start::
closeprocesses:
SearchScopes: HKU\S-1-5-21-930692016-398641486-1742206274-1001 -> DefaultScope {F7360288-D0B8-4876-9660-B30FF1F976A2} URL =
SearchScopes: HKU\S-1-5-21-930692016-398641486-1742206274-1001 -> {F7360288-D0B8-4876-9660-B30FF1F976A2} URL =
BHO: Pas de nom -> {5152094E-8ACF-4FEB-A3A8-56E321B3CBCF}' -> Pas de fichier
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2020-06-04] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-05-13] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2020-06-04] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pas de nom -> {5152094E-8ACF-4FEB-A3A8-56E321B3CBCF}' -> Pas de fichier
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-05-13] (McAfee, LLC -> McAfee, LLC)
IE trusted site: HKU\S-1-5-21-930692016-398641486-1742206274-1001\...\hola.org -> hxxp://hola.org
HKLM\...\StartupApproved\Run: => "hola"
FirewallRules: [TCP Query User{BA221485-A2AC-4340-91FD-D587B33AEF90}E:\program files\badlion client\badlion client.exe] => (Allow) E:\program files\badlion client\badlion client.exe => Pas de fichier
FirewallRules: [UDP Query User{3C646C0B-8E77-4872-AE65-D9B880180335}E:\program files\badlion client\badlion client.exe] => (Allow) E:\program files\badlion client\badlion client.exe => Pas de fichier
FirewallRules: [TCP Query User{C687F372-AA88-4565-888E-9417A87396E2}E:\nouveau dossier\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\nouveau dossier\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier
FirewallRules: [UDP Query User{C1DC8EC5-F614-4A1A-9244-B4296B5FC554}E:\nouveau dossier\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\nouveau dossier\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier
FirewallRules: [TCP Query User{30D6F08F-6BCF-4244-8458-CD3DC56CBA26}E:\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) E:\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe => Pas de fichier
FirewallRules: [UDP Query User{F629A63B-A73B-4897-AC72-AF51B873FAE9}E:\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) E:\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe => Pas de fichier
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
FF Notifications: Mozilla\Firefox\Profiles\5mv7rnun.default-release -> hxxps://0q6rk.arereaso.online; hxxps://linkvertise.com
C:\Program Files\McAfee
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
cmd: md C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database
emptytemp:
end::