Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Exécuté par HP (29-04-2024 14:56:06)
Exécuté depuis C:\Users\HP\Desktop
Microsoft Windows 10 Entreprise Version 22H2 19045.4291 (X64) (2020-12-02 13:30:45)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrator (S-1-5-21-1551542468-2884388448-3857473492-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1551542468-2884388448-3857473492-503 - Limited - Disabled)
Guest (S-1-5-21-1551542468-2884388448-3857473492-501 - Limited - Disabled)
HP (S-1-5-21-1551542468-2884388448-3857473492-1002 - Administrator - Enabled) => C:\Users\HP
WDAGUtilityAccount (S-1-5-21-1551542468-2884388448-3857473492-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: FortiClient AntiVirus (Enabled - Up to date) {5EEDDB8C-C27A-6714-3657-DBD811D1F1B7}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
64 Bit HP CIO Components Installer (HKLM\...\{50229C72-539F-4E65-BEB5-F0491C5074B7}) (Version: 22.2.1 - HP Inc.) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 24.002.20687 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
A-Men Technologies USB-to-Serial (HKLM-x32\...\{1805BD6D-C441-4A1C-802D-AFF0232DAACD}) (Version: - )
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 8.0.9 - AnyDesk Software GmbH)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1189.1 - AVAST Software) Hidden
BitTorrent (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\BitTorrent) (Version: 7.11.0.46823 - BitTorrent Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 7.35.344.10 - Broadcom Corporation)
CyberLink YouCam 5 (HKLM-x32\...\{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.0909 - CyberLink Corp.) Hidden
CyberLink YouCam 5 (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.0909 - CyberLink Corp.)
ELAN Touchpad 15.2.5.1_X64_WHQL (HKLM\...\Elantech) (Version: 15.2.5.1 - ELAN Microelectronic Corp.)
FortiClient (HKLM\...\{CF528CBD-062E-4543-AC77-6B44BBB3CF07}) (Version: 5.4.5.0891 - Fortinet Inc)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.5.0.20723 - Foxit Software Inc.)
Free Ping Tool (HKLM-x32\...\{77B7AA53-6F12-4286-B4A8-87BE60AFDEA0}) (Version: 3.0.0.13 - ZOHO Corp.)
Free Tools Launcher (HKLM-x32\...\{BB86BE84-4123-4967-9BA3-45F6648551E1}) (Version: 2.0.0 - ZOHO Corp.)
Free Windows SNMP Enabler (HKLM-x32\...\{58CE3557-5068-4105-8D2F-AD21EF4E3E68}) (Version: 1.0.8 - ZOHO Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 124.0.6367.91 - Google LLC)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Microsoft Access MUI (French) 2013 (HKLM\...\{90150000-0015-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft DCF MUI (French) 2013 (HKLM\...\{90150000-0090-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.51 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.97 - Microsoft Corporation)
Microsoft Excel MUI (French) 2013 (HKLM\...\{90150000-0016-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (French) 2013 (HKLM\...\{90150000-00BA-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (French) 2013 (HKLM\...\{90150000-0044-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Interop Forms Redistributable Package 2.0a (HKLM-x32\...\{76D1AA2B-A434-4D63-BE2C-80286F23C223}) (Version: 2.0.0 - Microsoft Corporation)
Microsoft Lync MUI (French) 2013 (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft ODBC Driver 13 for SQL Server (HKLM\...\{F568A584-523B-4F16-917E-5742839B03CC}) (Version: 13.1.4413.46 - Microsoft Corporation)
Microsoft Office 32-bit Components 2013 (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2016 (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM\...\{90150000-001F-0407-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2016 – Deutsch (HKLM\...\{90160000-001F-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (French) 2013 (HKLM\...\{90150000-00E1-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (French) 2016 (HKLM\...\{90160000-00E1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (French) 2013 (HKLM\...\{90150000-00E2-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Proofing (French) 2013 (HKLM\...\{90150000-002C-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (French) 2016 (HKLM\...\{90160000-002C-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Nederlands (HKLM\...\{90150000-001F-0413-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - اللغة العربية (HKLM\...\{90150000-001F-0401-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - English (HKLM\...\{90160000-001F-0409-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - اللغة العربية (HKLM\...\{90160000-001F-0401-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (French) 2013 (HKLM\...\{90150000-00C1-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (French) 2016 (HKLM\...\{90160000-00C1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (French) 2013 (HKLM\...\{90150000-006E-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (French) 2016 (HKLM\...\{90160000-006E-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft OLE DB Driver for SQL Server (HKLM\...\{23438EF7-40CA-483B-A22D-756407B7A503}) (Version: 18.0.2.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft OneNote MUI (French) 2013 (HKLM\...\{90150000-00A1-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (French) 2013 (HKLM\...\{90150000-001A-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (French) 2013 (HKLM\...\{90150000-0018-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (French) 2013 (HKLM\...\{90150000-0019-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Teams classic (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Teams) (Version: 1.7.00.3653 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visio MUI (French) 2016 (HKLM\...\{90160000-0054-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2016 (HKLM\...\{90160000-0051-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Visio Professionnel 2016 (HKLM\...\Office16.VISPRO) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Word MUI (French) 2013 (HKLM\...\{90150000-001B-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Mozilla Firefox 74.0 (x64 en-US) (HKLM\...\Mozilla Firefox 74.0 (x64 en-US)) (Version: 74.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
Npcap OEM (HKLM-x32\...\NpcapInst) (Version: 1.75 - Nmap Project)
Opera Stable 109.0.5097.68 (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Opera 109.0.5097.68) (Version: 109.0.5097.68 - Opera Software)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
PCI Audio Star 1.4 (HKLM-x32\...\PCI Audio Star_is1) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8940.1 - Realtek Semiconductor Corp.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0015-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0016-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0018-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0019-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001A-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0401-1000-0000000FF1CE}_Office15.PROPLUS_{C5DEA626-E7D2-4200-9B49-43E37BF21A7C}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0407-1000-0000000FF1CE}_Office15.PROPLUS_{DABB9E2A-F054-4F97-9EB2-6992316C6EC7}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{835E4BED-E265-4103-AE14-0B4C70CF3FE8}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUS_{1F7000D3-A917-4AD2-BA55-59E6FDAF062A}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0413-1000-0000000FF1CE}_Office15.PROPLUS_{2F03603E-9953-44F3-9608-2B61DE92F2F2}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{4BF13B26-3A95-4E42-900A-DEB16FDA75A0}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-002C-040C-1000-0000000FF1CE}_Office15.PROPLUS_{5B93071A-F8EF-4894-88C1-8B785A46D4C6}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0044-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-006E-040C-1000-0000000FF1CE}_Office15.PROPLUS_{96DAF4C0-7FCF-4B53-91FA-B12C7162D90E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0090-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00A1-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00BA-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1931508C-C004-4983-81E3-70BE6252904B}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-040C-1000-0000000FF1CE}_Office15.PROPLUS_{DC0FD398-D15A-4351-B0D9-9F40612C5057}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E1-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E2-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Snip (HKLM-x32\...\{1CF74000-36F5-4B78-A1C9-A33895D8AFA4}) (Version: 0.1.4814.0 - Microsoft) Hidden
Snip (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\{29140599-94ec-407e-aceb-dfa848705777}) (Version: 0.1.4814.0 - Microsoft Corporation)
SolarWinds NetFlow Realtime (HKLM-x32\...\{BD8B6228-3EA7-4F03-B0DA-B72D5B700470}) (Version: 19.3.0.6001 - SolarWinds)
SolarWinds TFTP Server (HKLM-x32\...\{F0C566BF-DE83-42C1-B51B-0FA39FE0BE38}) (Version: 11.4.0.60017 - SolarWinds)
SolarWinds Toolset v2024.1.0 (HKLM-x32\...\{0AFF55C1-0A8F-45FC-AAF3-0BB5F7A49805}) (Version: 124.1.0.6398 - SolarWinds Worldwide, LLC.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Tera Term 4.100 (HKLM-x32\...\Tera Term_is1) (Version: 4.100 - TeraTerm Project)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Windows IPTV Player (HKLM-x32\...\{D1F0A04F-B987-4373-9E26-40DC6F1F9906}) (Version: 3.0.0.0 - Xtream Codes LTD)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinSCP 6.1.2 (HKLM-x32\...\winscp3_is1) (Version: 6.1.2 - Martin Prikryl)
YoutubeDownloader (HKLM-x32\...\C531132B-85F9-42CD-8EE9-C19AB95BFB38) (Version: 2.0.0.3156 - )
Zoom (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\ZoomUMX) (Version: 5.16.2 (22807) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-03-14] ()
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-06] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_152.1.1099.0_x64__v10z8vjag6ke6 [2024-03-18] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-04-02] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.19.1262.0_x64__8wekyb3d8bbwe [2024-02-21] (Microsoft Studios) [MS Ad]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2413.1.0_x64__cv1g1gvanyjgm [2024-04-05] (WhatsApp Inc.) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23355.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{2EF7E390-2F7C-4F9A-9B7D-4A87B56B711D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.173.51\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{38971E90-14FD-44F6-AA45-1447B653F873}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.173.45\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{5EA43877-C6D8-4885-B77A-C0BB27E94372}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.29\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{608D599A-DCA6-4A7C-BED7-AFCD8465345A}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.175.29\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{64C6EFB9-8F79-4106-B975-067448DC768F}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.177.11\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{72726D01-426C-4B35-8266-B4496CAA889E}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.183.29\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{7C9A348D-C321-47AC-904F-150312A5430F}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.175.27\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{81093D63-7825-417B-BFC8-ADC63FA4E53D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.29\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{88B20FC8-EBD6-4181-B5F6-50F45BFF722E}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.167.21\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{997809F3-33FD-4FD6-A2ED-CEF50F3263B1}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.169.31\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{ABF66F82-B04C-4FE4-8272-661539463FE1}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.171.37\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{AE1542A7-3989-481B-93A9-1500C5F56B14}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.27\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{B29F5F83-90DF-479A-BDE7-8A9F4412E394}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.171.39\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{BFBE0943-74C5-40E0-9E80-0B808109E95D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.163.19\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> rundll32.exe "C:\Program Files\Synaptics\SynTP\SynTPCpl.dll",ShowDevicePropPage 1
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{CAE1760A-CB07-481B-8F9A-BC65510AF5D5}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.21\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\HP\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{D1CE12B0-2529-4B24-BE8E-189735EA0DC1}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.165.21\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{DAA7499A-B3AC-4419-A89B-124318504051}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.29\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{E3D57E77-FE71-4D06-BD34-D48820074909}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{E76F97B1-1AE9-497C-9FA4-F57BBABAD54A}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.17\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{E8791438-3525-48BF-A600-C577AD1674C2}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.173.49\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{F1CBF5EB-347F-4E4C-90AC-E43339FC34EC}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.173.55\psuser_64.dll => Pas de fichier
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier
ContextMenuHandlers1: [FortiClient] -> {7AE5C558-994B-40B7-8730-2DAC2B96781B} => C:\Program Files (x86)\Fortinet\FortiClient\FortiCliSh64.Dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2019-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier
ContextMenuHandlers6: [FortiClient] -> {1935F098-AF3C-4AFC-ADA2-12C74B452DF1} => C:\Program Files (x86)\Fortinet\FortiClient\FortiCliSh64.Dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> %SNP%
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> %SNP%
==================== Modules chargés (Avec liste blanche) =============
2018-01-08 12:02 - 2018-01-08 12:02 - 000548882 _____ () [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\sqlite3.dll
2018-01-08 12:05 - 2018-01-08 12:05 - 000145426 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiSkin.dll
2018-01-08 12:02 - 2018-01-08 12:02 - 000280082 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiTrayResc.dll
2018-01-08 12:02 - 2018-01-08 12:02 - 000129554 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\libavr.dll
2018-01-08 12:02 - 2018-01-08 12:02 - 000061458 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\libcfg.dll
2018-01-08 12:04 - 2018-01-08 12:04 - 000439314 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\sslvpnlib.dll
2018-01-08 12:02 - 2018-01-08 12:02 - 000741906 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\utilsdll.dll
2019-02-01 23:42 - 2019-02-01 23:42 - 000050688 _____ (HP Inc.) [Fichier non signé] c:\windows\system32\hpzinw12.dll
2019-02-01 23:42 - 2019-02-01 23:42 - 000066048 _____ (HP Inc.) [Fichier non signé] c:\windows\system32\hpzipm12.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\localhost -> localhost
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2024-04-25 16:36 - 2024-04-25 16:36 - 000000356 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2023-01-13 12:30 - 2024-03-21 16:59 - 000000926 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
35
29 821
192.168.137.130 Elisabeth.mshome.net # 2023 2 4 23 12 32 25 75
192.168.137.4 Redmi-Note-11-4G.mshome.net # 2023 2 4 23 8 23 26 486
2 29 821
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 8.8.8.8 - 195.24.192.33
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.
Network Binding:
=============
Bluetooth Network Connection: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Ethernet 2: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Ethernet 2: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled)
Ethernet 3: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Ethernet 3: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled)
Wi-Fi 4: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Wi-Fi 4: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled)
Ethernet: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled)
Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "YouCam Service"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "ut"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "bt"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "Microsoft Edge Update"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{D25C64DB-67F4-4D7B-AE5B-A4A7CA830B87}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{2CDE3D93-7975-46D5-ADF2-DA9AF71E145B}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{EA2BD903-31B6-42B8-AA38-8B150219103E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{83B9C0FC-FD62-41F5-9B92-AC7580A150D5}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{BABBC470-73ED-4725-9361-16C3593DD44C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{7690C36E-B001-449F-8E56-3071D553E3AA}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{6F48B292-55C8-4621-9B34-AF834BDA7E36}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\FortiProxy.exe (Fortinet Inc.) [Fichier non signé]
FirewallRules: [{53C5196F-C7D7-4A3E-BC1E-985F91B584CD}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\ipsec.exe (Fortinet Inc.) [Fichier non signé]
FirewallRules: [{9FCF5854-D885-4005-9561-952E53B38BED}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\FortiWad.exe (Fortinet Inc.) [Fichier non signé]
FirewallRules: [{AFDBBD06-6108-44CD-B7CF-7C3815ACFA9B}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\fortiesnac.exe (Fortinet Inc.) [Fichier non signé]
FirewallRules: [{B4EA9B81-9072-48FA-8E57-C1821D9D5D07}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\fortifws.exe (Fortinet Inc.) [Fichier non signé]
==================== Points de restauration =========================
25-04-2024 13:35:17 {a0067477-1cb8-490d-a523-e79c452a4f5a}
26-04-2024 10:22:33 Installed SolarWinds Toolset v2024.1.0
==================== Éléments en erreur du Gestionnaire de périphériques ============
Name: Fortinet SSL VPN Virtual Ethernet Adapter
Description: Fortinet SSL VPN Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Fortinet Inc.
Service: ftsvnic
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (04/29/2024 02:43:45 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,23) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:43:32 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,23) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:36:10 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,19) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:36:10 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,19) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:36:10 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,18) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:35:52 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.
Error: (04/29/2024 12:35:16 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,19) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:35:16 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,19) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Erreurs système:
=============
Error: (04/29/2024 02:58:57 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (04/29/2024 02:56:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wuauserv s’est arrêté avec l’erreur :
Le fichier spécifié est introuvable.
Error: (04/29/2024 02:56:57 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (04/29/2024 02:54:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wuauserv s’est arrêté avec l’erreur :
Le fichier spécifié est introuvable.
Error: (04/29/2024 02:54:57 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (04/29/2024 02:52:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wuauserv s’est arrêté avec l’erreur :
Le fichier spécifié est introuvable.
Error: (04/29/2024 02:52:56 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (04/29/2024 02:50:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wuauserv s’est arrêté avec l’erreur :
Le fichier spécifié est introuvable.
Windows Defender:
================
Date: 2023-09-04 08:25:55
Description:
L’analyse Microsoft Defender Antivirus a été arrêtée avant la fin.
ID de l’analyse : {0AD82C1C-2615-489D-B66D-02E575470D16}
Type de l’analyse : Antimalware
Paramètres de l’analyse : Quick Scan
Utilisateur : NT AUTHORITY\SYSTEM
Date: 2023-09-04 08:12:13
Description:
L’analyse Microsoft Defender Antivirus a été arrêtée avant la fin.
ID de l’analyse : {2DF0D118-08FD-4EA6-9492-47DDFA2769F8}
Type de l’analyse : Antimalware
Paramètres de l’analyse : Quick Scan
Utilisateur : NT AUTHORITY\SYSTEM
Date: 2023-09-01 14:12:24
Description:
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win64/AutoKms&threatid=2147723334&enterprise=0
Nom : HackTool:Win64/AutoKms
ID : 2147723334
Gravité : High
Catégorie : Tool
Chemin : file:_C:\WINDOWS\SECOH-QAD.dll
Origine de la détection : Local machine
Type de détection : Concrete
Source de détection : System
Utilisateur : NT AUTHORITY\SYSTEM
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.397.139.0, AS: 1.397.139.0, NIS: 1.397.139.0
Version du moteur : AM: 1.1.23080.2005, NIS: 1.1.23080.2005
Date: 2023-09-01 10:49:16
Description:
L’analyse Microsoft Defender Antivirus a été arrêtée avant la fin.
ID de l’analyse : {0629C818-1D68-4C00-9112-EC0AF48E0BF7}
Type de l’analyse : Antimalware
Paramètres de l’analyse : Quick Scan
Utilisateur : NT AUTHORITY\SYSTEM
Date: 2023-09-01 10:23:02
Description:
L’analyse Microsoft Defender Antivirus a été arrêtée avant la fin.
ID de l’analyse : {20EF27B4-9F4B-4944-8C7D-D5C2DD73B676}
Type de l’analyse : Antimalware
Paramètres de l’analyse : Quick Scan
Utilisateur : NT AUTHORITY\SYSTEM
Event[0]:
Date: 2022-03-21 12:54:55
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1928.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiVirus
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x80070102
Description de l’erreur : The wait operation timed out.
Date: 2022-03-13 09:40:04
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1693.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiVirus
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x80070102
Description de l’erreur : The wait operation timed out.
Date: 2022-03-10 08:56:36
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1693.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiVirus
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x8050a003
Description de l’erreur : This package does not contain up-to-date definition files for this program. For more information, see Help and Support.
Date: 2022-03-10 08:56:36
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1693.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiSpyware
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x8050a003
Description de l’erreur : This package does not contain up-to-date definition files for this program. For more information, see Help and Support.
Date: 2022-03-10 08:56:36
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1693.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiVirus
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x8050a003
Description de l’erreur : This package does not contain up-to-date definition files for this program. For more information, see Help and Support.
CodeIntegrity:
===============
Date: 2024-04-29 07:13:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\124.0.6367.91\chrome_elf.dll that did not meet the Microsoft signing level requirements.
Date: 2023-09-04 08:04:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-09-01 09:15:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 10:36:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ReasonLabs\EPP\rsEngineSvc.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC_MSIL\Microsoft.Office.Interop.Outlook\15.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Outlook.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 10:36:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ReasonLabs\EPP\rsEngineSvc.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC_MSIL\Microsoft.Vbe.Interop.Forms\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.Forms.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 08:51:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ReasonLabs\EPP\rsEngineSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\Office15\OLMAPI32.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 08:28:48
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\MRT-KB890830.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-06-07 14:53:56
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.37\prefs_enclave_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-06-07 14:53:52
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.37\dual_engine_adapter_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
BIOS: Insyde F.21 10/27/2016
Carte mère: HP 81F1
Processeur: Intel(R) Celeron(R) CPU N3060 @ 1.60GHz
Pourcentage de mémoire utilisée: 77%
Mémoire physique - RAM - totale: 3944.36 MB
Mémoire physique - RAM - disponible: 882.93 MB
Mémoire virtuelle totale: 6376.36 MB
Mémoire virtuelle disponible: 2023.68 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:233.39 GB) (Free:52.37 GB) (Model: ST500LT012-1DG142) NTFS
Drive e: (DATA) (Fixed) (Total:230.15 GB) (Free:73.55 GB) (Model: ST500LT012-1DG142) NTFS
\\?\Volume{0dbda390-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{0dbda390-0000-0000-0000-a0783a000000}\ () (Fixed) (Total:1.73 GB) (Free:0.85 GB) NTFS
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0DBDA390)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=233.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1.7 GB) - (Type=27)
Partition 4: (Not Active) - (Size=230.1 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt =======================
Exécuté par HP (29-04-2024 14:56:06)
Exécuté depuis C:\Users\HP\Desktop
Microsoft Windows 10 Entreprise Version 22H2 19045.4291 (X64) (2020-12-02 13:30:45)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrator (S-1-5-21-1551542468-2884388448-3857473492-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1551542468-2884388448-3857473492-503 - Limited - Disabled)
Guest (S-1-5-21-1551542468-2884388448-3857473492-501 - Limited - Disabled)
HP (S-1-5-21-1551542468-2884388448-3857473492-1002 - Administrator - Enabled) => C:\Users\HP
WDAGUtilityAccount (S-1-5-21-1551542468-2884388448-3857473492-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: FortiClient AntiVirus (Enabled - Up to date) {5EEDDB8C-C27A-6714-3657-DBD811D1F1B7}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
64 Bit HP CIO Components Installer (HKLM\...\{50229C72-539F-4E65-BEB5-F0491C5074B7}) (Version: 22.2.1 - HP Inc.) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 24.002.20687 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
A-Men Technologies USB-to-Serial (HKLM-x32\...\{1805BD6D-C441-4A1C-802D-AFF0232DAACD}) (Version: - )
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 8.0.9 - AnyDesk Software GmbH)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1189.1 - AVAST Software) Hidden
BitTorrent (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\BitTorrent) (Version: 7.11.0.46823 - BitTorrent Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 7.35.344.10 - Broadcom Corporation)
CyberLink YouCam 5 (HKLM-x32\...\{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.0909 - CyberLink Corp.) Hidden
CyberLink YouCam 5 (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.0909 - CyberLink Corp.)
ELAN Touchpad 15.2.5.1_X64_WHQL (HKLM\...\Elantech) (Version: 15.2.5.1 - ELAN Microelectronic Corp.)
FortiClient (HKLM\...\{CF528CBD-062E-4543-AC77-6B44BBB3CF07}) (Version: 5.4.5.0891 - Fortinet Inc)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.5.0.20723 - Foxit Software Inc.)
Free Ping Tool (HKLM-x32\...\{77B7AA53-6F12-4286-B4A8-87BE60AFDEA0}) (Version: 3.0.0.13 - ZOHO Corp.)
Free Tools Launcher (HKLM-x32\...\{BB86BE84-4123-4967-9BA3-45F6648551E1}) (Version: 2.0.0 - ZOHO Corp.)
Free Windows SNMP Enabler (HKLM-x32\...\{58CE3557-5068-4105-8D2F-AD21EF4E3E68}) (Version: 1.0.8 - ZOHO Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 124.0.6367.91 - Google LLC)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Microsoft Access MUI (French) 2013 (HKLM\...\{90150000-0015-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft DCF MUI (French) 2013 (HKLM\...\{90150000-0090-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.51 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.97 - Microsoft Corporation)
Microsoft Excel MUI (French) 2013 (HKLM\...\{90150000-0016-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (French) 2013 (HKLM\...\{90150000-00BA-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (French) 2013 (HKLM\...\{90150000-0044-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Interop Forms Redistributable Package 2.0a (HKLM-x32\...\{76D1AA2B-A434-4D63-BE2C-80286F23C223}) (Version: 2.0.0 - Microsoft Corporation)
Microsoft Lync MUI (French) 2013 (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft ODBC Driver 13 for SQL Server (HKLM\...\{F568A584-523B-4F16-917E-5742839B03CC}) (Version: 13.1.4413.46 - Microsoft Corporation)
Microsoft Office 32-bit Components 2013 (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2016 (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM\...\{90150000-001F-0407-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2016 – Deutsch (HKLM\...\{90160000-001F-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (French) 2013 (HKLM\...\{90150000-00E1-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (French) 2016 (HKLM\...\{90160000-00E1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (French) 2013 (HKLM\...\{90150000-00E2-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Proofing (French) 2013 (HKLM\...\{90150000-002C-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (French) 2016 (HKLM\...\{90160000-002C-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Nederlands (HKLM\...\{90150000-001F-0413-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - اللغة العربية (HKLM\...\{90150000-001F-0401-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - English (HKLM\...\{90160000-001F-0409-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - اللغة العربية (HKLM\...\{90160000-001F-0401-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (French) 2013 (HKLM\...\{90150000-00C1-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (French) 2016 (HKLM\...\{90160000-00C1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (French) 2013 (HKLM\...\{90150000-006E-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (French) 2016 (HKLM\...\{90160000-006E-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft OLE DB Driver for SQL Server (HKLM\...\{23438EF7-40CA-483B-A22D-756407B7A503}) (Version: 18.0.2.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft OneNote MUI (French) 2013 (HKLM\...\{90150000-00A1-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (French) 2013 (HKLM\...\{90150000-001A-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (French) 2013 (HKLM\...\{90150000-0018-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (French) 2013 (HKLM\...\{90150000-0019-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Teams classic (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Teams) (Version: 1.7.00.3653 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visio MUI (French) 2016 (HKLM\...\{90160000-0054-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Visio Professional 2016 (HKLM\...\{90160000-0051-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Visio Professionnel 2016 (HKLM\...\Office16.VISPRO) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Word MUI (French) 2013 (HKLM\...\{90150000-001B-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Mozilla Firefox 74.0 (x64 en-US) (HKLM\...\Mozilla Firefox 74.0 (x64 en-US)) (Version: 74.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
Npcap OEM (HKLM-x32\...\NpcapInst) (Version: 1.75 - Nmap Project)
Opera Stable 109.0.5097.68 (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Opera 109.0.5097.68) (Version: 109.0.5097.68 - Opera Software)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
PCI Audio Star 1.4 (HKLM-x32\...\PCI Audio Star_is1) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8940.1 - Realtek Semiconductor Corp.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0015-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0016-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0018-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0019-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001A-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0401-1000-0000000FF1CE}_Office15.PROPLUS_{C5DEA626-E7D2-4200-9B49-43E37BF21A7C}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0407-1000-0000000FF1CE}_Office15.PROPLUS_{DABB9E2A-F054-4F97-9EB2-6992316C6EC7}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{835E4BED-E265-4103-AE14-0B4C70CF3FE8}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUS_{1F7000D3-A917-4AD2-BA55-59E6FDAF062A}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0413-1000-0000000FF1CE}_Office15.PROPLUS_{2F03603E-9953-44F3-9608-2B61DE92F2F2}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{4BF13B26-3A95-4E42-900A-DEB16FDA75A0}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-002C-040C-1000-0000000FF1CE}_Office15.PROPLUS_{5B93071A-F8EF-4894-88C1-8B785A46D4C6}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0044-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-006E-040C-1000-0000000FF1CE}_Office15.PROPLUS_{96DAF4C0-7FCF-4B53-91FA-B12C7162D90E}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0090-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00A1-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00BA-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1931508C-C004-4983-81E3-70BE6252904B}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-040C-1000-0000000FF1CE}_Office15.PROPLUS_{DC0FD398-D15A-4351-B0D9-9F40612C5057}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E1-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E2-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0003B8F5-660C-4E15-A05D-7A53D2314419}) (Version: - Microsoft) Hidden
Snip (HKLM-x32\...\{1CF74000-36F5-4B78-A1C9-A33895D8AFA4}) (Version: 0.1.4814.0 - Microsoft) Hidden
Snip (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\{29140599-94ec-407e-aceb-dfa848705777}) (Version: 0.1.4814.0 - Microsoft Corporation)
SolarWinds NetFlow Realtime (HKLM-x32\...\{BD8B6228-3EA7-4F03-B0DA-B72D5B700470}) (Version: 19.3.0.6001 - SolarWinds)
SolarWinds TFTP Server (HKLM-x32\...\{F0C566BF-DE83-42C1-B51B-0FA39FE0BE38}) (Version: 11.4.0.60017 - SolarWinds)
SolarWinds Toolset v2024.1.0 (HKLM-x32\...\{0AFF55C1-0A8F-45FC-AAF3-0BB5F7A49805}) (Version: 124.1.0.6398 - SolarWinds Worldwide, LLC.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Tera Term 4.100 (HKLM-x32\...\Tera Term_is1) (Version: 4.100 - TeraTerm Project)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Windows IPTV Player (HKLM-x32\...\{D1F0A04F-B987-4373-9E26-40DC6F1F9906}) (Version: 3.0.0.0 - Xtream Codes LTD)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinSCP 6.1.2 (HKLM-x32\...\winscp3_is1) (Version: 6.1.2 - Martin Prikryl)
YoutubeDownloader (HKLM-x32\...\C531132B-85F9-42CD-8EE9-C19AB95BFB38) (Version: 2.0.0.3156 - )
Zoom (HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\ZoomUMX) (Version: 5.16.2 (22807) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-03-14] ()
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-06] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_152.1.1099.0_x64__v10z8vjag6ke6 [2024-03-18] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-04-02] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.19.1262.0_x64__8wekyb3d8bbwe [2024-02-21] (Microsoft Studios) [MS Ad]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2413.1.0_x64__cv1g1gvanyjgm [2024-04-05] (WhatsApp Inc.) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23355.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{2EF7E390-2F7C-4F9A-9B7D-4A87B56B711D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.173.51\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{38971E90-14FD-44F6-AA45-1447B653F873}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.173.45\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{5EA43877-C6D8-4885-B77A-C0BB27E94372}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.29\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{608D599A-DCA6-4A7C-BED7-AFCD8465345A}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.175.29\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{64C6EFB9-8F79-4106-B975-067448DC768F}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.177.11\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{72726D01-426C-4B35-8266-B4496CAA889E}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.183.29\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{7C9A348D-C321-47AC-904F-150312A5430F}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.175.27\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{81093D63-7825-417B-BFC8-ADC63FA4E53D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.29\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{88B20FC8-EBD6-4181-B5F6-50F45BFF722E}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.167.21\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{997809F3-33FD-4FD6-A2ED-CEF50F3263B1}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.169.31\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{ABF66F82-B04C-4FE4-8272-661539463FE1}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.171.37\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{AE1542A7-3989-481B-93A9-1500C5F56B14}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.27\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{B29F5F83-90DF-479A-BDE7-8A9F4412E394}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.171.39\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{BFBE0943-74C5-40E0-9E80-0B808109E95D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.163.19\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> rundll32.exe "C:\Program Files\Synaptics\SynTP\SynTPCpl.dll",ShowDevicePropPage 1
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{CAE1760A-CB07-481B-8F9A-BC65510AF5D5}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.21\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\HP\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{D1CE12B0-2529-4B24-BE8E-189735EA0DC1}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.165.21\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{DAA7499A-B3AC-4419-A89B-124318504051}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.29\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{E3D57E77-FE71-4D06-BD34-D48820074909}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{E76F97B1-1AE9-497C-9FA4-F57BBABAD54A}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.185.17\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{E8791438-3525-48BF-A600-C577AD1674C2}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.173.49\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002_Classes\CLSID\{F1CBF5EB-347F-4E4C-90AC-E43339FC34EC}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.173.55\psuser_64.dll => Pas de fichier
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier
ContextMenuHandlers1: [FortiClient] -> {7AE5C558-994B-40B7-8730-2DAC2B96781B} => C:\Program Files (x86)\Fortinet\FortiClient\FortiCliSh64.Dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2019-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier
ContextMenuHandlers6: [FortiClient] -> {1935F098-AF3C-4AFC-ADA2-12C74B452DF1} => C:\Program Files (x86)\Fortinet\FortiClient\FortiCliSh64.Dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> %SNP%
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> %SNP%
==================== Modules chargés (Avec liste blanche) =============
2018-01-08 12:02 - 2018-01-08 12:02 - 000548882 _____ () [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\sqlite3.dll
2018-01-08 12:05 - 2018-01-08 12:05 - 000145426 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiSkin.dll
2018-01-08 12:02 - 2018-01-08 12:02 - 000280082 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiTrayResc.dll
2018-01-08 12:02 - 2018-01-08 12:02 - 000129554 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\libavr.dll
2018-01-08 12:02 - 2018-01-08 12:02 - 000061458 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\libcfg.dll
2018-01-08 12:04 - 2018-01-08 12:04 - 000439314 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\sslvpnlib.dll
2018-01-08 12:02 - 2018-01-08 12:02 - 000741906 _____ (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\utilsdll.dll
2019-02-01 23:42 - 2019-02-01 23:42 - 000050688 _____ (HP Inc.) [Fichier non signé] c:\windows\system32\hpzinw12.dll
2019-02-01 23:42 - 2019-02-01 23:42 - 000066048 _____ (HP Inc.) [Fichier non signé] c:\windows\system32\hpzipm12.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\localhost -> localhost
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2024-04-25 16:36 - 2024-04-25 16:36 - 000000356 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2023-01-13 12:30 - 2024-03-21 16:59 - 000000926 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
35
29 821
192.168.137.130 Elisabeth.mshome.net # 2023 2 4 23 12 32 25 75
192.168.137.4 Redmi-Note-11-4G.mshome.net # 2023 2 4 23 8 23 26 486
2 29 821
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 8.8.8.8 - 195.24.192.33
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.
Network Binding:
=============
Bluetooth Network Connection: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Ethernet 2: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Ethernet 2: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled)
Ethernet 3: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Ethernet 3: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled)
Wi-Fi 4: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Wi-Fi 4: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled)
Ethernet: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled)
Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "YouCam Service"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "ut"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "bt"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84"
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\StartupApproved\Run: => "Microsoft Edge Update"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{D25C64DB-67F4-4D7B-AE5B-A4A7CA830B87}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{2CDE3D93-7975-46D5-ADF2-DA9AF71E145B}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{EA2BD903-31B6-42B8-AA38-8B150219103E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{83B9C0FC-FD62-41F5-9B92-AC7580A150D5}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{BABBC470-73ED-4725-9361-16C3593DD44C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{7690C36E-B001-449F-8E56-3071D553E3AA}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{6F48B292-55C8-4621-9B34-AF834BDA7E36}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\FortiProxy.exe (Fortinet Inc.) [Fichier non signé]
FirewallRules: [{53C5196F-C7D7-4A3E-BC1E-985F91B584CD}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\ipsec.exe (Fortinet Inc.) [Fichier non signé]
FirewallRules: [{9FCF5854-D885-4005-9561-952E53B38BED}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\FortiWad.exe (Fortinet Inc.) [Fichier non signé]
FirewallRules: [{AFDBBD06-6108-44CD-B7CF-7C3815ACFA9B}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\fortiesnac.exe (Fortinet Inc.) [Fichier non signé]
FirewallRules: [{B4EA9B81-9072-48FA-8E57-C1821D9D5D07}] => (Allow) C:\Program Files (x86)\Fortinet\FortiClient\fortifws.exe (Fortinet Inc.) [Fichier non signé]
==================== Points de restauration =========================
25-04-2024 13:35:17 {a0067477-1cb8-490d-a523-e79c452a4f5a}
26-04-2024 10:22:33 Installed SolarWinds Toolset v2024.1.0
==================== Éléments en erreur du Gestionnaire de périphériques ============
Name: Fortinet SSL VPN Virtual Ethernet Adapter
Description: Fortinet SSL VPN Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Fortinet Inc.
Service: ftsvnic
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (04/29/2024 02:43:45 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,23) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:43:32 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,23) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:36:10 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,19) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:36:10 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,19) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:36:10 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,18) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:35:52 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.
Error: (04/29/2024 12:35:16 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,19) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Error: (04/29/2024 12:35:16 PM) (Source: ESENT) (EventID: 448) (User: )
Description: taskhostw (7564,D,19) WebCacheLocal: Incohérence des données détectées dans la table BlobEntry_80 de la base de données C:\Users\HP\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat (903,0x8000000080000297).
Erreurs système:
=============
Error: (04/29/2024 02:58:57 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (04/29/2024 02:56:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wuauserv s’est arrêté avec l’erreur :
Le fichier spécifié est introuvable.
Error: (04/29/2024 02:56:57 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (04/29/2024 02:54:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wuauserv s’est arrêté avec l’erreur :
Le fichier spécifié est introuvable.
Error: (04/29/2024 02:54:57 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (04/29/2024 02:52:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wuauserv s’est arrêté avec l’erreur :
Le fichier spécifié est introuvable.
Error: (04/29/2024 02:52:56 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (04/29/2024 02:50:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wuauserv s’est arrêté avec l’erreur :
Le fichier spécifié est introuvable.
Windows Defender:
================
Date: 2023-09-04 08:25:55
Description:
L’analyse Microsoft Defender Antivirus a été arrêtée avant la fin.
ID de l’analyse : {0AD82C1C-2615-489D-B66D-02E575470D16}
Type de l’analyse : Antimalware
Paramètres de l’analyse : Quick Scan
Utilisateur : NT AUTHORITY\SYSTEM
Date: 2023-09-04 08:12:13
Description:
L’analyse Microsoft Defender Antivirus a été arrêtée avant la fin.
ID de l’analyse : {2DF0D118-08FD-4EA6-9492-47DDFA2769F8}
Type de l’analyse : Antimalware
Paramètres de l’analyse : Quick Scan
Utilisateur : NT AUTHORITY\SYSTEM
Date: 2023-09-01 14:12:24
Description:
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win64/AutoKms&threatid=2147723334&enterprise=0
Nom : HackTool:Win64/AutoKms
ID : 2147723334
Gravité : High
Catégorie : Tool
Chemin : file:_C:\WINDOWS\SECOH-QAD.dll
Origine de la détection : Local machine
Type de détection : Concrete
Source de détection : System
Utilisateur : NT AUTHORITY\SYSTEM
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.397.139.0, AS: 1.397.139.0, NIS: 1.397.139.0
Version du moteur : AM: 1.1.23080.2005, NIS: 1.1.23080.2005
Date: 2023-09-01 10:49:16
Description:
L’analyse Microsoft Defender Antivirus a été arrêtée avant la fin.
ID de l’analyse : {0629C818-1D68-4C00-9112-EC0AF48E0BF7}
Type de l’analyse : Antimalware
Paramètres de l’analyse : Quick Scan
Utilisateur : NT AUTHORITY\SYSTEM
Date: 2023-09-01 10:23:02
Description:
L’analyse Microsoft Defender Antivirus a été arrêtée avant la fin.
ID de l’analyse : {20EF27B4-9F4B-4944-8C7D-D5C2DD73B676}
Type de l’analyse : Antimalware
Paramètres de l’analyse : Quick Scan
Utilisateur : NT AUTHORITY\SYSTEM
Event[0]:
Date: 2022-03-21 12:54:55
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1928.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiVirus
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x80070102
Description de l’erreur : The wait operation timed out.
Date: 2022-03-13 09:40:04
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1693.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiVirus
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x80070102
Description de l’erreur : The wait operation timed out.
Date: 2022-03-10 08:56:36
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1693.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiVirus
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x8050a003
Description de l’erreur : This package does not contain up-to-date definition files for this program. For more information, see Help and Support.
Date: 2022-03-10 08:56:36
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1693.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiSpyware
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x8050a003
Description de l’erreur : This package does not contain up-to-date definition files for this program. For more information, see Help and Support.
Date: 2022-03-10 08:56:36
Description:
Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.359.1693.0
Source de mise à jour : Microsoft Malware Protection Center
Type de veille de sécurité : AntiVirus
Type de mise à jour : Full
Utilisateur : NT AUTHORITY\NETWORK SERVICE
Version actuelle du moteur :
Version précédente du moteur : 1.1.18900.3
Code d’erreur : 0x8050a003
Description de l’erreur : This package does not contain up-to-date definition files for this program. For more information, see Help and Support.
CodeIntegrity:
===============
Date: 2024-04-29 07:13:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\124.0.6367.91\chrome_elf.dll that did not meet the Microsoft signing level requirements.
Date: 2023-09-04 08:04:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-09-01 09:15:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 10:36:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ReasonLabs\EPP\rsEngineSvc.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC_MSIL\Microsoft.Office.Interop.Outlook\15.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Outlook.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 10:36:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ReasonLabs\EPP\rsEngineSvc.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC_MSIL\Microsoft.Vbe.Interop.Forms\11.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.Forms.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 08:51:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\ReasonLabs\EPP\rsEngineSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\Office15\OLMAPI32.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 08:28:48
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\MRT-KB890830.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-06-07 14:53:56
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.37\prefs_enclave_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2023-06-07 14:53:52
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.37\dual_engine_adapter_x64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
BIOS: Insyde F.21 10/27/2016
Carte mère: HP 81F1
Processeur: Intel(R) Celeron(R) CPU N3060 @ 1.60GHz
Pourcentage de mémoire utilisée: 77%
Mémoire physique - RAM - totale: 3944.36 MB
Mémoire physique - RAM - disponible: 882.93 MB
Mémoire virtuelle totale: 6376.36 MB
Mémoire virtuelle disponible: 2023.68 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:233.39 GB) (Free:52.37 GB) (Model: ST500LT012-1DG142) NTFS
Drive e: (DATA) (Fixed) (Total:230.15 GB) (Free:73.55 GB) (Model: ST500LT012-1DG142) NTFS
\\?\Volume{0dbda390-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{0dbda390-0000-0000-0000-a0783a000000}\ () (Fixed) (Total:1.73 GB) (Free:0.85 GB) NTFS
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0DBDA390)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=233.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1.7 GB) - (Type=27)
Partition 4: (Not Active) - (Size=230.1 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt =======================