Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-09-2023 Exécuté par 33658 (administrateur) sur VODKA-REDBULL (MEDION Major X10) (25-09-2023 08:53:53) Exécuté depuis C:\Users\33658\Desktop\FRST64.exe Profils chargés: 33658 Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2283 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (0F0AD9E1-5E20-4F73-9864-163EC6D96846 -> Senary Technology Limited) C:\Program Files\WindowsApps\senarytechnologylimited.senarysmartaudio_2.3.0.0_x64__dqz7eftfn33jw\SenaryAudioApp.exe (A-Volute SAS -> A-Volute) C:\Users\33658\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (MUSARUBRA US LLC -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (MUSARUBRA US LLC -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (C:\Program Files\WindowsApps\microsoftteams_23231.411.2342.9597_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.41\msedgewebview2.exe <12> (C:\Users\33658\Desktop\FRST64.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\microsoft.windowsnotepad_11.2306.15.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe <3> (cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe (DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_helper.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <20> (explorer.exe ->) (SHANGHAI WINGTECH ELECTRONICS TECHNOLOGY CO.LTD -> ) [Fichier non signé] C:\Program Files (x86)\MedionOSD\MedionOSD.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_520b005954d9b5fa\ipfsvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_11811331df87c731\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_947685b92a05cfaa\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_3271001ba650e106\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\CSP\5.5.107.0\McCSPServiceHost.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <3> (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_22_12\mcapexe.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (Medion AG -> MEDION AG) C:\Windows\System32\oobe\info\OOBE_DataService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (services.exe ->) (MUSARUBRA US LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (services.exe ->) (Senary Technology Limited -> 深圳前海深蕾半导体有限公司) C:\Windows\System32\DriverStore\FileRepository\audioservice.inf_amd64_60f5e294ef7c9c72\SenaryAudioApp.Svc.exe (svchost.exe ->) (21E1B422-257A-44A2-9C8F-379165856473 -> ) C:\Program Files\WindowsApps\a-volute.nahimic_1.9.20.0_x64__w2gh52qy24etm\Nahimic3.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MQS\QcShm.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\VUL\McV2A5E.tmp (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\VUL\McV300E.tmp (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [OSDProject] => C:\Program Files (x86)\MedionOSD\MedionOSD.ex (Pas de fichier) HKU\S-1-5-21-2093486445-497149081-1559193074-1001\...\Run: [MicrosoftEdgeAutoLaunch_2F9113C4D8D23B7645A9ACE3CBD08004] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-09-23] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {f228288e-ba98-44e3-920e-487c20a10b86} - pas de chemin du fichier. <==== ATTENTION Task: {f30c5830-8c20-418a-aa28-b5b0a1aca84d} - pas de chemin du fichier. <==== ATTENTION Task: {F6DB8D14-8CCD-47D2-A402-69CD184542F1} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4564016 2023-03-27] (McAfee, LLC -> McAfee, LLC) Task: {E1C51E68-FF30-4459-B8E6-FC90FA73CB64} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4094568 2023-02-17] (McAfee, LLC -> McAfee, LLC) Task: {D63C7C91-B289-41EC-B423-A003D125CB2B} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [931056 2023-02-20] (McAfee, LLC -> McAfee, LLC) Task: {3B9ACC2F-45F3-4271-B957-B0D878FF269C} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.12.944\mcdatrep.exe [1212072 2023-09-25] (MUSARUBRA US LLC -> Trellix) Task: {917DE453-DEDD-4253-94B0-516DA24CFAD9} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [931056 2023-02-20] (McAfee, LLC -> McAfee, LLC) Task: {99D965DF-9789-4DEE-8BDC-984BDBBABCDE} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [768288 2022-03-24] (McAfee, LLC -> McAfee, LLC) Task: {754B77E2-EADE-46B9-93EF-E3C3D73A6277} - System32\Tasks\McAfeeTsk\OOBEUpgrader => C:\Program Files\McAfee\MSC\OOBE_Upgrader.exe [3797336 2022-02-07] (McAfee, LLC -> McAfee, LLC) Task: {0345EDDC-2EFB-4C0B-8794-67803B2EE437} - System32\Tasks\MedionAssistent => C:\WINDOWS\system32\cmd.exe [323584 2023-09-11] (Microsoft Windows -> Microsoft Corporation) -> /c start /min C:\Windows\System32\oobe\info\start.cmd <==== ATTENTION Task: {772C557C-180F-4CE0-B4BE-BCD0C796DE5F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21859224 2021-09-22] (Microsoft Corporation -> Microsoft Corporation) Task: {5C0211DA-0A9D-49F9-916F-58DA63072FEC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21859224 2021-09-22] (Microsoft Corporation -> Microsoft Corporation) Task: {D7394818-5FCB-4A12-9584-BBC2080C33CA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139120 2021-10-06] (Microsoft Corporation -> Microsoft Corporation) Task: {5C75A62A-1547-46D4-86C0-7782C1D4A2E4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139120 2021-10-06] (Microsoft Corporation -> Microsoft Corporation) Task: {312991A4-9710-406E-A995-0B0783CEF4E6} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-13] (Microsoft Windows -> Microsoft Corporation) Task: {CA7EEBC5-BEDB-4221-B236-1CACA4047018} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {7DAB9BCD-8C59-4651-A4B7-2B2553DEEA63} - System32\Tasks\NahimicTask32 => C:\WINDOWS\system32\..\SysWOW64\NahimicSvc32.exe [1117336 ] (A-Volute SAS -> Nahimic) Task: {4662B472-CA50-4371-ABA8-5C014C72F48D} - System32\Tasks\NahimicTask64 => C:\WINDOWS\system32\.\NahimicSvc64.exe [1437296 ] (A-Volute SAS -> Nahimic) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{fc896a34-35ce-4852-a6d7-15c18f8d3d04}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge Profile: C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-25] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2023-09-24] Edge Extension: (Google Docs hors connexion) - C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-25] Edge Extension: (Edge relevant text changes) - C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-25] Edge Extension: (Total Adblock - Ad Blocker) - C:\Users\33658\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kkkldohdhcfhpjchcefpkfhjfeapdmek [2023-09-24] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => non trouvé(e) FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2023-09-25] [] [non signé] FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2023-04-24] (McAfee, LLC -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2023-04-24] (McAfee, LLC -> ) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-10-06] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 0242281695623722mcinstcleanup; C:\ProgramData\McInstTemp0242281695623722\McInst.exe [927896 2023-04-23] (McAfee, LLC -> McAfee, LLC) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9185664 2021-09-22] (Microsoft Corporation -> Microsoft Corporation) R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_520b005954d9b5fa\ipfsvc.exe [544928 2022-03-23] (Intel Corporation -> Intel Corporation) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_3271001ba650e106\AS\IAS\IntelAudioService.exe [533704 2022-04-12] (Intel Corporation -> Intel) S2 IntelGFXFWupdateTool; C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch_d.inf_amd64_d276e01e22e75429\IntelGFXFWupdateTool.exe [227888 2022-10-13] (Intel Corporation -> ) R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_uf.exe [2778760 2022-09-19] (Intel Corporation -> Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9287968 2023-09-24] (Malwarebytes Inc. -> Malwarebytes) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [874384 2023-09-24] (McAfee, LLC -> McAfee, LLC) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_22_12\McApExe.exe [815376 2023-06-20] (McAfee, LLC -> McAfee, LLC) S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [604312 2021-05-16] (McAfee, LLC -> McAfee, LLC) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\5.5.107.0\McCSPServiceHost.exe [3384472 2023-02-28] (McAfee, LLC -> McAfee, LLC) S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1226192 2023-04-05] (MUSARUBRA US LLC -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1226192 2023-04-05] (MUSARUBRA US LLC -> McAfee, LLC) R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1226192 2023-04-05] (MUSARUBRA US LLC -> McAfee, LLC) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1571008 2023-04-03] (McAfee, LLC -> McAfee, LLC) R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1912472 2023-07-17] (A-Volute SAS -> Nahimic) R2 OOBE_DataService; C:\Windows\system32\OOBE\info\OOBE_DataService.exe [46936 2022-07-18] (Medion AG -> MEDION AG) R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4248712 2022-10-14] (McAfee, LLC -> McAfee, LLC) R2 SenaryAudioApp.Svc; C:\WINDOWS\System32\DriverStore\FileRepository\audioservice.inf_amd64_60f5e294ef7c9c72\SenaryAudioApp.Svc.exe [74840 2022-08-01] (Senary Technology Limited -> 深圳前海深蕾半导体有限公司) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [561152 2023-09-11] (Microsoft Windows -> Microsoft Corporation) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [70880 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R3 CnxtHdAudService; C:\WINDOWS\System32\DriverStore\FileRepository\cisstrtu-base.inf_amd64_389239387eadc265\CHDRT64ISST.sys [2494440 2022-08-01] (Senary Technology Limited -> Senary Technology Limited.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 GSCAuxDriver; C:\WINDOWS\System32\DriverStore\FileRepository\gscauxdriver.inf_amd64_ed9efe698065da9c\GSCAuxDriverx64.sys [97840 2022-10-13] (Intel Corporation -> Intel Corporation) R3 GSCx64; C:\WINDOWS\System32\DriverStore\FileRepository\gscheci.inf_amd64_96e1e5abf52e018c\TeeDriverGSCW8x64.sys [267808 2022-10-13] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_0e92b4646ab70162\iaLPSS2_GPIO2_ADL.sys [140976 2022-03-26] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_35ed2fd5a51c2bc2\iaLPSS2_I2C_ADL.sys [210608 2022-03-26] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_SPI_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_adl.inf_amd64_a8eb11f842d6a043\iaLPSS2_SPI_ADL.sys [161968 2022-03-26] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_UART2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_adl.inf_amd64_cafb511c07eb2595\iaLPSS2_UART2_ADL.sys [319672 2022-03-26] (Intel Corporation -> Intel Corporation) S0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1586880 2021-12-01] (Intel Corporation -> Intel Corporation) R3 igfxnd; C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch_d.inf_amd64_d276e01e22e75429\igdkmdnd64.sys [46872632 2022-10-13] (Intel Corporation -> Intel Corporation) S3 IntcSdwBus; C:\WINDOWS\System32\DriverStore\FileRepository\intcsdwbus.inf_amd64_e7019dee1d80070a\IntcSdwBus.sys [493776 2022-04-12] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88784 2022-08-10] (Intel Corporation -> Intel Corporation) R3 Intel_NF_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\intel_nf_i2c_child.inf_amd64_a329fd450939b60d\Intel_NF_I2C.sys [212544 2022-08-09] (Intel Corporation -> Intel Corporation) R2 ioportdrv; C:\Program Files (x86)\MedionOSD\WTIOportDrv.sys [19600 2021-10-18] (Windows OEM Test Cert 2017 (TEST ONLY) -> ) R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_cf69bf74fab8a0f5\ipf_acpi.sys [87176 2022-09-19] (Intel Corporation -> Intel Corporation) R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_cpu.sys [80520 2022-09-19] (Intel Corporation -> Intel Corporation) R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_lf.sys [443528 2022-09-19] (Intel Corporation -> Intel Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222272 2023-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-09-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt11.sys [233704 2023-09-24] (Malwarebytes Inc. -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2023-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181984 2023-09-24] (Malwarebytes Inc. -> Malwarebytes) S3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [491232 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) U3 mfeaack01; pas de ImagePath R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [354016 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) U3 mfeavfk01; pas de ImagePath S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85456 2023-04-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Trellix US LLC.) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [464080 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [949472 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) U3 mfehidk01; pas de ImagePath R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [714600 2022-11-15] (Musarubra US LLC -> Trellix US LLC.) U3 mfencbdc01; pas de ImagePath U3 mfencbdc02; pas de ImagePath S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [135024 2022-11-15] (Musarubra US LLC -> Trellix US LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [106720 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [233176 2023-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Trellix US LLC.) R3 NahimicBTLink; C:\WINDOWS\System32\drivers\NahimicBTLink.sys [86200 2022-08-18] (A-Volute SAS -> Windows (R) Win 7 DDK provider) R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [94784 2022-06-03] (A-Volute SAS -> Windows (R) Win 7 DDK provider) S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-13] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-09-25 08:53 - 2023-09-25 08:53 - 000028600 _____ C:\Users\33658\Desktop\Addition.txt 2023-09-25 08:52 - 2023-09-25 08:54 - 000024537 _____ C:\Users\33658\Desktop\FRST.txt 2023-09-25 08:52 - 2023-09-25 08:54 - 000000000 ____D C:\FRST 2023-09-25 08:52 - 2023-09-25 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2023-09-25 08:50 - 2023-09-25 08:51 - 002382848 _____ (Farbar) C:\Users\33658\Desktop\FRST64.exe 2023-09-25 08:40 - 2023-09-25 08:40 - 000000000 ____D C:\Users\33658\AppData\Local\McAfee 2023-09-25 08:35 - 2023-09-25 08:35 - 000000000 ____D C:\ProgramData\McInstTemp0242281695623722 2023-09-25 00:03 - 2023-09-25 08:35 - 000000000 ____D C:\ProgramData\McInstTemp0223051695593030 2023-09-25 00:03 - 2023-09-25 00:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfeeTsk 2023-09-25 00:01 - 2023-09-25 08:26 - 000000000 ____D C:\Users\33658\AppData\Local\PlaceholderTileLogoFolder 2023-09-25 00:01 - 2023-09-25 00:01 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2093486445-497149081-1559193074-1001 2023-09-25 00:01 - 2023-09-25 00:01 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2093486445-497149081-1559193074-1001 2023-09-25 00:01 - 2023-09-25 00:01 - 000002421 _____ C:\Users\33658\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-09-25 00:01 - 2023-09-25 00:01 - 000000000 ___RD C:\Users\33658\OneDrive 2023-09-25 00:01 - 2023-09-25 00:01 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2023-09-25 00:00 - 2023-09-25 00:00 - 000002428 _____ C:\Users\33658\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk 2023-09-25 00:00 - 2023-09-25 00:00 - 000000000 ____D C:\Users\33658\AppData\Local\NhNotifSys 2023-09-25 00:00 - 2023-09-24 22:53 - 000000000 ____D C:\Users\33658\AppData\Local\Publishers 2023-09-24 23:59 - 2023-09-25 08:27 - 000000000 ____D C:\Users\33658\AppData\Local\Packages 2023-09-24 23:59 - 2023-09-25 08:26 - 000000000 ____D C:\Users\33658\AppData\Local\ConnectedDevicesPlatform 2023-09-24 23:59 - 2023-09-24 23:59 - 000000000 ___SD C:\Users\33658\AppData\Roaming\Microsoft\Crypto 2023-09-24 23:59 - 2023-09-24 23:59 - 000000000 ____D C:\Users\33658\AppData\Roaming\Microsoft\Vault 2023-09-24 23:59 - 2023-09-24 23:59 - 000000000 ____D C:\Users\33658\AppData\Roaming\Adobe 2023-09-24 23:59 - 2023-09-24 23:59 - 000000000 ____D C:\Users\33658\AppData\LocalLow\Intel 2023-09-24 23:59 - 2023-09-24 23:59 - 000000000 ____D C:\Users\33658\AppData\Local\Nahimic 2023-09-24 23:59 - 2023-09-24 23:59 - 000000000 ____D C:\MANUALS 2023-09-24 23:59 - 2023-09-24 23:28 - 000000000 ____D C:\Users\33658\AppData\Local\D3DSCache 2023-09-24 23:56 - 2023-09-24 23:56 - 000000000 ___SD C:\Users\33658\AppData\Roaming\Microsoft\SystemCertificates 2023-09-24 23:55 - 2023-09-25 00:03 - 000000000 ____D C:\Users\33658\AppData\Roaming\Microsoft\Spelling 2023-09-24 23:55 - 2023-09-25 00:01 - 000000000 ____D C:\Users\33658 2023-09-24 23:55 - 2023-09-25 00:00 - 000000000 ____D C:\Users\33658\AppData\Roaming\Microsoft\Windows 2023-09-24 23:55 - 2023-09-24 23:55 - 000000020 ___SH C:\Users\33658\ntuser.ini 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\Voisinage réseau 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\Voisinage d'impression 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\Modèles 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\Mes documents 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\Menu Démarrer 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\Documents\Mes vidéos 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\Documents\Mes images 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\Documents\Ma musique 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 _SHDL C:\Users\33658\AppData\Local\Historique 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 ___SD C:\Users\33658\AppData\Roaming\Microsoft\Protect 2023-09-24 23:55 - 2023-09-24 23:55 - 000000000 ___SD C:\Users\33658\AppData\Roaming\Microsoft\Credentials 2023-09-24 23:55 - 2023-09-24 23:43 - 000000000 ____D C:\Users\33658\AppData\Roaming\Microsoft\Network 2023-09-24 23:54 - 2023-09-24 23:54 - 000811148 _____ C:\WINDOWS\system32\perfh00C.dat 2023-09-24 23:54 - 2023-09-24 23:54 - 000157584 _____ C:\WINDOWS\system32\perfc00C.dat 2023-09-24 23:48 - 2023-09-24 23:54 - 001804770 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-09-24 23:45 - 2023-09-24 23:45 - 000003592 _____ C:\WINDOWS\system32\Tasks\MedionAssistent 2023-09-24 23:44 - 2023-09-24 23:50 - 000003108 _____ C:\WINDOWS\system32\Tasks\NahimicTask32 2023-09-24 23:44 - 2023-09-24 23:50 - 000003088 _____ C:\WINDOWS\system32\Tasks\NahimicTask64 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidéos 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Public\Documents\Mes images 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\Modèles 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\Mes documents 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\Documents\Mes images 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\Default User 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Users\All Users 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\ProgramData\Modèles 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\ProgramData\Bureau 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Program Files\Fichiers communs 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 _SHDL C:\Documents and Settings 2023-09-24 23:44 - 2023-09-24 23:44 - 000000000 ____D C:\ProgramData\Nahimic 2023-09-24 23:43 - 2023-09-25 08:36 - 000003354 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon 2023-09-24 23:43 - 2023-09-25 08:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2023-09-24 23:43 - 2023-09-24 23:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-09-24 23:43 - 2023-09-24 23:46 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2023-09-24 23:43 - 2023-09-24 23:43 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-09-24 23:43 - 2023-09-24 23:43 - 000003184 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-09-24 23:43 - 2023-09-24 23:43 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1500096537-1824449798-2213812617-500 2023-09-24 23:43 - 2023-09-24 23:43 - 000002650 _____ C:\WINDOWS\system32\Tasks\McAfee Remediation (Prepare) 2023-09-24 23:43 - 2023-09-24 23:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel 2023-09-24 23:43 - 2023-09-24 23:43 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network 2023-09-24 23:43 - 2021-10-06 11:36 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-792650088-1136025767-1403416114-500 2023-09-24 23:40 - 2023-09-24 23:40 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2023-09-24 23:38 - 2023-09-24 23:44 - 000000000 ____D C:\ProgramData\A-Volute 2023-09-24 23:38 - 2023-09-24 23:38 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-09-24 23:38 - 2023-09-24 23:38 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-09-24 23:38 - 2023-09-24 23:38 - 000000000 ____D C:\WINDOWS\system32\zh-hant 2023-09-24 23:38 - 2023-09-24 23:38 - 000000000 ____D C:\WINDOWS\system32\zh-hans 2023-09-24 23:38 - 2023-09-24 23:38 - 000000000 ____D C:\WINDOWS\system32\config\BFS 2023-09-24 23:38 - 2023-09-24 23:38 - 000000000 ____D C:\WINDOWS\system32\A-Volute 2023-09-24 23:38 - 2023-09-24 23:38 - 000000000 ____D C:\ProgramData\Intel 2023-09-24 23:38 - 2023-09-24 23:38 - 000000000 ____D C:\Intel 2023-09-24 23:37 - 2023-09-25 08:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-09-24 23:37 - 2023-09-24 23:47 - 000490704 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-09-24 23:37 - 2023-09-24 23:37 - 000012288 ___SH C:\DumpStack.log.tmp 2023-09-24 23:37 - 2023-09-24 23:37 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2023-09-24 23:28 - 2023-09-25 08:32 - 000000000 ____D C:\Users\33658\AppData\Local\Malwarebytes 2023-09-24 23:28 - 2023-09-24 23:28 - 000233704 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys 2023-09-24 23:28 - 2023-09-24 23:28 - 000181984 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2023-09-24 23:28 - 2023-09-24 23:28 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-09-24 23:28 - 2023-09-24 23:28 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2023-09-24 23:28 - 2023-09-24 23:28 - 000000000 ____D C:\Users\33658\AppData\Local\mbam 2023-09-24 23:27 - 2023-09-24 23:27 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-09-24 23:27 - 2023-09-24 23:27 - 000000000 ____D C:\Program Files\Malwarebytes 2023-09-24 23:27 - 2023-09-24 23:26 - 002606880 _____ (Malwarebytes) C:\Users\33658\Desktop\MBSetup.exe 2023-09-24 23:06 - 2023-09-24 23:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-09-24 23:05 - 2023-09-24 23:05 - 000000000 ____D C:\Users\33658\AppData\Local\VirtualStore 2023-09-24 23:04 - 2023-09-24 23:06 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-09-24 22:53 - 2023-09-24 22:53 - 000000000 ____D C:\Users\33658\AppData\Local\Comms 2023-09-24 22:34 - 2023-09-24 23:44 - 000000000 ____D C:\WINDOWS\Panther 2023-09-24 22:34 - 2022-08-25 00:17 - 000011485 _____ C:\swconf.dat 2023-09-24 22:32 - 2023-09-24 22:32 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2023-09-24 22:31 - 2023-09-25 00:00 - 000000000 ____D C:\WINDOWS\Setup 2023-09-24 22:31 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2023-09-24 22:31 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2023-09-24 22:31 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2023-09-24 22:31 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2023-09-24 22:31 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\winrm 2023-09-24 22:31 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\WCN 2023-09-24 22:31 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\slmgr 2023-09-24 22:31 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\fr 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\0409 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\fr 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\0409 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\DigitalLocker 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\addins 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\ProgramData\ssh 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\Program Files\Reference Assemblies 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\Program Files\MSBuild 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2023-09-24 22:31 - 2023-09-24 22:31 - 000000000 ____D C:\Program Files (x86)\MSBuild 2023-09-24 22:30 - 2023-09-25 08:41 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-09-24 22:30 - 2023-09-25 08:37 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-09-24 22:30 - 2023-09-25 08:34 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-09-24 22:30 - 2023-09-25 08:32 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-09-24 22:30 - 2023-09-25 08:26 - 000000000 ___HD C:\Program Files\WindowsApps 2023-09-24 22:30 - 2023-09-24 23:59 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-09-24 22:30 - 2023-09-24 23:50 - 000000000 ____D C:\WINDOWS\ServiceState 2023-09-24 22:30 - 2023-09-24 23:47 - 000000000 ____D C:\WINDOWS\appcompat 2023-09-24 22:30 - 2023-09-24 23:45 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2023-09-24 22:30 - 2023-09-24 23:44 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2023-09-24 22:30 - 2023-09-24 23:44 - 000000000 ____D C:\Program Files\Windows NT 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ___SD C:\WINDOWS\system32\F12 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ___SD C:\WINDOWS\system32\dsc 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\spool 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\OCR 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\WINDOWS\IME 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\Program Files\Common Files\System 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2023-09-24 22:30 - 2023-09-24 23:41 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2023-09-24 22:30 - 2023-09-24 23:39 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows 2023-09-24 22:30 - 2023-09-24 23:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2023-09-24 22:30 - 2023-09-24 23:27 - 000000000 ___RD C:\Program Files (x86) 2023-09-24 22:30 - 2023-09-24 22:52 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-09-24 22:30 - 2023-09-24 22:51 - 000000000 ____D C:\ProgramData\USOPrivate 2023-09-24 22:30 - 2023-09-24 22:50 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2023-09-24 22:30 - 2023-09-24 22:34 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\SystemResources 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\setup 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\MUI 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\id-ID 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\gl-ES 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\Com 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\system32\ca-ES 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\Help 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\WINDOWS\BrowserCore 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\Program Files\Windows Defender 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\Program Files (x86)\Windows NT 2023-09-24 22:30 - 2023-09-24 22:31 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 __SHD C:\Program Files\Windows Sidebar 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 __RHD C:\Users\Public\Libraries 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___SD C:\WINDOWS\system32\UNP 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___SD C:\WINDOWS\system32\Nui 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___SD C:\WINDOWS\system32\lxss 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___SD C:\WINDOWS\system32\Configuration 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___RD C:\WINDOWS\Offline Web Pages 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\WUModels 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Web 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\WaaS 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Vss 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\UUS 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\tracing 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\TAPI 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ras 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SystemApps 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\winevt 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\WebThreatDefSvc 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\ras 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\ProximityToast 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\PointOfService 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\Pbr 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\NDF 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\Keywords 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\Ipmi 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\InputMethod 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\inetsrv 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\IME 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\icsxml 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\ias 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\Hydrogen 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\DriverState 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\downlevel 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\DDFs 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\config\TxR 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\config\RegBack 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\config\Journal 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\Bthprops 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\System 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SKB 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\security 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\schemas 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\SchCache 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Resources 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\rescache 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Registration 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Provisioning 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\PLA 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Performance 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\ModemLogs 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Media 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\L2Schemas 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\InputMethod 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\IdentityCRL 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Globalization 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\DiagTrack 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Cursors 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Containers 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\Branding 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Spelling 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\ProgramData\USOShared 2023-09-24 22:30 - 2023-09-24 22:30 - 000000000 ____D C:\Program Files\ModifiableWindowsApps 2023-09-24 22:30 - 2023-09-24 22:29 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config 2023-09-24 22:30 - 2023-09-24 22:29 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config 2023-09-24 22:30 - 2023-09-24 22:29 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json 2023-09-24 22:29 - 2023-09-25 08:53 - 000000000 ____D C:\WINDOWS\INF 2023-09-24 22:28 - 2023-09-25 08:42 - 000000000 ____D C:\WINDOWS\servicing 2023-09-24 22:28 - 2023-09-25 08:42 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-09-24 22:28 - 2023-09-25 00:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2023-09-24 22:28 - 2023-09-24 23:50 - 100663296 _____ C:\WINDOWS\system32\config\SOFTWARE 2023-09-24 22:28 - 2023-09-24 23:50 - 018612224 _____ C:\WINDOWS\system32\config\SYSTEM 2023-09-24 22:28 - 2023-09-24 23:50 - 000786432 _____ C:\WINDOWS\system32\config\DEFAULT 2023-09-24 22:28 - 2023-09-24 23:50 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-09-24 22:28 - 2023-09-24 23:50 - 000131072 _____ C:\WINDOWS\system32\config\SAM 2023-09-24 22:28 - 2023-09-24 23:50 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY 2023-09-24 22:28 - 2023-09-24 22:30 - 000000000 ____D C:\WINDOWS\system32\SMI 2023-09-24 21:25 - 2023-09-24 22:36 - 000000000 ___HD C:\$SysReset 2023-09-11 23:03 - 2022-10-13 00:49 - 000966440 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2023-09-11 23:03 - 2022-10-13 00:49 - 000537112 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2023-09-11 23:03 - 2022-10-13 00:49 - 000475800 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2023-09-11 23:03 - 2022-10-13 00:48 - 000725120 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2023-09-11 23:03 - 2022-10-13 00:48 - 000609056 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2023-09-11 23:03 - 2022-10-13 00:48 - 000468104 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2023-09-11 23:03 - 2022-10-13 00:48 - 000429200 _____ C:\WINDOWS\SysWOW64\IntelControlLib32.dll 2023-09-11 23:03 - 2022-10-13 00:47 - 001979464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2023-09-11 23:03 - 2022-10-13 00:47 - 001979464 _____ C:\WINDOWS\system32\vulkaninfo.exe 2023-09-11 23:03 - 2022-10-13 00:47 - 001536024 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-09-11 23:03 - 2022-10-13 00:47 - 001536024 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2023-09-11 23:03 - 2022-10-13 00:47 - 001442024 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2023-09-11 23:03 - 2022-10-13 00:47 - 001442024 _____ C:\WINDOWS\system32\vulkan-1.dll 2023-09-11 23:03 - 2022-10-13 00:47 - 001155296 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2023-09-11 23:03 - 2022-10-13 00:47 - 001155296 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2023-09-11 23:03 - 2022-10-13 00:46 - 000256488 _____ C:\WINDOWS\system32\ControlLib.dll 2023-09-11 23:03 - 2022-10-13 00:46 - 000208096 _____ C:\WINDOWS\SysWOW64\ControlLib32.dll 2023-09-11 23:02 - 2022-08-29 14:15 - 005066824 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw10.sys 2023-09-11 23:02 - 2022-08-29 14:15 - 001427016 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter10.dll ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-09-25 08:42 - 2022-08-12 22:37 - 000000000 ____D C:\ProgramData\McAfee 2023-09-25 08:37 - 2022-08-12 22:37 - 000000000 ____D C:\Program Files\Common Files\McAfee 2023-09-25 08:36 - 2022-08-12 22:37 - 000000000 ____D C:\Program Files\McAfee 2023-09-25 08:27 - 2021-10-06 11:35 - 000000000 ____D C:\ProgramData\Packages 2023-09-25 00:03 - 2022-08-12 22:37 - 000000000 ____D C:\Program Files (x86)\McAfee 2023-09-25 00:01 - 2021-10-06 11:35 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-09-24 23:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2023-09-24 23:41 - 2022-08-12 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEDION 2023-09-24 23:41 - 2022-08-12 22:42 - 000000000 ____D C:\Program Files\Support 2023-09-24 23:41 - 2022-08-12 22:40 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerRecover 2023-09-24 23:41 - 2022-08-12 22:40 - 000000000 ____D C:\ProgramData\PowerRecover 2023-09-24 23:41 - 2022-08-12 22:40 - 000000000 ____D C:\Program Files\CyberLink 2023-09-24 23:41 - 2022-08-12 22:40 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information 2023-09-24 23:41 - 2022-08-12 22:39 - 000000000 ____D C:\ProgramData\Temp 2023-09-24 23:41 - 2022-08-12 22:37 - 000000000 ____D C:\Program Files\McAfee.com 2023-09-24 23:41 - 2022-08-12 22:14 - 000000000 ____D C:\Users\Public\MedionOSD 2023-09-24 23:41 - 2022-08-12 22:14 - 000000000 ____D C:\Program Files (x86)\MedionOSD 2023-09-24 23:41 - 2022-08-12 22:11 - 000000000 ____D C:\ProgramData\Package Cache 2023-09-24 23:41 - 2022-08-12 22:11 - 000000000 ____D C:\Program Files\Intel 2023-09-24 23:41 - 2021-10-06 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2023-09-24 23:41 - 2021-10-06 11:49 - 000000000 ____D C:\Program Files\Microsoft Office 15 2023-09-24 23:41 - 2021-10-06 11:49 - 000000000 ____D C:\Program Files\Microsoft Office 2023-09-24 23:40 - 2022-08-12 22:37 - 000000000 ____D C:\Program Files\Common Files\AV 2023-09-24 23:40 - 2021-10-06 11:51 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2023-09-24 23:40 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\MsDtc ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================