-12 08:16 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences 2021-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2021-11-12 08:09 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing 2021-11-11 13:09 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-11-11 12:53 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-11-11 09:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\MUI 2021-11-11 09:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\MUI 2021-11-11 09:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState 2021-11-11 09:13 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog 2021-11-11 08:54 - 2019-12-07 15:51 - 000000000 ____D C:\Windows\system32\FxsTmp 2021-11-11 08:54 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\spool 2021-11-11 08:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2021-11-11 08:53 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-11-11 08:52 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT 2021-11-11 08:50 - 2019-12-07 10:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2021-11-11 08:50 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================