Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Erreur users/HP/AppData/Local/Temp/39A4.exe [Closed]


  • This topic is locked This topic is locked

#1
Souley

Souley

    New Member

  • Member
  • Pip
  • 1 posts

Bonjour

 

j'ai un problème d'Erreur users/HP/AppData/Local/Temp/39A4.exeusers/HP/AppData/Local/Temp/39A4.exe ; de l'aide s'il vous plait

 

voici le code:

 

Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02
Exécuté par HP (administrateur) sur LT-5CD7400SPY (HP HP ProBook 450 G4) (28-09-2021 04:22:25)
Exécuté depuis C:\Users\HP\Downloads
Profils chargés: HP
Platform: Windows 10 Pro Version 20H2 19042.1237 (X64) Langue: Anglais (États-Unis) -> Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
 
==================== Processus (Avec liste blanche) =================
 
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
 
() [Fichier non signé] C:\Windows\Temp\gF5DC.tmp.exe
() [Fichier non signé] C:\Windows\Temp\sppsvc.exe
(Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\PopWndLog.exe
(Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(Conexant Systems LLC.) [Fichier non signé] C:\Windows\CxSvc\CxUtilSvc.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <26>
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\HotKeyServiceUWP.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\HPHotkeyNotification.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\LanWlanWwanSwitchingServiceUWP.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel Corporation -> Intel® Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHDCPSvc.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHeciSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_fc9ac11e55f51133\RstMwService.exe
(Intel® Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\AddInProcess.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3>
(OldTimer Tools) [Fichier non signé] C:\Users\HP\Downloads\OTL.exe
(Simon Tatham) [Fichier non signé] C:\Users\HP\AppData\Local\Temp\39A4.exe <3>
(Synaptics Incorporated -> Conexant Systems LLC.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe
(Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(Synaptics Incorporated -> Conexant Systems, Inc) C:\Program Files\CONEXANT\Flow\Flow.exe
(Synaptics Incorporated -> Conexant) C:\Windows\System32\MicTray64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
 
==================== Registre (Avec liste blanche) ===================
 
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
 
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4073201698-989389081-2523801930-1002\...\Run: [39A4] => C:\Users\HP\AppData\Roaming\39A4.exe [886272 2021-09-27] (Simon Tatham) [Fichier non signé]
HKU\S-1-5-21-4073201698-989389081-2523801930-1002\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-21] (Google LLC -> Google LLC)
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
 
==================== Tâches planifiées (Avec liste blanche) ============
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
Task: {0959BACB-2B4F-4E29-A0A3-BB10D7837C5A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1122992 2021-09-22] (HP Inc. -> HP Inc.)
Task: {09C998C9-9D61-4A04-A53B-95EAE80757FF} - System32\Tasks\Microsoft\Windows\Conexant\SynaMonApp => C:\Windows\System32\SynaMonApp.exe [170496 2018-10-30] (Synaptics Incorporated) [Fichier non signé]
Task: {0FEE2558-61F2-4721-A52A-466EA8D79236} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053768 2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {136FE9F5-FA4D-4F0A-8D9C-255C7F78477D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139096 2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {2485C265-CBEE-402A-8BE7-063CB774DD27} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-19] (Microsoft Windows -> Microsoft Corporation)
Task: {31A618D2-B25A-4BF4-88D6-64A14552A201} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {398D8AD9-6E98-4F3A-9030-44EE1D4F47A6} - System32\Tasks\39A4 => C:\Users\HP\AppData\Local\Temp\39A4.exe [886272 2021-09-27] (Simon Tatham) [Fichier non signé] <==== ATTENTION
Task: {3C940C69-35B3-470E-B8FF-37B8762033D9} - System32\Tasks\Microsoft\Windows\Conexaant\MicTray => C:\Windows\System32\MicTray64.exe [5009512 2020-06-13] (Synaptics Incorporated -> Conexant)
Task: {48F0E53D-D640-415C-B8C8-BB95967E5A02} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [560816 2021-08-25] (HP Inc. -> HP Inc.)
Task: {6BC74EEE-5CFF-41BE-A147-65DFF4B0379A} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-19] (Microsoft Windows -> Microsoft Corporation)
Task: {6CCEA4F0-5DCD-47BE-83BE-D8F901662EAB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-09-22] (HP Inc. -> HP Inc.)
Task: {6D425882-5E85-4A67-8434-96523B17D012} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B21D794-5F0F-4445-A856-D8DA3FE36681} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7053768 2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {AF6AE010-5458-4B99-9139-B4F764C3492C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139096 2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {B50E3E91-095D-425C-AAE5-F0E4573109C9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1122992 2021-09-22] (HP Inc. -> HP Inc.)
Task: {E78433F7-2CC0-4F0F-8EEA-4149BC533FC4} - System32\Tasks\opGhzYKWOXs => C:\WINDOWS\system32\rundll32.exe "C:\Program Files (x86)\opGhzYKWOXs\opGhzYKWOXs.dll",opGhzYKWOXs <==== ATTENTION
Task: {F754876A-09DD-44C3-88E3-0440D340BDA4} - System32\Tasks\Microsoft\Dbtdekoaxhxaf => C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe C:\Users\HP\AppData\Local\StructureSent\UpdztePinz\ISWpls_UExo.dll
 
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
 
 
==================== Internet (Avec liste blanche) ====================
 
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{70a07fd8-7a03-4a70-905f-4b9054ee671b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d6e73936-2cd3-41c1-8868-e7cf9edf0110}: [DhcpNameServer] 8.8.8.8 8.8.4.4
 
Edge: 
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-28]
Edge HKLM-x32\...\Edge\Extension: [odbmjgikedenicicookngdckhkjbebpd]
 
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitReaderPlugin.dll [2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
 
Chrome: 
=======
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2021-09-28]
CHR Notifications: Default -> hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://forums.commentcamarche.net; hxxps://mail-notification.info; hxxps://mnthor.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://supertopfreegames.com; hxxps://zarabotok-online.xyz
CHR HomePage: Default -> hxxps://find-it.pro/?utm_source=distr_m
CHR StartupUrls: Default -> "hxxps://find-it.pro/?utm_source=distr_m"
CHR DefaultSearchURL: Default -> hxxp://search-cdn.net/fip/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> cdn
CHR DefaultSuggestURL: Default -> hxxps://www.google.ru/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&q={searchTerms}
CHR Extension: (Slides) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-25]
CHR Extension: (Docs) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-25]
CHR Extension: (Google Drive) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-25]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-25]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-21]
CHR Extension: (Adblock pour Youtube™) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2021-09-26]
CHR Extension: (Sheets) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-25]
CHR Extension: (Bloqueur de pub pour Youtube™) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gakekacnalcpkgkogmbmknlcdikjghba [2021-09-26] [UpdateUrl:hxxps://clients92.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-27]
CHR Extension: (360 Internet Protection) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2021-09-22]
CHR Extension: (Find-it.Pro Search) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\meejmcfbiapijdfaadackoblffmidlig [2021-09-26]
CHR Extension: (Live Search) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\mknbnblnbcmbmilohmpbjegcggfpdnkj [2021-09-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-25]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-25]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh]
 
Opera: 
=======
OPR Profile: C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable [2021-09-27]
OPR DefaultSearchKeyword: Opera Stable -> find-it.pro
OPR Extension: (Adblocker for Youtube™) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\kofpgjgokfidcohjcdfcndkbindgmcmc [2021-09-26]
OPR Extension: (Find-it.Pro Search) - C:\Users\HP\AppData\Roaming\Opera Software\Opera Stable\Extensions\meejmcfbiapijdfaadackoblffmidlig [2021-09-26]
 
==================== Services (Avec liste blanche) ===================
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
S2 AppServicea; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceb; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicec; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiced; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicee; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicef; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceg; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceh; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicei; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicej; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicek; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicel; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicem; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicen; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceo; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicep; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceq; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicer; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServices; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicet; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServiceu; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicev; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicew; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicex; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
S2 AppServicey; C:\WINDOWS\system32\J9TPFM7TEV.tmp [6144 2021-09-27] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9179528 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [96432 2020-09-08] (Synaptics Incorporated -> Conexant Systems LLC.)
R2 CxUtilSvc; C:\WINDOWS\CxSvc\CxUtilSvc.exe [166400 2019-06-25] (Conexant Systems LLC.) [Fichier non signé]
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2357880 2021-07-21] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 fpCsEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [13824 2015-04-28] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\HotKeyServiceUWP.exe [1596512 2021-06-16] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [734760 2021-05-12] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [733224 2021-05-12] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [733216 2021-05-12] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [733760 2021-05-12] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-04-18] (Hewlett-Packard Company -> HP Inc.)
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_ddd78e0f8226b40b\LanWlanWwanSwitchingServiceUWP.exe [788584 2021-06-16] (HP Inc. -> HP Inc.)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [85400 2019-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-24] (Microsoft Windows Publisher -> Microsoft Corporation)
 
===================== Pilotes (Avec liste blanche) ===================
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
R1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [199888 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [95232 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [95232 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [347664 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
R1 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [58200 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S0 360elam64; C:\WINDOWS\System32\DRIVERS\360elam64.sys [17192 2021-08-25] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [494080 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S4 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [334336 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360安全中心)
R1 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [232688 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-24] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-24] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
 
==================== NetSvcs (Avec liste blanche) ===================
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
 
==================== Un mois (créés) (Avec liste blanche) =========
 
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
 
2021-09-28 04:22 - 2021-09-28 04:23 - 000026898 _____ C:\Users\HP\Downloads\FRST.txt
2021-09-28 04:19 - 2021-09-28 04:22 - 000000000 ____D C:\FRST
2021-09-28 04:19 - 2021-09-28 04:19 - 002304512 _____ (Farbar) C:\Users\HP\Downloads\FRST64.exe
2021-09-28 04:19 - 2021-09-28 04:19 - 000000000 ____D C:\Users\HP\Downloads\FRST-OlderVersion
2021-09-27 23:57 - 2021-09-28 02:51 - 000102926 _____ C:\Users\HP\Downloads\Extras.Txt
2021-09-27 23:57 - 2021-09-27 23:57 - 000711406 _____ C:\Users\HP\Downloads\OTL.Txt
2021-09-27 23:39 - 2021-09-27 23:39 - 000000512 _____ C:\PhysicalMBR.bin
2021-09-27 23:32 - 2021-09-27 23:33 - 000602112 _____ (OldTimer Tools) C:\Users\HP\Downloads\OTL.exe
2021-09-27 22:10 - 2021-09-27 22:10 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-09-27 22:10 - 2021-09-27 22:10 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d799ab557fb892
2021-09-27 07:58 - 2021-09-27 07:58 - 029622272 ____N C:\WINDOWS\system32\config\SYSTEM
2021-09-27 07:32 - 2021-09-27 22:10 - 000000000 ____D C:\ProgramData\Microsoft Network
2021-09-27 07:32 - 2021-09-27 07:33 - 000000000 ____D C:\ProgramData\Systemd
2021-09-27 07:32 - 2021-09-27 07:32 - 000000001 _____ C:\ProgramData\check.txt
2021-09-27 07:32 - 2021-09-27 07:32 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VideoPad Framework
2021-09-27 07:32 - 2021-09-27 07:32 - 000000000 ____D C:\ProgramData\Data
2021-09-27 07:31 - 2021-09-27 22:10 - 000000000 ____D C:\Users\HP\AppData\Roaming\VideoPad Framework
2021-09-27 04:19 - 2021-09-28 02:14 - 000003814 _____ C:\WINDOWS\system32\Tasks\39A4
2021-09-27 04:00 - 2021-09-27 04:00 - 000016818 _____ C:\WINDOWS\system32\Tasks\opGhzYKWOXs
2021-09-27 02:50 - 2021-09-27 02:50 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Adobe
2021-09-27 01:14 - 2021-09-27 01:14 - 012749026 _____ C:\Users\HP\Downloads\videoplayback.mp4
2021-09-26 23:40 - 2021-09-27 22:13 - 000886272 _____ (Simon Tatham) C:\Users\HP\AppData\Roaming\39A4.exe
2021-09-26 23:40 - 2021-09-27 03:50 - 000886272 _____ (Simon Tatham) C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\putty.exe
2021-09-26 23:40 - 2021-09-26 23:40 - 000000096 _____ C:\WINDOWS\system32\39A4.vbs
2021-09-26 20:35 - 2021-09-26 20:35 - 000000000 ____D C:\Program Files\temp_files
2021-09-26 20:34 - 2021-09-26 20:34 - 000000000 ____D C:\ProgramData\NKsRZGTfNWtvCUVB
2021-09-26 20:34 - 2021-09-26 20:34 - 000000000 ____D C:\Program Files (x86)\ZEsFaEtipdnTXqXtwBR
2021-09-26 20:34 - 2021-09-26 20:34 - 000000000 ____D C:\Program Files (x86)\RQzLvVUNU
2021-09-26 20:34 - 2021-09-26 20:34 - 000000000 ____D C:\Program Files (x86)\nVgZiWyyyxUn
2021-09-26 20:34 - 2021-09-26 20:34 - 000000000 ____D C:\Program Files (x86)\EHjpVGHxoTMU2
2021-09-26 20:34 - 2021-09-26 20:34 - 000000000 ____D C:\Program Files (x86)\DOWaNXZtDJLiC
2021-09-26 20:33 - 2021-09-26 20:33 - 007634313 _____ (Igor Pavlov) C:\Users\HP\Documents\tI7L7IccJy6KsVkq8209KknM.exe
2021-09-26 20:32 - 2021-09-26 20:32 - 001575424 _____ (Module Art) C:\Users\HP\Documents\nBHT5QPjNC5dOXbF75VLHdJf.exe
2021-09-26 20:32 - 2021-09-26 20:32 - 001506304 _____ C:\Users\HP\Documents\cJ8vWlfcqq8qx1W1vBz6sshd.exe
2021-09-26 20:32 - 2021-09-26 20:32 - 001340842 _____ C:\Users\HP\Documents\qrridxs2HxNcyvNyN28y4YLk.exe
2021-09-26 20:32 - 2021-09-26 20:32 - 000436224 _____ (Yoko) C:\Users\HP\Documents\qT3dWYBP7ZsuOrwW4ZcUbjl6.exe
2021-09-26 20:32 - 2021-09-26 20:32 - 000268800 _____ C:\Users\HP\Documents\NCda1Cw54LjOPmjVwbwCH4PV.exe
2021-09-26 20:32 - 2021-09-26 20:32 - 000195072 _____ C:\Users\HP\Documents\YjPO9rgBQlq2d9dn9fFYSkXt.exe
2021-09-26 20:14 - 2021-09-26 19:59 - 000000000 ___SD C:\Users\HP\MATLAB Drive
2021-09-26 20:09 - 2021-09-26 20:10 - 000000000 ____D C:\Users\HP\AppData\Roaming\MathWorks
2021-09-26 20:06 - 2021-09-26 20:09 - 000000000 ____D C:\Users\HP\AppData\Local\MathWorks
2021-09-26 19:38 - 2021-09-26 19:38 - 000000000 ____D C:\ProgramData\360sd
2021-09-26 19:34 - 2021-09-24 12:24 - 000000000 ____D C:\Program Files (x86)\opGhzYKWOXs
2021-09-26 19:33 - 2021-09-26 19:33 - 000268288 _____ C:\Users\HP\Documents\gt47CEJIqJJgEsKgVWEcV3y6.exe
2021-09-26 19:33 - 2021-09-26 19:33 - 000137728 _____ C:\Users\HP\Documents\_iJXDa1Yn8mNea_b1mlCWnWp.exe
2021-09-26 19:30 - 2021-09-26 19:30 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\J9TPFM7T1M.tmp
2021-09-26 19:30 - 2021-09-26 19:30 - 000000000 ____D C:\ProgramData\J923RDT5N6W7W2FY837YAQLLP
2021-09-26 19:21 - 2021-09-26 20:37 - 000000000 _____ C:\Program Files (x86)\temp_files
2021-09-26 19:19 - 2021-09-27 22:09 - 000005292 __RSH C:\ProgramData\ntuser.pol
2021-09-26 19:17 - 2021-09-26 19:17 - 000452560 __RSH (XCodes) C:\Users\HP\AppData\Roaming\lwhrCNCFhLd.exe
2021-09-26 19:13 - 2021-09-26 19:13 - 007632305 _____ (Igor Pavlov) C:\Users\HP\Documents\_aHJQsBFMTOspHY6pEO2TymA.exe
2021-09-26 19:13 - 2021-09-26 19:13 - 003256560 _____ (RealDefense LLC) C:\Users\HP\Documents\jhypbAEpXBb1e0ewIDQcouab.exe
2021-09-26 19:13 - 2021-09-26 19:13 - 003182592 _____ (Implbits Software) C:\Users\HP\Documents\Rw6DiLfhv3vStT2fa4tvtJOa.exe
2021-09-26 19:13 - 2021-09-26 19:13 - 002582016 _____ (Implbits Software) C:\Users\HP\Documents\MA6gO53K7OeigatRHt17Z0y6.exe
2021-09-26 19:13 - 2021-09-26 19:13 - 001506304 _____ C:\Users\HP\Documents\tg01bNHKiVIW8arPY5YrdUPQ.exe
2021-09-26 19:13 - 2021-09-26 19:13 - 000617476 _____ C:\Users\HP\Documents\SasD2MozGtl3vuX8katOKkYp.exe
2021-09-26 19:13 - 2021-09-26 19:13 - 000138752 _____ C:\Users\HP\Documents\UL9t4FLFeAPYyZAdhXNb4__H.exe
2021-09-26 19:13 - 2021-09-26 19:13 - 000073728 _____ (oiiuyhjhg) C:\Users\HP\Documents\quV0cUlaYFy_v4R9t8iYPL4H.exe
2021-09-26 19:12 - 2021-09-27 07:51 - 000000000 ____D C:\Users\HP\AppData\LocalLow\uS0wV5wY9qH3
2021-09-26 19:12 - 2021-09-26 19:19 - 000000000 ____D C:\ProgramData\ROGVTUTXFC9IGCINEAMPEHKVV
2021-09-26 19:12 - 2021-09-26 19:12 - 003239688 _____ (Implbits Software) C:\ProgramData\819466.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 003222528 _____ (Implbits Software) C:\ProgramData\6207715.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 003014144 _____ (Implbits Software) C:\ProgramData\5477126.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 000244224 _____ (jfasdjk) C:\ProgramData\5568361.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 000244224 _____ (jfasdjk) C:\ProgramData\4756497.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 000060416 _____ (Derefner) C:\ProgramData\6503600.exe
2021-09-26 19:11 - 2021-09-26 19:19 - 000000000 ____D C:\ProgramData\UF13JJBDC7FWR5Q793LZ1AMWJ
2021-09-26 19:11 - 2021-09-26 19:11 - 007645534 _____ (Igor Pavlov) C:\Users\HP\Documents\T1QeUPLzFtGC11_kd1vE4jTA.exe
2021-09-26 19:11 - 2021-09-26 19:11 - 001575424 _____ (Module Art) C:\Users\HP\Documents\TCW2xJFzCjgpLoca0d6FDawR.exe
2021-09-26 19:11 - 2021-09-26 19:11 - 001506304 _____ C:\Users\HP\Documents\XD7Mb0H_PCIqqOf4zZi7iKDU.exe
2021-09-26 19:11 - 2021-09-26 19:11 - 001340842 _____ C:\Users\HP\Documents\jM4o5MXB_EMOa_zyb6nbgebc.exe
2021-09-26 19:11 - 2021-09-26 19:11 - 000195072 _____ C:\Users\HP\Documents\Mn1j8aMFgRdIeeHDv7lri0Yd.exe
2021-09-26 19:11 - 2021-09-26 19:11 - 000137728 _____ C:\Users\HP\Documents\NDGJrBmbkMBYuxHXHcj5wee7.exe
2021-09-26 19:11 - 2021-09-26 19:11 - 000119016 _____ C:\ProgramData\Stub.exe
2021-09-26 19:10 - 2021-09-26 19:10 - 000000000 ____D C:\Users\HP\Documents\VlcpVideoV1.0.1
2021-09-26 19:10 - 2021-09-26 19:10 - 000000000 ____D C:\Program Files (x86)\Company
2021-09-26 19:09 - 2021-09-26 19:16 - 000000000 ____D C:\ProgramData\CCGPIXMXXUP6NIOTIQDLKOABS
2021-09-26 19:09 - 2021-09-26 19:09 - 000436224 _____ (Yoko) C:\Users\HP\Documents\T3dWYBP7ZsuOrwW4ZcUbjl6w.exe
2021-09-26 19:08 - 2021-09-26 21:32 - 000000000 ____D C:\Program Files (x86)\PowerControl
2021-09-26 19:08 - 2021-09-26 19:08 - 007632305 _____ (Igor Pavlov) C:\Users\HP\Documents\95sgbT3muGfNNbro1JeUdHSn.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 003355872 _____ C:\Users\HP\Documents\ppikvgtM6OvQqevRR7LGngb2.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 003256560 _____ (RealDefense LLC) C:\Users\HP\Documents\NryQnh8mk3v5rOKEJ34j4m3E.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 003205120 _____ (Implbits Software) C:\Users\HP\Documents\xm5km4WDX1ARhUsDtKovs9_S.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 003182592 _____ (Implbits Software) C:\Users\HP\Documents\8cNiCy9qKOti5dzh3XUhCwLG.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 003105078 _____ (Company ) C:\Users\HP\Documents\oQq906FNRXx0jOC6Pm0zhbKc.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 003091968 _____ (Implbits Software) C:\Users\HP\Documents\ElFd_8RJk7ocRYgQSI4NqByN.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 002651136 _____ (Implbits Software) C:\Users\HP\Documents\GIqWvYjqEhVlf3_lqkCPr3Eh.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 002582016 _____ (Implbits Software) C:\Users\HP\Documents\A5pfN3rN64WOnadT2lw4fzVO.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 001506304 _____ C:\Users\HP\Documents\3ESHfn21Swyo6kYyE0bU7X_X.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000995176 ____H C:\BITC791.tmp
2021-09-26 19:08 - 2021-09-26 19:08 - 000839152 _____ (Setup) C:\Users\HP\Documents\7Oic5dF4pzGPWg42ZUwoigcd.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000447360 _____ C:\Users\HP\Documents\MLTc0G2BJz8pBm6lhVBiDfo9.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000445440 _____ C:\Users\HP\Documents\yaFlbWWDQATjDAklximFyAZD.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000441344 _____ C:\Users\HP\Documents\vkClEoJn9IZQ1sdTiDESKns9.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000426592 _____ (FileZilla Project) C:\Users\HP\Documents\IAzk3vZRUtTuwTMoj4xtDVQz.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000403456 _____ C:\Users\HP\Documents\YFI9Ld2kAFgRWNjyHbZ_h1VR.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000256000 _____ C:\Users\HP\Documents\9xM3ZuyDpVTkbkxHTUBAr5r7.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000255488 _____ C:\Users\HP\Documents\hwFlQOgGAuj5hRxMwrug0__J.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000073728 _____ (oiiuyhjhg) C:\Users\HP\Documents\a19A5u0MNlbAbYgEx_kdZ10i.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000000272 _____ C:\Users\HP\Documents\lZA4IGOv7tKaGATuuLQWDDVE.exe
2021-09-26 19:08 - 2021-09-26 19:08 - 000000272 _____ C:\Users\HP\Documents\aF49mo2eoDcVjeUqYKk_21Eu.exe
2021-09-26 19:07 - 2021-09-26 19:11 - 000000000 ____D C:\ProgramData\82W3AG78ERZI1MLSIPEZUEPTP
2021-09-26 19:07 - 2021-09-26 19:10 - 000000000 ____D C:\ProgramData\1FKTEBX5FB1GRB6AYOKR59QGV
2021-09-26 19:07 - 2021-09-26 19:07 - 003239688 _____ (Implbits Software) C:\ProgramData\3362178.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 003222528 _____ (Implbits Software) C:\ProgramData\3877996.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 003014144 _____ (Implbits Software) C:\ProgramData\6447461.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 000244224 _____ (jfasdjk) C:\ProgramData\7698871.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 000244224 _____ (jfasdjk) C:\ProgramData\3043792.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 000060416 _____ (Derefner) C:\ProgramData\1749265.exe
2021-09-26 19:00 - 2021-09-26 19:00 - 000000000 ____D C:\ProgramData\Posse
2021-09-26 18:59 - 2021-09-26 22:31 - 000000000 ____D C:\Users\HP\AppData\Roaming\Intel Rapid
2021-09-26 18:59 - 2021-09-26 18:59 - 000000000 ____D C:\Program Files (x86)\foler
2021-09-26 18:58 - 2021-09-26 18:58 - 000000000 ____D C:\Users\HP\AppData\Roaming\sliders
2021-09-26 18:58 - 2021-09-26 18:58 - 000000000 ____D C:\Users\HP\AppData\Roaming\salvor
2021-09-26 18:58 - 2021-09-26 18:58 - 000000000 ____D C:\ProgramData\Garbage Cleaner
2021-09-26 18:57 - 2021-09-26 18:57 - 000000000 ____D C:\Users\HP\AppData\Local\AdvinstAnalytics
2021-09-26 18:57 - 2021-09-26 18:57 - 000000000 ____D C:\Program Files (x86)\AW Manager
2021-09-26 18:55 - 2021-09-27 07:58 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\J9TPFM7TEV.tmp
2021-09-26 18:54 - 2021-09-26 19:11 - 000044032 _____ (Google5 Inc.) C:\Users\HP\AppData\Roaming\services64.exe
2021-09-26 18:54 - 2021-09-26 18:57 - 006826592 ____N C:\WINDOWS\system32\Drivers\4ssZw.sys
2021-09-26 18:54 - 2021-09-26 18:54 - 003355872 _____ C:\Users\HP\Documents\PPx_eTd_rohP0sxx1azwzeAN.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 003256560 _____ (RealDefense LLC) C:\Users\HP\Documents\rpY_lML9BRP6e2p1SVkZpkOR.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 003239688 _____ (Implbits Software) C:\ProgramData\5365966.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 003222528 _____ (Implbits Software) C:\ProgramData\1164161.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 003205120 _____ (Implbits Software) C:\Users\HP\Documents\zHTJJOt91myw72Jh0HZiFHtM.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 003182592 _____ (Implbits Software) C:\Users\HP\Documents\feE9meuu1lBSscQrpulUxnFX.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 003105078 _____ (Company ) C:\Users\HP\Documents\yECiCS8BpRnH_j8tvFpN6hqT.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 002582016 _____ (Implbits Software) C:\Users\HP\Documents\US8oKWPWUh7MhXxv1PKuejId.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 001506304 _____ C:\Users\HP\Documents\GKquyzbq4p3AEFAd_Mbjftpv.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000839152 _____ (Setup) C:\Users\HP\Documents\3mV4mIuNXm9VtYfXp3QCHXqI.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000617472 _____ C:\Users\HP\Documents\HoEjLxlujBoS684yvoG7ipOX.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000447360 _____ C:\Users\HP\Documents\jhS_oZOmtfYDbVmJnu8QEoeI.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000445440 _____ C:\Users\HP\Documents\NOIbl6B08bwdotIYXzN5HlhF.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000441344 _____ C:\Users\HP\Documents\a4KFVuOTDiaSMxTgNKmrg5r7.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000403456 _____ C:\Users\HP\Documents\nciY7yOeyObITRkSlUGvIz_N.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000337920 _____ C:\Users\HP\Documents\m2ltvhsZ6K3HnSKU0JFQo7BJ.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000298496 _____ C:\Users\HP\Documents\u5aMmuZE_lKnUtUfyizBQzeJ.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000256000 _____ C:\Users\HP\Documents\wSaxyRjtYsBxFOMY1cK2Vcks.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000255488 _____ C:\Users\HP\Documents\53pmeV9gFXHpJPhVCn2pj0Tf.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000244224 _____ (jfasdjk) C:\ProgramData\2727767.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000138752 _____ C:\Users\HP\Documents\finG6vMLsrQIc40_oCe5vgv8.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000073728 _____ (oiiuyhjhg) C:\Users\HP\Documents\15JdjMoTMtHiyXCIkb0VZtXJ.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000000272 _____ C:\Users\HP\Documents\3h5_OgvgCvB47_4qUrpUUnE1.exe
2021-09-26 18:53 - 2021-09-26 22:31 - 000000000 ___HD C:\Users\HP\AppData\Roaming\WinHost
2021-09-26 18:53 - 2021-09-26 19:07 - 000000128 _____ C:\Users\HP\AppData\Local\PUTTY.RND
2021-09-26 18:53 - 2021-09-26 19:07 - 000000000 ____D C:\Program Files (x86)\FarLabUninstaller
2021-09-26 18:53 - 2021-09-26 18:53 - 003014144 _____ (Implbits Software) C:\ProgramData\5160459.exe
2021-09-26 18:53 - 2021-09-26 18:53 - 000244224 _____ (jfasdjk) C:\ProgramData\1568129.exe
2021-09-26 18:53 - 2021-09-26 18:53 - 000060416 _____ (Derefner) C:\ProgramData\4392407.exe
2021-09-26 18:53 - 2021-09-26 18:53 - 000000000 ____D C:\Users\HP\AppData\Local\Yandex
2021-09-26 18:53 - 2021-09-26 18:53 - 000000000 ____D C:\ProgramData\GKNBUV52GPVFZT98WJ8PNUCGN
2021-09-26 18:53 - 2021-09-26 18:53 - 000000000 ____D C:\ProgramData\74EVMIBS1RPE76A8LF1K3TQON
2021-09-26 18:52 - 2021-09-26 18:52 - 000000000 ____D C:\ProgramData\895Q0VJ1H4WSPMYSQ9OP4493I
2021-09-26 17:25 - 2021-09-26 17:27 - 000000000 ____D C:\Users\HP\eclipse-workspace
2021-09-26 17:23 - 2021-09-26 17:23 - 000001094 _____ C:\Users\HP\Desktop\Eclipse IDE for Java Developers - 2021-03.lnk
2021-09-26 17:23 - 2021-09-26 17:23 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2021-09-26 16:51 - 2021-09-26 16:51 - 000000000 ____D C:\Users\HP\eclipse
2021-09-26 16:43 - 2021-09-26 16:43 - 000000000 ____D C:\ProgramData\Oracle
2021-09-26 00:55 - 2021-09-26 00:55 - 000000000 ____D C:\ProgramData\Wondershare Filmora Scrn
2021-09-26 00:31 - 2021-09-26 00:31 - 000000000 ____D C:\Users\HP\AppData\Local\Piders
2021-09-26 00:30 - 2021-09-27 22:10 - 000000000 __SHD C:\$360Section
2021-09-26 00:23 - 2021-09-26 20:51 - 000000000 ____D C:\Users\HP\.p2
2021-09-26 00:23 - 2021-09-26 17:25 - 000000000 ____D C:\Users\HP\.eclipse
2021-09-26 00:20 - 2021-09-26 00:20 - 000001665 _____ C:\Users\Public\Desktop\mikroProg Suite For PIC.lnk
2021-09-26 00:20 - 2021-09-26 00:20 - 000000841 _____ C:\Users\HP\Desktop\CODEGRIP Suite.lnk
2021-09-26 00:20 - 2021-09-26 00:20 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mikroe
2021-09-26 00:20 - 2021-09-26 00:20 - 000000000 ____D C:\Mikroe
2021-09-26 00:19 - 2021-09-26 00:20 - 000000000 ____D C:\Users\Public\Documents\Mikroelektronika
2021-09-26 00:19 - 2021-09-26 00:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mikroelektronika
2021-09-26 00:19 - 2021-09-26 00:19 - 000001575 _____ C:\Users\Public\Desktop\mikroC PRO for PIC.lnk
2021-09-26 00:18 - 2021-09-26 00:18 - 000020608 _____ (mikroElektronika) C:\WINDOWS\SysWOW64\Drivers\USB18PRG.SYS
2021-09-26 00:18 - 2021-09-26 00:18 - 000001298 _____ C:\Users\HP\Desktop\LvPICFLASH.lnk
2021-09-26 00:18 - 2021-09-26 00:18 - 000001298 _____ C:\Users\HP\Desktop\dsPICFLASH.lnk
2021-09-26 00:17 - 2021-09-26 00:18 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mikroelektronika
2021-09-26 00:17 - 2021-09-26 00:18 - 000000000 ____D C:\Program Files (x86)\Mikroelektronika
2021-09-26 00:17 - 2021-09-26 00:17 - 000001317 _____ C:\Users\HP\Desktop\mikroC_dsPIC.lnk
2021-09-25 16:37 - 2021-09-25 16:37 - 000001071 _____ C:\Users\HP\Desktop\Adobe Photoshop 2020.lnk
2021-09-25 05:29 - 2021-09-25 05:29 - 029237918 _____ C:\Users\HP\Downloads\Les dernières paroles de grands personnages historiques.mp4
2021-09-25 03:51 - 2021-09-25 03:51 - 000000000 ____D C:\ProgramData\Wondershare
2021-09-25 03:50 - 2021-09-25 03:50 - 000000016 _____ C:\ProgramData\mntemp
2021-09-25 03:42 - 2021-09-25 03:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-09-25 03:42 - 2021-09-25 03:42 - 000001235 _____ C:\Users\Public\Desktop\Wondershare Filmora X.lnk
2021-09-25 03:42 - 2021-09-25 03:42 - 000000000 ____D C:\Users\HP\AppData\Local\Wondershare
2021-09-25 03:41 - 2021-09-27 03:16 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2021-09-25 03:41 - 2021-09-25 03:51 - 000000000 ____D C:\Program Files\Wondershare
2021-09-25 03:41 - 2021-09-25 03:41 - 000000000 ____D C:\Users\HP\Documents\Wondershare
2021-09-25 03:36 - 2021-09-25 03:44 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2021-09-25 03:35 - 2021-09-25 03:35 - 001038440 _____ C:\Users\HP\Downloads\filmora-win-fr_setup_full2216.exe
2021-09-25 01:07 - 2021-09-27 04:07 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2021-09-25 00:53 - 2021-09-25 00:54 - 000000000 ___HD C:\adobeTemp
2021-09-25 00:26 - 2021-09-25 00:26 - 000000000 ____D C:\Users\HP\AppData\Local\UXP
2021-09-24 22:54 - 2021-09-25 00:26 - 000000000 ____D C:\Users\HP\Documents\Adobe
2021-09-24 22:54 - 2021-09-24 22:54 - 000001071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2021-09-24 22:52 - 2021-09-24 22:54 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-09-24 22:52 - 2021-09-24 22:52 - 000000000 ____D C:\Program Files\Adobe
2021-09-24 22:52 - 2021-09-24 22:52 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-09-24 22:48 - 2021-09-25 16:22 - 000000000 ____D C:\Users\HP\AppData\Local\Adobe
2021-09-24 22:48 - 2021-09-24 22:53 - 000000000 ____D C:\ProgramData\Adobe
2021-09-24 17:23 - 2021-09-24 17:23 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-24 17:23 - 2021-09-24 17:23 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-24 17:23 - 2021-09-24 17:23 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-24 17:23 - 2021-09-24 17:23 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-09-24 17:22 - 2021-09-24 17:22 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-24 17:22 - 2021-09-24 17:22 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-24 17:22 - 2021-09-24 17:22 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-24 17:22 - 2021-09-24 17:22 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-24 17:21 - 2021-09-24 17:21 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-24 17:20 - 2021-09-24 17:20 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-24 17:20 - 2021-09-24 17:20 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-24 17:20 - 2021-09-24 17:20 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-24 17:20 - 2021-09-24 17:20 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-24 17:19 - 2021-09-24 17:19 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-24 17:19 - 2021-09-24 17:19 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-24 17:18 - 2021-09-24 17:18 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-24 17:18 - 2021-09-24 17:18 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-24 17:18 - 2021-09-24 17:18 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-24 17:17 - 2021-09-24 17:17 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-24 17:17 - 2021-09-24 17:17 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-24 17:17 - 2021-09-24 17:17 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-24 16:16 - 2021-09-24 16:16 - 000000000 ___HD C:\$WinREAgent
2021-09-24 01:55 - 2021-09-24 01:55 - 000000000 ____D C:\Program Files (x86)\Labcenter Electronics
2021-09-24 01:51 - 2021-09-24 01:51 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2021-09-24 01:38 - 2021-09-24 01:38 - 000000000 ____D C:\Users\HP\AppData\Local\Labcenter Electronics
2021-09-24 01:36 - 2021-09-24 01:36 - 000000000 ____D C:\ProgramData\Labcenter Electronics
2021-09-24 01:30 - 2021-09-24 22:52 - 000000000 ____D C:\ProgramData\Package Cache
2021-09-24 01:24 - 2021-09-24 18:40 - 1978755247 _____ C:\Users\HP\Downloads\Adobe Photoshop 2020.rar
2021-09-23 18:51 - 2021-09-23 20:17 - 1709167294 _____ C:\Users\HP\Downloads\Adobe Photoshop CC 2020.rar
2021-09-23 00:01 - 2021-09-23 00:01 - 000322254 _____ C:\Users\HP\Documents\Fiche de renouvellement.pdf
2021-09-22 17:09 - 2021-09-22 17:09 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-09-22 00:57 - 2021-09-22 00:57 - 000000000 __SHD C:\Users\HP\AppData\Roaming\360Quarant
2021-09-22 00:57 - 2021-09-22 00:57 - 000000000 ____D C:\WINDOWS\Tasks\360Disabled
2021-09-22 00:22 - 2021-09-22 00:22 - 000000000 ____D C:\Users\HP\AppData\Local\CEF
2021-09-22 00:21 - 2021-09-22 00:57 - 000000000 ____D C:\Users\HP\AppData\Roaming\360safe
2021-09-21 23:50 - 2021-09-26 22:44 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2021-09-21 23:50 - 2021-09-26 21:40 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-21 23:47 - 2021-09-21 23:45 - 005287784 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\IntelWLANdriver.dll
2021-09-21 23:43 - 2021-09-27 22:10 - 000000000 ____D C:\ProgramData\360Quarant
2021-09-21 23:41 - 2021-09-28 03:51 - 000000000 ____D C:\Users\HP\AppData\LocalLow\360WD
2021-09-21 23:41 - 2021-09-25 00:36 - 000000000 ____D C:\ProgramData\360TotalSecurity
2021-09-21 23:41 - 2021-09-22 02:18 - 000000000 _RSHD C:\360SANDBOX
2021-09-21 23:41 - 2021-09-22 00:57 - 000000000 ____D C:\ProgramData\360safe
2021-09-21 23:41 - 2021-09-22 00:54 - 000000000 ____D C:\Users\HP\AppData\Roaming\360TotalSecurity
2021-09-21 23:41 - 2021-09-21 23:41 - 000001229 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2021-09-21 23:41 - 2021-09-21 23:41 - 000000001 _____ C:\WINDOWS\system32\Drivers\360Hvm64.dat
2021-09-21 23:41 - 2021-09-21 23:41 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Centre 360 Security
2021-09-21 23:41 - 2021-09-21 23:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre 360 Security
2021-09-21 23:41 - 2021-09-21 23:41 - 000000000 ____D C:\Program Files (x86)\360
2021-09-21 23:41 - 2021-08-25 08:24 - 000494080 _____ (360.cn) C:\WINDOWS\system32\Drivers\360FsFlt.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000347664 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000334336 _____ (360安全中心) C:\WINDOWS\system32\Drivers\360Hvm64.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000232688 _____ (360.cn) C:\WINDOWS\system32\Drivers\BAPIDRV64.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000199888 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000096424 _____ (360.cn) C:\WINDOWS\system32\Drivers\360netmon.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000095232 _____ (360.cn) C:\WINDOWS\SysWOW64\Drivers\360AvFlt.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000095232 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AvFlt.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000058200 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Camera64.sys
2021-09-21 23:41 - 2021-08-25 08:24 - 000017192 _____ (360.cn) C:\WINDOWS\system32\Drivers\360elam64.sys
2021-09-21 23:36 - 2021-09-27 02:24 - 000001002 _____ C:\Users\HP\Desktop\facebook.lnk
2021-09-21 23:36 - 2021-09-26 21:39 - 000000000 ____D C:\Firefox
2021-09-21 23:36 - 2021-09-22 00:21 - 000000000 ____D C:\Chrone
2021-09-21 23:36 - 2021-09-21 23:36 - 000001452 _____ C:\Users\Public\Desktop\Chrone Browser.lnk
2021-09-21 23:36 - 2021-09-21 23:36 - 000000646 _____ C:\Users\Public\Desktop\Firefox Browser.lnk
2021-09-21 23:36 - 2021-09-21 23:36 - 000000000 ____D C:\Users\HP\AppData\Roaming\Opera Software
2021-09-21 23:36 - 2021-09-21 23:36 - 000000000 ____D C:\Users\HP\AppData\Local\Opera Software
2021-09-21 23:36 - 2021-09-21 23:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Browser
2021-09-21 23:36 - 2021-09-21 23:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chrone Browser
2021-09-21 23:30 - 2021-09-21 23:30 - 000000000 ____D C:\HP
2021-09-21 23:29 - 1987-12-19 23:00 - 003404288 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libcrypto-1_1-x64.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libcrypto-1_1.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 001276928 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\libeay32.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 001070232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomctl.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000682496 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libssl-1_1-x64.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000660120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomct2.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000617896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libssl-1_1.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000444328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MShflxgd.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000416408 _____ (Microsoft Corporation ) C:\WINDOWS\SysWOW64\comct332.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000279192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdatgrd.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000276992 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\ssleay32.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000259736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msflxgrd.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdatlst.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000222360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tabctl32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000219288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\richtx32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000218776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dblist32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000212112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mci32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000179352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmask32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000170920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comct232.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000163480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000131728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinet.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000127640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswinsck.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000123480 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000119960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomm32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000109144 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000104088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\picclp32.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000084624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysinfo.ocx
2021-09-21 23:29 - 1987-12-19 23:00 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll
2021-09-21 23:29 - 1987-12-19 23:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
2021-09-21 23:29 - 1987-12-19 23:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll
2021-09-21 23:26 - 2021-09-21 23:26 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_wbf_vfs_003f_adv_01_09_00.Wdf
2021-09-21 23:18 - 2021-09-26 17:25 - 000000000 ____D C:\Users\HP\.cache
2021-09-21 23:18 - 2021-09-21 23:18 - 000000000 ____D C:\SearcherBar
2021-09-21 23:18 - 2021-09-21 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SearcherBar
2021-09-21 23:15 - 2021-09-21 23:49 - 000000000 ____D C:\Users\HP\AppData\Roaming\DRPSu
2021-09-21 23:15 - 2021-09-21 23:15 - 000001964 _____ C:\Users\Public\Desktop\DriverPack.lnk
2021-09-21 23:15 - 2021-09-21 23:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverPack
2021-09-21 23:15 - 2021-09-21 23:15 - 000000000 ____D C:\Program Files (x86)\DriverPack
2021-09-21 23:13 - 2021-09-21 23:14 - 008512536 _____ C:\Users\HP\Downloads\DriverPack-17-Online___2w965hyut1thjif.exe
2021-09-21 19:53 - 2021-09-21 19:53 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Foxit
2021-09-20 19:48 - 2021-09-26 16:29 - 000000000 ____D C:\Users\HP\AppData\Local\D3DSCache
2021-09-20 12:06 - 2019-08-28 23:31 - 001308472 _____ (Synaptics Incorporated) C:\WINDOWS\system32\ValEFIResDll.dll
2021-09-20 12:06 - 2019-08-28 23:31 - 000050488 _____ (Synaptics Incorporated) C:\WINDOWS\system32\secureMigrationCI.dll
2021-09-20 12:05 - 2021-08-12 15:19 - 001151992 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2021-09-20 11:56 - 2021-07-22 07:10 - 010523552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RsDMFT64.dll
2021-09-20 11:29 - 2021-08-02 17:50 - 009950912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2021-09-20 11:18 - 2021-07-13 11:43 - 008760912 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw04.sys
2021-09-20 11:18 - 2021-07-13 11:43 - 002073972 _____ C:\WINDOWS\system32\Drivers\Netwfw04.dat
2021-09-20 11:18 - 2021-07-13 11:43 - 001518152 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter04.dll
2021-09-10 18:03 - 2021-03-12 17:05 - 001034104 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAC.sys
2021-09-10 18:03 - 2021-03-12 17:05 - 000024952 _____ C:\WINDOWS\system32\RstMwEventLogMsg.dll
 
==================== Un mois (modifiés) ==================
 
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
 
2021-09-28 04:17 - 2021-08-25 13:33 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-28 03:34 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-27 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-27 22:13 - 2021-08-25 23:57 - 000792972 _____ C:\WINDOWS\system32\perfh00C.dat
2021-09-27 22:13 - 2021-08-25 23:57 - 000150102 _____ C:\WINDOWS\system32\perfc00C.dat
2021-09-27 22:13 - 2021-08-25 14:21 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-27 22:13 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-27 22:08 - 2021-08-25 14:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-27 22:08 - 2021-08-25 14:12 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-27 22:08 - 2021-08-24 19:37 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2021-09-27 22:08 - 2021-08-24 19:37 - 000000000 ____D C:\Intel
2021-09-27 22:08 - 2021-08-24 19:35 - 000000000 ____D C:\ProgramData\Synaptics
2021-09-27 22:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-09-27 22:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2021-09-27 22:08 - 2019-12-07 11:03 - 029622272 _____ C:\WINDOWS\system32\config\BCD000000
2021-09-27 07:58 - 2021-08-25 14:14 - 000000000 ____D C:\Users\HP
2021-09-27 07:58 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-09-27 07:56 - 2021-08-25 14:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-26 21:44 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-09-26 19:45 - 2021-08-25 15:57 - 000000000 ____D C:\Users\HP\AppData\Local\HP
2021-09-26 19:11 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-09-26 18:53 - 2021-08-25 11:53 - 000000000 ____D C:\Program Files\UNP
2021-09-26 16:29 - 2021-08-24 19:19 - 000000000 ____D C:\Users\HP\AppData\Roaming\Adobe
2021-09-26 15:55 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-26 15:00 - 2021-08-25 14:13 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-26 15:00 - 2021-08-25 14:13 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-09-26 00:58 - 2021-08-25 14:12 - 000467368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-26 00:57 - 2019-12-07 11:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-26 00:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-26 00:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-25 00:51 - 2021-08-24 19:23 - 000000000 ____D C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
2021-09-24 22:49 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-09-24 18:02 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-24 16:14 - 2021-08-25 13:30 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-24 16:14 - 2021-08-24 20:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-24 16:07 - 2021-08-24 20:33 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-24 00:09 - 2021-08-25 14:27 - 000000000 ____D C:\Program Files\Microsoft Office
2021-09-24 00:08 - 2021-08-25 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2021-09-23 00:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ModemLogs
2021-09-22 00:54 - 2021-08-25 14:19 - 000000000 ____D C:\Users\HP\AppData\Local\Google
2021-09-21 23:50 - 2021-08-24 19:37 - 000000000 ____D C:\ProgramData\Intel
2021-09-21 23:45 - 2021-08-25 16:00 - 000000000 ____D C:\hpswsetup
2021-09-21 23:45 - 2021-08-25 15:56 - 000000000 ____D C:\ProgramData\HP
2021-09-21 23:41 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-09-21 23:30 - 2021-08-25 15:57 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2021-09-21 23:30 - 2021-08-25 15:57 - 000000000 ____D C:\Program Files (x86)\HP
2021-09-21 23:30 - 2021-08-25 15:56 - 000000000 ____D C:\SWSetup
2021-09-21 23:30 - 2021-08-25 12:03 - 000000000 ____D C:\Users\HP\AppData\Roaming\hpqLog
2021-09-21 23:27 - 2021-08-24 20:32 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2021-09-21 23:07 - 2021-08-25 13:34 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-09-21 23:07 - 2021-08-25 13:34 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-09-21 23:05 - 2021-08-24 19:25 - 000000000 ____D C:\ProgramData\Packages
2021-09-21 23:05 - 2021-08-24 19:19 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2021-09-21 22:58 - 2021-08-25 12:06 - 000000000 ___DC C:\WINDOWS\Panther
2021-09-21 22:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-09-21 22:54 - 2021-08-24 19:44 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-09-21 22:50 - 2021-08-25 14:14 - 000002415 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-21 19:56 - 2021-08-24 19:37 - 000000000 ____D C:\Users\HP\AppData\Local\Intel
2021-09-21 19:53 - 2021-08-25 13:43 - 000000000 ____D C:\Users\HP\AppData\Roaming\Foxit Software
 
==================== Fichiers à la racine de certains dossiers ========
 
2021-09-26 18:54 - 2021-09-26 18:54 - 003222528 _____ (Implbits Software) C:\ProgramData\1164161.exe
2021-09-26 18:53 - 2021-09-26 18:53 - 000244224 _____ (jfasdjk) C:\ProgramData\1568129.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 000060416 _____ (Derefner) C:\ProgramData\1749265.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 000244224 _____ (jfasdjk) C:\ProgramData\2727767.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 000244224 _____ (jfasdjk) C:\ProgramData\3043792.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 003239688 _____ (Implbits Software) C:\ProgramData\3362178.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 003222528 _____ (Implbits Software) C:\ProgramData\3877996.exe
2021-09-26 18:53 - 2021-09-26 18:53 - 000060416 _____ (Derefner) C:\ProgramData\4392407.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 000244224 _____ (jfasdjk) C:\ProgramData\4756497.exe
2021-09-26 18:53 - 2021-09-26 18:53 - 003014144 _____ (Implbits Software) C:\ProgramData\5160459.exe
2021-09-26 18:54 - 2021-09-26 18:54 - 003239688 _____ (Implbits Software) C:\ProgramData\5365966.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 003014144 _____ (Implbits Software) C:\ProgramData\5477126.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 000244224 _____ (jfasdjk) C:\ProgramData\5568361.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 003222528 _____ (Implbits Software) C:\ProgramData\6207715.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 003014144 _____ (Implbits Software) C:\ProgramData\6447461.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 000060416 _____ (Derefner) C:\ProgramData\6503600.exe
2021-09-26 19:07 - 2021-09-26 19:07 - 000244224 _____ (jfasdjk) C:\ProgramData\7698871.exe
2021-09-26 19:12 - 2021-09-26 19:12 - 003239688 _____ (Implbits Software) C:\ProgramData\819466.exe
2021-09-26 19:11 - 2021-09-26 19:11 - 000119016 _____ () C:\ProgramData\Stub.exe
2021-09-26 19:21 - 2021-09-26 20:37 - 000000000 _____ () C:\Program Files (x86)\temp_files
2021-09-26 23:40 - 2021-09-27 22:13 - 000886272 _____ (Simon Tatham) C:\Users\HP\AppData\Roaming\39A4.exe
2021-08-26 00:03 - 2021-08-26 00:03 - 000138752 ___SH () C:\Users\HP\AppData\Roaming\birtgvr
2021-09-26 19:17 - 2021-09-26 19:17 - 000452560 __RSH (XCodes) C:\Users\HP\AppData\Roaming\lwhrCNCFhLd.exe
2021-09-26 18:54 - 2021-09-26 19:11 - 000044032 _____ (Google5 Inc.) C:\Users\HP\AppData\Roaming\services64.exe
2021-08-26 00:03 - 2021-08-26 00:03 - 000137216 ___SH () C:\Users\HP\AppData\Roaming\uwrtgvr
2021-09-26 18:53 - 2021-09-26 19:07 - 000000128 _____ () C:\Users\HP\AppData\Local\PUTTY.RND
 
==================== FLock ==============================
 
2021-09-27 07:58 C:\WINDOWS\system32\config\SYSTEM
2021-09-26 18:57 C:\WINDOWS\system32\Drivers\4ssZw.sys
 
==================== SigCheck ============================
 
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
 
==================== Fin de FRST.txt ========================
 
 
 
le deuxième code:
 
 
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 22-09-2021 02
Exécuté par HP (28-09-2021 04:25:42)
Exécuté depuis C:\Users\HP\Downloads
Windows 10 Pro Version 20H2 19042.1237 (X64) (2021-08-25 12:19:21)
Mode d'amorçage: Normal
==========================================================
 
 
==================== Comptes: =============================
 
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
 
Administrator (S-1-5-21-4073201698-989389081-2523801930-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4073201698-989389081-2523801930-503 - Limited - Disabled)
Guest (S-1-5-21-4073201698-989389081-2523801930-501 - Limited - Disabled)
HP (S-1-5-21-4073201698-989389081-2523801930-1002 - Administrator - Enabled) => C:\Users\HP
WDAGUtilityAccount (S-1-5-21-4073201698-989389081-2523801930-504 - Limited - Disabled)
 
==================== Centre de sécurité ========================
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: 360 Total Security (Enabled - Up to date) {FFDC234A-CE9B-08F9-406B-F876951CE066}
 
==================== Programmes installés ======================
 
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
 
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 10.8.0.1382 - Centre 360 Security)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0) (Version: 21.0 - Adobe Systems Incorporated)
Chrone Browser (HKLM-x32\...\Chrone Browser) (Version: 86.0.4240.198 - iStart)
CODEGRIP Suite (HKU\S-1-5-21-4073201698-989389081-2523801930-1002\...\{497aa788-6cca-433f-905e-0f11f639e18a}) (Version: 1.1.1 - Mikroe)
Conexant ISST Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 9.0.239.40 - Conexant)
DriverPack (HKLM-x32\...\DriverPack) (Version: 17.11 - DriverPack)
dsPICFLASH Programmer (remove only) (HKLM-x32\...\dsPICFLASH Programmer) (Version:  - )
FarLabUninstaller v1.53.666 (HKLM-x32\...\FarLabUninstaller.exe_is1) (Version: 1.53.0.234 - )
Firefox Browser (HKLM-x32\...\Firefox Browser) (Version: 92.0 - iStart)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.0.1.49938 - Foxit Software Inc.)
Google Chrome (HKLM\...\{0BCD0446-9933-3CF9-B784-9B82FF57B144}) (Version: 93.0.4577.82 - Google LLC)
HP System Event Utility (HKLM-x32\...\{29E20347-C62F-4657-938E-876A182B67F1}) (Version: 1.4.13 - HP Inc.)
LvPICFLASH Programmer (remove only) (HKLM-x32\...\LvPICFLASH Programmer) (Version:  - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.31 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.14326.20404 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4073201698-989389081-2523801930-1002\...\OneDriveSetup.exe) (Version: 21.170.0822.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B981965-2FBC-433C-B4B3-E183EE97CD29}) (Version: 2.83.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
mikroC dsPIC(remove only) (HKLM-x32\...\mikroC dsPIC) (Version:  - )
mikroC PRO for PIC (remove only) (HKLM-x32\...\mikroC PRO for PIC) (Version: 7.6.0.0 - mikroElektronika)
mikroProg Suite For PIC (remove only) (HKLM-x32\...\mikroProg Suite For PIC) (Version: 2.8.0.0 - mikroElektronika)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14326.20404 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14326.20404 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden
SearcherBar (HKLM-x32\...\SearcherBar) (Version: 0.3 - ) <==== ATTENTION
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.8.32 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{3800CCFC-4006-4B30-A103-416AF26A885C}) (Version: 2.71.0.0 - Microsoft Corporation)
VideoAdsBlocker (HKLM-x32\...\411A5457-AC1D-462D-979D-A617B79C6DCB) (Version: 2.0.0.1517 - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Windows Manager (HKLM-x32\...\{C845414C-903C-4218-9DE7-132AB97FDF62}) (Version: 1.0.0 - AW Manager) <==== ATTENTION
WinRAR 6.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH)
Wondershare Filmora X(Build 10.2.0.32) (HKLM\...\Wondershare Filmora X_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
 
Packages:
=========
Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-09-25] (INTEL CORP) [Startup Task]
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.8.27.0_x64__v10z8vjag6ke6 [2021-09-22] (HP Inc.)
HP System Information -> C:\Program Files\WindowsApps\AD2F1837.HPSystemInformation_7.0.18.0_x64__v10z8vjag6ke6 [2021-08-25] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-09-22] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0 [2021-09-21] (Spotify AB) [Startup Task]
 
==================== Personnalisé CLSID (Avec liste blanche): ==============
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
ContextMenuHandlers1: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2021-08-25] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2021-08-25] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2021-08-25] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
 
==================== Codecs (Avec liste blanche) ====================
 
==================== Raccourcis & WMI ========================
 
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
 
Shortcut: C:\Users\Public\Desktop\DriverPack.lnk -> C:\Program Files (x86)\DriverPack\start.bat ()
 
==================== Modules chargés (Avec liste blanche) =============
 
2021-09-26 19:34 - 2021-09-24 12:24 - 002772992 _____ () [Fichier non signé] C:\Program Files (x86)\opGhzYKWOXs\opGhzYKWOXs.dll
2021-08-25 11:51 - 2019-04-22 15:50 - 001370112 _____ (Conexant Systems LLC.) [Fichier non signé] C:\Program Files\Conexant\SA3\HP-NB-AIO\CxHDAudioAPI.dll
2021-08-24 20:32 - 2021-08-24 20:32 - 042803200 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.dll
2021-08-25 11:51 - 2020-03-04 17:16 - 001431552 _____ (Robert Simpson, et al.) [Fichier non signé] C:\Program Files\CONEXANT\Flow\x64\SQLite.Interop.dll
 
==================== Alternate Data Streams (Avec liste blanche) ========
 
==================== Mode sans échec (Avec liste blanche) ==================
 
==================== Association (Avec liste blanche) =================
 
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
 
HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\UserChoice => 
HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.reg\UserChoice => 
HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bat\UserChoice => 
HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cmd\UserChoice => 
HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.com\UserChoice => 
HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.scr\UserChoice => 
HKU\FileCache\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\UserChoice => 
 
==================== Internet Explorer (Avec liste blanche) ==========
 
HKU\S-1-5-21-4073201698-989389081-2523801930-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2021-08-25] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2021-08-25] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-09-24] (Microsoft Corporation -> Microsoft Corporation)
 
==================== Hosts contenu: =========================
 
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
 
2019-03-19 06:49 - 2021-09-26 19:12 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts
 
==================== Autres zones ===========================
 
(Actuellement, il n'y a pas de correction automatique pour cette section.)
 
HKU\S-1-5-21-4073201698-989389081-2523801930-1002\Control Panel\Desktop\\Wallpaper -> E:\APP\Wallpaper\283461.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
mpsdrv => Le service Pare-feu n'est pas actif.
MpsSvc => Le service Pare-feu n'est pas actif.
 
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
 
==================== RèglesPare-feu (Avec liste blanche) ================
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
FirewallRules: [{35CC6DE7-312A-4482-8A11-930F82C73646}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9274F5C8-42A4-4914-94A4-4DEAF17BF4DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{086E940D-A8F6-4F93-ADCA-474D6E20CF56}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DA1299B4-E759-4581-AF9D-E1139C0C0517}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{E4ACF769-2D01-4213-8956-5D4C694F70B6}E:\app\sdi_rus 2019\sdi_x64_r1904.exe] => (Block) E:\app\sdi_rus 2019\sdi_x64_r1904.exe => Pas de fichier
FirewallRules: [TCP Query User{00A5C47D-954C-47B8-875B-88E2DAF71AC3}E:\app\sdi_rus 2019\sdi_x64_r1904.exe] => (Block) E:\app\sdi_rus 2019\sdi_x64_r1904.exe => Pas de fichier
FirewallRules: [{7C6C8A00-AC63-4554-80C8-BBC3BB8C4428}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D33C74FB-B288-4502-8D61-62EEE80520FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{548FD0D0-EBC9-48FF-AA2A-DAF9E11C8DD9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{84D9DC57-ED20-4A47-A5B5-0BCE9D24DEA1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{24BD1F40-F366-424F-A871-66B423C31B20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6D9DD8C1-4B11-4536-BB4E-E6D743EC9FB7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C5CFE396-709D-41EF-AF0F-2F185674C874}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B129BB42-819B-4406-A36E-5401D4DC2197}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.168.632.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{49A9AADD-753D-4DA9-8A21-350A9E3D9F7C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{CF241920-6395-47EC-8DC9-FFFFCC261790}] => (Allow) C:\Program Files (x86)\DriverPack\tools\aria2c.exe () [Fichier non signé]
FirewallRules: [{AF89E366-B234-4C37-899E-66FE0B06708D}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\64.0.3417.73\opera.exe => Pas de fichier
FirewallRules: [{A565AF45-F8D2-4D06-9CC7-B4AD1A6F45F7}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{04DBBFC7-63D8-462C-8714-32C33A4B8B1D}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{3775F698-F663-40CE-B211-795D91717A8E}] => (Allow) C:\Users\HP\AppData\Local\Programs\Opera\78.0.4093.231\opera.exe => Pas de fichier
FirewallRules: [{34485873-A3BF-4F0F-9A3B-C3E6BF367D51}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{54D989DD-F2B1-4FD4-8170-2900FEE1AB46}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{0F52741A-FDC8-4AC4-B4E2-27A4F4293C5C}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{8E78AF32-7E5E-43F8-B1FA-F002D777995F}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [TCP Query User{2DC919BC-59D4-4468-A697-EAA54BE15F5C}C:\chrone\chrome.exe] => (Allow) C:\chrone\chrome.exe (Cent Studio) [Fichier non signé]
FirewallRules: [UDP Query User{2ECA24C9-FEDF-42C5-A3B4-ADD2EFE79BA8}C:\chrone\chrome.exe] => (Allow) C:\chrone\chrome.exe (Cent Studio) [Fichier non signé]
FirewallRules: [{DE3654E5-A847-4DDF-AB00-AAB7A9DA489C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{107AD248-CE72-457D-9DC8-6B6DD0E65582}] => (Allow) C:\WINDOWS\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{A6301C11-9DA1-4A12-8330-F239E5FE5567}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{912E1164-8195-455E-A2F9-0EE31319ED10}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{48A7CB1A-0A2C-40BE-BBCB-7FB6E60BE166}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B515F8AE-E095-4E96-B282-6E50A6C9A6B9}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
 
==================== Points de restauration =========================
 
26-09-2021 19:21:27 {5D4B834B-568B-4851-AE4B-CDA309D61F2C}
27-09-2021 01:03:53 Removed Windows Manager
27-09-2021 03:25:25 Removed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
27-09-2021 03:26:10 Removed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
27-09-2021 03:42:40 Removed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
27-09-2021 23:38:58 OTL Restore Point - 27/09/2021 23:38:57
 
==================== Éléments en erreur du Gestionnaire de périphériques ============
 
 
==================== Erreurs du Journal des événements: ========================
 
Erreurs Application:
==================
Error: (09/28/2021 03:14:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe_FrameServer, version : 10.0.19041.546, horodatage : 0x058e175a
Nom du module défaillant : RsProvider.dll, version : 1.30.0.0, horodatage : 0x57ee1a06
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000007bd6d
ID du processus défaillant : 0x8574
Heure de début de l’application défaillante : 0x01d7b40630c18f37
Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\svchost.exe
Chemin d’accès du module défaillant: C:\Program Files\Realtek\RsProviders\RsProvider.dll
ID de rapport : ec88e0a7-21bc-4c6f-91f0-057795dbd8f8
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :
 
Error: (09/27/2021 10:10:54 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.
 
Error: (09/27/2021 10:09:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante System.exe, version : 0.8.0.6, horodatage : 0x613f71f2
Nom du module défaillant : System.exe, version : 0.8.0.6, horodatage : 0x613f71f2
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000001b379
ID du processus défaillant : 0x818
Heure de début de l’application défaillante : 0x01d7b3db91c5a533
Chemin d’accès de l’application défaillante : C:\ProgramData\Microsoft Network\System.exe
Chemin d’accès du module défaillant: C:\ProgramData\Microsoft Network\System.exe
ID de rapport : 65550248-2601-43c4-80ec-86223e44f6b7
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :
 
Error: (09/27/2021 10:08:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe_FrameServer, version : 10.0.19041.546, horodatage : 0x058e175a
Nom du module défaillant : RsProvider.dll, version : 1.30.0.0, horodatage : 0x57ee1a06
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000007bd6d
ID du processus défaillant : 0x700
Heure de début de l’application défaillante : 0x01d7b3db7571cfec
Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\svchost.exe
Chemin d’accès du module défaillant: C:\Program Files\Realtek\RsProviders\RsProvider.dll
ID de rapport : 8df33a82-2e23-4eca-ab3b-e64f488b3f5e
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :
 
Error: (09/27/2021 07:34:18 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante uwrtgvr, version : 12.0.0.0, horodatage : 0x6128c117
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00008250
ID du processus défaillant : 0x30e8
Heure de début de l’application défaillante : 0x01d7b360b7678bfe
Chemin d’accès de l’application défaillante : C:\Users\HP\AppData\Roaming\uwrtgvr
Chemin d’accès du module défaillant: unknown
ID de rapport : 656d9672-e145-4db5-aaf4-9c6122b884c0
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :
 
Error: (09/27/2021 07:02:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante uwrtgvr, version : 12.0.0.0, horodatage : 0x6128c117
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00008250
ID du processus défaillant : 0x46dc
Heure de début de l’application défaillante : 0x01d7b35b20c751c5
Chemin d’accès de l’application défaillante : C:\Users\HP\AppData\Roaming\uwrtgvr
Chemin d’accès du module défaillant: unknown
ID de rapport : dbbc109f-d66d-4755-aa28-9b532fc44169
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :
 
Error: (09/27/2021 06:20:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante uwrtgvr, version : 12.0.0.0, horodatage : 0x6128c117
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00008250
ID du processus défaillant : 0xcd0
Heure de début de l’application défaillante : 0x01d7b356efd3beae
Chemin d’accès de l’application défaillante : C:\Users\HP\AppData\Roaming\uwrtgvr
Chemin d’accès du module défaillant: unknown
ID de rapport : 6ac19d13-81a1-45eb-81d2-e6e3da834f30
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :
 
Error: (09/27/2021 03:50:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante uwrtgvr, version : 12.0.0.0, horodatage : 0x6128c117
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00008250
ID du processus défaillant : 0x255c
Heure de début de l’application défaillante : 0x01d7b341fb86b34a
Chemin d’accès de l’application défaillante : C:\Users\HP\AppData\Roaming\uwrtgvr
Chemin d’accès du module défaillant: unknown
ID de rapport : c2ded78e-389e-48cc-9cb6-665dc74e0cc9
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :
 
 
Erreurs système:
=============
Error: (09/28/2021 03:14:35 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Serveur de trame de la Caméra Windows s’est terminé de façon inattendue pour la 2ème fois.
 
Error: (09/28/2021 02:14:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.
 
Error: (09/28/2021 12:23:03 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.
 
Error: (09/27/2021 10:53:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.
 
Error: (09/27/2021 10:42:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.
 
Error: (09/27/2021 10:34:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.
 
Error: (09/27/2021 10:33:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.
 
Error: (09/27/2021 10:33:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.
 
 
Windows Defender:
================
Date: 2021-09-21 23:25:23
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {12618E8B-AA5F-49D8-BA9C-08765CDE12BD}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
 
Date: 2021-09-21 23:17:48
Description: 
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
Nom : Trojan:Win32/Conteban.A!ml
ID : 2147735506
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\HP\AppData\Roaming\DRPSu\PROGRAMS\Internet-Start.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.349.1181.0, AS: 1.349.1181.0, NIS: 1.349.1181.0
Version du moteur : AM: 1.1.18500.10, NIS: 1.1.18500.10
 
Date: 2021-08-25 14:27:48
Description: 
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : High
Catégorie : Tool
Chemin : file:_E:\APP\Office 2013-2016-2019\Office_2016_C2R_ISO_16.0.12527.20242_03.03.2020-16.30.11\OInstall.exe; process:_pid:6184,ProcessStart:132743680244917529
Origine de la détection : Local machine
Type de détection : Concrete
Source de détection : Real-Time Protection
Utilisateur : LT-5CD7400SPY\HP
Nom du processus : E:\APP\Office 2013-2016-2019\Office_2016_C2R_ISO_16.0.12527.20242_03.03.2020-16.30.11\OInstall.exe
Version de la veille de sécurité : AV: 1.347.366.0, AS: 1.347.366.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.18400.5, NIS: 0.0.0.0
 
Date: 2021-08-25 14:27:19
Description: 
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : High
Catégorie : Tool
Chemin : file:_E:\APP\Office 2013-2016-2019\Office_2016_C2R_ISO_16.0.12527.20242_03.03.2020-16.30.11\OInstall.exe
Origine de la détection : Local machine
Type de détection : Concrete
Source de détection : Real-Time Protection
Utilisateur : LT-5CD7400SPY\HP
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.347.366.0, AS: 1.347.366.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.18400.5, NIS: 0.0.0.0
 
Date: 2021-08-25 14:26:54
Description: 
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : High
Catégorie : Tool
Chemin : file:_E:\APP\Office 2013-2016-2019\Office_2016_C2R_ISO_16.0.12527.20242_03.03.2020-16.30.11\OInstall.exe
Origine de la détection : Local machine
Type de détection : Concrete
Source de détection : Real-Time Protection
Utilisateur : LT-5CD7400SPY\HP
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.347.366.0, AS: 1.347.366.0, NIS: 1.347.366.0
Version du moteur : AM: 1.1.18400.5, NIS: 1.1.18400.5

CodeIntegrity:
===============
Date: 2021-09-27 22:10:54
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\360\Total Security\safemon\WscReg.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
Date: 2021-09-27 03:54:15
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll that did not meet the Microsoft signing level requirements.
 
 
==================== Infos Mémoire =========================== 
 
BIOS: HP P85 Ver. 01.31 10/15/2019
Carte mère: HP 8231
Processeur: Intel® Core™ i7-7500U CPU @ 2.70GHz
Pourcentage de mémoire utilisée: 89%
Mémoire physique - RAM - totale: 8087.21 MB
Mémoire physique - RAM - disponible: 832.65 MB
Mémoire virtuelle totale: 17096.82 MB
Mémoire virtuelle disponible: 2579.43 MB
 
==================== Lecteurs ================================
 
Drive c: (Windows) (Fixed) (Total:235.48 GB) (Free:167.49 GB) NTFS
Drive e: (Nouveau nom) (Fixed) (Total:453.52 GB) (Free:448.84 GB) NTFS
 
\\?\Volume{55fca0ef-0000-0000-0000-800200000000}\ (RECOVERY) (Fixed) (Total:12.2 GB) (Free:4.33 GB) NTFS
\\?\Volume{26c02827-f20e-420f-a3f8-da4e19bc1409}\ (Recovery) (Fixed) (Total:2.38 GB) (Free:1.64 GB) NTFS
\\?\Volume{cf7c6d50-206d-4de1-91a7-11b696d19ef2}\ (BOOT) (Fixed) (Total:0.48 GB) (Free:0.44 GB) FAT32
 
==================== MBR & Table des partitions ====================
 
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 55FCA0EF)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=12.2 GB) - (Type=27)
Partition 3: (Not Active) - (Size=453.5 GB) - (Type=07 NTFS)
 
==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 5EFFBAF7)
 
Partition: GPT.
 
==================== Fin de Addition.txt =======================
 
 

  • 0

Advertisements


#2
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,269 posts

Hi, Souley.
 
Welcome to GTG Forums.
 
Have in mind that all the assistance here is given in English, so please, try to write in English. 
 
Your computer is infected.
 
First things first:
 
Using pirated/cracked software is an easy way to infect your computer. Almost as easy as intentionally downloading malware.Since there are signs you have pirated/cracked software installed, you have to uninstalled it before I provide to you any kind of assistance. Also remove any method you are using to illegally keep activated Microsoft products (AutoKMS service).
 
If you agree with this, please let me know. After all the uninstalls, please follow the next steps: 

 
1. Run CKScanner

  • Download CKScanner from here and save it to your desktop.
  • Doubleclick CKScanner.exe and click Search For Files.
  • After a very short time, when the cursor hourglass disappears, click Save List To File.
  • A message box will verify that the file is saved.
  • Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply

 

2. Check the operating system

  • Press Windows icon on your Desktop, together with the letter R.
  • Type cmd, and press Ctrl + Shift + Enter to run Command Prompt as administrator.
  • Copy and paste the following command and press Enter:
slmgr /dli
  • After running the command, you will get a report. Please take a screenshot of what you got and attach it in your next reply. Here is an article where you can see how do you take a screenshot with the snipping tool, in case you need it.

 

3. Fresh FRST logs

  • Move FRST tool from your Downloads folder on to your Desktop.
  • Since English is not your primary language, right click on FRST.exe/FRST64.exe and rename to FRSTEnglish.exe/FRST64English.exe
  • Double-click the FRST icon to run the tool. When the tool opens click Yes to disclaimer.
  • Press Scan button and wait for a while.
  • The scanner will produced two logs on your Desktop: FRST.txt and Addition.txt.
  • Please attach the content of these two logs in your next reply.

(To attach the files, click on the More Reply Options at the bottom right of the reply area, and then choose Attach File)


  • 0

#3
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,269 posts

Hello.

 

Any progress here? 


  • 0

#4
DR M

DR M

    The Grecian Geek

  • Malware Removal
  • 4,269 posts
Hi, Souley.
 
Asking for help, providing your logs for analysis and then go away, is not just a simple thing. Plus, it's not kind at all. People spend a remarkable amount of time to analyse the logs and, as you know, time is valuable for all of us.
 
So.. due to lack of feedback, this topic has been closed.
 
If you need this topic reopened, please contact a staff member, or send me a personal message (hoover with the mouse on my profile name and choose Send message).
 

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP