Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Exécuté par HP (administrateur) sur CAMTEL-DRS (HP HP Notebook) (28-04-2024 20:11:12)
Exécuté depuis C:\Users\HP\Desktop\FRST64.exe
Profils chargés: HP
Plate-forme: Microsoft Windows 10 Entreprise Version 22H2 19045.4291 (X64) Langue: Anglais (États-Unis) -> Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Users\HP\AppData\Local\Temp\5454e6f062\explorta.exe <2>
(522303292b2005041027200a5d5d12051031230d161c143d24542553452740323d28 -> ) [Fichier non signé] C:\Users\HP\Pictures\7fE5RfeIY8aAiZbeDhAuS1xi.exe <2>
(522303292b2005041027200a5d5d12051031230d161c143d24542553452740323d28 -> ) [Fichier non signé] C:\Users\HP\Pictures\nLEnfrkNS8sOyY6qVAoAj8yG.exe <3>
(522a29533d3f200e2d1728300c141021081631313626321023042b113f2d26353224 -> ) [Fichier non signé] C:\Windows\rss\csrss.exe
(525d0b323423120e110456060e332e32311412140236333d57310b361108382b0633 -> ) [Fichier non signé] C:\Users\HP\Pictures\mVhf4buB2n05N6Y1BDSjoWF4.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\1000150001\NewB.exe
(C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\1000152001\jok.exe
(C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\1000239001\mstc.exe
(C:\Windows\Microsoft.NET\Framework\v4.0.30319\AddInProcess32.exe ->) (Opera Norway AS -> Opera Software) C:\Users\HP\Pictures\SreaEmMrGc0C7HTunr7XQpGr.exe <4>
(C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Roaming\configurationValue\keks.exe
(C:\Windows\rss\csrss.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\csrss\1bf850b4d9587c1017a75a47680584c4.exe
(C:\Windows\rss\csrss.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\csrss\713674d5e968cbe2102394be0b2bae6f.exe
(C:\Windows\rss\csrss.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\csrss\injector\injector.exe <2>
(C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\AddInProcess32.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe
(rundll32.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(services.exe ->) (Accès refusé) [Fichier non signé] C:\Windows\windefender.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (FlappingWings) [Fichier non signé] C:\ProgramData\EventGuide 1.3.11.66\EventGuide 1.3.11.66.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.) C:\Program Files (x86)\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe
(services.exe ->) (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.) C:\Program Files (x86)\SolarWinds\Toolset\SWBrowserIntegration.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (WithSecure Oyj -> F-Secure Corporation) C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fsorsp64.exe
(services.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe <2>
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
(Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.) C:\Program Files (x86)\SolarWinds\Toolset\ToolsetIntegrationTray.exe
(svchost.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2413.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (AutoIt Consulting Ltd -> AutoIt Team) C:\Users\HP\AppData\Roaming\ServiceData\Davonevur.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4289_none_7e26f6bc7c7a4793\TiWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3349224 2015-08-12] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [247016 2011-09-09] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [SolarWindsToolsetIntegrationTrayApp] => C:\Program Files (x86)\SolarWinds\Toolset\ToolsetIntegrationTray.exe [781136 2024-01-11] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\MRT: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [Opera Browser Assistant] => C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3968928 2024-04-11] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [Opera Stable] => C:\Users\HP\AppData\Local\Programs\Opera\opera.exe [1581984 2024-04-25] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [ExtreamFanV5] => C:\Users\HP\AppData\Local\ExtreamFanV5\ExtreamFanV5.exe [5857792 2024-04-25] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [RageMP131] => C:\Users\HP\AppData\Local\RageMP131\RageMP131.exe [2157072 2024-04-25] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [csrss] => C:\WINDOWS\rss\csrss.exe [4365688 2024-04-25] (522a29533d3f200e2d1728300c141021081631313626321023042b113f2d26353224 -> ) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [AdobeUpdaterV131_999e43077df71fdfc52bd5232a22cf9d] => C:\Users\HP\AppData\Local\AdobeUpdaterV131_999e43077df71fdfc52bd5232a22cf9d\AdobeUpdaterV131.exe [1871360 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [AdobeUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae] => C:\Users\HP\AppData\Local\AdobeUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae\AdobeUpdaterV131.exe [917504 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [AdobeUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7] => C:\Users\HP\AppData\Local\AdobeUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7\AdobeUpdaterV131.exe [2423808 2024-04-28] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [cd9cc97183.exe] => C:\Users\HP\AppData\Local\Temp\1000016001\cd9cc97183.exe [1166336 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [3667db2393.exe] => C:\Users\HP\1000017002\3667db2393.exe [2423808 2024-04-28] (Microsoft Corporation) [Fichier non signé]
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [explorer] => C:\Users\HP\AppData\Roaming\explorer.exe [51200 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [ccb72d7dc9.exe] => C:\Users\HP\AppData\Local\Temp\1000016001\ccb72d7dc9.exe [1166336 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [0a0ac56ce7.exe] => C:\Users\HP\1000017002\0a0ac56ce7.exe [2420736 2024-04-28] (Microsoft Corporation) [Fichier non signé]
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\MountPoints2: {347c7f2e-bf7e-11ea-93ed-3c95097c54e4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\MountPoints2: {855f08d9-16d8-11ec-9460-3c95097c54e4} - "F:\EMP_UDSe.exe" /autorun
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\MountPoints2: {e11adbd3-c967-11ed-94f2-3c95097c54e4} - "F:\Autorun.exe"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\MountPoints2: {e11adc7f-c967-11ed-94f2-3c95097c54e4} - "F:\Autorun.exe"
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpcpp255: C:\Windows\System32\spool\prtprocs\x64\hpcpp255.dll [848384 2021-03-03] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\WINDOWS\system32\HPMPW081.DLL [74016 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\WINDOWS\system32\hpmlm135.dll [237344 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\HPMLM225: C:\WINDOWS\system32\hpmlm225.dll [308224 2018-11-14] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\124.0.6367.91\Installer\chrmstp.exe [2024-04-26] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2011-09-09] (CyberLink -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2011-09-09] (CyberLink -> CyberLink)
StartupDir: C:\Users\HP\AppData\Local\Temp\1000150001\ <==== ATTENTION
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\0BXx1LL04O4jjvR0yiHzNybQ.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\0X48otkh9DN3ViYH1s4NOEBU.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\103yb2YiXpCpUQTgl77fXaw1.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\1HexBAHOTMGV7cChXVX8af1d.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\1mMVeOSPu1bGsWovDmovfuBv.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\1sdi2H8z30uvwZRFKGE1Jh5S.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\2E9EnXW0zFLtkKlExQNngYJx.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\2eBDNe7qOyJmPFEn0pRvlcCQ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\2TUqt8WleVGRbCGWEX7Niu5x.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\3uHwzR50rNIebGEWfvRDbUIM.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\54KLpBXVRknEL47VEOVahVYq.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\5OS2SW3ay3u4D0VH6hcNTtaA.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\6bfNvsFO9gwvzwDma6W1rUNd.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\6NBy1Sc8Se78xydG98bS2Cg9.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\6uBPZrXQQnzEyNxY0S4H23e5.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\7HMgauZ60mxMWzteORKkrv03.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\7nHLe3Q8kyE3Qwz6gdmhIBYp.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\7XoV6DPfdGS0qNjtw3dJJdEO.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\8BWbzbb4EeybL83m6i5DvrXI.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\8DxwWfXjwE5SGMmyf6rpiEwJ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\90eZmzVpBziZns9oK6jqwOtw.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\9d5vA8xuyBinLtP5pBmdpt3T.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\AaF5xDLIiHDW2GX44xCoadly.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ABTxgnFpW8xrXxIuOU2ScahH.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\AgiTz7vBLhqpdtpwF620tkuZ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\B6bos7nN9HnaqJuwz3qDPR8p.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\bIwqcSQ1eKRUiqWmts570VP9.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BNVFiPsmXTmVHv992rNs4Nj7.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BOC0Ad8jrcxedBj590AytOW2.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BqelAkjqtZbU2LDULZmFCWBn.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BrbOpYGYE3pO8CzIp2C6KtwP.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\bWqvITPbSsWqQIR1X5vY2u8P.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BxD0UhjL3yg0356MGEfU7M9V.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\C3PyhGqso3fc849oNEi9ETHt.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\c6eEP777CwdkSNd7bQZLRaU0.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ClZlrvUDR1v91IKw7oEEJC7e.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\cTQvHCk4DYm7OPLoByBIKTeo.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\cVyrHhii48deWsN1jYNfFVD5.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\dJ2KRWpRzCMBev8jPNjC6YrJ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\eBUXtexwjFwSAjhY8OTSfaBG.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\EdgeMS131.lnk [2024-04-28] <==== ATTENTION
ShortcutTarget: EdgeMS131.lnk -> C:\Users\HP\AppData\Local\Temp\EdgeMS131_999e43077df71fdfc52bd5232a22cf9d\EdgeMS131.exe () [Fichier non signé] <==== ATTENTION
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\eEPBrYcFIkvXgbhD0DmG4tL8.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\explorer.lnk [2024-04-28]
ShortcutAndArgument: explorer.lnk -> C:\Users\HP\AppData\Roaming\explorer.exe =>
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\eyQy4o5C5Q7icFPHwI5BfjLu.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\f4nCfZQV3bzKeyrc5YEB7qTK.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\FBoBxUWCY4jzBNjuzG7svEfm.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\G2S4NyNQddE4hIkOyiae3B3d.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\g6NSGIeH26kHw0zFs3E8nORg.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\g7EjM4YCjH0phhcD4WL95qvh.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\gGu3Yq32UxEpu872gXuPu41y.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Gjf4IyeYHtH7oGL4bP1uC5JF.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\gmZsFhJF4X6DPmgGfdZEtEUl.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\GoGNGam9IdOYkam9hYASst6L.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Gt8vR5GJCURAEuNeLAq7Gorf.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\h9LkqN2sT88oQhGkp6rpxKnp.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\hckbUtSxBEoEgpMYawpEdA0g.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\HdBupfLTAh5gVxYLUQ3wmyMJ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\HZwGQ6dCIHOLJhn1Q00AcFqF.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\I2j9dWriC5bf1IVdBAHmfqJo.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ifRCQj5GrgqQDZtGtfwihX9P.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\iTS34le02IUtiahKgUEqsGBq.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\IyWe32OJaPKFf9ddTEh42bnD.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\JkZFnuqWOTo7iH7TLgOXdkck.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\JMRhwgBHhPsGxAAMTxS2L0mn.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\KBPMvTxZzcZmW3r7yWkIphYZ.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\KmDCcftnkfqHk5gnBpFnW7NJ.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\KUS2tRYclwLfuYktBQri2KZg.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Kw02UVxx9TWtxZIklWp47aEJ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\kxFCNn9sM3lHVs2SIsnO60bj.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\l0pV8Rix3bQ8oUZHEpmZ076b.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\LFhZ7SrAtFZVPboFqW2gKaxz.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\LiOziktjXdGMvs9jsAAUkRUO.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\loJgWXpawEucCeWuMeBA6JKJ.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\LTcNiq0GeAcLo8nWrF6XyXDe.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\lxZ44n402DZMWVzO8zYUNLmD.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\M1D2pQ8A74T9XI6dbiz63yOe.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\MfaQfvCBAfbnkzDCvbZCT9k6.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\mmNAWzMnlw0uUY59hPy4NQf9.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\mu7DtoIMSxkuZtOV36q2ZJqB.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\n8j1yzzI4HTnGMHT1EpT6qmX.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\nArhbSDRImx4GGeth0H21n54.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\nEFXpKRWb1mBVm7wpbPmPiO8.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\NewB.exe [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\nHx4ujPJsAvPNgveqilfVal4.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\NvrjTkXSuM3UHOUUmVsaC6DF.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\NWj1KACfdxvqHwwzpPh0qiba.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\OcYc3pJtA9Ipl4uDK9i7PX02.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Op4Y2GtbH2a8SoZa7U670re6.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ovRzaoaZKMK55mGy4NaQZC9J.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ow97JIh5yvMf9T24dH1JNXa9.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\p8GrJuA1aJ8BZAElCUnfEsRb.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\P8lGP71aiinJRRlG8I6Y3TbY.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\PBm4h2OHwbMkkVz37k8fJX4q.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\PfRkZjkybo9RQp5wERj0Q3Hl.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\PowerExpertNT.lnk [2024-04-26] <==== ATTENTION
ShortcutTarget: PowerExpertNT.lnk -> C:\Users\HP\AppData\Local\Temp\PowerExpertNT\PowerExpertNT.exe () [Fichier non signé] <==== ATTENTION
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\PRIp14lw2eaRz2OhlVlCSrQC.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\qa5slPdidTnfyT30opKVvL9i.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\QDkJrbk8zaMKMWi7Nb2TU3Uk.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\qpdwjoXp5I2tCeqA41PpRlMi.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\r5kOljEyZuA8olfqATOa2QdT.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\r7yxt8rm0tNT9lrphbThY65G.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\RfTLHFSJ1nR0qsSwwiSoz0yH.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\RLZFjMyD7dXM8O8KjbNfAPzT.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\RQkuhMYQSEY6kbQn7ZtsWm0q.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\s0PfbTNoHZvogxFFRcoUtdLC.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\scsED6fSkqY87ZEYOPhIlJbn.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\sdOq5P2gaZ9B7j3JzhTI60Xt.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\se706VN6Uz5ziIirbCNutHvb.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ShYUAB0TqDaGsY1SRwhBzh1P.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\SWogwF4CsvEuhSyCM4Ygvbuh.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Tpsob9RMMAtnPfkLYLWunzyO.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\UPw0qsOqNShNhMrC5ngecu1O.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\v1ziPrFmwsYkViMPxawnrSZN.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\vBHtgAXgIDVokbTBxU1905yH.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\vJGkIGC7hWfSeLSltvD34JnZ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\vq70SyUnnu8ffdgzc1VuEKLQ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\VSvpG5dJ2g79Z8KWbKkFaCiP.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\vVdUoLBySTsG8CxrQaDtztLa.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\W5bjQYAq4bnTHaoORd4jtQEu.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\WFwDENRYhuFsC0M8gp8HuA8y.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\wiTliP0IK9z0xSk898lbMS6S.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\wk9yfJoFNLg3HlGRxHk7t99B.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\wvGNRqFhkBqwebChMuee70HC.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\wYX8MF6lpmPGm7bSGKGzIQCN.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\X3cqqRvpxhbawTb04Z5EKEZS.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\XBn4sKWUcuVRaeMLNHmP6HPB.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\XvL1QRMDkW9A1yzZc6clrDug.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\yZZs2tW0wKxzDxvdwBiIElCE.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\zR03ocYMTuJepUdZV7TLG2f6.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\zTXHSWfHr7WigNL2AcoOcMQg.bat [2024-04-28] () [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-02-12]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy\User: Restriction - Edge <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {14949FE4-0EB2-48A3-AA83-FA2CF26C2157} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {D1DE90FA-648D-4E30-8A5D-181ACE6A4529} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe [1471032 2020-08-12] (Adobe Inc. -> Adobe)
Task: {25ED18E7-0AAD-4A6F-BEA7-6FDDAB8EB31A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-12] (Adobe Inc. -> Adobe)
Task: {3B7D39A8-820F-4AC3-A723-1C724F5954D3} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-08-01] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D0A781BC-2A2A-45FA-8741-890856DD4F19} - System32\Tasks\AVG\Wonyxa => C:\WINDOWS\system32\RUNDLL32.EXE [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files (x86)\MetadataChan\CetoitPhoto\C:\PROGRA~2\METADA~1\CETOIT~1\NGOWFF~1.DLL,CIBP_MGCanwMa8614
Task: {BBA80B4A-9903-4756-91E9-2D5B77DE624B} - System32\Tasks\beuYBzgGTLbmn2 => C:\Windows\System32\forfiles.exe [52224 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> /p C:\WINDOWS\system32 /m wscript.exe /c "cmd /C @FNAME ^"C:\ProgramData\pICeQFkDCDDquYVB\XhzdNSu.wsf^""
Task: {74014AE2-A87F-4770-ADE7-3B8D8B1B751D} - System32\Tasks\bwrroZoeZRoQVpyAcj => C:\Users\HP\AppData\Local\Temp\AjftBdcqEhUoRKcxg\EmHZJQvMUXyMfbh\phGHgFI.exe -> C:\Users\HP\AppData\Local\Temp\AjftBdcqEhUoRKcxg\EmHZJQvMUXyMfbh\ZO /KJsite_idKZR 525403 /S <==== ATTENTION
Task: {533C258B-DAB5-4B2C-B55C-D200CDFC099B} - System32\Tasks\chrosha => C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe [1887744 2024-04-28] () [Fichier non signé] <==== ATTENTION
Task: {1448591F-0B8A-4195-A1B5-340AE0A99D27} - System32\Tasks\csrss => C:\Windows\rss\csrss.exe [4365688 2024-04-25] (522a29533d3f200e2d1728300c141021081631313626321023042b113f2d26353224 -> ) [Fichier non signé] <==== ATTENTION
Task: {E7BF67DA-DEBC-4447-9919-79CE0AC060F0} - System32\Tasks\explorer => C:\Users\HP\AppData\Roaming\explorer.exe [51200 2024-04-28] () [Fichier non signé] <==== ATTENTION
Task: {0B57DBC5-883E-4E86-827E-0290265A5736} - System32\Tasks\explorta => C:\Users\HP\AppData\Local\Temp\5454e6f062\explorta.exe [1871360 2024-04-28] () [Fichier non signé] <==== ATTENTION
Task: {4EDC7968-8FAA-47CB-9832-14E84B961C3E} - System32\Tasks\fWcEirOkMoMQjrUKaey2 => C:\WINDOWS\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\ecOJmsgAHWlsC\OrtdXZq.dll",#1 <==== ATTENTION
Task: {BFB679D9-2980-4786-9C78-98239AEBB8B2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6425.0{4AC32DC4-89A5-4AF4-A4D4-6291C6AE4B9D} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
Task: {C8C3A572-AF17-4FEC-BFA5-F080743210F4} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64464 2024-03-14] (HP Inc. -> HP Inc.)
Task: {0C6307DE-D4A6-4764-9835-183E762DEEDC} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64464 2024-03-14] (HP Inc. -> HP Inc.)
Task: {054FEDBF-5D8A-481C-8EDC-35F3733B1630} - System32\Tasks\HtmGfIeJlxktuW => C:\WINDOWS\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\epoBtGYzqLvU2\wADbmeNGxMTMf.dll",#1 <==== ATTENTION
Task: {D2A490D1-C24B-46EB-8AFF-E22BCD12D9C7} - System32\Tasks\JHJXtPPPvDXVqpH2 => C:\WINDOWS\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\zgoZGMcaU\AbeGMM.dll",#1 <==== ATTENTION
Task: {7676A68F-3F0F-42E2-9BB8-519319275F8D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {58B8D55D-F255-45BB-82DC-45740FBB80D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {84842E55-E320-4130-BE60-BEE6AC1468F1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3088387-FD2B-4E4B-BB1C-604E61034227} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => %windir%\system32\EOSNotify.exe (Pas de fichier)
Task: {E78667A8-375D-447F-8026-3A633172BA63} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002Core => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {30462DD4-3E60-4454-BB06-956E8D32A0DF} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002UA => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE98E6A4-C548-42AF-9A01-AF5DE07B1B3A} - System32\Tasks\MPGPH131 HR => C:\ProgramData\MPGPH131\MPGPH131.exe [2157072 2024-04-25] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
Task: {EBD39E36-2B9C-4C08-9741-794C2330AAB2} - System32\Tasks\MPGPH131 LG => C:\ProgramData\MPGPH131\MPGPH131.exe [2157072 2024-04-25] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
Task: {35CB05C0-530A-4389-9A93-6FFC66C7E887} - System32\Tasks\NewB.exe => C:\Users\HP\AppData\Local\Temp\1000150001\NewB.exe [428544 2024-04-28] () [Fichier non signé] <==== ATTENTION
Task: {50383569-9CDE-4E85-A1C2-7D1F83AC3565} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2022-11-22] () [Fichier non signé]
Task: {1AE85F24-6F30-434B-B746-334423CE8DA9} - System32\Tasks\Opera scheduled assistant Autoupdate 1547232229 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [1581984 2024-04-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\HP\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {E4DE4829-F926-45A6-8F6C-91F5B806F7DE} - System32\Tasks\Opera scheduled Autoupdate 1535353816 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [1581984 2024-04-25] (Opera Norway AS -> Opera Software)
Task: {CAC1AC12-6C4E-435C-A04B-56E58A6B617B} - System32\Tasks\Service\Data => C:\Users\HP\AppData\Roaming\ServiceData\Davonevur.exe [947288 2022-09-19] (AutoIt Consulting Ltd -> AutoIt Team) -> "C:\Users\HP\AppData\Roaming\ServiceData\Davonevur.jpg"
Task: {42A791F3-9C3C-4AC2-854F-74257C50C078} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {7C4D0115-B6A6-4E6A-B7F2-D792A20FAACC} - System32\Tasks\WinTrackerSP HR => C:\ProgramData\WinTrackerSP\WinTrackerSP.exe [5857792 2024-04-25] () [Fichier non signé] <==== ATTENTION
Task: {601EE07A-4732-4719-8C64-CE3E5534EC62} - System32\Tasks\WinTrackerSP LG => C:\ProgramData\WinTrackerSP\WinTrackerSP.exe [5857792 2024-04-25] () [Fichier non signé] <==== ATTENTION
Task: {3933E8B7-83C5-4325-875A-D373EA464167} - System32\Tasks\ykYfCTTujiceFdOqI2 => C:\WINDOWS\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\HwnzDfNzNWHpPtLDwZR\lsHkdLD.dll",#1 <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\bwrroZoeZRoQVpyAcj.job => C:\Users\HP\AppData\Local\Temp\AjftBdcqEhUoRKcxg\EmHZJQvMUXyMfbh\phGHgFI.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\chrosha.job => C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\explorta.job => C:\Users\HP\AppData\Local\Temp\5454e6f062\explorta.exe <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.179.124
Tcpip\..\Interfaces\{2d1165ea-6aa4-44b2-a629-93a25320ca1b}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}: [DhcpNameServer] 192.168.17.138
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\0534D275946494: [DhcpNameServer] 192.168.4.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\0534D275946494: [DhcpDomain] hg232f
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\147454E43454F534F4D4D45425349414C454: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D413: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D423: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D433: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4D22554: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4D22554: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4F53454251434: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425D275946494D205F405: [DhcpNameServer] 192.168.3.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425D275946494D205F405: [DhcpDomain] hg232f
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425F5E45445: [DhcpNameServer] 195.24.192.33 8.8.8.8 4.2.2.2
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\34564727F6E6F554267716: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\34D46534D2B425942494: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\659405: [DhcpNameServer] 8.8.8.8 195.24.192.33
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\659405F575966696: [DhcpNameServer] 8.8.8.8 195.24.192.33
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\6594C4C4147454D23414E4D254247514: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\74942424543535: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\75962756C6563737F534845434D284F4D454: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\75962756C6563737F534845434D284F4D454: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D42535F5E4544575F425B4: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D42535F5E4544575F425B4: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D4966496F5231483531443: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\E474243535: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{916f698f-43b6-4801-bd8a-608fc82deabe}: [NameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{aa3e770d-ec2b-445d-b974-d30e06074a1d}: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{aa3e770d-ec2b-445d-b974-d30e06074a1d}: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{aa83eb97-8e72-4504-997c-a105cf19541e}: [NameServer] 192.168.200.53
Tcpip\..\Interfaces\{c2ba781b-75c7-457b-b301-9eb4f83fd4a4}: [NameServer] 195.24.192.33,8.8.8.8
Tcpip\..\Interfaces\{f58d751f-e049-48cb-99fc-e9addf8cb3e8}: [DhcpNameServer] 192.168.179.124
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-28]
Edge Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2024-04-17]
Edge Extension: (YoutubeDownloader) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\geiolieogaichbpfhcannipendgnnbkn [2024-04-28] [UpdateUrl:hxxps://clients27.google.com/service/update2/crx] <==== ATTENTION
Edge Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-17]
Edge Extension: (Edge relevant text changes) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge HKLM-x32\...\Edge\Extension: [fdhgeoginicibhagdmblfikbgbkahibd]
FireFox:
========
FF DefaultProfile: ib75jhl9.default-1685967659881
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 -> hxxps://find-it.pro/?utm_source=distr_m
FF Session Restore: Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iapdqss9.default-release-5 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\iapdqss9.default-release-5 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\iapdqss9.default-release-5 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iapdqss9.default-release-5\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 -> hxxps://192.168.18.51/basicframe
FF Notifications: Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> hxxps://192.168.18.51/basicframe
FF NetworkProxy: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\gk42c1l4.default-release-4\searchplugins\cdnsearch.xml [2024-04-28]
FF Extension: (Pas de nom) - C:\Program Files\Mozilla Firefox\browser\features\{85FD6ACE-3736-491B-8514-6C8C9556E131}.xpi [2024-04-28] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @FortinetCacheClean -> C:\Program Files (x86)\Fortinet\FortiClient\npccplugin.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @FortinetCacheCleanEx -> C:\Program Files (x86)\Fortinet\FortiClient\npccpluginex.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @FortinetTunnelControl -> C:\Program Files (x86)\Fortinet\FortiClient\nptcplugin.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2024-04-28]
CHR Extension: (Torrent Scanner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-01-31]
CHR Extension: (Google Sheets Offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blomfhkjjolopkkglifoclbjmbbambpg [2024-04-28] [UpdateUrl:hxxps://clients15.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-13]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-04-03]
CHR Extension: (Online Security) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2024-04-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-20]
CHR Extension: (Google Docs) - C:\Users\HP\AppData\Local\PH\llg [2024-04-25]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-12] (Adobe Inc. -> Adobe)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5323592 2024-04-11] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
R2 EventGuide 1.3.11.66; C:\ProgramData\EventGuide 1.3.11.66\EventGuide 1.3.11.66.exe [2389507 2024-04-25] (FlappingWings) [Fichier non signé] <==== ATTENTION
S2 FA_Scheduler; C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe [119826 2018-01-08] (Fortinet Inc.) [Fichier non signé]
R2 fsulhoster; C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe [738256 2024-04-25] (WithSecure Oyj -> WithSecure Corporation)
R2 fsulnethoster; C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe [738256 2024-04-25] (WithSecure Oyj -> WithSecure Corporation)
R2 fsulorsp; C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fsorsp64.exe [109432 2024-04-25] (WithSecure Oyj -> F-Secure Corporation)
S2 GoogleUpdaterInternalService126.0.6425.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6425.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [889400 2024-04-05] (McAfee, LLC -> McAfee, LLC)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SolarWinds TFTP Server; C:\Program Files (x86)\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe [76160 2023-05-16] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
R2 SWBrowserIntegration; C:\Program Files (x86)\SolarWinds\Toolset\SWBrowserIntegration.exe [53072 2024-01-11] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-09-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-09-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefender; C:\WINDOWS\windefender.exe [2103296 2024-04-25] (Accès refusé) [Fichier non signé] <==== ATTENTION
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
U3 wuauserv; C:\WINDOWS\system32\svchost.exe [55456 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
U3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [46544 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S2 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]
S2 HPPrintScanDoctorService; "C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe" [X]
S4 VBoxGuest; VBoxGuest [X]
S4 VBoxMouse; VBoxMouse [X]
S4 VBoxService; VBoxService [X]
S4 VBoxSF; VBoxSF [X]
S4 VBoxVideo; VBoxVideo [X]
S4 VBoxWddm; VBoxWddm [X]
S2 wzptgcdn; C:\WINDOWS\SysWOW64\wzptgcdn\gsaxdqwu.exe /d"C:\Users\HP\Documents\SimpleAdobe\pARs_emVHGId3FtlQP7VI728.exe"
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 bcmsmbsp; C:\WINDOWS\System32\drivers\bcmsmbsp.sys [53024 2015-07-10] (Broadcom Corporation -> Broadcom Corporation.)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 EMP_MIRRUD; C:\WINDOWS\System32\drivers\EMP_MirrUD.sys [5632 2011-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [18000 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [45792 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [37456 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R0 fortiloader; C:\WINDOWS\System32\drivers\fortiloader.sys [12368 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 fortimon3; C:\WINDOWS\System32\drivers\fortimon3.sys [48208 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [147536 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 FortiRdr; C:\WINDOWS\System32\drivers\FortiRdr2.sys [47184 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [72272 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [92240 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R3 FortiWF; C:\WINDOWS\System32\drivers\FortiWF2.sys [42576 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [66600 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [71928 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr64.sys [37112 2015-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 mdareDriver_63; C:\Program Files (x86)\Fortinet\FortiClient\mdare64_63.sys [106064 2024-01-26] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [78376 2023-04-27] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [328784 2023-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55872 2023-09-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-09-04] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-09-04] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
U1 aswbdisk; pas de ImagePath
S3 eppvad_simple; \SystemRoot\system32\drivers\EMP_UDAU.sys [X]
S3 FortiDeviceGuard; \SystemRoot\System32\drivers\FortiDeviceGuard.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 mdareDriver_62; \??\C:\Users\HP\AppData\Local\Temp\FCPreScan\mdare64_62.sys [X] <==== ATTENTION
S3 mdareDriver_64; \??\C:\Program Files (x86)\Fortinet\FortiClient\mdare64_64.sys [X]
U4 npcap_wifi; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-28 20:15 - 2024-04-28 20:15 - 000461825 _____ C:\Users\HP\AppData\Local\XdtfStovibgtUDkwrzUSrX71.exe
2024-04-28 20:14 - 2024-04-28 20:14 - 000007446 _____ C:\Users\HP\AppData\Local\iREdbBASeKmWac8TSL5uQnM8.exe
2024-04-28 20:07 - 2024-04-28 20:07 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\Z7CP4tnlgqVLmd49GGEgfPAf.exe
2024-04-28 20:07 - 2024-04-28 20:07 - 004448940 _____ C:\Users\HP\AppData\Local\nkMasGmrKS8mOJIbgAI92XGK.exe
2024-04-28 20:00 - 2024-04-28 20:00 - 000461825 _____ C:\Users\HP\AppData\Local\X1fbMrzvWkYxHrXAasjwB8ni.exe
2024-04-28 19:59 - 2024-04-28 19:59 - 000007446 _____ C:\Users\HP\AppData\Local\mOnXxYRlerK67ffpzw8WKH4D.exe
2024-04-28 19:47 - 2024-04-28 19:47 - 000461825 _____ C:\Users\HP\AppData\Local\VqfFF1OTwKtKMon2QIEFOJJW.exe
2024-04-28 19:47 - 2024-04-28 19:47 - 000007446 _____ C:\Users\HP\AppData\Local\wbFC0YXNf2IJ7s70jmvqMKtY.exe
2024-04-28 19:42 - 2024-04-28 19:42 - 000060855 _____ C:\Users\HP\Desktop\Shortcut.txt
2024-04-28 19:40 - 2024-04-28 19:40 - 004861940 _____ C:\Users\HP\AppData\Local\kXQ6siMbcR6QerL5Rh5vlb3s.exe
2024-04-28 19:37 - 2024-04-28 19:37 - 000461825 _____ C:\Users\HP\AppData\Local\ZB6r9WgRpqw5oEHRoGEQP68E.exe
2024-04-28 19:36 - 2024-04-28 19:36 - 000007446 _____ C:\Users\HP\AppData\Local\hYqH0U7SR1gfpCyhjPGplDVJ.exe
2024-04-28 19:33 - 2024-04-28 19:33 - 008388608 _____ C:\Users\HP\AppData\Local\agPUy14abuntllnmr6jAXtGj.exe
2024-04-28 19:32 - 2024-04-28 19:32 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\TpvjziTvRrhBWOssafJF9Fmg.exe
2024-04-28 19:30 - 2024-04-28 19:42 - 000079886 _____ C:\Users\HP\Desktop\Addition.txt
2024-04-28 19:30 - 2024-04-28 19:30 - 005910528 _____ C:\Users\HP\AppData\Local\lQonoAjarLH6ZRh7j7ub5sEe.exe
2024-04-28 19:28 - 2024-04-28 19:28 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\QunEFBdeTaiuJr3JT4CaL7pY.exe
2024-04-28 19:26 - 2024-04-28 19:26 - 000461825 _____ C:\Users\HP\AppData\Local\78299ttiBFcyFOdBdzea7jKm.exe
2024-04-28 19:25 - 2024-04-28 19:25 - 000007446 _____ C:\Users\HP\AppData\Local\GV2K76qVG8ixEwErKCXHPh1V.exe
2024-04-28 19:21 - 2024-04-28 19:21 - 000461825 _____ C:\Users\HP\AppData\Local\8YW7t3OBtqEewY4tTSTZz6Db.exe
2024-04-28 19:20 - 2024-04-28 20:15 - 000063027 _____ C:\Users\HP\Desktop\FRST.txt
2024-04-28 19:20 - 2024-04-28 19:20 - 000007446 _____ C:\Users\HP\AppData\Local\fvbyGk4usqbJkCzY6mQmyk3q.exe
2024-04-28 19:16 - 2024-04-28 19:16 - 000461825 _____ C:\Users\HP\AppData\Local\g8DwUhxil5oKaDIzCoWDKwf2.exe
2024-04-28 19:15 - 2024-04-28 19:15 - 000007446 _____ C:\Users\HP\AppData\Local\FsnyB7ZavIZrAhyGnkVihmkO.exe
2024-04-28 19:12 - 2024-04-28 19:14 - 002394112 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2024-04-28 18:18 - 2024-04-28 18:18 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\BIDMjuK1Ge76BKs3duesu4yI.exe
2024-04-28 18:16 - 2024-04-28 18:16 - 005910528 _____ C:\Users\HP\AppData\Local\HZVgcjWcBcJbz8suO4R2u22G.exe
2024-04-28 18:14 - 2024-04-28 18:14 - 000461825 _____ C:\Users\HP\AppData\Local\fPqHEj0jIzkvw3GdbV4ghJgd.exe
2024-04-28 18:11 - 2024-04-28 18:11 - 000007446 _____ C:\Users\HP\AppData\Local\l9UuZMwDPFEi1HSXvdi1nT6T.exe
2024-04-28 18:09 - 2024-04-28 18:09 - 005774740 _____ C:\Users\HP\AppData\Local\pzmgOdwhAFDfWF2btYYLCTUp.exe
2024-04-28 18:08 - 2024-04-28 18:08 - 004393872 _____ C:\Users\HP\AppData\Local\0ZsFMVlQvmzKEFn4w4XN2zgE.exe
2024-04-28 18:08 - 2024-04-28 18:08 - 003644048 _____ C:\Users\HP\AppData\Local\Qfu9YSCkfdksFvjFGDk5Mzlh.exe
2024-04-28 18:02 - 2024-04-28 18:02 - 000461825 _____ C:\Users\HP\AppData\Local\UMzmC4sfWJ94x8UoFO0zNtsk.exe
2024-04-28 18:01 - 2024-04-28 18:01 - 000007446 _____ C:\Users\HP\AppData\Local\K9ngG6fbRlhRnFunowe6xJt0.exe
2024-04-28 17:56 - 2024-04-28 17:56 - 005910528 _____ C:\Users\HP\AppData\Local\t1zLrsjcRxkxEFegvrKJ0LmN.exe
2024-04-28 17:52 - 2024-04-28 17:52 - 000461825 _____ C:\Users\HP\AppData\Local\VqYS73AAo55EHDTo6Q8VoGwS.exe
2024-04-28 17:51 - 2024-04-28 17:51 - 000007446 _____ C:\Users\HP\AppData\Local\g7qgpZQzN9eORFjkYfcW6B7J.exe
2024-04-28 17:50 - 2024-04-28 17:50 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\WlUQTKWxQ7vXGI0jSz8e0gZG.exe
2024-04-28 17:48 - 2024-04-28 17:48 - 005672540 _____ C:\Users\HP\AppData\Local\2uWSaZy1lGLVCjGreA8BVQiL.exe
2024-04-28 17:36 - 2024-04-28 17:36 - 000462337 _____ C:\Users\HP\AppData\Local\3sGP4IhgL8lkzv8dVrxiNz5k.exe
2024-04-28 17:34 - 2024-04-28 17:34 - 000007446 _____ C:\Users\HP\AppData\Local\kRHpPZv4qCvCRcs2JSIEk0GX.exe
2024-04-28 17:25 - 2024-04-28 17:25 - 000462337 _____ C:\Users\HP\AppData\Local\ViYLzCamD1dc4Nkf6DYHnqso.exe
2024-04-28 17:24 - 2024-04-28 17:24 - 000007446 _____ C:\Users\HP\AppData\Local\waSZyhdyxrvC5aMELgaZodQ2.exe
2024-04-28 17:21 - 2024-04-28 17:21 - 004045740 _____ C:\Users\HP\AppData\Local\TR5SP9DktfCxbWyektnYdT1b.exe
2024-04-28 17:20 - 2024-04-28 17:20 - 008388608 _____ C:\Users\HP\AppData\Local\p56Xtx07w4zHCxbxP29XVdtw.exe
2024-04-28 17:15 - 2024-04-28 17:15 - 001391232 _____ C:\Users\HP\AppData\Local\UdOyRgc4QncO42l24JVSUC96.exe
2024-04-28 17:09 - 2024-04-28 17:09 - 000462337 _____ C:\Users\HP\AppData\Local\uJy0mmVd5LOMYqZ4C6Suv8MA.exe
2024-04-28 17:09 - 2024-04-28 17:09 - 000007446 _____ C:\Users\HP\AppData\Local\FrsRq115hMk2sl9PFVNmG0Q1.exe
2024-04-28 17:06 - 2024-04-28 17:06 - 000462337 _____ C:\Users\HP\AppData\Local\3KaaubNgzQPOmoyzaryqamPu.exe
2024-04-28 17:05 - 2024-04-28 17:05 - 000188740 _____ C:\Users\HP\AppData\Local\IozpLuFWHOcvwAl3ARFUOwGo.exe
2024-04-28 17:03 - 2024-04-28 17:03 - 000007446 _____ C:\Users\HP\AppData\Local\kUSxvH4lOC4DOoJXUEoX5ApS.exe
2024-04-28 16:37 - 2024-04-28 16:37 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\0FEwecVEcs574Da5dn6suI8m.exe
2024-04-28 16:36 - 2024-04-28 16:36 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\mkDe9cyjeMAcBQCzrypTAEfR.exe
2024-04-28 16:36 - 2024-04-28 16:36 - 005910528 _____ C:\Users\HP\AppData\Local\0yUxFiuXWf6fJONlXuVRz1vQ.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 004393864 _____ C:\Users\HP\AppData\Local\KAdLbj1G3wDJJz2Voanm50Zz.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 004393864 _____ C:\Users\HP\AppData\Local\BghPOA9n3Os78imFn6Y9txNi.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 000462337 _____ C:\Users\HP\AppData\Local\OMpMo8kkYiW0IsJ8ZgmN3Xgs.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 000007446 _____ C:\Users\HP\AppData\Local\MEXnjSD2G6be1ez2l5Pl0LcD.exe
2024-04-28 16:26 - 2024-04-28 16:26 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\yIMupCzwl7aenoWZEC7UOhxN.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 008388608 _____ C:\Users\HP\AppData\Local\u6VJKcYXs94pRTIWp5aA2PAi.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\Tf4vWhyWs4fOmHTAVT3jlCvs.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 005910528 _____ C:\Users\HP\AppData\Local\SUi5PUCNXVhK7zHnx5fcKXzg.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 004393864 _____ C:\Users\HP\AppData\Local\pwrbxD9xnYrRwPAmFDyV6xcG.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 004393864 _____ C:\Users\HP\AppData\Local\kTozY21aDBxsKM3lEowkJBv3.exe
2024-04-28 16:24 - 2024-04-28 16:24 - 000462337 _____ C:\Users\HP\AppData\Local\uR89HngXmizQMLDoo3zQxWYO.exe
2024-04-28 16:24 - 2024-04-28 16:24 - 000007446 _____ C:\Users\HP\AppData\Local\XughcIFWQBFVRZeZgruah7jZ.exe
2024-04-28 16:23 - 2024-04-28 16:23 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\OrDwNcvKgCwIxkCqQaR43zGg.exe
2024-04-28 16:21 - 2024-04-28 16:21 - 005910528 _____ C:\Users\HP\AppData\Local\PAcFZRP4O91DfyS288ywS9AT.exe
2024-04-28 16:20 - 2024-04-28 16:20 - 004393864 _____ C:\Users\HP\AppData\Local\O9CoGzPG1rUN77vwrCuVdqoF.exe
2024-04-28 16:20 - 2024-04-28 16:20 - 004393864 _____ C:\Users\HP\AppData\Local\hAxmiwOAFxHXOZEjROjKFZmz.exe
2024-04-28 16:19 - 2024-04-28 16:19 - 000462337 _____ C:\Users\HP\AppData\Local\l8uT4BvGS22uNTQBO3OTIAZ8.exe
2024-04-28 16:19 - 2024-04-28 16:19 - 000007446 _____ C:\Users\HP\AppData\Local\rw3DiQTJzmF9mYnylzzUrIg0.exe
2024-04-28 15:49 - 2024-04-28 15:49 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\XgX9WZ5ct4XPUrEbq3b41kZd.exe
2024-04-28 15:44 - 2024-04-28 15:44 - 001283540 _____ C:\Users\HP\AppData\Local\DFYZnnhBKDTlBgNCws9ZAeBb.exe
2024-04-28 15:40 - 2024-04-28 15:40 - 000462337 _____ C:\Users\HP\AppData\Local\qd6yoIK6WMojIaj9R0wpzrXX.exe
2024-04-28 15:37 - 2024-04-28 15:37 - 000007446 _____ C:\Users\HP\AppData\Local\wShAZfVHJqu6ipBDkywy2UcG.exe
2024-04-28 15:31 - 2024-04-28 15:31 - 000051200 _____ C:\Users\HP\AppData\Roaming\explorer.exe
2024-04-28 15:31 - 2024-04-28 15:31 - 000003528 _____ C:\WINDOWS\system32\Tasks\explorer
2024-04-28 15:28 - 2024-04-28 15:29 - 000000000 ___HD C:\Users\HP\AppData\Roaming\configurationValue
2024-04-28 15:25 - 2024-04-28 18:11 - 000000000 ____D C:\Users\HP\1000017002
2024-04-28 15:24 - 2024-04-28 15:24 - 000002958 _____ C:\WINDOWS\system32\Tasks\chrosha
2024-04-28 15:24 - 2024-04-28 15:24 - 000000278 _____ C:\WINDOWS\Tasks\chrosha.job
2024-04-28 15:23 - 2024-04-28 15:23 - 000003026 _____ C:\WINDOWS\system32\Tasks\fWcEirOkMoMQjrUKaey2
2024-04-28 15:23 - 2024-04-28 15:23 - 000000000 ____D C:\Program Files (x86)\qIYKRzUEasUn
2024-04-28 15:22 - 2024-04-28 15:23 - 000000000 ____D C:\Program Files (x86)\ecOJmsgAHWlsC
2024-04-28 15:22 - 2024-04-28 15:22 - 000003356 _____ C:\WINDOWS\system32\Tasks\HtmGfIeJlxktuW
2024-04-28 15:22 - 2024-04-28 15:22 - 000003164 _____ C:\WINDOWS\system32\Tasks\beuYBzgGTLbmn2
2024-04-28 15:22 - 2024-04-28 15:22 - 000003034 _____ C:\WINDOWS\system32\Tasks\ykYfCTTujiceFdOqI2
2024-04-28 15:22 - 2024-04-28 15:22 - 000003008 _____ C:\WINDOWS\system32\Tasks\JHJXtPPPvDXVqpH2
2024-04-28 15:22 - 2024-04-28 15:22 - 000000000 ____D C:\ProgramData\pICeQFkDCDDquYVB
2024-04-28 15:22 - 2024-04-28 15:22 - 000000000 ____D C:\Program Files (x86)\HwnzDfNzNWHpPtLDwZR
2024-04-28 15:22 - 2024-04-28 15:22 - 000000000 ____D C:\Program Files (x86)\epoBtGYzqLvU2
2024-04-28 15:17 - 2024-04-28 15:17 - 000002962 _____ C:\WINDOWS\system32\Tasks\explorta
2024-04-28 15:17 - 2024-04-28 15:17 - 000000280 _____ C:\WINDOWS\Tasks\explorta.job
2024-04-26 17:21 - 2024-04-28 15:22 - 000000000 ____D C:\Program Files (x86)\zgoZGMcaU
2024-04-26 17:16 - 2024-04-26 17:16 - 000013744 __RSH C:\ProgramData\ntuser.pol
2024-04-26 17:13 - 2024-04-26 17:13 - 000000016 _____ C:\ProgramData\swi4ad4db2a-76aa-4d43-a7a8-1c59f337a24e.txt
2024-04-26 11:15 - 2024-04-26 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds
2024-04-26 11:14 - 2024-04-26 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds Real-time NetFlow Analyzer
2024-04-26 10:33 - 2024-04-26 17:11 - 000000031 _____ C:\ProgramData\swiae82061a-c385-475c-8150-fc2ebca542a9.txt
2024-04-26 10:32 - 2024-04-26 10:36 - 000002231 _____ C:\Users\Public\Desktop\IP Network Browser.lnk
2024-04-26 10:32 - 2024-04-26 10:36 - 000002193 _____ C:\Users\Public\Desktop\Network Performance Monitor.lnk
2024-04-26 10:32 - 2024-04-26 10:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds Engineer's Toolset
2024-04-26 10:32 - 2024-04-26 10:32 - 000001146 _____ C:\Users\Public\Desktop\Toolset Launch Pad.lnk
2024-04-26 10:29 - 2024-04-26 11:15 - 000000000 ____D C:\Program Files (x86)\SolarWinds
2024-04-26 10:20 - 2024-04-26 10:20 - 000000000 ____D C:\Users\HP\AppData\Local\9bfc8001-33b6-487d-aa5e-ab02cace047e
2024-04-26 10:20 - 2024-04-26 10:20 - 000000000 ____D C:\Users\HP\AppData\Local\7b92a30e-bbc9-4c40-8476-a35e0c10acd0
2024-04-26 10:18 - 2024-04-28 15:03 - 000000000 ____D C:\ProgramData\SolarWinds
2024-04-26 10:17 - 2024-04-26 10:17 - 407553920 _____ (SolarWinds Worldwide, LLC.) C:\Users\HP\Downloads\SolarWinds-DesktopToolset-v2024.1.exe
2024-04-26 06:59 - 2024-04-26 06:59 - 000000000 ____D C:\Users\HP\AppData\Roaming\c1ec479e5342a2
2024-04-25 16:36 - 2024-04-25 16:36 - 000000356 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ussclean
2024-04-25 16:29 - 2024-04-25 16:36 - 000000000 ____D C:\ProgramData\F-Secure
2024-04-25 16:29 - 2024-04-25 16:29 - 013870328 _____ (F-Secure Corporation) C:\Users\HP\Downloads\F-SecureOnlineScanner.exe
2024-04-25 16:29 - 2024-04-25 16:29 - 000000000 ____D C:\Users\HP\AppData\Local\F-Secure
2024-04-25 16:29 - 2024-04-25 16:29 - 000000000 ____D C:\Users\HP\AppData\Local\FSDART
2024-04-25 16:29 - 2024-04-25 16:29 - 000000000 ____D C:\Program Files\F-Secure
2024-04-25 15:54 - 2024-04-26 07:09 - 000001379 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-04-25 15:54 - 2024-04-26 07:09 - 000001273 _____ C:\Users\HP\Desktop\ESET Online Scanner.lnk
2024-04-25 15:48 - 2024-04-25 15:53 - 008389496 _____ (ESET) C:\Users\HP\Downloads\esetonlinescanner.exe
2024-04-25 14:55 - 2014-12-14 11:57 - 000000024 _____ C:\ProgramData\media_9.1.3.7_longdesc.txt
2024-04-25 14:54 - 2024-04-25 14:54 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\DKm7V2KZKVWYawAgHGbph5n1.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 033554432 _____ C:\Users\HP\AppData\Local\C7FYr9AN5eKp9k1iu3ZkwtMX.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 029360128 _____ C:\Users\HP\AppData\Local\JP6iuKpRVAuDWhzF52XUC4ch.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 000017088 _____ C:\Users\HP\AppData\Local\pRTPzQoWYqaFcd3hiG900HCU.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 000017001 _____ C:\Users\HP\AppData\Local\RZUETAUemAyz9ibjQkDYhYG4.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000017046 _____ C:\Users\HP\AppData\Local\5ci5tb4faXhn7Vk5FBJaplT3.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000016986 _____ C:\Users\HP\AppData\Local\34SczZVbdAWwlV3IsNF2qSlK.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000007446 _____ C:\Users\HP\AppData\Local\fIDTscemnzXfKov70ySNk3wp.exe
2024-04-25 14:51 - 2024-04-25 14:51 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\ZwcZsSiqXaJL5GMxyQof71aR.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000017046 _____ C:\Users\HP\AppData\Local\zyr0CI1zkcG0CyH9aIBdLaty.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000016986 _____ C:\Users\HP\AppData\Local\KyJyAbxNxFnYMKoAJxqPAXOD.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000007446 _____ C:\Users\HP\AppData\Local\jsMmwI0cafxqT62bbqozVdqb.exe
2024-04-25 14:46 - 2024-04-25 14:46 - 001182996 _____ () C:\Users\HP\AppData\Local\xRzJLWJupIejTM1WFgRnPGJz.exe
2024-04-25 14:41 - 2024-04-25 14:41 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\XF7KebAvBrISzk3mDJqknTOv.exe
2024-04-25 14:41 - 2024-04-25 14:41 - 000007446 _____ C:\Users\HP\AppData\Local\ieMb7eHd1exjGmaifpxDowdC.exe
2024-04-25 14:40 - 2024-04-25 14:40 - 005690368 _____ () C:\Users\HP\AppData\Local\2mxoVPj1mgWVpCwNtEuely9Y.exe
2024-04-25 14:36 - 2024-04-25 14:36 - 000007446 _____ C:\Users\HP\AppData\Local\xhmu7QiKZZGxmFtIQRY7NHPY.exe
2024-04-25 14:35 - 2024-04-25 14:35 - 005690368 _____ () C:\Users\HP\AppData\Local\okR8nJ7x2JXzQNCvX8bE9zBk.exe
2024-04-25 14:31 - 2024-04-25 14:31 - 000007446 _____ C:\Users\HP\AppData\Local\PLbDumKE9y66wg8SDpfTb6oW.exe
2024-04-25 14:30 - 2024-04-25 14:30 - 005690368 _____ () C:\Users\HP\AppData\Local\lfSxg2W4nfyAIPmEU0aQmLHE.exe
2024-04-25 14:29 - 2024-04-25 14:29 - 008388608 _____ C:\Users\HP\AppData\Local\oL5tkx1AjQHOveDW1nnGRgwl.exe
2024-04-25 14:29 - 2024-04-25 14:29 - 005690368 _____ () C:\Users\HP\AppData\Local\jCE72Rg6rpnRneQ3H0mF5b42.exe
2024-04-25 14:26 - 2024-04-25 14:26 - 000007446 _____ C:\Users\HP\AppData\Local\A85obI5oo14Rv2kOzdi52Tz5.exe
2024-04-25 14:22 - 2024-04-28 15:57 - 000257872 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2024-04-25 14:22 - 2024-04-25 14:22 - 000000000 ____D C:\ProgramData\iolo technologies
2024-04-25 14:21 - 2024-04-25 14:21 - 002103296 ____H C:\WINDOWS\windefender.exe
2024-04-25 14:21 - 2024-04-25 14:21 - 000007446 _____ C:\Users\HP\AppData\Local\rQD116VgmDbdv7GRDCWVQ4Rt.exe
2024-04-25 14:19 - 2024-04-28 20:16 - 000003238 _____ C:\WINDOWS\system32\Tasks\csrss
2024-04-25 14:19 - 2024-04-28 15:57 - 002046288 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2024-04-25 14:18 - 2024-04-28 15:53 - 000608080 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2024-04-25 14:18 - 2024-04-25 14:18 - 000273668 _____ C:\Users\HP\AppData\Local\Kt96vqHFc5mT6h0Yg4oenhAy.exe
2024-04-25 14:16 - 2024-04-25 14:16 - 000007446 _____ C:\Users\HP\AppData\Local\zllDfLlcD61RBiro4tb1ttMs.exe
2024-04-25 14:16 - 2024-04-25 14:16 - 000000000 ___HD C:\WINDOWS\rss
2024-04-25 14:15 - 2024-04-28 15:52 - 000685392 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2024-04-25 14:13 - 2024-04-25 14:13 - 000143764 _____ C:\Users\HP\AppData\Local\wUPo91YCVFFyUW7NXVxWbIjg.exe
2024-04-25 14:12 - 2024-04-25 14:21 - 000000000 ____D C:\Users\HP\AppData\Local\PH
2024-04-25 14:11 - 2024-04-25 14:11 - 000007446 _____ C:\Users\HP\AppData\Local\qfiZt7XmwITBY9PF9U2RhpU1.exe
2024-04-25 14:09 - 2024-04-25 14:09 - 005690368 _____ () C:\Users\HP\AppData\Local\9QbtLv25OcTv1GwMdwTdnKNx.exe
2024-04-25 14:08 - 2024-04-25 14:08 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\G3xGSz5SufSLiSWymzM7MxTA.exe
2024-04-25 14:08 - 2024-04-25 14:08 - 000000000 ____D C:\Users\HP\AppData\Local\Yandex
2024-04-25 14:07 - 2024-04-25 14:07 - 000000000 ____D C:\Users\HP\AppData\Roaming\iolo
2024-04-25 14:07 - 2024-04-25 14:07 - 000000000 ____D C:\ProgramData\iolo
2024-04-25 14:06 - 2024-04-25 14:06 - 000007446 _____ C:\Users\HP\AppData\Local\znKB3uPsyhfgqLShd2Tfe4UQ.exe
2024-04-25 14:06 - 2024-04-25 14:06 - 000000000 ____D C:\Users\HP\AppData\Roaming\SecureClient
2024-04-25 14:04 - 2024-04-28 15:30 - 000003548 _____ C:\WINDOWS\system32\Tasks\NewB.exe
2024-04-25 14:03 - 2024-04-26 08:15 - 000000000 ____D C:\Users\HP\1000013002
2024-04-25 14:02 - 2024-04-28 15:20 - 000000000 ____D C:\Users\HP\AppData\Local\AdobeUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7
2024-04-25 14:02 - 2024-04-28 15:20 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7
2024-04-25 14:02 - 2024-04-28 15:18 - 000000000 ____D C:\Users\HP\AppData\Local\AdobeUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae
2024-04-25 14:02 - 2024-04-28 15:18 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae
2024-04-25 14:02 - 2024-04-28 15:17 - 000000000 ____D C:\Users\HP\AppData\Local\AdobeUpdaterV131_999e43077df71fdfc52bd5232a22cf9d
2024-04-25 14:02 - 2024-04-28 15:17 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_999e43077df71fdfc52bd5232a22cf9d
2024-04-25 13:53 - 2024-04-26 11:13 - 000000000 ____D C:\Users\HP\AppData\Local\RageMP131
2024-04-25 13:53 - 2024-04-25 13:53 - 000003508 _____ C:\WINDOWS\system32\Tasks\MPGPH131 HR
2024-04-25 13:53 - 2024-04-25 13:53 - 000003252 _____ C:\WINDOWS\system32\Tasks\MPGPH131 LG
2024-04-25 13:53 - 2024-04-25 13:53 - 000000000 ____D C:\ProgramData\MPGPH131
2024-04-25 13:23 - 2024-04-28 20:14 - 000000004 ____H C:\ProgramData\brc_66.dat
2024-04-25 13:23 - 2024-04-25 13:23 - 000000000 ____D C:\Users\HP\AppData\Local\SystemCache
2024-04-25 13:22 - 2024-04-28 20:07 - 000000128 ____H C:\ProgramData\resource-a.dat
2024-04-25 13:22 - 2024-04-25 13:56 - 000000508 _____ C:\WINDOWS\Tasks\bwrroZoeZRoQVpyAcj.job
2024-04-25 13:22 - 2024-04-25 13:22 - 000003052 _____ C:\WINDOWS\system32\Tasks\bwrroZoeZRoQVpyAcj
2024-04-25 13:22 - 2024-04-25 13:22 - 000000128 ____H C:\ProgramData\resource-b.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000008 ____H C:\ProgramData\bit_66.dat
2024-04-25 13:21 - 2024-04-26 15:18 - 000000000 ____D C:\WINDOWS\SysWOW64\wzptgcdn
2024-04-25 13:21 - 2024-04-26 10:22 - 000000000 ____D C:\Users\HP\AppData\Local\ExtreamFanV5
2024-04-25 13:21 - 2024-04-25 13:21 - 000003532 _____ C:\WINDOWS\system32\Tasks\WinTrackerSP HR
2024-04-25 13:21 - 2024-04-25 13:21 - 000003276 _____ C:\WINDOWS\system32\Tasks\WinTrackerSP LG
2024-04-25 13:21 - 2024-04-25 13:21 - 000000000 ____D C:\ProgramData\WinTrackerSP
2024-04-25 13:21 - 2024-04-25 13:21 - 000000000 ____D C:\ProgramData\EventGuide 1.3.11.66
2024-04-25 13:20 - 2024-04-26 09:11 - 000000000 ____D C:\Users\HP\AppData\Local\PCI Audio Star
2024-04-25 13:18 - 2024-04-26 10:54 - 000000000 ____D C:\Users\HP\Documents\SimpleAdobe
2024-04-25 11:41 - 2024-04-25 11:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Service
2024-04-25 11:41 - 2024-04-25 11:41 - 000000000 ____D C:\Users\HP\AppData\Roaming\ServiceData
2024-04-25 11:31 - 2024-04-25 11:31 - 000000000 ____D C:\Users\HP\AppData\Local\Buyojobuno
2024-04-25 11:30 - 2024-04-25 11:30 - 000000000 ____D C:\Users\HP\AppData\Roaming\Streamsign
2024-04-25 11:06 - 2024-04-25 11:07 - 005790514 _____ C:\Users\HP\Downloads\_Getintopc.com_SolarWinds_Engineer’s_Toolset.mp4
2024-04-24 15:58 - 2024-04-24 15:58 - 000000000 ____D C:\Users\HP\AppData\Roaming\WindowsIPTVPlayer
2024-04-24 15:57 - 2024-04-24 15:57 - 000002291 _____ C:\Users\Public\Desktop\Windows IPTV Player.lnk
2024-04-24 15:57 - 2024-04-24 15:57 - 000000000 ____D C:\Program Files (x86)\Xtream Codes LTD
2024-04-24 08:22 - 2024-04-24 08:32 - 000000000 ____D C:\Users\HP\AppData\Local\5b58858f-64bc-4dc8-8c58-aa113eccaa9c
2024-04-23 15:18 - 2024-04-23 15:18 - 000051891 _____ C:\Users\HP\Downloads\Planning annuel de maintenance CESIR-KBI 2023.xlsx
2024-04-23 14:45 - 2024-04-23 14:45 - 000168380 _____ C:\Users\HP\Downloads\Fiche maintenance informatique et systèmes janvier 2024.pdf
2024-04-23 14:43 - 2024-04-23 14:43 - 000166098 _____ C:\Users\HP\Downloads\Fiche maintenance CESIR IP K janvier 2024.pdf
2024-04-23 14:39 - 2024-04-23 14:39 - 000166622 _____ C:\Users\HP\Downloads\Fiche maintenance CESIR IP K fevrier 2024.pdf
2024-04-22 18:26 - 2024-04-24 08:32 - 000000031 _____ C:\ProgramData\swifeb19617-f189-477f-86a7-b498f8268eaa.txt
2024-04-22 15:50 - 2024-04-22 15:51 - 000016335 _____ C:\Users\HP\Downloads\plannig de maintenance CESIR-K.xlsx
2024-04-22 13:52 - 2024-04-22 13:52 - 000000016 _____ C:\ProgramData\swi7e1058e8-a3d9-4561-bcb1-e1b722158ffd.txt
2024-04-22 13:25 - 2024-04-22 13:25 - 000000000 ____D C:\Users\HP\AppData\Local\d353ba92-b004-4dbc-af42-c97311926945
2024-04-22 09:33 - 2024-04-22 10:14 - 000056720 _____ C:\Users\HP\Downloads\LISTE_DES_EQUIPEMENTS_A_MAINTENIR_NAT_BUF .xlsx
2024-04-19 13:22 - 2024-04-19 13:23 - 004047816 _____ C:\Users\HP\Downloads\RAD ETX 220 manual.pdf
2024-04-19 12:58 - 2024-04-26 07:09 - 000000614 _____ C:\Users\HP\Desktop\boxing schedule 27-04-2024.txt
2024-04-19 12:13 - 2024-04-19 12:13 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-19 12:10 - 2024-04-19 12:10 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-19 10:39 - 2024-04-19 10:39 - 000000000 ___HD C:\$WinREAgent
2024-04-17 09:48 - 2024-04-26 11:40 - 000000000 ____D C:\Users\HP\Desktop\Solarwinds
2024-04-17 08:16 - 2024-04-17 08:16 - 000000627 _____ C:\Program Files (x86)\uninstallsererr.txt
2024-04-16 15:47 - 2024-04-16 15:47 - 000001377 _____ C:\Users\HP\Desktop\boxing schedule 13-04-2024.txt
2024-04-12 08:49 - 2024-04-12 09:05 - 000251012 _____ C:\Users\HP\Downloads\DEVIS GC LS MEN TRAVEL KRIBI.xlsx
2024-04-11 11:38 - 2024-04-11 11:39 - 253391976 _____ (Zoho Corporation Pvt. Ltd.) C:\Users\HP\Downloads\ManageEngine_NetFlowAnalyzer_64bit(1).exe
2024-04-09 13:55 - 2024-04-09 13:56 - 000000000 ____D C:\Users\HP\Desktop\RST WIN
2024-04-08 12:14 - 2024-04-08 13:11 - 786740784 ____R C:\Users\HP\Downloads\[ Torrent911.re ] Strictly.Confidential.2024.FRENCH.HDRip.x264-DDLPZ.mkv
2024-04-08 12:13 - 2024-04-08 12:13 - 000015585 _____ C:\Users\HP\Downloads\[ Torrent9.sb ] Strictly Confidential.torrent
2024-04-04 16:17 - 2024-04-04 16:06 - 002605821 _____ C:\Users\HP\Downloads\FTX COTCO 04042024.pdf
2024-04-04 14:41 - 2024-04-04 15:04 - 000012387 ____H C:\Users\HP\Desktop\~WRL2336.tmp
2024-04-03 15:55 - 2024-04-03 15:55 - 000326056 _____ C:\Users\HP\Downloads\Ftvx_N°067_COTCO-Kribi(2).pdf
2024-04-03 15:53 - 2024-04-03 15:53 - 000301843 _____ C:\Users\HP\Downloads\Ftvx_N°69_COTCO-KRIBI.pdf
2024-04-03 15:53 - 2024-04-03 15:53 - 000291476 _____ C:\Users\HP\Downloads\Ftvx_N°70_COTCO-Kribi.pdf
2024-04-03 15:52 - 2024-04-03 15:52 - 001048502 _____ C:\Users\HP\Downloads\attachments.zip
2024-04-03 15:52 - 2024-04-03 15:52 - 000326056 _____ C:\Users\HP\Downloads\Ftvx_N°067_COTCO-Kribi(1).pdf
2024-04-03 15:52 - 2024-04-03 15:52 - 000301843 _____ C:\Users\HP\Downloads\Ftvx_N°68_COTCO-KRIBI.pdf
2024-04-03 15:41 - 2024-04-03 15:41 - 000326056 _____ C:\Users\HP\Downloads\Ftvx_N°067_COTCO-Kribi.pdf
2024-04-03 13:55 - 2024-04-03 08:45 - 000239787 _____ C:\Users\HP\Downloads\DEVIS TOITURE 0204.pdf
2024-04-01 18:26 - 2024-04-01 18:43 - 000010299 _____ C:\Users\HP\Downloads\A REMPLIR POUR CESIR Kribi - VEHICULE.xlsx
2024-04-01 18:24 - 2024-04-01 18:24 - 000010352 _____ C:\Users\HP\Downloads\A REMPLIR POUR CERAF - VEHICULE.xlsx
2024-04-01 11:37 - 2024-04-01 13:36 - 000000000 ____D C:\Users\HP\Desktop\JPerf
2024-04-01 07:39 - 2024-04-01 07:39 - 000716401 _____ C:\Users\HP\Downloads\FTX RETABLISSEMENT LSIP COTCO.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-28 20:14 - 2020-12-02 21:19 - 000792706 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-28 20:14 - 2020-12-02 21:19 - 000150170 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-28 20:14 - 2020-12-02 14:01 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-28 20:14 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-04-28 20:14 - 2018-11-06 17:10 - 000000000 ____D C:\FRST
2024-04-28 20:09 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-28 20:09 - 2018-08-27 20:29 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2024-04-28 18:46 - 2020-12-02 13:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-28 16:57 - 2018-06-08 14:14 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2024-04-28 15:25 - 2020-12-02 13:43 - 000000000 ____D C:\Users\HP
2024-04-28 15:01 - 2016-04-14 02:02 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2024-04-28 15:00 - 2021-04-06 09:37 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-04-26 17:13 - 2020-12-02 14:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-26 17:13 - 2020-12-02 13:33 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-26 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-26 17:12 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-04-26 14:58 - 2022-11-21 14:14 - 000000000 ____D C:\Users\HP\Desktop\UIM
2024-04-26 14:57 - 2016-04-14 01:43 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2024-04-26 14:44 - 2018-06-06 16:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Excel
2024-04-26 13:06 - 2018-08-10 11:56 - 000000000 ____D C:\Users\HP\AppData\Local\SolarWinds
2024-04-26 11:45 - 2021-12-21 15:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-26 11:45 - 2018-04-23 10:28 - 000002288 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-04-26 11:45 - 2018-04-23 10:28 - 000002271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-26 11:14 - 2018-08-10 11:56 - 000000000 ____D C:\Users\HP\AppData\Local\Solarwinds Toolset Installs
2024-04-26 10:15 - 2019-10-08 10:23 - 000000000 ____D C:\Users\HP\AppData\Roaming\uTorrent
2024-04-26 09:32 - 2016-04-14 02:07 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-04-25 17:26 - 2020-09-08 07:35 - 000002398 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-25 17:26 - 2020-09-08 07:35 - 000002306 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-04-25 15:56 - 2020-12-02 14:29 - 000004400 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1547232229
2024-04-25 15:56 - 2018-08-27 08:10 - 000001375 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-04-25 14:03 - 2020-04-24 09:56 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Teams
2024-04-25 13:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-25 13:54 - 2018-08-27 08:09 - 000000000 ____D C:\Users\HP\AppData\Roaming\Opera Software
2024-04-25 13:53 - 2023-08-28 07:45 - 000002416 _____ C:\Users\HP\Desktop\Travail - Edge.lnk
2024-04-25 13:53 - 2019-10-08 10:24 - 000000000 ____D C:\Users\HP\AppData\Local\BitTorrentHelper
2024-04-25 13:34 - 2020-12-02 14:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-25 13:23 - 2023-12-29 13:36 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-04-25 13:23 - 2015-10-30 08:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2024-04-25 11:19 - 2018-04-23 10:25 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2024-04-23 17:07 - 2018-04-23 11:12 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Word
2024-04-23 14:40 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-23 14:37 - 2018-07-06 07:39 - 000000000 ____D C:\ProgramData\Packages
2024-04-23 13:19 - 2024-01-20 17:46 - 000000000 ____D C:\Users\HP\Desktop\Réseau d'accès IP de Kribi
2024-04-23 07:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-22 18:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-22 18:27 - 2020-12-02 13:33 - 000450240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-22 18:26 - 2023-12-15 07:38 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-22 18:26 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-19 12:31 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-19 12:10 - 2020-12-02 13:38 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-18 07:23 - 2022-07-15 08:07 - 000000678 _____ C:\Users\HP\Desktop\Camtel Share & Zoom.txt
2024-04-15 09:22 - 2020-12-02 14:29 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-15 09:21 - 2022-10-13 11:05 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-15 09:21 - 2022-10-13 11:05 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-04-12 08:12 - 2023-11-10 08:17 - 000000000 ____D C:\Program Files\Npcap
2024-04-11 14:11 - 2023-12-01 09:53 - 000000000 ____D C:\Program Files\ManageEngine
2024-04-11 07:31 - 2024-02-12 19:56 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-04-04 08:10 - 2022-06-17 08:22 - 000003948 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002UA
2024-04-04 08:10 - 2022-06-17 08:22 - 000003878 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002Core
2024-04-04 08:09 - 2020-12-02 14:29 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 08:09 - 2020-12-02 14:29 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2024-04-25 13:22 - 2024-04-25 13:22 - 000000008 ____H () C:\ProgramData\bit_66.dat
2024-04-25 13:23 - 2024-04-28 20:14 - 000000004 ____H () C:\ProgramData\brc_66.dat
2024-04-25 14:15 - 2024-04-28 15:52 - 000685392 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2024-04-25 14:18 - 2024-04-28 15:53 - 000608080 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2024-04-25 14:18 - 2024-04-28 15:54 - 000450024 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2024-04-25 14:19 - 2024-04-28 15:57 - 002046288 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2024-04-25 13:22 - 2024-04-28 20:07 - 000000128 ____H () C:\ProgramData\resource-a.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000128 ____H () C:\ProgramData\resource-b.dat
2024-04-25 14:22 - 2024-04-28 15:57 - 000257872 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2024-04-25 14:23 - 2024-04-28 15:57 - 000080880 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2024-04-17 08:16 - 2024-04-17 08:16 - 000000627 _____ () C:\Program Files (x86)\uninstallsererr.txt
2024-04-28 15:31 - 2024-04-28 15:31 - 000051200 _____ () C:\Users\HP\AppData\Roaming\explorer.exe
2024-02-12 22:52 - 2024-02-13 00:56 - 000000128 _____ () C:\Users\HP\AppData\Roaming\winscp.rnd
2024-04-28 16:37 - 2024-04-28 16:37 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\0FEwecVEcs574Da5dn6suI8m.exe
2024-04-28 16:36 - 2024-04-28 16:36 - 005910528 _____ () C:\Users\HP\AppData\Local\0yUxFiuXWf6fJONlXuVRz1vQ.exe
2024-04-28 18:08 - 2024-04-28 18:08 - 004393872 _____ () C:\Users\HP\AppData\Local\0ZsFMVlQvmzKEFn4w4XN2zgE.exe
2024-04-25 14:40 - 2024-04-25 14:40 - 005690368 _____ () C:\Users\HP\AppData\Local\2mxoVPj1mgWVpCwNtEuely9Y.exe
2024-04-28 17:48 - 2024-04-28 17:48 - 005672540 _____ () C:\Users\HP\AppData\Local\2uWSaZy1lGLVCjGreA8BVQiL.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000016986 _____ () C:\Users\HP\AppData\Local\34SczZVbdAWwlV3IsNF2qSlK.exe
2024-04-28 17:06 - 2024-04-28 17:06 - 000462337 _____ () C:\Users\HP\AppData\Local\3KaaubNgzQPOmoyzaryqamPu.exe
2024-04-28 17:36 - 2024-04-28 17:36 - 000462337 _____ () C:\Users\HP\AppData\Local\3sGP4IhgL8lkzv8dVrxiNz5k.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000017046 _____ () C:\Users\HP\AppData\Local\5ci5tb4faXhn7Vk5FBJaplT3.exe
2024-04-28 19:26 - 2024-04-28 19:26 - 000461825 _____ () C:\Users\HP\AppData\Local\78299ttiBFcyFOdBdzea7jKm.exe
2024-04-28 19:21 - 2024-04-28 19:21 - 000461825 _____ () C:\Users\HP\AppData\Local\8YW7t3OBtqEewY4tTSTZz6Db.exe
2024-04-25 14:09 - 2024-04-25 14:09 - 005690368 _____ () C:\Users\HP\AppData\Local\9QbtLv25OcTv1GwMdwTdnKNx.exe
2024-04-25 14:26 - 2024-04-25 14:26 - 000007446 _____ () C:\Users\HP\AppData\Local\A85obI5oo14Rv2kOzdi52Tz5.exe
2024-04-28 19:33 - 2024-04-28 19:33 - 008388608 _____ () C:\Users\HP\AppData\Local\agPUy14abuntllnmr6jAXtGj.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000054272 _____ () C:\Users\HP\AppData\Local\ApplicationHosting.dat
2024-04-28 16:35 - 2024-04-28 16:35 - 004393864 _____ () C:\Users\HP\AppData\Local\BghPOA9n3Os78imFn6Y9txNi.exe
2024-04-28 18:18 - 2024-04-28 18:18 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\BIDMjuK1Ge76BKs3duesu4yI.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 033554432 _____ () C:\Users\HP\AppData\Local\C7FYr9AN5eKp9k1iu3ZkwtMX.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000070992 _____ () C:\Users\HP\AppData\Local\Config.xml
2024-04-28 15:44 - 2024-04-28 15:44 - 001283540 _____ () C:\Users\HP\AppData\Local\DFYZnnhBKDTlBgNCws9ZAeBb.exe
2024-04-25 14:54 - 2024-04-25 14:54 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\DKm7V2KZKVWYawAgHGbph5n1.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000007446 _____ () C:\Users\HP\AppData\Local\fIDTscemnzXfKov70ySNk3wp.exe
2024-04-28 18:14 - 2024-04-28 18:14 - 000461825 _____ () C:\Users\HP\AppData\Local\fPqHEj0jIzkvw3GdbV4ghJgd.exe
2024-04-28 17:09 - 2024-04-28 17:09 - 000007446 _____ () C:\Users\HP\AppData\Local\FrsRq115hMk2sl9PFVNmG0Q1.exe
2024-04-28 19:15 - 2024-04-28 19:15 - 000007446 _____ () C:\Users\HP\AppData\Local\FsnyB7ZavIZrAhyGnkVihmkO.exe
2024-04-28 19:20 - 2024-04-28 19:20 - 000007446 _____ () C:\Users\HP\AppData\Local\fvbyGk4usqbJkCzY6mQmyk3q.exe
2024-04-25 14:08 - 2024-04-25 14:08 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\G3xGSz5SufSLiSWymzM7MxTA.exe
2024-04-28 17:51 - 2024-04-28 17:51 - 000007446 _____ () C:\Users\HP\AppData\Local\g7qgpZQzN9eORFjkYfcW6B7J.exe
2024-04-28 19:16 - 2024-04-28 19:16 - 000461825 _____ () C:\Users\HP\AppData\Local\g8DwUhxil5oKaDIzCoWDKwf2.exe
2024-04-28 19:25 - 2024-04-28 19:25 - 000007446 _____ () C:\Users\HP\AppData\Local\GV2K76qVG8ixEwErKCXHPh1V.exe
2024-04-28 16:20 - 2024-04-28 16:20 - 004393864 _____ () C:\Users\HP\AppData\Local\hAxmiwOAFxHXOZEjROjKFZmz.exe
2024-04-28 19:36 - 2024-04-28 19:36 - 000007446 _____ () C:\Users\HP\AppData\Local\hYqH0U7SR1gfpCyhjPGplDVJ.exe
2024-04-28 18:16 - 2024-04-28 18:16 - 005910528 _____ () C:\Users\HP\AppData\Local\HZVgcjWcBcJbz8suO4R2u22G.exe
2024-04-25 14:41 - 2024-04-25 14:41 - 000007446 _____ () C:\Users\HP\AppData\Local\ieMb7eHd1exjGmaifpxDowdC.exe
2019-08-03 10:42 - 2019-08-03 10:43 - 000016368 _____ () C:\Users\HP\AppData\Local\InstallationConfiguration.xml
2019-08-03 10:42 - 2019-08-03 10:42 - 000140800 _____ () C:\Users\HP\AppData\Local\installer.dat
2024-04-28 17:05 - 2024-04-28 17:05 - 000188740 _____ () C:\Users\HP\AppData\Local\IozpLuFWHOcvwAl3ARFUOwGo.exe
2024-04-28 20:14 - 2024-04-28 20:14 - 000007446 _____ () C:\Users\HP\AppData\Local\iREdbBASeKmWac8TSL5uQnM8.exe
2024-04-25 14:29 - 2024-04-25 14:29 - 005690368 _____ () C:\Users\HP\AppData\Local\jCE72Rg6rpnRneQ3H0mF5b42.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 029360128 _____ () C:\Users\HP\AppData\Local\JP6iuKpRVAuDWhzF52XUC4ch.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000007446 _____ () C:\Users\HP\AppData\Local\jsMmwI0cafxqT62bbqozVdqb.exe
2024-04-28 18:01 - 2024-04-28 18:01 - 000007446 _____ () C:\Users\HP\AppData\Local\K9ngG6fbRlhRnFunowe6xJt0.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 004393864 _____ () C:\Users\HP\AppData\Local\KAdLbj1G3wDJJz2Voanm50Zz.exe
2024-04-28 17:34 - 2024-04-28 17:34 - 000007446 _____ () C:\Users\HP\AppData\Local\kRHpPZv4qCvCRcs2JSIEk0GX.exe
2024-04-25 14:18 - 2024-04-25 14:18 - 000273668 _____ () C:\Users\HP\AppData\Local\Kt96vqHFc5mT6h0Yg4oenhAy.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 004393864 _____ () C:\Users\HP\AppData\Local\kTozY21aDBxsKM3lEowkJBv3.exe
2024-04-28 17:03 - 2024-04-28 17:03 - 000007446 _____ () C:\Users\HP\AppData\Local\kUSxvH4lOC4DOoJXUEoX5ApS.exe
2024-04-28 19:40 - 2024-04-28 19:40 - 004861940 _____ () C:\Users\HP\AppData\Local\kXQ6siMbcR6QerL5Rh5vlb3s.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000016986 _____ () C:\Users\HP\AppData\Local\KyJyAbxNxFnYMKoAJxqPAXOD.exe
2024-04-28 16:19 - 2024-04-28 16:19 - 000462337 _____ () C:\Users\HP\AppData\Local\l8uT4BvGS22uNTQBO3OTIAZ8.exe
2024-04-28 18:11 - 2024-04-28 18:11 - 000007446 _____ () C:\Users\HP\AppData\Local\l9UuZMwDPFEi1HSXvdi1nT6T.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 002039453 _____ () C:\Users\HP\AppData\Local\LatFresh.tst
2024-04-25 14:30 - 2024-04-25 14:30 - 005690368 _____ () C:\Users\HP\AppData\Local\lfSxg2W4nfyAIPmEU0aQmLHE.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000126464 _____ () C:\Users\HP\AppData\Local\lobby.dat
2024-04-28 19:30 - 2024-04-28 19:30 - 005910528 _____ () C:\Users\HP\AppData\Local\lQonoAjarLH6ZRh7j7ub5sEe.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000018432 _____ () C:\Users\HP\AppData\Local\Main.dat
2019-08-03 10:43 - 2019-08-03 10:43 - 000005568 _____ () C:\Users\HP\AppData\Local\md.xml
2024-04-28 16:35 - 2024-04-28 16:35 - 000007446 _____ () C:\Users\HP\AppData\Local\MEXnjSD2G6be1ez2l5Pl0LcD.exe
2024-04-28 16:36 - 2024-04-28 16:36 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\mkDe9cyjeMAcBQCzrypTAEfR.exe
2024-04-28 19:59 - 2024-04-28 19:59 - 000007446 _____ () C:\Users\HP\AppData\Local\mOnXxYRlerK67ffpzw8WKH4D.exe
2024-04-28 20:07 - 2024-04-28 20:07 - 004448940 _____ () C:\Users\HP\AppData\Local\nkMasGmrKS8mOJIbgAI92XGK.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000126464 _____ () C:\Users\HP\AppData\Local\noah.dat
2024-04-28 16:20 - 2024-04-28 16:20 - 004393864 _____ () C:\Users\HP\AppData\Local\O9CoGzPG1rUN77vwrCuVdqoF.exe
2024-04-25 14:35 - 2024-04-25 14:35 - 005690368 _____ () C:\Users\HP\AppData\Local\okR8nJ7x2JXzQNCvX8bE9zBk.exe
2024-04-25 14:29 - 2024-04-25 14:29 - 008388608 _____ () C:\Users\HP\AppData\Local\oL5tkx1AjQHOveDW1nnGRgwl.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 000462337 _____ () C:\Users\HP\AppData\Local\OMpMo8kkYiW0IsJ8ZgmN3Xgs.exe
2024-04-28 16:23 - 2024-04-28 16:23 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\OrDwNcvKgCwIxkCqQaR43zGg.exe
2024-04-28 17:20 - 2024-04-28 17:20 - 008388608 _____ () C:\Users\HP\AppData\Local\p56Xtx07w4zHCxbxP29XVdtw.exe
2024-04-28 16:21 - 2024-04-28 16:21 - 005910528 _____ () C:\Users\HP\AppData\Local\PAcFZRP4O91DfyS288ywS9AT.exe
2024-04-25 14:31 - 2024-04-25 14:31 - 000007446 _____ () C:\Users\HP\AppData\Local\PLbDumKE9y66wg8SDpfTb6oW.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 000017088 _____ () C:\Users\HP\AppData\Local\pRTPzQoWYqaFcd3hiG900HCU.exe
2022-04-20 09:38 - 2022-04-20 09:44 - 000000128 _____ () C:\Users\HP\AppData\Local\PUTTY.RND
2024-04-28 16:25 - 2024-04-28 16:25 - 004393864 _____ () C:\Users\HP\AppData\Local\pwrbxD9xnYrRwPAmFDyV6xcG.exe
2024-04-28 18:09 - 2024-04-28 18:09 - 005774740 _____ () C:\Users\HP\AppData\Local\pzmgOdwhAFDfWF2btYYLCTUp.exe
2024-04-28 15:40 - 2024-04-28 15:40 - 000462337 _____ () C:\Users\HP\AppData\Local\qd6yoIK6WMojIaj9R0wpzrXX.exe
2024-04-25 14:11 - 2024-04-25 14:11 - 000007446 _____ () C:\Users\HP\AppData\Local\qfiZt7XmwITBY9PF9U2RhpU1.exe
2024-04-28 18:08 - 2024-04-28 18:08 - 003644048 _____ () C:\Users\HP\AppData\Local\Qfu9YSCkfdksFvjFGDk5Mzlh.exe
2024-04-28 19:28 - 2024-04-28 19:28 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\QunEFBdeTaiuJr3JT4CaL7pY.exe
2024-04-25 14:21 - 2024-04-25 14:21 - 000007446 _____ () C:\Users\HP\AppData\Local\rQD116VgmDbdv7GRDCWVQ4Rt.exe
2024-04-28 16:19 - 2024-04-28 16:19 - 000007446 _____ () C:\Users\HP\AppData\Local\rw3DiQTJzmF9mYnylzzUrIg0.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 000017001 _____ () C:\Users\HP\AppData\Local\RZUETAUemAyz9ibjQkDYhYG4.exe
2019-08-03 10:42 - 2019-08-03 10:42 - 000722944 _____ () C:\Users\HP\AppData\Local\sha.db
2018-06-06 15:43 - 2020-08-12 10:46 - 000367105 _____ () C:\Users\HP\AppData\Local\Snip.txt
2020-02-11 14:54 - 2020-08-12 10:46 - 000516822 _____ () C:\Users\HP\AppData\Local\SnipUsages.txt
2024-04-28 16:25 - 2024-04-28 16:25 - 005910528 _____ () C:\Users\HP\AppData\Local\SUi5PUCNXVhK7zHnx5fcKXzg.exe
2024-04-28 17:56 - 2024-04-28 17:56 - 005910528 _____ () C:\Users\HP\AppData\Local\t1zLrsjcRxkxEFegvrKJ0LmN.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\Tf4vWhyWs4fOmHTAVT3jlCvs.exe
2024-04-28 19:32 - 2024-04-28 19:32 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\TpvjziTvRrhBWOssafJF9Fmg.exe
2024-04-28 17:21 - 2024-04-28 17:21 - 004045740 _____ () C:\Users\HP\AppData\Local\TR5SP9DktfCxbWyektnYdT1b.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 008388608 _____ () C:\Users\HP\AppData\Local\u6VJKcYXs94pRTIWp5aA2PAi.exe
2024-04-28 17:15 - 2024-04-28 17:15 - 001391232 _____ () C:\Users\HP\AppData\Local\UdOyRgc4QncO42l24JVSUC96.exe
2024-04-28 17:09 - 2024-04-28 17:09 - 000462337 _____ () C:\Users\HP\AppData\Local\uJy0mmVd5LOMYqZ4C6Suv8MA.exe
2024-04-28 18:02 - 2024-04-28 18:02 - 000461825 _____ () C:\Users\HP\AppData\Local\UMzmC4sfWJ94x8UoFO0zNtsk.exe
2019-08-03 10:45 - 2019-08-03 10:45 - 000032038 _____ () C:\Users\HP\AppData\Local\uninstall_temp.ico
2024-04-28 16:24 - 2024-04-28 16:24 - 000462337 _____ () C:\Users\HP\AppData\Local\uR89HngXmizQMLDoo3zQxWYO.exe
2024-04-28 17:25 - 2024-04-28 17:25 - 000462337 _____ () C:\Users\HP\AppData\Local\ViYLzCamD1dc4Nkf6DYHnqso.exe
2024-04-28 19:47 - 2024-04-28 19:47 - 000461825 _____ () C:\Users\HP\AppData\Local\VqfFF1OTwKtKMon2QIEFOJJW.exe
2024-04-28 17:52 - 2024-04-28 17:52 - 000461825 _____ () C:\Users\HP\AppData\Local\VqYS73AAo55EHDTo6Q8VoGwS.exe
2024-04-28 17:24 - 2024-04-28 17:24 - 000007446 _____ () C:\Users\HP\AppData\Local\waSZyhdyxrvC5aMELgaZodQ2.exe
2024-04-28 19:47 - 2024-04-28 19:47 - 000007446 _____ () C:\Users\HP\AppData\Local\wbFC0YXNf2IJ7s70jmvqMKtY.exe
2024-04-28 17:50 - 2024-04-28 17:50 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\WlUQTKWxQ7vXGI0jSz8e0gZG.exe
2024-04-28 15:37 - 2024-04-28 15:37 - 000007446 _____ () C:\Users\HP\AppData\Local\wShAZfVHJqu6ipBDkywy2UcG.exe
2024-04-25 14:13 - 2024-04-25 14:13 - 000143764 _____ () C:\Users\HP\AppData\Local\wUPo91YCVFFyUW7NXVxWbIjg.exe
2024-04-28 20:00 - 2024-04-28 20:00 - 000461825 _____ () C:\Users\HP\AppData\Local\X1fbMrzvWkYxHrXAasjwB8ni.exe
2024-04-28 20:15 - 2024-04-28 20:15 - 000461825 _____ () C:\Users\HP\AppData\Local\XdtfStovibgtUDkwrzUSrX71.exe
2024-04-25 14:41 - 2024-04-25 14:41 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\XF7KebAvBrISzk3mDJqknTOv.exe
2024-04-28 15:49 - 2024-04-28 15:49 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\XgX9WZ5ct4XPUrEbq3b41kZd.exe
2024-04-25 14:36 - 2024-04-25 14:36 - 000007446 _____ () C:\Users\HP\AppData\Local\xhmu7QiKZZGxmFtIQRY7NHPY.exe
2024-04-25 14:46 - 2024-04-25 14:46 - 001182996 _____ () C:\Users\HP\AppData\Local\xRzJLWJupIejTM1WFgRnPGJz.exe
2024-04-28 16:24 - 2024-04-28 16:24 - 000007446 _____ () C:\Users\HP\AppData\Local\XughcIFWQBFVRZeZgruah7jZ.exe
2024-04-28 16:26 - 2024-04-28 16:26 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\yIMupCzwl7aenoWZEC7UOhxN.exe
2024-04-28 20:07 - 2024-04-28 20:07 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\Z7CP4tnlgqVLmd49GGEgfPAf.exe
2024-04-28 19:37 - 2024-04-28 19:37 - 000461825 _____ () C:\Users\HP\AppData\Local\ZB6r9WgRpqw5oEHRoGEQP68E.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000072787 _____ () C:\Users\HP\AppData\Local\Zerhome.tst
2024-04-25 14:16 - 2024-04-25 14:16 - 000007446 _____ () C:\Users\HP\AppData\Local\zllDfLlcD61RBiro4tb1ttMs.exe
2024-04-25 14:06 - 2024-04-25 14:06 - 000007446 _____ () C:\Users\HP\AppData\Local\znKB3uPsyhfgqLShd2Tfe4UQ.exe
2024-04-25 14:51 - 2024-04-25 14:51 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\ZwcZsSiqXaJL5GMxyQof71aR.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000017046 _____ () C:\Users\HP\AppData\Local\zyr0CI1zkcG0CyH9aIBdLaty.exe
==================== FLock ==============================
2024-04-25 14:21 C:\WINDOWS\windefender.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== Fin de FRST.txt ========================
Exécuté par HP (administrateur) sur CAMTEL-DRS (HP HP Notebook) (28-04-2024 20:11:12)
Exécuté depuis C:\Users\HP\Desktop\FRST64.exe
Profils chargés: HP
Plate-forme: Microsoft Windows 10 Entreprise Version 22H2 19045.4291 (X64) Langue: Anglais (États-Unis) -> Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Users\HP\AppData\Local\Temp\5454e6f062\explorta.exe <2>
(522303292b2005041027200a5d5d12051031230d161c143d24542553452740323d28 -> ) [Fichier non signé] C:\Users\HP\Pictures\7fE5RfeIY8aAiZbeDhAuS1xi.exe <2>
(522303292b2005041027200a5d5d12051031230d161c143d24542553452740323d28 -> ) [Fichier non signé] C:\Users\HP\Pictures\nLEnfrkNS8sOyY6qVAoAj8yG.exe <3>
(522a29533d3f200e2d1728300c141021081631313626321023042b113f2d26353224 -> ) [Fichier non signé] C:\Windows\rss\csrss.exe
(525d0b323423120e110456060e332e32311412140236333d57310b361108382b0633 -> ) [Fichier non signé] C:\Users\HP\Pictures\mVhf4buB2n05N6Y1BDSjoWF4.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\1000150001\NewB.exe
(C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\1000152001\jok.exe
(C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\1000239001\mstc.exe
(C:\Windows\Microsoft.NET\Framework\v4.0.30319\AddInProcess32.exe ->) (Opera Norway AS -> Opera Software) C:\Users\HP\Pictures\SreaEmMrGc0C7HTunr7XQpGr.exe <4>
(C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Roaming\configurationValue\keks.exe
(C:\Windows\rss\csrss.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\csrss\1bf850b4d9587c1017a75a47680584c4.exe
(C:\Windows\rss\csrss.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\csrss\713674d5e968cbe2102394be0b2bae6f.exe
(C:\Windows\rss\csrss.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\csrss\injector\injector.exe <2>
(C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\AddInProcess32.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe
(rundll32.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(services.exe ->) (Accès refusé) [Fichier non signé] C:\Windows\windefender.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (FlappingWings) [Fichier non signé] C:\ProgramData\EventGuide 1.3.11.66\EventGuide 1.3.11.66.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.) C:\Program Files (x86)\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe
(services.exe ->) (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.) C:\Program Files (x86)\SolarWinds\Toolset\SWBrowserIntegration.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (WithSecure Oyj -> F-Secure Corporation) C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fsorsp64.exe
(services.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe <2>
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
(Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.) C:\Program Files (x86)\SolarWinds\Toolset\ToolsetIntegrationTray.exe
(svchost.exe ->) () [Fichier non signé] C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2413.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (AutoIt Consulting Ltd -> AutoIt Team) C:\Users\HP\AppData\Roaming\ServiceData\Davonevur.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4289_none_7e26f6bc7c7a4793\TiWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3349224 2015-08-12] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [247016 2011-09-09] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [SolarWindsToolsetIntegrationTrayApp] => C:\Program Files (x86)\SolarWinds\Toolset\ToolsetIntegrationTray.exe [781136 2024-01-11] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\MRT: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [Opera Browser Assistant] => C:\Users\HP\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3968928 2024-04-11] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [Opera Stable] => C:\Users\HP\AppData\Local\Programs\Opera\opera.exe [1581984 2024-04-25] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [ExtreamFanV5] => C:\Users\HP\AppData\Local\ExtreamFanV5\ExtreamFanV5.exe [5857792 2024-04-25] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [RageMP131] => C:\Users\HP\AppData\Local\RageMP131\RageMP131.exe [2157072 2024-04-25] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [csrss] => C:\WINDOWS\rss\csrss.exe [4365688 2024-04-25] (522a29533d3f200e2d1728300c141021081631313626321023042b113f2d26353224 -> ) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [AdobeUpdaterV131_999e43077df71fdfc52bd5232a22cf9d] => C:\Users\HP\AppData\Local\AdobeUpdaterV131_999e43077df71fdfc52bd5232a22cf9d\AdobeUpdaterV131.exe [1871360 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [AdobeUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae] => C:\Users\HP\AppData\Local\AdobeUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae\AdobeUpdaterV131.exe [917504 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [AdobeUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7] => C:\Users\HP\AppData\Local\AdobeUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7\AdobeUpdaterV131.exe [2423808 2024-04-28] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [cd9cc97183.exe] => C:\Users\HP\AppData\Local\Temp\1000016001\cd9cc97183.exe [1166336 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [3667db2393.exe] => C:\Users\HP\1000017002\3667db2393.exe [2423808 2024-04-28] (Microsoft Corporation) [Fichier non signé]
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [explorer] => C:\Users\HP\AppData\Roaming\explorer.exe [51200 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [ccb72d7dc9.exe] => C:\Users\HP\AppData\Local\Temp\1000016001\ccb72d7dc9.exe [1166336 2024-04-28] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [0a0ac56ce7.exe] => C:\Users\HP\1000017002\0a0ac56ce7.exe [2420736 2024-04-28] (Microsoft Corporation) [Fichier non signé]
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\MountPoints2: {347c7f2e-bf7e-11ea-93ed-3c95097c54e4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\MountPoints2: {855f08d9-16d8-11ec-9460-3c95097c54e4} - "F:\EMP_UDSe.exe" /autorun
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\MountPoints2: {e11adbd3-c967-11ed-94f2-3c95097c54e4} - "F:\Autorun.exe"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\MountPoints2: {e11adc7f-c967-11ed-94f2-3c95097c54e4} - "F:\Autorun.exe"
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpcpp255: C:\Windows\System32\spool\prtprocs\x64\hpcpp255.dll [848384 2021-03-03] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\WINDOWS\system32\HPMPW081.DLL [74016 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\WINDOWS\system32\hpmlm135.dll [237344 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\HPMLM225: C:\WINDOWS\system32\hpmlm225.dll [308224 2018-11-14] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\124.0.6367.91\Installer\chrmstp.exe [2024-04-26] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2011-09-09] (CyberLink -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2011-09-09] (CyberLink -> CyberLink)
StartupDir: C:\Users\HP\AppData\Local\Temp\1000150001\ <==== ATTENTION
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\0BXx1LL04O4jjvR0yiHzNybQ.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\0X48otkh9DN3ViYH1s4NOEBU.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\103yb2YiXpCpUQTgl77fXaw1.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\1HexBAHOTMGV7cChXVX8af1d.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\1mMVeOSPu1bGsWovDmovfuBv.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\1sdi2H8z30uvwZRFKGE1Jh5S.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\2E9EnXW0zFLtkKlExQNngYJx.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\2eBDNe7qOyJmPFEn0pRvlcCQ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\2TUqt8WleVGRbCGWEX7Niu5x.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\3uHwzR50rNIebGEWfvRDbUIM.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\54KLpBXVRknEL47VEOVahVYq.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\5OS2SW3ay3u4D0VH6hcNTtaA.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\6bfNvsFO9gwvzwDma6W1rUNd.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\6NBy1Sc8Se78xydG98bS2Cg9.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\6uBPZrXQQnzEyNxY0S4H23e5.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\7HMgauZ60mxMWzteORKkrv03.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\7nHLe3Q8kyE3Qwz6gdmhIBYp.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\7XoV6DPfdGS0qNjtw3dJJdEO.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\8BWbzbb4EeybL83m6i5DvrXI.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\8DxwWfXjwE5SGMmyf6rpiEwJ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\90eZmzVpBziZns9oK6jqwOtw.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\9d5vA8xuyBinLtP5pBmdpt3T.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\AaF5xDLIiHDW2GX44xCoadly.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ABTxgnFpW8xrXxIuOU2ScahH.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\AgiTz7vBLhqpdtpwF620tkuZ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\B6bos7nN9HnaqJuwz3qDPR8p.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\bIwqcSQ1eKRUiqWmts570VP9.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BNVFiPsmXTmVHv992rNs4Nj7.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BOC0Ad8jrcxedBj590AytOW2.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BqelAkjqtZbU2LDULZmFCWBn.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BrbOpYGYE3pO8CzIp2C6KtwP.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\bWqvITPbSsWqQIR1X5vY2u8P.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\BxD0UhjL3yg0356MGEfU7M9V.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\C3PyhGqso3fc849oNEi9ETHt.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\c6eEP777CwdkSNd7bQZLRaU0.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ClZlrvUDR1v91IKw7oEEJC7e.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\cTQvHCk4DYm7OPLoByBIKTeo.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\cVyrHhii48deWsN1jYNfFVD5.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\dJ2KRWpRzCMBev8jPNjC6YrJ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\eBUXtexwjFwSAjhY8OTSfaBG.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\EdgeMS131.lnk [2024-04-28] <==== ATTENTION
ShortcutTarget: EdgeMS131.lnk -> C:\Users\HP\AppData\Local\Temp\EdgeMS131_999e43077df71fdfc52bd5232a22cf9d\EdgeMS131.exe () [Fichier non signé] <==== ATTENTION
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\eEPBrYcFIkvXgbhD0DmG4tL8.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\explorer.lnk [2024-04-28]
ShortcutAndArgument: explorer.lnk -> C:\Users\HP\AppData\Roaming\explorer.exe =>
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\eyQy4o5C5Q7icFPHwI5BfjLu.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\f4nCfZQV3bzKeyrc5YEB7qTK.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\FBoBxUWCY4jzBNjuzG7svEfm.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\G2S4NyNQddE4hIkOyiae3B3d.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\g6NSGIeH26kHw0zFs3E8nORg.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\g7EjM4YCjH0phhcD4WL95qvh.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\gGu3Yq32UxEpu872gXuPu41y.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Gjf4IyeYHtH7oGL4bP1uC5JF.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\gmZsFhJF4X6DPmgGfdZEtEUl.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\GoGNGam9IdOYkam9hYASst6L.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Gt8vR5GJCURAEuNeLAq7Gorf.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\h9LkqN2sT88oQhGkp6rpxKnp.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\hckbUtSxBEoEgpMYawpEdA0g.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\HdBupfLTAh5gVxYLUQ3wmyMJ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\HZwGQ6dCIHOLJhn1Q00AcFqF.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\I2j9dWriC5bf1IVdBAHmfqJo.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ifRCQj5GrgqQDZtGtfwihX9P.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\iTS34le02IUtiahKgUEqsGBq.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\IyWe32OJaPKFf9ddTEh42bnD.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\JkZFnuqWOTo7iH7TLgOXdkck.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\JMRhwgBHhPsGxAAMTxS2L0mn.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\KBPMvTxZzcZmW3r7yWkIphYZ.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\KmDCcftnkfqHk5gnBpFnW7NJ.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\KUS2tRYclwLfuYktBQri2KZg.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Kw02UVxx9TWtxZIklWp47aEJ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\kxFCNn9sM3lHVs2SIsnO60bj.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\l0pV8Rix3bQ8oUZHEpmZ076b.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\LFhZ7SrAtFZVPboFqW2gKaxz.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\LiOziktjXdGMvs9jsAAUkRUO.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\loJgWXpawEucCeWuMeBA6JKJ.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\LTcNiq0GeAcLo8nWrF6XyXDe.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\lxZ44n402DZMWVzO8zYUNLmD.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\M1D2pQ8A74T9XI6dbiz63yOe.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\MfaQfvCBAfbnkzDCvbZCT9k6.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\mmNAWzMnlw0uUY59hPy4NQf9.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\mu7DtoIMSxkuZtOV36q2ZJqB.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\n8j1yzzI4HTnGMHT1EpT6qmX.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\nArhbSDRImx4GGeth0H21n54.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\nEFXpKRWb1mBVm7wpbPmPiO8.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\NewB.exe [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\nHx4ujPJsAvPNgveqilfVal4.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\NvrjTkXSuM3UHOUUmVsaC6DF.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\NWj1KACfdxvqHwwzpPh0qiba.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\OcYc3pJtA9Ipl4uDK9i7PX02.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Op4Y2GtbH2a8SoZa7U670re6.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ovRzaoaZKMK55mGy4NaQZC9J.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ow97JIh5yvMf9T24dH1JNXa9.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\p8GrJuA1aJ8BZAElCUnfEsRb.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\P8lGP71aiinJRRlG8I6Y3TbY.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\PBm4h2OHwbMkkVz37k8fJX4q.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\PfRkZjkybo9RQp5wERj0Q3Hl.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\PowerExpertNT.lnk [2024-04-26] <==== ATTENTION
ShortcutTarget: PowerExpertNT.lnk -> C:\Users\HP\AppData\Local\Temp\PowerExpertNT\PowerExpertNT.exe () [Fichier non signé] <==== ATTENTION
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\PRIp14lw2eaRz2OhlVlCSrQC.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\qa5slPdidTnfyT30opKVvL9i.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\QDkJrbk8zaMKMWi7Nb2TU3Uk.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\qpdwjoXp5I2tCeqA41PpRlMi.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\r5kOljEyZuA8olfqATOa2QdT.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\r7yxt8rm0tNT9lrphbThY65G.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\RfTLHFSJ1nR0qsSwwiSoz0yH.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\RLZFjMyD7dXM8O8KjbNfAPzT.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\RQkuhMYQSEY6kbQn7ZtsWm0q.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\s0PfbTNoHZvogxFFRcoUtdLC.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\scsED6fSkqY87ZEYOPhIlJbn.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\sdOq5P2gaZ9B7j3JzhTI60Xt.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\se706VN6Uz5ziIirbCNutHvb.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\ShYUAB0TqDaGsY1SRwhBzh1P.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\SWogwF4CsvEuhSyCM4Ygvbuh.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\Tpsob9RMMAtnPfkLYLWunzyO.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\UPw0qsOqNShNhMrC5ngecu1O.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\v1ziPrFmwsYkViMPxawnrSZN.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\vBHtgAXgIDVokbTBxU1905yH.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\vJGkIGC7hWfSeLSltvD34JnZ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\vq70SyUnnu8ffdgzc1VuEKLQ.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\VSvpG5dJ2g79Z8KWbKkFaCiP.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\vVdUoLBySTsG8CxrQaDtztLa.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\W5bjQYAq4bnTHaoORd4jtQEu.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\WFwDENRYhuFsC0M8gp8HuA8y.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\wiTliP0IK9z0xSk898lbMS6S.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\wk9yfJoFNLg3HlGRxHk7t99B.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\wvGNRqFhkBqwebChMuee70HC.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\wYX8MF6lpmPGm7bSGKGzIQCN.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\X3cqqRvpxhbawTb04Z5EKEZS.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\XBn4sKWUcuVRaeMLNHmP6HPB.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\XvL1QRMDkW9A1yzZc6clrDug.bat [2024-04-25] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\yZZs2tW0wKxzDxvdwBiIElCE.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\zR03ocYMTuJepUdZV7TLG2f6.bat [2024-04-28] () [Fichier non signé]
Startup: C:\Users\HP\AppData\Local\Temp\1000150001\zTXHSWfHr7WigNL2AcoOcMQg.bat [2024-04-28] () [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-02-12]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy\User: Restriction - Edge <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {14949FE4-0EB2-48A3-AA83-FA2CF26C2157} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {D1DE90FA-648D-4E30-8A5D-181ACE6A4529} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe [1471032 2020-08-12] (Adobe Inc. -> Adobe)
Task: {25ED18E7-0AAD-4A6F-BEA7-6FDDAB8EB31A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-12] (Adobe Inc. -> Adobe)
Task: {3B7D39A8-820F-4AC3-A723-1C724F5954D3} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-08-01] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D0A781BC-2A2A-45FA-8741-890856DD4F19} - System32\Tasks\AVG\Wonyxa => C:\WINDOWS\system32\RUNDLL32.EXE [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files (x86)\MetadataChan\CetoitPhoto\C:\PROGRA~2\METADA~1\CETOIT~1\NGOWFF~1.DLL,CIBP_MGCanwMa8614
Task: {BBA80B4A-9903-4756-91E9-2D5B77DE624B} - System32\Tasks\beuYBzgGTLbmn2 => C:\Windows\System32\forfiles.exe [52224 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> /p C:\WINDOWS\system32 /m wscript.exe /c "cmd /C @FNAME ^"C:\ProgramData\pICeQFkDCDDquYVB\XhzdNSu.wsf^""
Task: {74014AE2-A87F-4770-ADE7-3B8D8B1B751D} - System32\Tasks\bwrroZoeZRoQVpyAcj => C:\Users\HP\AppData\Local\Temp\AjftBdcqEhUoRKcxg\EmHZJQvMUXyMfbh\phGHgFI.exe -> C:\Users\HP\AppData\Local\Temp\AjftBdcqEhUoRKcxg\EmHZJQvMUXyMfbh\ZO /KJsite_idKZR 525403 /S <==== ATTENTION
Task: {533C258B-DAB5-4B2C-B55C-D200CDFC099B} - System32\Tasks\chrosha => C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe [1887744 2024-04-28] () [Fichier non signé] <==== ATTENTION
Task: {1448591F-0B8A-4195-A1B5-340AE0A99D27} - System32\Tasks\csrss => C:\Windows\rss\csrss.exe [4365688 2024-04-25] (522a29533d3f200e2d1728300c141021081631313626321023042b113f2d26353224 -> ) [Fichier non signé] <==== ATTENTION
Task: {E7BF67DA-DEBC-4447-9919-79CE0AC060F0} - System32\Tasks\explorer => C:\Users\HP\AppData\Roaming\explorer.exe [51200 2024-04-28] () [Fichier non signé] <==== ATTENTION
Task: {0B57DBC5-883E-4E86-827E-0290265A5736} - System32\Tasks\explorta => C:\Users\HP\AppData\Local\Temp\5454e6f062\explorta.exe [1871360 2024-04-28] () [Fichier non signé] <==== ATTENTION
Task: {4EDC7968-8FAA-47CB-9832-14E84B961C3E} - System32\Tasks\fWcEirOkMoMQjrUKaey2 => C:\WINDOWS\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\ecOJmsgAHWlsC\OrtdXZq.dll",#1 <==== ATTENTION
Task: {BFB679D9-2980-4786-9C78-98239AEBB8B2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6425.0{4AC32DC4-89A5-4AF4-A4D4-6291C6AE4B9D} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
Task: {C8C3A572-AF17-4FEC-BFA5-F080743210F4} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64464 2024-03-14] (HP Inc. -> HP Inc.)
Task: {0C6307DE-D4A6-4764-9835-183E762DEEDC} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64464 2024-03-14] (HP Inc. -> HP Inc.)
Task: {054FEDBF-5D8A-481C-8EDC-35F3733B1630} - System32\Tasks\HtmGfIeJlxktuW => C:\WINDOWS\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\epoBtGYzqLvU2\wADbmeNGxMTMf.dll",#1 <==== ATTENTION
Task: {D2A490D1-C24B-46EB-8AFF-E22BCD12D9C7} - System32\Tasks\JHJXtPPPvDXVqpH2 => C:\WINDOWS\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\zgoZGMcaU\AbeGMM.dll",#1 <==== ATTENTION
Task: {7676A68F-3F0F-42E2-9BB8-519319275F8D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {58B8D55D-F255-45BB-82DC-45740FBB80D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {84842E55-E320-4130-BE60-BEE6AC1468F1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3088387-FD2B-4E4B-BB1C-604E61034227} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => %windir%\system32\EOSNotify.exe (Pas de fichier)
Task: {E78667A8-375D-447F-8026-3A633172BA63} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002Core => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {30462DD4-3E60-4454-BB06-956E8D32A0DF} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002UA => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE98E6A4-C548-42AF-9A01-AF5DE07B1B3A} - System32\Tasks\MPGPH131 HR => C:\ProgramData\MPGPH131\MPGPH131.exe [2157072 2024-04-25] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
Task: {EBD39E36-2B9C-4C08-9741-794C2330AAB2} - System32\Tasks\MPGPH131 LG => C:\ProgramData\MPGPH131\MPGPH131.exe [2157072 2024-04-25] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
Task: {35CB05C0-530A-4389-9A93-6FFC66C7E887} - System32\Tasks\NewB.exe => C:\Users\HP\AppData\Local\Temp\1000150001\NewB.exe [428544 2024-04-28] () [Fichier non signé] <==== ATTENTION
Task: {50383569-9CDE-4E85-A1C2-7D1F83AC3565} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2022-11-22] () [Fichier non signé]
Task: {1AE85F24-6F30-434B-B746-334423CE8DA9} - System32\Tasks\Opera scheduled assistant Autoupdate 1547232229 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [1581984 2024-04-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\HP\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {E4DE4829-F926-45A6-8F6C-91F5B806F7DE} - System32\Tasks\Opera scheduled Autoupdate 1535353816 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe [1581984 2024-04-25] (Opera Norway AS -> Opera Software)
Task: {CAC1AC12-6C4E-435C-A04B-56E58A6B617B} - System32\Tasks\Service\Data => C:\Users\HP\AppData\Roaming\ServiceData\Davonevur.exe [947288 2022-09-19] (AutoIt Consulting Ltd -> AutoIt Team) -> "C:\Users\HP\AppData\Roaming\ServiceData\Davonevur.jpg"
Task: {42A791F3-9C3C-4AC2-854F-74257C50C078} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {7C4D0115-B6A6-4E6A-B7F2-D792A20FAACC} - System32\Tasks\WinTrackerSP HR => C:\ProgramData\WinTrackerSP\WinTrackerSP.exe [5857792 2024-04-25] () [Fichier non signé] <==== ATTENTION
Task: {601EE07A-4732-4719-8C64-CE3E5534EC62} - System32\Tasks\WinTrackerSP LG => C:\ProgramData\WinTrackerSP\WinTrackerSP.exe [5857792 2024-04-25] () [Fichier non signé] <==== ATTENTION
Task: {3933E8B7-83C5-4325-875A-D373EA464167} - System32\Tasks\ykYfCTTujiceFdOqI2 => C:\WINDOWS\system32\rundll32.exe [71680 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\HwnzDfNzNWHpPtLDwZR\lsHkdLD.dll",#1 <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\bwrroZoeZRoQVpyAcj.job => C:\Users\HP\AppData\Local\Temp\AjftBdcqEhUoRKcxg\EmHZJQvMUXyMfbh\phGHgFI.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\chrosha.job => C:\Users\HP\AppData\Local\Temp\4d0ab15804\chrosha.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\explorta.job => C:\Users\HP\AppData\Local\Temp\5454e6f062\explorta.exe <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.179.124
Tcpip\..\Interfaces\{2d1165ea-6aa4-44b2-a629-93a25320ca1b}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}: [DhcpNameServer] 192.168.17.138
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\0534D275946494: [DhcpNameServer] 192.168.4.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\0534D275946494: [DhcpDomain] hg232f
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\147454E43454F534F4D4D45425349414C454: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D413: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D423: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D433: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4D22554: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4D22554: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4F53454251434: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425D275946494D205F405: [DhcpNameServer] 192.168.3.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425D275946494D205F405: [DhcpDomain] hg232f
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425F5E45445: [DhcpNameServer] 195.24.192.33 8.8.8.8 4.2.2.2
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\34564727F6E6F554267716: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\34D46534D2B425942494: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\659405: [DhcpNameServer] 8.8.8.8 195.24.192.33
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\659405F575966696: [DhcpNameServer] 8.8.8.8 195.24.192.33
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\6594C4C4147454D23414E4D254247514: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\74942424543535: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\75962756C6563737F534845434D284F4D454: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\75962756C6563737F534845434D284F4D454: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D42535F5E4544575F425B4: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D42535F5E4544575F425B4: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D4966496F5231483531443: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\E474243535: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{916f698f-43b6-4801-bd8a-608fc82deabe}: [NameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{aa3e770d-ec2b-445d-b974-d30e06074a1d}: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{aa3e770d-ec2b-445d-b974-d30e06074a1d}: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{aa83eb97-8e72-4504-997c-a105cf19541e}: [NameServer] 192.168.200.53
Tcpip\..\Interfaces\{c2ba781b-75c7-457b-b301-9eb4f83fd4a4}: [NameServer] 195.24.192.33,8.8.8.8
Tcpip\..\Interfaces\{f58d751f-e049-48cb-99fc-e9addf8cb3e8}: [DhcpNameServer] 192.168.179.124
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-28]
Edge Extension: (McAfee® WebAdvisor) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2024-04-17]
Edge Extension: (YoutubeDownloader) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\geiolieogaichbpfhcannipendgnnbkn [2024-04-28] [UpdateUrl:hxxps://clients27.google.com/service/update2/crx] <==== ATTENTION
Edge Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-17]
Edge Extension: (Edge relevant text changes) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge HKLM-x32\...\Edge\Extension: [fdhgeoginicibhagdmblfikbgbkahibd]
FireFox:
========
FF DefaultProfile: ib75jhl9.default-1685967659881
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 -> hxxps://find-it.pro/?utm_source=distr_m
FF Session Restore: Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iapdqss9.default-release-5 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\iapdqss9.default-release-5 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\iapdqss9.default-release-5 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iapdqss9.default-release-5\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 -> hxxps://192.168.18.51/basicframe
FF Notifications: Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881\searchplugins\cdnsearch.xml [2024-04-28]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 [2024-04-28]
FF Homepage: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> hxxps://192.168.18.51/basicframe
FF NetworkProxy: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF SearchPlugin: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\gk42c1l4.default-release-4\searchplugins\cdnsearch.xml [2024-04-28]
FF Extension: (Pas de nom) - C:\Program Files\Mozilla Firefox\browser\features\{85FD6ACE-3736-491B-8514-6C8C9556E131}.xpi [2024-04-28] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @FortinetCacheClean -> C:\Program Files (x86)\Fortinet\FortiClient\npccplugin.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @FortinetCacheCleanEx -> C:\Program Files (x86)\Fortinet\FortiClient\npccpluginex.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @FortinetTunnelControl -> C:\Program Files (x86)\Fortinet\FortiClient\nptcplugin.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2024-04-28]
CHR Extension: (Torrent Scanner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-01-31]
CHR Extension: (Google Sheets Offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blomfhkjjolopkkglifoclbjmbbambpg [2024-04-28] [UpdateUrl:hxxps://clients15.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-13]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-04-03]
CHR Extension: (Online Security) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2024-04-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-20]
CHR Extension: (Google Docs) - C:\Users\HP\AppData\Local\PH\llg [2024-04-25]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-12] (Adobe Inc. -> Adobe)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5323592 2024-04-11] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
R2 EventGuide 1.3.11.66; C:\ProgramData\EventGuide 1.3.11.66\EventGuide 1.3.11.66.exe [2389507 2024-04-25] (FlappingWings) [Fichier non signé] <==== ATTENTION
S2 FA_Scheduler; C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe [119826 2018-01-08] (Fortinet Inc.) [Fichier non signé]
R2 fsulhoster; C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe [738256 2024-04-25] (WithSecure Oyj -> WithSecure Corporation)
R2 fsulnethoster; C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe [738256 2024-04-25] (WithSecure Oyj -> WithSecure Corporation)
R2 fsulorsp; C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fsorsp64.exe [109432 2024-04-25] (WithSecure Oyj -> F-Secure Corporation)
S2 GoogleUpdaterInternalService126.0.6425.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6425.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6425.0\updater.exe [4786464 2024-04-18] (Google LLC -> Google LLC)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [889400 2024-04-05] (McAfee, LLC -> McAfee, LLC)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SolarWinds TFTP Server; C:\Program Files (x86)\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe [76160 2023-05-16] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
R2 SWBrowserIntegration; C:\Program Files (x86)\SolarWinds\Toolset\SWBrowserIntegration.exe [53072 2024-01-11] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-09-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-09-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefender; C:\WINDOWS\windefender.exe [2103296 2024-04-25] (Accès refusé) [Fichier non signé] <==== ATTENTION
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
U3 wuauserv; C:\WINDOWS\system32\svchost.exe [55456 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
U3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [46544 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S2 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]
S2 HPPrintScanDoctorService; "C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe" [X]
S4 VBoxGuest; VBoxGuest [X]
S4 VBoxMouse; VBoxMouse [X]
S4 VBoxService; VBoxService [X]
S4 VBoxSF; VBoxSF [X]
S4 VBoxVideo; VBoxVideo [X]
S4 VBoxWddm; VBoxWddm [X]
S2 wzptgcdn; C:\WINDOWS\SysWOW64\wzptgcdn\gsaxdqwu.exe /d"C:\Users\HP\Documents\SimpleAdobe\pARs_emVHGId3FtlQP7VI728.exe"
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 bcmsmbsp; C:\WINDOWS\System32\drivers\bcmsmbsp.sys [53024 2015-07-10] (Broadcom Corporation -> Broadcom Corporation.)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 EMP_MIRRUD; C:\WINDOWS\System32\drivers\EMP_MirrUD.sys [5632 2011-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [18000 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [45792 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [37456 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R0 fortiloader; C:\WINDOWS\System32\drivers\fortiloader.sys [12368 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 fortimon3; C:\WINDOWS\System32\drivers\fortimon3.sys [48208 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [147536 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 FortiRdr; C:\WINDOWS\System32\drivers\FortiRdr2.sys [47184 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [72272 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [92240 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R3 FortiWF; C:\WINDOWS\System32\drivers\FortiWF2.sys [42576 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [66600 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [71928 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr64.sys [37112 2015-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 mdareDriver_63; C:\Program Files (x86)\Fortinet\FortiClient\mdare64_63.sys [106064 2024-01-26] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [78376 2023-04-27] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [328784 2023-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55872 2023-09-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-09-04] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-09-04] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
U1 aswbdisk; pas de ImagePath
S3 eppvad_simple; \SystemRoot\system32\drivers\EMP_UDAU.sys [X]
S3 FortiDeviceGuard; \SystemRoot\System32\drivers\FortiDeviceGuard.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 mdareDriver_62; \??\C:\Users\HP\AppData\Local\Temp\FCPreScan\mdare64_62.sys [X] <==== ATTENTION
S3 mdareDriver_64; \??\C:\Program Files (x86)\Fortinet\FortiClient\mdare64_64.sys [X]
U4 npcap_wifi; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-28 20:15 - 2024-04-28 20:15 - 000461825 _____ C:\Users\HP\AppData\Local\XdtfStovibgtUDkwrzUSrX71.exe
2024-04-28 20:14 - 2024-04-28 20:14 - 000007446 _____ C:\Users\HP\AppData\Local\iREdbBASeKmWac8TSL5uQnM8.exe
2024-04-28 20:07 - 2024-04-28 20:07 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\Z7CP4tnlgqVLmd49GGEgfPAf.exe
2024-04-28 20:07 - 2024-04-28 20:07 - 004448940 _____ C:\Users\HP\AppData\Local\nkMasGmrKS8mOJIbgAI92XGK.exe
2024-04-28 20:00 - 2024-04-28 20:00 - 000461825 _____ C:\Users\HP\AppData\Local\X1fbMrzvWkYxHrXAasjwB8ni.exe
2024-04-28 19:59 - 2024-04-28 19:59 - 000007446 _____ C:\Users\HP\AppData\Local\mOnXxYRlerK67ffpzw8WKH4D.exe
2024-04-28 19:47 - 2024-04-28 19:47 - 000461825 _____ C:\Users\HP\AppData\Local\VqfFF1OTwKtKMon2QIEFOJJW.exe
2024-04-28 19:47 - 2024-04-28 19:47 - 000007446 _____ C:\Users\HP\AppData\Local\wbFC0YXNf2IJ7s70jmvqMKtY.exe
2024-04-28 19:42 - 2024-04-28 19:42 - 000060855 _____ C:\Users\HP\Desktop\Shortcut.txt
2024-04-28 19:40 - 2024-04-28 19:40 - 004861940 _____ C:\Users\HP\AppData\Local\kXQ6siMbcR6QerL5Rh5vlb3s.exe
2024-04-28 19:37 - 2024-04-28 19:37 - 000461825 _____ C:\Users\HP\AppData\Local\ZB6r9WgRpqw5oEHRoGEQP68E.exe
2024-04-28 19:36 - 2024-04-28 19:36 - 000007446 _____ C:\Users\HP\AppData\Local\hYqH0U7SR1gfpCyhjPGplDVJ.exe
2024-04-28 19:33 - 2024-04-28 19:33 - 008388608 _____ C:\Users\HP\AppData\Local\agPUy14abuntllnmr6jAXtGj.exe
2024-04-28 19:32 - 2024-04-28 19:32 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\TpvjziTvRrhBWOssafJF9Fmg.exe
2024-04-28 19:30 - 2024-04-28 19:42 - 000079886 _____ C:\Users\HP\Desktop\Addition.txt
2024-04-28 19:30 - 2024-04-28 19:30 - 005910528 _____ C:\Users\HP\AppData\Local\lQonoAjarLH6ZRh7j7ub5sEe.exe
2024-04-28 19:28 - 2024-04-28 19:28 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\QunEFBdeTaiuJr3JT4CaL7pY.exe
2024-04-28 19:26 - 2024-04-28 19:26 - 000461825 _____ C:\Users\HP\AppData\Local\78299ttiBFcyFOdBdzea7jKm.exe
2024-04-28 19:25 - 2024-04-28 19:25 - 000007446 _____ C:\Users\HP\AppData\Local\GV2K76qVG8ixEwErKCXHPh1V.exe
2024-04-28 19:21 - 2024-04-28 19:21 - 000461825 _____ C:\Users\HP\AppData\Local\8YW7t3OBtqEewY4tTSTZz6Db.exe
2024-04-28 19:20 - 2024-04-28 20:15 - 000063027 _____ C:\Users\HP\Desktop\FRST.txt
2024-04-28 19:20 - 2024-04-28 19:20 - 000007446 _____ C:\Users\HP\AppData\Local\fvbyGk4usqbJkCzY6mQmyk3q.exe
2024-04-28 19:16 - 2024-04-28 19:16 - 000461825 _____ C:\Users\HP\AppData\Local\g8DwUhxil5oKaDIzCoWDKwf2.exe
2024-04-28 19:15 - 2024-04-28 19:15 - 000007446 _____ C:\Users\HP\AppData\Local\FsnyB7ZavIZrAhyGnkVihmkO.exe
2024-04-28 19:12 - 2024-04-28 19:14 - 002394112 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2024-04-28 18:18 - 2024-04-28 18:18 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\BIDMjuK1Ge76BKs3duesu4yI.exe
2024-04-28 18:16 - 2024-04-28 18:16 - 005910528 _____ C:\Users\HP\AppData\Local\HZVgcjWcBcJbz8suO4R2u22G.exe
2024-04-28 18:14 - 2024-04-28 18:14 - 000461825 _____ C:\Users\HP\AppData\Local\fPqHEj0jIzkvw3GdbV4ghJgd.exe
2024-04-28 18:11 - 2024-04-28 18:11 - 000007446 _____ C:\Users\HP\AppData\Local\l9UuZMwDPFEi1HSXvdi1nT6T.exe
2024-04-28 18:09 - 2024-04-28 18:09 - 005774740 _____ C:\Users\HP\AppData\Local\pzmgOdwhAFDfWF2btYYLCTUp.exe
2024-04-28 18:08 - 2024-04-28 18:08 - 004393872 _____ C:\Users\HP\AppData\Local\0ZsFMVlQvmzKEFn4w4XN2zgE.exe
2024-04-28 18:08 - 2024-04-28 18:08 - 003644048 _____ C:\Users\HP\AppData\Local\Qfu9YSCkfdksFvjFGDk5Mzlh.exe
2024-04-28 18:02 - 2024-04-28 18:02 - 000461825 _____ C:\Users\HP\AppData\Local\UMzmC4sfWJ94x8UoFO0zNtsk.exe
2024-04-28 18:01 - 2024-04-28 18:01 - 000007446 _____ C:\Users\HP\AppData\Local\K9ngG6fbRlhRnFunowe6xJt0.exe
2024-04-28 17:56 - 2024-04-28 17:56 - 005910528 _____ C:\Users\HP\AppData\Local\t1zLrsjcRxkxEFegvrKJ0LmN.exe
2024-04-28 17:52 - 2024-04-28 17:52 - 000461825 _____ C:\Users\HP\AppData\Local\VqYS73AAo55EHDTo6Q8VoGwS.exe
2024-04-28 17:51 - 2024-04-28 17:51 - 000007446 _____ C:\Users\HP\AppData\Local\g7qgpZQzN9eORFjkYfcW6B7J.exe
2024-04-28 17:50 - 2024-04-28 17:50 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\WlUQTKWxQ7vXGI0jSz8e0gZG.exe
2024-04-28 17:48 - 2024-04-28 17:48 - 005672540 _____ C:\Users\HP\AppData\Local\2uWSaZy1lGLVCjGreA8BVQiL.exe
2024-04-28 17:36 - 2024-04-28 17:36 - 000462337 _____ C:\Users\HP\AppData\Local\3sGP4IhgL8lkzv8dVrxiNz5k.exe
2024-04-28 17:34 - 2024-04-28 17:34 - 000007446 _____ C:\Users\HP\AppData\Local\kRHpPZv4qCvCRcs2JSIEk0GX.exe
2024-04-28 17:25 - 2024-04-28 17:25 - 000462337 _____ C:\Users\HP\AppData\Local\ViYLzCamD1dc4Nkf6DYHnqso.exe
2024-04-28 17:24 - 2024-04-28 17:24 - 000007446 _____ C:\Users\HP\AppData\Local\waSZyhdyxrvC5aMELgaZodQ2.exe
2024-04-28 17:21 - 2024-04-28 17:21 - 004045740 _____ C:\Users\HP\AppData\Local\TR5SP9DktfCxbWyektnYdT1b.exe
2024-04-28 17:20 - 2024-04-28 17:20 - 008388608 _____ C:\Users\HP\AppData\Local\p56Xtx07w4zHCxbxP29XVdtw.exe
2024-04-28 17:15 - 2024-04-28 17:15 - 001391232 _____ C:\Users\HP\AppData\Local\UdOyRgc4QncO42l24JVSUC96.exe
2024-04-28 17:09 - 2024-04-28 17:09 - 000462337 _____ C:\Users\HP\AppData\Local\uJy0mmVd5LOMYqZ4C6Suv8MA.exe
2024-04-28 17:09 - 2024-04-28 17:09 - 000007446 _____ C:\Users\HP\AppData\Local\FrsRq115hMk2sl9PFVNmG0Q1.exe
2024-04-28 17:06 - 2024-04-28 17:06 - 000462337 _____ C:\Users\HP\AppData\Local\3KaaubNgzQPOmoyzaryqamPu.exe
2024-04-28 17:05 - 2024-04-28 17:05 - 000188740 _____ C:\Users\HP\AppData\Local\IozpLuFWHOcvwAl3ARFUOwGo.exe
2024-04-28 17:03 - 2024-04-28 17:03 - 000007446 _____ C:\Users\HP\AppData\Local\kUSxvH4lOC4DOoJXUEoX5ApS.exe
2024-04-28 16:37 - 2024-04-28 16:37 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\0FEwecVEcs574Da5dn6suI8m.exe
2024-04-28 16:36 - 2024-04-28 16:36 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\mkDe9cyjeMAcBQCzrypTAEfR.exe
2024-04-28 16:36 - 2024-04-28 16:36 - 005910528 _____ C:\Users\HP\AppData\Local\0yUxFiuXWf6fJONlXuVRz1vQ.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 004393864 _____ C:\Users\HP\AppData\Local\KAdLbj1G3wDJJz2Voanm50Zz.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 004393864 _____ C:\Users\HP\AppData\Local\BghPOA9n3Os78imFn6Y9txNi.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 000462337 _____ C:\Users\HP\AppData\Local\OMpMo8kkYiW0IsJ8ZgmN3Xgs.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 000007446 _____ C:\Users\HP\AppData\Local\MEXnjSD2G6be1ez2l5Pl0LcD.exe
2024-04-28 16:26 - 2024-04-28 16:26 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\yIMupCzwl7aenoWZEC7UOhxN.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 008388608 _____ C:\Users\HP\AppData\Local\u6VJKcYXs94pRTIWp5aA2PAi.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\Tf4vWhyWs4fOmHTAVT3jlCvs.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 005910528 _____ C:\Users\HP\AppData\Local\SUi5PUCNXVhK7zHnx5fcKXzg.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 004393864 _____ C:\Users\HP\AppData\Local\pwrbxD9xnYrRwPAmFDyV6xcG.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 004393864 _____ C:\Users\HP\AppData\Local\kTozY21aDBxsKM3lEowkJBv3.exe
2024-04-28 16:24 - 2024-04-28 16:24 - 000462337 _____ C:\Users\HP\AppData\Local\uR89HngXmizQMLDoo3zQxWYO.exe
2024-04-28 16:24 - 2024-04-28 16:24 - 000007446 _____ C:\Users\HP\AppData\Local\XughcIFWQBFVRZeZgruah7jZ.exe
2024-04-28 16:23 - 2024-04-28 16:23 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\OrDwNcvKgCwIxkCqQaR43zGg.exe
2024-04-28 16:21 - 2024-04-28 16:21 - 005910528 _____ C:\Users\HP\AppData\Local\PAcFZRP4O91DfyS288ywS9AT.exe
2024-04-28 16:20 - 2024-04-28 16:20 - 004393864 _____ C:\Users\HP\AppData\Local\O9CoGzPG1rUN77vwrCuVdqoF.exe
2024-04-28 16:20 - 2024-04-28 16:20 - 004393864 _____ C:\Users\HP\AppData\Local\hAxmiwOAFxHXOZEjROjKFZmz.exe
2024-04-28 16:19 - 2024-04-28 16:19 - 000462337 _____ C:\Users\HP\AppData\Local\l8uT4BvGS22uNTQBO3OTIAZ8.exe
2024-04-28 16:19 - 2024-04-28 16:19 - 000007446 _____ C:\Users\HP\AppData\Local\rw3DiQTJzmF9mYnylzzUrIg0.exe
2024-04-28 15:49 - 2024-04-28 15:49 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\XgX9WZ5ct4XPUrEbq3b41kZd.exe
2024-04-28 15:44 - 2024-04-28 15:44 - 001283540 _____ C:\Users\HP\AppData\Local\DFYZnnhBKDTlBgNCws9ZAeBb.exe
2024-04-28 15:40 - 2024-04-28 15:40 - 000462337 _____ C:\Users\HP\AppData\Local\qd6yoIK6WMojIaj9R0wpzrXX.exe
2024-04-28 15:37 - 2024-04-28 15:37 - 000007446 _____ C:\Users\HP\AppData\Local\wShAZfVHJqu6ipBDkywy2UcG.exe
2024-04-28 15:31 - 2024-04-28 15:31 - 000051200 _____ C:\Users\HP\AppData\Roaming\explorer.exe
2024-04-28 15:31 - 2024-04-28 15:31 - 000003528 _____ C:\WINDOWS\system32\Tasks\explorer
2024-04-28 15:28 - 2024-04-28 15:29 - 000000000 ___HD C:\Users\HP\AppData\Roaming\configurationValue
2024-04-28 15:25 - 2024-04-28 18:11 - 000000000 ____D C:\Users\HP\1000017002
2024-04-28 15:24 - 2024-04-28 15:24 - 000002958 _____ C:\WINDOWS\system32\Tasks\chrosha
2024-04-28 15:24 - 2024-04-28 15:24 - 000000278 _____ C:\WINDOWS\Tasks\chrosha.job
2024-04-28 15:23 - 2024-04-28 15:23 - 000003026 _____ C:\WINDOWS\system32\Tasks\fWcEirOkMoMQjrUKaey2
2024-04-28 15:23 - 2024-04-28 15:23 - 000000000 ____D C:\Program Files (x86)\qIYKRzUEasUn
2024-04-28 15:22 - 2024-04-28 15:23 - 000000000 ____D C:\Program Files (x86)\ecOJmsgAHWlsC
2024-04-28 15:22 - 2024-04-28 15:22 - 000003356 _____ C:\WINDOWS\system32\Tasks\HtmGfIeJlxktuW
2024-04-28 15:22 - 2024-04-28 15:22 - 000003164 _____ C:\WINDOWS\system32\Tasks\beuYBzgGTLbmn2
2024-04-28 15:22 - 2024-04-28 15:22 - 000003034 _____ C:\WINDOWS\system32\Tasks\ykYfCTTujiceFdOqI2
2024-04-28 15:22 - 2024-04-28 15:22 - 000003008 _____ C:\WINDOWS\system32\Tasks\JHJXtPPPvDXVqpH2
2024-04-28 15:22 - 2024-04-28 15:22 - 000000000 ____D C:\ProgramData\pICeQFkDCDDquYVB
2024-04-28 15:22 - 2024-04-28 15:22 - 000000000 ____D C:\Program Files (x86)\HwnzDfNzNWHpPtLDwZR
2024-04-28 15:22 - 2024-04-28 15:22 - 000000000 ____D C:\Program Files (x86)\epoBtGYzqLvU2
2024-04-28 15:17 - 2024-04-28 15:17 - 000002962 _____ C:\WINDOWS\system32\Tasks\explorta
2024-04-28 15:17 - 2024-04-28 15:17 - 000000280 _____ C:\WINDOWS\Tasks\explorta.job
2024-04-26 17:21 - 2024-04-28 15:22 - 000000000 ____D C:\Program Files (x86)\zgoZGMcaU
2024-04-26 17:16 - 2024-04-26 17:16 - 000013744 __RSH C:\ProgramData\ntuser.pol
2024-04-26 17:13 - 2024-04-26 17:13 - 000000016 _____ C:\ProgramData\swi4ad4db2a-76aa-4d43-a7a8-1c59f337a24e.txt
2024-04-26 11:15 - 2024-04-26 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds
2024-04-26 11:14 - 2024-04-26 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds Real-time NetFlow Analyzer
2024-04-26 10:33 - 2024-04-26 17:11 - 000000031 _____ C:\ProgramData\swiae82061a-c385-475c-8150-fc2ebca542a9.txt
2024-04-26 10:32 - 2024-04-26 10:36 - 000002231 _____ C:\Users\Public\Desktop\IP Network Browser.lnk
2024-04-26 10:32 - 2024-04-26 10:36 - 000002193 _____ C:\Users\Public\Desktop\Network Performance Monitor.lnk
2024-04-26 10:32 - 2024-04-26 10:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds Engineer's Toolset
2024-04-26 10:32 - 2024-04-26 10:32 - 000001146 _____ C:\Users\Public\Desktop\Toolset Launch Pad.lnk
2024-04-26 10:29 - 2024-04-26 11:15 - 000000000 ____D C:\Program Files (x86)\SolarWinds
2024-04-26 10:20 - 2024-04-26 10:20 - 000000000 ____D C:\Users\HP\AppData\Local\9bfc8001-33b6-487d-aa5e-ab02cace047e
2024-04-26 10:20 - 2024-04-26 10:20 - 000000000 ____D C:\Users\HP\AppData\Local\7b92a30e-bbc9-4c40-8476-a35e0c10acd0
2024-04-26 10:18 - 2024-04-28 15:03 - 000000000 ____D C:\ProgramData\SolarWinds
2024-04-26 10:17 - 2024-04-26 10:17 - 407553920 _____ (SolarWinds Worldwide, LLC.) C:\Users\HP\Downloads\SolarWinds-DesktopToolset-v2024.1.exe
2024-04-26 06:59 - 2024-04-26 06:59 - 000000000 ____D C:\Users\HP\AppData\Roaming\c1ec479e5342a2
2024-04-25 16:36 - 2024-04-25 16:36 - 000000356 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ussclean
2024-04-25 16:29 - 2024-04-25 16:36 - 000000000 ____D C:\ProgramData\F-Secure
2024-04-25 16:29 - 2024-04-25 16:29 - 013870328 _____ (F-Secure Corporation) C:\Users\HP\Downloads\F-SecureOnlineScanner.exe
2024-04-25 16:29 - 2024-04-25 16:29 - 000000000 ____D C:\Users\HP\AppData\Local\F-Secure
2024-04-25 16:29 - 2024-04-25 16:29 - 000000000 ____D C:\Users\HP\AppData\Local\FSDART
2024-04-25 16:29 - 2024-04-25 16:29 - 000000000 ____D C:\Program Files\F-Secure
2024-04-25 15:54 - 2024-04-26 07:09 - 000001379 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-04-25 15:54 - 2024-04-26 07:09 - 000001273 _____ C:\Users\HP\Desktop\ESET Online Scanner.lnk
2024-04-25 15:48 - 2024-04-25 15:53 - 008389496 _____ (ESET) C:\Users\HP\Downloads\esetonlinescanner.exe
2024-04-25 14:55 - 2014-12-14 11:57 - 000000024 _____ C:\ProgramData\media_9.1.3.7_longdesc.txt
2024-04-25 14:54 - 2024-04-25 14:54 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\DKm7V2KZKVWYawAgHGbph5n1.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 033554432 _____ C:\Users\HP\AppData\Local\C7FYr9AN5eKp9k1iu3ZkwtMX.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 029360128 _____ C:\Users\HP\AppData\Local\JP6iuKpRVAuDWhzF52XUC4ch.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 000017088 _____ C:\Users\HP\AppData\Local\pRTPzQoWYqaFcd3hiG900HCU.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 000017001 _____ C:\Users\HP\AppData\Local\RZUETAUemAyz9ibjQkDYhYG4.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000017046 _____ C:\Users\HP\AppData\Local\5ci5tb4faXhn7Vk5FBJaplT3.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000016986 _____ C:\Users\HP\AppData\Local\34SczZVbdAWwlV3IsNF2qSlK.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000007446 _____ C:\Users\HP\AppData\Local\fIDTscemnzXfKov70ySNk3wp.exe
2024-04-25 14:51 - 2024-04-25 14:51 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\ZwcZsSiqXaJL5GMxyQof71aR.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000017046 _____ C:\Users\HP\AppData\Local\zyr0CI1zkcG0CyH9aIBdLaty.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000016986 _____ C:\Users\HP\AppData\Local\KyJyAbxNxFnYMKoAJxqPAXOD.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000007446 _____ C:\Users\HP\AppData\Local\jsMmwI0cafxqT62bbqozVdqb.exe
2024-04-25 14:46 - 2024-04-25 14:46 - 001182996 _____ () C:\Users\HP\AppData\Local\xRzJLWJupIejTM1WFgRnPGJz.exe
2024-04-25 14:41 - 2024-04-25 14:41 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\XF7KebAvBrISzk3mDJqknTOv.exe
2024-04-25 14:41 - 2024-04-25 14:41 - 000007446 _____ C:\Users\HP\AppData\Local\ieMb7eHd1exjGmaifpxDowdC.exe
2024-04-25 14:40 - 2024-04-25 14:40 - 005690368 _____ () C:\Users\HP\AppData\Local\2mxoVPj1mgWVpCwNtEuely9Y.exe
2024-04-25 14:36 - 2024-04-25 14:36 - 000007446 _____ C:\Users\HP\AppData\Local\xhmu7QiKZZGxmFtIQRY7NHPY.exe
2024-04-25 14:35 - 2024-04-25 14:35 - 005690368 _____ () C:\Users\HP\AppData\Local\okR8nJ7x2JXzQNCvX8bE9zBk.exe
2024-04-25 14:31 - 2024-04-25 14:31 - 000007446 _____ C:\Users\HP\AppData\Local\PLbDumKE9y66wg8SDpfTb6oW.exe
2024-04-25 14:30 - 2024-04-25 14:30 - 005690368 _____ () C:\Users\HP\AppData\Local\lfSxg2W4nfyAIPmEU0aQmLHE.exe
2024-04-25 14:29 - 2024-04-25 14:29 - 008388608 _____ C:\Users\HP\AppData\Local\oL5tkx1AjQHOveDW1nnGRgwl.exe
2024-04-25 14:29 - 2024-04-25 14:29 - 005690368 _____ () C:\Users\HP\AppData\Local\jCE72Rg6rpnRneQ3H0mF5b42.exe
2024-04-25 14:26 - 2024-04-25 14:26 - 000007446 _____ C:\Users\HP\AppData\Local\A85obI5oo14Rv2kOzdi52Tz5.exe
2024-04-25 14:22 - 2024-04-28 15:57 - 000257872 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2024-04-25 14:22 - 2024-04-25 14:22 - 000000000 ____D C:\ProgramData\iolo technologies
2024-04-25 14:21 - 2024-04-25 14:21 - 002103296 ____H C:\WINDOWS\windefender.exe
2024-04-25 14:21 - 2024-04-25 14:21 - 000007446 _____ C:\Users\HP\AppData\Local\rQD116VgmDbdv7GRDCWVQ4Rt.exe
2024-04-25 14:19 - 2024-04-28 20:16 - 000003238 _____ C:\WINDOWS\system32\Tasks\csrss
2024-04-25 14:19 - 2024-04-28 15:57 - 002046288 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2024-04-25 14:18 - 2024-04-28 15:53 - 000608080 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2024-04-25 14:18 - 2024-04-25 14:18 - 000273668 _____ C:\Users\HP\AppData\Local\Kt96vqHFc5mT6h0Yg4oenhAy.exe
2024-04-25 14:16 - 2024-04-25 14:16 - 000007446 _____ C:\Users\HP\AppData\Local\zllDfLlcD61RBiro4tb1ttMs.exe
2024-04-25 14:16 - 2024-04-25 14:16 - 000000000 ___HD C:\WINDOWS\rss
2024-04-25 14:15 - 2024-04-28 15:52 - 000685392 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2024-04-25 14:13 - 2024-04-25 14:13 - 000143764 _____ C:\Users\HP\AppData\Local\wUPo91YCVFFyUW7NXVxWbIjg.exe
2024-04-25 14:12 - 2024-04-25 14:21 - 000000000 ____D C:\Users\HP\AppData\Local\PH
2024-04-25 14:11 - 2024-04-25 14:11 - 000007446 _____ C:\Users\HP\AppData\Local\qfiZt7XmwITBY9PF9U2RhpU1.exe
2024-04-25 14:09 - 2024-04-25 14:09 - 005690368 _____ () C:\Users\HP\AppData\Local\9QbtLv25OcTv1GwMdwTdnKNx.exe
2024-04-25 14:08 - 2024-04-25 14:08 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\G3xGSz5SufSLiSWymzM7MxTA.exe
2024-04-25 14:08 - 2024-04-25 14:08 - 000000000 ____D C:\Users\HP\AppData\Local\Yandex
2024-04-25 14:07 - 2024-04-25 14:07 - 000000000 ____D C:\Users\HP\AppData\Roaming\iolo
2024-04-25 14:07 - 2024-04-25 14:07 - 000000000 ____D C:\ProgramData\iolo
2024-04-25 14:06 - 2024-04-25 14:06 - 000007446 _____ C:\Users\HP\AppData\Local\znKB3uPsyhfgqLShd2Tfe4UQ.exe
2024-04-25 14:06 - 2024-04-25 14:06 - 000000000 ____D C:\Users\HP\AppData\Roaming\SecureClient
2024-04-25 14:04 - 2024-04-28 15:30 - 000003548 _____ C:\WINDOWS\system32\Tasks\NewB.exe
2024-04-25 14:03 - 2024-04-26 08:15 - 000000000 ____D C:\Users\HP\1000013002
2024-04-25 14:02 - 2024-04-28 15:20 - 000000000 ____D C:\Users\HP\AppData\Local\AdobeUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7
2024-04-25 14:02 - 2024-04-28 15:20 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7
2024-04-25 14:02 - 2024-04-28 15:18 - 000000000 ____D C:\Users\HP\AppData\Local\AdobeUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae
2024-04-25 14:02 - 2024-04-28 15:18 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae
2024-04-25 14:02 - 2024-04-28 15:17 - 000000000 ____D C:\Users\HP\AppData\Local\AdobeUpdaterV131_999e43077df71fdfc52bd5232a22cf9d
2024-04-25 14:02 - 2024-04-28 15:17 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_999e43077df71fdfc52bd5232a22cf9d
2024-04-25 13:53 - 2024-04-26 11:13 - 000000000 ____D C:\Users\HP\AppData\Local\RageMP131
2024-04-25 13:53 - 2024-04-25 13:53 - 000003508 _____ C:\WINDOWS\system32\Tasks\MPGPH131 HR
2024-04-25 13:53 - 2024-04-25 13:53 - 000003252 _____ C:\WINDOWS\system32\Tasks\MPGPH131 LG
2024-04-25 13:53 - 2024-04-25 13:53 - 000000000 ____D C:\ProgramData\MPGPH131
2024-04-25 13:23 - 2024-04-28 20:14 - 000000004 ____H C:\ProgramData\brc_66.dat
2024-04-25 13:23 - 2024-04-25 13:23 - 000000000 ____D C:\Users\HP\AppData\Local\SystemCache
2024-04-25 13:22 - 2024-04-28 20:07 - 000000128 ____H C:\ProgramData\resource-a.dat
2024-04-25 13:22 - 2024-04-25 13:56 - 000000508 _____ C:\WINDOWS\Tasks\bwrroZoeZRoQVpyAcj.job
2024-04-25 13:22 - 2024-04-25 13:22 - 000003052 _____ C:\WINDOWS\system32\Tasks\bwrroZoeZRoQVpyAcj
2024-04-25 13:22 - 2024-04-25 13:22 - 000000128 ____H C:\ProgramData\resource-b.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000008 ____H C:\ProgramData\bit_66.dat
2024-04-25 13:21 - 2024-04-26 15:18 - 000000000 ____D C:\WINDOWS\SysWOW64\wzptgcdn
2024-04-25 13:21 - 2024-04-26 10:22 - 000000000 ____D C:\Users\HP\AppData\Local\ExtreamFanV5
2024-04-25 13:21 - 2024-04-25 13:21 - 000003532 _____ C:\WINDOWS\system32\Tasks\WinTrackerSP HR
2024-04-25 13:21 - 2024-04-25 13:21 - 000003276 _____ C:\WINDOWS\system32\Tasks\WinTrackerSP LG
2024-04-25 13:21 - 2024-04-25 13:21 - 000000000 ____D C:\ProgramData\WinTrackerSP
2024-04-25 13:21 - 2024-04-25 13:21 - 000000000 ____D C:\ProgramData\EventGuide 1.3.11.66
2024-04-25 13:20 - 2024-04-26 09:11 - 000000000 ____D C:\Users\HP\AppData\Local\PCI Audio Star
2024-04-25 13:18 - 2024-04-26 10:54 - 000000000 ____D C:\Users\HP\Documents\SimpleAdobe
2024-04-25 11:41 - 2024-04-25 11:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Service
2024-04-25 11:41 - 2024-04-25 11:41 - 000000000 ____D C:\Users\HP\AppData\Roaming\ServiceData
2024-04-25 11:31 - 2024-04-25 11:31 - 000000000 ____D C:\Users\HP\AppData\Local\Buyojobuno
2024-04-25 11:30 - 2024-04-25 11:30 - 000000000 ____D C:\Users\HP\AppData\Roaming\Streamsign
2024-04-25 11:06 - 2024-04-25 11:07 - 005790514 _____ C:\Users\HP\Downloads\_Getintopc.com_SolarWinds_Engineer’s_Toolset.mp4
2024-04-24 15:58 - 2024-04-24 15:58 - 000000000 ____D C:\Users\HP\AppData\Roaming\WindowsIPTVPlayer
2024-04-24 15:57 - 2024-04-24 15:57 - 000002291 _____ C:\Users\Public\Desktop\Windows IPTV Player.lnk
2024-04-24 15:57 - 2024-04-24 15:57 - 000000000 ____D C:\Program Files (x86)\Xtream Codes LTD
2024-04-24 08:22 - 2024-04-24 08:32 - 000000000 ____D C:\Users\HP\AppData\Local\5b58858f-64bc-4dc8-8c58-aa113eccaa9c
2024-04-23 15:18 - 2024-04-23 15:18 - 000051891 _____ C:\Users\HP\Downloads\Planning annuel de maintenance CESIR-KBI 2023.xlsx
2024-04-23 14:45 - 2024-04-23 14:45 - 000168380 _____ C:\Users\HP\Downloads\Fiche maintenance informatique et systèmes janvier 2024.pdf
2024-04-23 14:43 - 2024-04-23 14:43 - 000166098 _____ C:\Users\HP\Downloads\Fiche maintenance CESIR IP K janvier 2024.pdf
2024-04-23 14:39 - 2024-04-23 14:39 - 000166622 _____ C:\Users\HP\Downloads\Fiche maintenance CESIR IP K fevrier 2024.pdf
2024-04-22 18:26 - 2024-04-24 08:32 - 000000031 _____ C:\ProgramData\swifeb19617-f189-477f-86a7-b498f8268eaa.txt
2024-04-22 15:50 - 2024-04-22 15:51 - 000016335 _____ C:\Users\HP\Downloads\plannig de maintenance CESIR-K.xlsx
2024-04-22 13:52 - 2024-04-22 13:52 - 000000016 _____ C:\ProgramData\swi7e1058e8-a3d9-4561-bcb1-e1b722158ffd.txt
2024-04-22 13:25 - 2024-04-22 13:25 - 000000000 ____D C:\Users\HP\AppData\Local\d353ba92-b004-4dbc-af42-c97311926945
2024-04-22 09:33 - 2024-04-22 10:14 - 000056720 _____ C:\Users\HP\Downloads\LISTE_DES_EQUIPEMENTS_A_MAINTENIR_NAT_BUF .xlsx
2024-04-19 13:22 - 2024-04-19 13:23 - 004047816 _____ C:\Users\HP\Downloads\RAD ETX 220 manual.pdf
2024-04-19 12:58 - 2024-04-26 07:09 - 000000614 _____ C:\Users\HP\Desktop\boxing schedule 27-04-2024.txt
2024-04-19 12:13 - 2024-04-19 12:13 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-19 12:10 - 2024-04-19 12:10 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-19 10:39 - 2024-04-19 10:39 - 000000000 ___HD C:\$WinREAgent
2024-04-17 09:48 - 2024-04-26 11:40 - 000000000 ____D C:\Users\HP\Desktop\Solarwinds
2024-04-17 08:16 - 2024-04-17 08:16 - 000000627 _____ C:\Program Files (x86)\uninstallsererr.txt
2024-04-16 15:47 - 2024-04-16 15:47 - 000001377 _____ C:\Users\HP\Desktop\boxing schedule 13-04-2024.txt
2024-04-12 08:49 - 2024-04-12 09:05 - 000251012 _____ C:\Users\HP\Downloads\DEVIS GC LS MEN TRAVEL KRIBI.xlsx
2024-04-11 11:38 - 2024-04-11 11:39 - 253391976 _____ (Zoho Corporation Pvt. Ltd.) C:\Users\HP\Downloads\ManageEngine_NetFlowAnalyzer_64bit(1).exe
2024-04-09 13:55 - 2024-04-09 13:56 - 000000000 ____D C:\Users\HP\Desktop\RST WIN
2024-04-08 12:14 - 2024-04-08 13:11 - 786740784 ____R C:\Users\HP\Downloads\[ Torrent911.re ] Strictly.Confidential.2024.FRENCH.HDRip.x264-DDLPZ.mkv
2024-04-08 12:13 - 2024-04-08 12:13 - 000015585 _____ C:\Users\HP\Downloads\[ Torrent9.sb ] Strictly Confidential.torrent
2024-04-04 16:17 - 2024-04-04 16:06 - 002605821 _____ C:\Users\HP\Downloads\FTX COTCO 04042024.pdf
2024-04-04 14:41 - 2024-04-04 15:04 - 000012387 ____H C:\Users\HP\Desktop\~WRL2336.tmp
2024-04-03 15:55 - 2024-04-03 15:55 - 000326056 _____ C:\Users\HP\Downloads\Ftvx_N°067_COTCO-Kribi(2).pdf
2024-04-03 15:53 - 2024-04-03 15:53 - 000301843 _____ C:\Users\HP\Downloads\Ftvx_N°69_COTCO-KRIBI.pdf
2024-04-03 15:53 - 2024-04-03 15:53 - 000291476 _____ C:\Users\HP\Downloads\Ftvx_N°70_COTCO-Kribi.pdf
2024-04-03 15:52 - 2024-04-03 15:52 - 001048502 _____ C:\Users\HP\Downloads\attachments.zip
2024-04-03 15:52 - 2024-04-03 15:52 - 000326056 _____ C:\Users\HP\Downloads\Ftvx_N°067_COTCO-Kribi(1).pdf
2024-04-03 15:52 - 2024-04-03 15:52 - 000301843 _____ C:\Users\HP\Downloads\Ftvx_N°68_COTCO-KRIBI.pdf
2024-04-03 15:41 - 2024-04-03 15:41 - 000326056 _____ C:\Users\HP\Downloads\Ftvx_N°067_COTCO-Kribi.pdf
2024-04-03 13:55 - 2024-04-03 08:45 - 000239787 _____ C:\Users\HP\Downloads\DEVIS TOITURE 0204.pdf
2024-04-01 18:26 - 2024-04-01 18:43 - 000010299 _____ C:\Users\HP\Downloads\A REMPLIR POUR CESIR Kribi - VEHICULE.xlsx
2024-04-01 18:24 - 2024-04-01 18:24 - 000010352 _____ C:\Users\HP\Downloads\A REMPLIR POUR CERAF - VEHICULE.xlsx
2024-04-01 11:37 - 2024-04-01 13:36 - 000000000 ____D C:\Users\HP\Desktop\JPerf
2024-04-01 07:39 - 2024-04-01 07:39 - 000716401 _____ C:\Users\HP\Downloads\FTX RETABLISSEMENT LSIP COTCO.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-28 20:14 - 2020-12-02 21:19 - 000792706 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-28 20:14 - 2020-12-02 21:19 - 000150170 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-28 20:14 - 2020-12-02 14:01 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-28 20:14 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-04-28 20:14 - 2018-11-06 17:10 - 000000000 ____D C:\FRST
2024-04-28 20:09 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-28 20:09 - 2018-08-27 20:29 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2024-04-28 18:46 - 2020-12-02 13:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-28 16:57 - 2018-06-08 14:14 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2024-04-28 15:25 - 2020-12-02 13:43 - 000000000 ____D C:\Users\HP
2024-04-28 15:01 - 2016-04-14 02:02 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2024-04-28 15:00 - 2021-04-06 09:37 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-04-26 17:13 - 2020-12-02 14:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-26 17:13 - 2020-12-02 13:33 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-26 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-26 17:12 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-04-26 14:58 - 2022-11-21 14:14 - 000000000 ____D C:\Users\HP\Desktop\UIM
2024-04-26 14:57 - 2016-04-14 01:43 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2024-04-26 14:44 - 2018-06-06 16:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Excel
2024-04-26 13:06 - 2018-08-10 11:56 - 000000000 ____D C:\Users\HP\AppData\Local\SolarWinds
2024-04-26 11:45 - 2021-12-21 15:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-26 11:45 - 2018-04-23 10:28 - 000002288 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-04-26 11:45 - 2018-04-23 10:28 - 000002271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-26 11:14 - 2018-08-10 11:56 - 000000000 ____D C:\Users\HP\AppData\Local\Solarwinds Toolset Installs
2024-04-26 10:15 - 2019-10-08 10:23 - 000000000 ____D C:\Users\HP\AppData\Roaming\uTorrent
2024-04-26 09:32 - 2016-04-14 02:07 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-04-25 17:26 - 2020-09-08 07:35 - 000002398 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-25 17:26 - 2020-09-08 07:35 - 000002306 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-04-25 15:56 - 2020-12-02 14:29 - 000004400 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1547232229
2024-04-25 15:56 - 2018-08-27 08:10 - 000001375 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-04-25 14:03 - 2020-04-24 09:56 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Teams
2024-04-25 13:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-25 13:54 - 2018-08-27 08:09 - 000000000 ____D C:\Users\HP\AppData\Roaming\Opera Software
2024-04-25 13:53 - 2023-08-28 07:45 - 000002416 _____ C:\Users\HP\Desktop\Travail - Edge.lnk
2024-04-25 13:53 - 2019-10-08 10:24 - 000000000 ____D C:\Users\HP\AppData\Local\BitTorrentHelper
2024-04-25 13:34 - 2020-12-02 14:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-25 13:23 - 2023-12-29 13:36 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-04-25 13:23 - 2015-10-30 08:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2024-04-25 11:19 - 2018-04-23 10:25 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2024-04-23 17:07 - 2018-04-23 11:12 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Word
2024-04-23 14:40 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-23 14:37 - 2018-07-06 07:39 - 000000000 ____D C:\ProgramData\Packages
2024-04-23 13:19 - 2024-01-20 17:46 - 000000000 ____D C:\Users\HP\Desktop\Réseau d'accès IP de Kribi
2024-04-23 07:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-22 18:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-22 18:27 - 2020-12-02 13:33 - 000450240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-22 18:26 - 2023-12-15 07:38 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-22 18:26 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-19 12:31 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-19 12:10 - 2020-12-02 13:38 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-18 07:23 - 2022-07-15 08:07 - 000000678 _____ C:\Users\HP\Desktop\Camtel Share & Zoom.txt
2024-04-15 09:22 - 2020-12-02 14:29 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-15 09:21 - 2022-10-13 11:05 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-15 09:21 - 2022-10-13 11:05 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-04-12 08:12 - 2023-11-10 08:17 - 000000000 ____D C:\Program Files\Npcap
2024-04-11 14:11 - 2023-12-01 09:53 - 000000000 ____D C:\Program Files\ManageEngine
2024-04-11 07:31 - 2024-02-12 19:56 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-04-04 08:10 - 2022-06-17 08:22 - 000003948 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002UA
2024-04-04 08:10 - 2022-06-17 08:22 - 000003878 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002Core
2024-04-04 08:09 - 2020-12-02 14:29 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 08:09 - 2020-12-02 14:29 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2024-04-25 13:22 - 2024-04-25 13:22 - 000000008 ____H () C:\ProgramData\bit_66.dat
2024-04-25 13:23 - 2024-04-28 20:14 - 000000004 ____H () C:\ProgramData\brc_66.dat
2024-04-25 14:15 - 2024-04-28 15:52 - 000685392 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2024-04-25 14:18 - 2024-04-28 15:53 - 000608080 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2024-04-25 14:18 - 2024-04-28 15:54 - 000450024 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2024-04-25 14:19 - 2024-04-28 15:57 - 002046288 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2024-04-25 13:22 - 2024-04-28 20:07 - 000000128 ____H () C:\ProgramData\resource-a.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000128 ____H () C:\ProgramData\resource-b.dat
2024-04-25 14:22 - 2024-04-28 15:57 - 000257872 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2024-04-25 14:23 - 2024-04-28 15:57 - 000080880 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2024-04-17 08:16 - 2024-04-17 08:16 - 000000627 _____ () C:\Program Files (x86)\uninstallsererr.txt
2024-04-28 15:31 - 2024-04-28 15:31 - 000051200 _____ () C:\Users\HP\AppData\Roaming\explorer.exe
2024-02-12 22:52 - 2024-02-13 00:56 - 000000128 _____ () C:\Users\HP\AppData\Roaming\winscp.rnd
2024-04-28 16:37 - 2024-04-28 16:37 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\0FEwecVEcs574Da5dn6suI8m.exe
2024-04-28 16:36 - 2024-04-28 16:36 - 005910528 _____ () C:\Users\HP\AppData\Local\0yUxFiuXWf6fJONlXuVRz1vQ.exe
2024-04-28 18:08 - 2024-04-28 18:08 - 004393872 _____ () C:\Users\HP\AppData\Local\0ZsFMVlQvmzKEFn4w4XN2zgE.exe
2024-04-25 14:40 - 2024-04-25 14:40 - 005690368 _____ () C:\Users\HP\AppData\Local\2mxoVPj1mgWVpCwNtEuely9Y.exe
2024-04-28 17:48 - 2024-04-28 17:48 - 005672540 _____ () C:\Users\HP\AppData\Local\2uWSaZy1lGLVCjGreA8BVQiL.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000016986 _____ () C:\Users\HP\AppData\Local\34SczZVbdAWwlV3IsNF2qSlK.exe
2024-04-28 17:06 - 2024-04-28 17:06 - 000462337 _____ () C:\Users\HP\AppData\Local\3KaaubNgzQPOmoyzaryqamPu.exe
2024-04-28 17:36 - 2024-04-28 17:36 - 000462337 _____ () C:\Users\HP\AppData\Local\3sGP4IhgL8lkzv8dVrxiNz5k.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000017046 _____ () C:\Users\HP\AppData\Local\5ci5tb4faXhn7Vk5FBJaplT3.exe
2024-04-28 19:26 - 2024-04-28 19:26 - 000461825 _____ () C:\Users\HP\AppData\Local\78299ttiBFcyFOdBdzea7jKm.exe
2024-04-28 19:21 - 2024-04-28 19:21 - 000461825 _____ () C:\Users\HP\AppData\Local\8YW7t3OBtqEewY4tTSTZz6Db.exe
2024-04-25 14:09 - 2024-04-25 14:09 - 005690368 _____ () C:\Users\HP\AppData\Local\9QbtLv25OcTv1GwMdwTdnKNx.exe
2024-04-25 14:26 - 2024-04-25 14:26 - 000007446 _____ () C:\Users\HP\AppData\Local\A85obI5oo14Rv2kOzdi52Tz5.exe
2024-04-28 19:33 - 2024-04-28 19:33 - 008388608 _____ () C:\Users\HP\AppData\Local\agPUy14abuntllnmr6jAXtGj.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000054272 _____ () C:\Users\HP\AppData\Local\ApplicationHosting.dat
2024-04-28 16:35 - 2024-04-28 16:35 - 004393864 _____ () C:\Users\HP\AppData\Local\BghPOA9n3Os78imFn6Y9txNi.exe
2024-04-28 18:18 - 2024-04-28 18:18 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\BIDMjuK1Ge76BKs3duesu4yI.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 033554432 _____ () C:\Users\HP\AppData\Local\C7FYr9AN5eKp9k1iu3ZkwtMX.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000070992 _____ () C:\Users\HP\AppData\Local\Config.xml
2024-04-28 15:44 - 2024-04-28 15:44 - 001283540 _____ () C:\Users\HP\AppData\Local\DFYZnnhBKDTlBgNCws9ZAeBb.exe
2024-04-25 14:54 - 2024-04-25 14:54 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\DKm7V2KZKVWYawAgHGbph5n1.exe
2024-04-25 14:52 - 2024-04-25 14:52 - 000007446 _____ () C:\Users\HP\AppData\Local\fIDTscemnzXfKov70ySNk3wp.exe
2024-04-28 18:14 - 2024-04-28 18:14 - 000461825 _____ () C:\Users\HP\AppData\Local\fPqHEj0jIzkvw3GdbV4ghJgd.exe
2024-04-28 17:09 - 2024-04-28 17:09 - 000007446 _____ () C:\Users\HP\AppData\Local\FrsRq115hMk2sl9PFVNmG0Q1.exe
2024-04-28 19:15 - 2024-04-28 19:15 - 000007446 _____ () C:\Users\HP\AppData\Local\FsnyB7ZavIZrAhyGnkVihmkO.exe
2024-04-28 19:20 - 2024-04-28 19:20 - 000007446 _____ () C:\Users\HP\AppData\Local\fvbyGk4usqbJkCzY6mQmyk3q.exe
2024-04-25 14:08 - 2024-04-25 14:08 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\G3xGSz5SufSLiSWymzM7MxTA.exe
2024-04-28 17:51 - 2024-04-28 17:51 - 000007446 _____ () C:\Users\HP\AppData\Local\g7qgpZQzN9eORFjkYfcW6B7J.exe
2024-04-28 19:16 - 2024-04-28 19:16 - 000461825 _____ () C:\Users\HP\AppData\Local\g8DwUhxil5oKaDIzCoWDKwf2.exe
2024-04-28 19:25 - 2024-04-28 19:25 - 000007446 _____ () C:\Users\HP\AppData\Local\GV2K76qVG8ixEwErKCXHPh1V.exe
2024-04-28 16:20 - 2024-04-28 16:20 - 004393864 _____ () C:\Users\HP\AppData\Local\hAxmiwOAFxHXOZEjROjKFZmz.exe
2024-04-28 19:36 - 2024-04-28 19:36 - 000007446 _____ () C:\Users\HP\AppData\Local\hYqH0U7SR1gfpCyhjPGplDVJ.exe
2024-04-28 18:16 - 2024-04-28 18:16 - 005910528 _____ () C:\Users\HP\AppData\Local\HZVgcjWcBcJbz8suO4R2u22G.exe
2024-04-25 14:41 - 2024-04-25 14:41 - 000007446 _____ () C:\Users\HP\AppData\Local\ieMb7eHd1exjGmaifpxDowdC.exe
2019-08-03 10:42 - 2019-08-03 10:43 - 000016368 _____ () C:\Users\HP\AppData\Local\InstallationConfiguration.xml
2019-08-03 10:42 - 2019-08-03 10:42 - 000140800 _____ () C:\Users\HP\AppData\Local\installer.dat
2024-04-28 17:05 - 2024-04-28 17:05 - 000188740 _____ () C:\Users\HP\AppData\Local\IozpLuFWHOcvwAl3ARFUOwGo.exe
2024-04-28 20:14 - 2024-04-28 20:14 - 000007446 _____ () C:\Users\HP\AppData\Local\iREdbBASeKmWac8TSL5uQnM8.exe
2024-04-25 14:29 - 2024-04-25 14:29 - 005690368 _____ () C:\Users\HP\AppData\Local\jCE72Rg6rpnRneQ3H0mF5b42.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 029360128 _____ () C:\Users\HP\AppData\Local\JP6iuKpRVAuDWhzF52XUC4ch.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000007446 _____ () C:\Users\HP\AppData\Local\jsMmwI0cafxqT62bbqozVdqb.exe
2024-04-28 18:01 - 2024-04-28 18:01 - 000007446 _____ () C:\Users\HP\AppData\Local\K9ngG6fbRlhRnFunowe6xJt0.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 004393864 _____ () C:\Users\HP\AppData\Local\KAdLbj1G3wDJJz2Voanm50Zz.exe
2024-04-28 17:34 - 2024-04-28 17:34 - 000007446 _____ () C:\Users\HP\AppData\Local\kRHpPZv4qCvCRcs2JSIEk0GX.exe
2024-04-25 14:18 - 2024-04-25 14:18 - 000273668 _____ () C:\Users\HP\AppData\Local\Kt96vqHFc5mT6h0Yg4oenhAy.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 004393864 _____ () C:\Users\HP\AppData\Local\kTozY21aDBxsKM3lEowkJBv3.exe
2024-04-28 17:03 - 2024-04-28 17:03 - 000007446 _____ () C:\Users\HP\AppData\Local\kUSxvH4lOC4DOoJXUEoX5ApS.exe
2024-04-28 19:40 - 2024-04-28 19:40 - 004861940 _____ () C:\Users\HP\AppData\Local\kXQ6siMbcR6QerL5Rh5vlb3s.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000016986 _____ () C:\Users\HP\AppData\Local\KyJyAbxNxFnYMKoAJxqPAXOD.exe
2024-04-28 16:19 - 2024-04-28 16:19 - 000462337 _____ () C:\Users\HP\AppData\Local\l8uT4BvGS22uNTQBO3OTIAZ8.exe
2024-04-28 18:11 - 2024-04-28 18:11 - 000007446 _____ () C:\Users\HP\AppData\Local\l9UuZMwDPFEi1HSXvdi1nT6T.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 002039453 _____ () C:\Users\HP\AppData\Local\LatFresh.tst
2024-04-25 14:30 - 2024-04-25 14:30 - 005690368 _____ () C:\Users\HP\AppData\Local\lfSxg2W4nfyAIPmEU0aQmLHE.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000126464 _____ () C:\Users\HP\AppData\Local\lobby.dat
2024-04-28 19:30 - 2024-04-28 19:30 - 005910528 _____ () C:\Users\HP\AppData\Local\lQonoAjarLH6ZRh7j7ub5sEe.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000018432 _____ () C:\Users\HP\AppData\Local\Main.dat
2019-08-03 10:43 - 2019-08-03 10:43 - 000005568 _____ () C:\Users\HP\AppData\Local\md.xml
2024-04-28 16:35 - 2024-04-28 16:35 - 000007446 _____ () C:\Users\HP\AppData\Local\MEXnjSD2G6be1ez2l5Pl0LcD.exe
2024-04-28 16:36 - 2024-04-28 16:36 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\mkDe9cyjeMAcBQCzrypTAEfR.exe
2024-04-28 19:59 - 2024-04-28 19:59 - 000007446 _____ () C:\Users\HP\AppData\Local\mOnXxYRlerK67ffpzw8WKH4D.exe
2024-04-28 20:07 - 2024-04-28 20:07 - 004448940 _____ () C:\Users\HP\AppData\Local\nkMasGmrKS8mOJIbgAI92XGK.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000126464 _____ () C:\Users\HP\AppData\Local\noah.dat
2024-04-28 16:20 - 2024-04-28 16:20 - 004393864 _____ () C:\Users\HP\AppData\Local\O9CoGzPG1rUN77vwrCuVdqoF.exe
2024-04-25 14:35 - 2024-04-25 14:35 - 005690368 _____ () C:\Users\HP\AppData\Local\okR8nJ7x2JXzQNCvX8bE9zBk.exe
2024-04-25 14:29 - 2024-04-25 14:29 - 008388608 _____ () C:\Users\HP\AppData\Local\oL5tkx1AjQHOveDW1nnGRgwl.exe
2024-04-28 16:35 - 2024-04-28 16:35 - 000462337 _____ () C:\Users\HP\AppData\Local\OMpMo8kkYiW0IsJ8ZgmN3Xgs.exe
2024-04-28 16:23 - 2024-04-28 16:23 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\OrDwNcvKgCwIxkCqQaR43zGg.exe
2024-04-28 17:20 - 2024-04-28 17:20 - 008388608 _____ () C:\Users\HP\AppData\Local\p56Xtx07w4zHCxbxP29XVdtw.exe
2024-04-28 16:21 - 2024-04-28 16:21 - 005910528 _____ () C:\Users\HP\AppData\Local\PAcFZRP4O91DfyS288ywS9AT.exe
2024-04-25 14:31 - 2024-04-25 14:31 - 000007446 _____ () C:\Users\HP\AppData\Local\PLbDumKE9y66wg8SDpfTb6oW.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 000017088 _____ () C:\Users\HP\AppData\Local\pRTPzQoWYqaFcd3hiG900HCU.exe
2022-04-20 09:38 - 2022-04-20 09:44 - 000000128 _____ () C:\Users\HP\AppData\Local\PUTTY.RND
2024-04-28 16:25 - 2024-04-28 16:25 - 004393864 _____ () C:\Users\HP\AppData\Local\pwrbxD9xnYrRwPAmFDyV6xcG.exe
2024-04-28 18:09 - 2024-04-28 18:09 - 005774740 _____ () C:\Users\HP\AppData\Local\pzmgOdwhAFDfWF2btYYLCTUp.exe
2024-04-28 15:40 - 2024-04-28 15:40 - 000462337 _____ () C:\Users\HP\AppData\Local\qd6yoIK6WMojIaj9R0wpzrXX.exe
2024-04-25 14:11 - 2024-04-25 14:11 - 000007446 _____ () C:\Users\HP\AppData\Local\qfiZt7XmwITBY9PF9U2RhpU1.exe
2024-04-28 18:08 - 2024-04-28 18:08 - 003644048 _____ () C:\Users\HP\AppData\Local\Qfu9YSCkfdksFvjFGDk5Mzlh.exe
2024-04-28 19:28 - 2024-04-28 19:28 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\QunEFBdeTaiuJr3JT4CaL7pY.exe
2024-04-25 14:21 - 2024-04-25 14:21 - 000007446 _____ () C:\Users\HP\AppData\Local\rQD116VgmDbdv7GRDCWVQ4Rt.exe
2024-04-28 16:19 - 2024-04-28 16:19 - 000007446 _____ () C:\Users\HP\AppData\Local\rw3DiQTJzmF9mYnylzzUrIg0.exe
2024-04-25 14:53 - 2024-04-25 14:53 - 000017001 _____ () C:\Users\HP\AppData\Local\RZUETAUemAyz9ibjQkDYhYG4.exe
2019-08-03 10:42 - 2019-08-03 10:42 - 000722944 _____ () C:\Users\HP\AppData\Local\sha.db
2018-06-06 15:43 - 2020-08-12 10:46 - 000367105 _____ () C:\Users\HP\AppData\Local\Snip.txt
2020-02-11 14:54 - 2020-08-12 10:46 - 000516822 _____ () C:\Users\HP\AppData\Local\SnipUsages.txt
2024-04-28 16:25 - 2024-04-28 16:25 - 005910528 _____ () C:\Users\HP\AppData\Local\SUi5PUCNXVhK7zHnx5fcKXzg.exe
2024-04-28 17:56 - 2024-04-28 17:56 - 005910528 _____ () C:\Users\HP\AppData\Local\t1zLrsjcRxkxEFegvrKJ0LmN.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\Tf4vWhyWs4fOmHTAVT3jlCvs.exe
2024-04-28 19:32 - 2024-04-28 19:32 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\TpvjziTvRrhBWOssafJF9Fmg.exe
2024-04-28 17:21 - 2024-04-28 17:21 - 004045740 _____ () C:\Users\HP\AppData\Local\TR5SP9DktfCxbWyektnYdT1b.exe
2024-04-28 16:25 - 2024-04-28 16:25 - 008388608 _____ () C:\Users\HP\AppData\Local\u6VJKcYXs94pRTIWp5aA2PAi.exe
2024-04-28 17:15 - 2024-04-28 17:15 - 001391232 _____ () C:\Users\HP\AppData\Local\UdOyRgc4QncO42l24JVSUC96.exe
2024-04-28 17:09 - 2024-04-28 17:09 - 000462337 _____ () C:\Users\HP\AppData\Local\uJy0mmVd5LOMYqZ4C6Suv8MA.exe
2024-04-28 18:02 - 2024-04-28 18:02 - 000461825 _____ () C:\Users\HP\AppData\Local\UMzmC4sfWJ94x8UoFO0zNtsk.exe
2019-08-03 10:45 - 2019-08-03 10:45 - 000032038 _____ () C:\Users\HP\AppData\Local\uninstall_temp.ico
2024-04-28 16:24 - 2024-04-28 16:24 - 000462337 _____ () C:\Users\HP\AppData\Local\uR89HngXmizQMLDoo3zQxWYO.exe
2024-04-28 17:25 - 2024-04-28 17:25 - 000462337 _____ () C:\Users\HP\AppData\Local\ViYLzCamD1dc4Nkf6DYHnqso.exe
2024-04-28 19:47 - 2024-04-28 19:47 - 000461825 _____ () C:\Users\HP\AppData\Local\VqfFF1OTwKtKMon2QIEFOJJW.exe
2024-04-28 17:52 - 2024-04-28 17:52 - 000461825 _____ () C:\Users\HP\AppData\Local\VqYS73AAo55EHDTo6Q8VoGwS.exe
2024-04-28 17:24 - 2024-04-28 17:24 - 000007446 _____ () C:\Users\HP\AppData\Local\waSZyhdyxrvC5aMELgaZodQ2.exe
2024-04-28 19:47 - 2024-04-28 19:47 - 000007446 _____ () C:\Users\HP\AppData\Local\wbFC0YXNf2IJ7s70jmvqMKtY.exe
2024-04-28 17:50 - 2024-04-28 17:50 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\WlUQTKWxQ7vXGI0jSz8e0gZG.exe
2024-04-28 15:37 - 2024-04-28 15:37 - 000007446 _____ () C:\Users\HP\AppData\Local\wShAZfVHJqu6ipBDkywy2UcG.exe
2024-04-25 14:13 - 2024-04-25 14:13 - 000143764 _____ () C:\Users\HP\AppData\Local\wUPo91YCVFFyUW7NXVxWbIjg.exe
2024-04-28 20:00 - 2024-04-28 20:00 - 000461825 _____ () C:\Users\HP\AppData\Local\X1fbMrzvWkYxHrXAasjwB8ni.exe
2024-04-28 20:15 - 2024-04-28 20:15 - 000461825 _____ () C:\Users\HP\AppData\Local\XdtfStovibgtUDkwrzUSrX71.exe
2024-04-25 14:41 - 2024-04-25 14:41 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\XF7KebAvBrISzk3mDJqknTOv.exe
2024-04-28 15:49 - 2024-04-28 15:49 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\XgX9WZ5ct4XPUrEbq3b41kZd.exe
2024-04-25 14:36 - 2024-04-25 14:36 - 000007446 _____ () C:\Users\HP\AppData\Local\xhmu7QiKZZGxmFtIQRY7NHPY.exe
2024-04-25 14:46 - 2024-04-25 14:46 - 001182996 _____ () C:\Users\HP\AppData\Local\xRzJLWJupIejTM1WFgRnPGJz.exe
2024-04-28 16:24 - 2024-04-28 16:24 - 000007446 _____ () C:\Users\HP\AppData\Local\XughcIFWQBFVRZeZgruah7jZ.exe
2024-04-28 16:26 - 2024-04-28 16:26 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\yIMupCzwl7aenoWZEC7UOhxN.exe
2024-04-28 20:07 - 2024-04-28 20:07 - 006607314 _____ (Igor Pavlov) C:\Users\HP\AppData\Local\Z7CP4tnlgqVLmd49GGEgfPAf.exe
2024-04-28 19:37 - 2024-04-28 19:37 - 000461825 _____ () C:\Users\HP\AppData\Local\ZB6r9WgRpqw5oEHRoGEQP68E.exe
2019-08-03 10:43 - 2019-08-03 10:43 - 000072787 _____ () C:\Users\HP\AppData\Local\Zerhome.tst
2024-04-25 14:16 - 2024-04-25 14:16 - 000007446 _____ () C:\Users\HP\AppData\Local\zllDfLlcD61RBiro4tb1ttMs.exe
2024-04-25 14:06 - 2024-04-25 14:06 - 000007446 _____ () C:\Users\HP\AppData\Local\znKB3uPsyhfgqLShd2Tfe4UQ.exe
2024-04-25 14:51 - 2024-04-25 14:51 - 005387648 _____ (Opera Software) C:\Users\HP\AppData\Local\ZwcZsSiqXaJL5GMxyQof71aR.exe
2024-04-25 14:47 - 2024-04-25 14:47 - 000017046 _____ () C:\Users\HP\AppData\Local\zyr0CI1zkcG0CyH9aIBdLaty.exe
==================== FLock ==============================
2024-04-25 14:21 C:\WINDOWS\windefender.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== Fin de FRST.txt ========================