Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Exécuté par HP (administrateur) sur CAMTEL-DRS (HP HP Notebook) (07-05-2024 08:41:56)
Exécuté depuis C:\Users\HP\Desktop\FRST64.exe
Profils chargés: HP
Plate-forme: Microsoft Windows 10 Entreprise Version 22H2 19045.4291 (X64) Langue: Anglais (États-Unis) -> Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\Fortinet\FortiClient\FCHelper64.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiTray.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\fcappdb.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FCDBLog.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\fmon.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiESNAC.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiProxy.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiWF.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(svchost.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FCHelper64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3349224 2015-08-12] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [247016 2011-09-09] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [SolarWindsToolsetIntegrationTrayApp] => C:\Program Files (x86)\SolarWinds\Toolset\ToolsetIntegrationTray.exe [781136 2024-01-11] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [bt] => C:\Users\HP\AppData\Roaming\BitTorrent\BitTorrent.exe [2637984 2024-05-03] (Accès refusé) [Fichier non signé]
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [Microsoft Edge Update] => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.187.37\MicrosoftEdgeUpdateCore.exe [264264 2024-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpcpp255: C:\Windows\System32\spool\prtprocs\x64\hpcpp255.dll [848384 2021-03-03] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\WINDOWS\system32\HPMPW081.DLL [74016 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\WINDOWS\system32\hpmlm135.dll [237344 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\HPMLM225: C:\WINDOWS\system32\hpmlm225.dll [308224 2018-11-14] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2011-09-09] (CyberLink -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2011-09-09] (CyberLink -> CyberLink)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-02-12]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {F42DD750-4C90-4D60-BA77-181E20135F92} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {B6E8C5AE-8B32-4FF7-9D2B-BCB7930AFAB9} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{6359D36D-5D0A-4B7A-84A0-8A13BD773B4B} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {C8C3A572-AF17-4FEC-BFA5-F080743210F4} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64464 2024-03-14] (HP Inc. -> HP Inc.)
Task: {0C6307DE-D4A6-4764-9835-183E762DEEDC} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64464 2024-03-14] (HP Inc. -> HP Inc.)
Task: {7676A68F-3F0F-42E2-9BB8-519319275F8D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {58B8D55D-F255-45BB-82DC-45740FBB80D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {84842E55-E320-4130-BE60-BEE6AC1468F1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {E78667A8-375D-447F-8026-3A633172BA63} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002Core => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {30462DD4-3E60-4454-BB06-956E8D32A0DF} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002UA => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {50383569-9CDE-4E85-A1C2-7D1F83AC3565} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2022-11-22] () [Fichier non signé]
Task: {E4DE4829-F926-45A6-8F6C-91F5B806F7DE} - System32\Tasks\Opera scheduled Autoupdate 1535353816 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {42A791F3-9C3C-4AC2-854F-74257C50C078} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{2d1165ea-6aa4-44b2-a629-93a25320ca1b}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}: [DhcpNameServer] 192.168.70.79
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\0534D275946494: [DhcpNameServer] 192.168.4.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\0534D275946494: [DhcpDomain] hg232f
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\147454E43454F534F4D4D45425349414C454: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D413: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D423: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D433: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\2554F53454E4452514C4F5B42494: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4D22554: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4D22554: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4F53454251434: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425D275946494D205F405: [DhcpNameServer] 192.168.3.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425D275946494D205F405: [DhcpDomain] hg232f
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425F5E45445: [DhcpNameServer] 195.24.192.33 8.8.8.8 4.2.2.2
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\34564727F6E6F554267716: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\34D46534D2B425942494: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\659405: [DhcpNameServer] 8.8.8.8 195.24.192.33
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\659405F575966696: [DhcpNameServer] 8.8.8.8 195.24.192.33
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\6594C4C4147454D23414E4D254247514: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\74942424543535: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\75962756C6563737F534845434D284F4D454: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\75962756C6563737F534845434D284F4D454: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D42535F5E4544575F425B4: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D42535F5E4544575F425B4: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D4966496F5231483531443: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\E474243535: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{916f698f-43b6-4801-bd8a-608fc82deabe}: [NameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{aa3e770d-ec2b-445d-b974-d30e06074a1d}: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{aa3e770d-ec2b-445d-b974-d30e06074a1d}: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{aa83eb97-8e72-4504-997c-a105cf19541e}: [NameServer] 192.168.200.53
Tcpip\..\Interfaces\{c2ba781b-75c7-457b-b301-9eb4f83fd4a4}: [NameServer] 195.24.192.33,8.8.8.8
Tcpip\..\Interfaces\{f58d751f-e049-48cb-99fc-e9addf8cb3e8}: [DhcpNameServer] 192.168.179.124
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-30]
Edge Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-17]
Edge Extension: (Edge relevant text changes) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
FireFox:
========
FF DefaultProfile: ib75jhl9.default-1685967659881
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 [2024-05-06]
FF Session Restore: Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 -> est activé.
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 [2024-05-07]
FF Homepage: Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iapdqss9.default-release-5 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\iapdqss9.default-release-5 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\iapdqss9.default-release-5 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 -> hxxps://192.168.18.51/basicframe
FF Notifications: Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> hxxps://192.168.18.51/basicframe
FF NetworkProxy: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF Extension: (Pas de nom) - C:\Program Files\Mozilla Firefox\browser\features\{85FD6ACE-3736-491B-8514-6C8C9556E131}.xpi [2024-04-28] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @FortinetCacheClean -> C:\Program Files (x86)\Fortinet\FortiClient\npccplugin.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @FortinetCacheCleanEx -> C:\Program Files (x86)\Fortinet\FortiClient\npccpluginex.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @FortinetTunnelControl -> C:\Program Files (x86)\Fortinet\FortiClient\nptcplugin.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2024-05-07]
CHR Extension: (Torrent Scanner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-01-31]
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-05-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-20]
CHR Extension: (Google Docs) - C:\Users\HP\AppData\Local\PH\llg [2024-04-25]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
S4 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5323592 2024-04-11] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
S2 FA_Scheduler; C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe [119826 2018-01-08] (Fortinet Inc.) [Fichier non signé]
S4 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S4 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887264 2024-04-30] (Malwarebytes Inc. -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SolarWinds TFTP Server; C:\Program Files (x86)\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe [76160 2023-05-16] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
S4 SWBrowserIntegration; C:\Program Files (x86)\SolarWinds\Toolset\SWBrowserIntegration.exe [53072 2024-01-11] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-09-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-09-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S4 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [55456 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [46544 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S4 fsulhoster; "C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe" --service --namespace ul_default [X]
S4 fsulnethoster; "C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe" --service --namespace ul_default --id 2 [X]
S4 fsulorsp; "C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fsorsp64.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 bcmsmbsp; C:\WINDOWS\System32\drivers\bcmsmbsp.sys [53024 2015-07-10] (Broadcom Corporation -> Broadcom Corporation.)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 EMP_MIRRUD; C:\WINDOWS\System32\drivers\EMP_MirrUD.sys [5632 2011-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [18000 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [45792 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [37456 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R0 fortiloader; C:\WINDOWS\System32\drivers\fortiloader.sys [12368 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 fortimon3; C:\WINDOWS\System32\drivers\fortimon3.sys [48208 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [147536 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 FortiRdr; C:\WINDOWS\System32\drivers\FortiRdr2.sys [47184 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [72272 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [92240 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R3 FortiWF; C:\WINDOWS\System32\drivers\FortiWF2.sys [42576 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [66600 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [71928 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr64.sys [37112 2015-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [201280 2024-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-05-06] (Malwarebytes Inc. -> Malwarebytes)
S3 mdareDriver_63; C:\Program Files (x86)\Fortinet\FortiClient\mdare64_63.sys [106064 2024-01-26] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [78376 2023-04-27] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [328784 2023-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55872 2023-09-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-09-04] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-09-04] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
U4 npcap_wifi; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-07 08:50 - 2024-05-07 09:05 - 000000000 ____D C:\Users\HP\AppData\LocalLow\IGDump
2024-05-06 10:20 - 2024-05-06 10:19 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-05-03 13:39 - 2024-05-03 14:37 - 811947345 ____R C:\Users\HP\Downloads\[ Torrent911.pm ] Damaged.2024.FRENCH.HDRip.x264-DDLPZ.mkv
2024-05-03 13:35 - 2024-05-03 13:37 - 488089825 _____ C:\Users\HP\Downloads\[ Torrent911.me ] Control.2022.FRENCH.WEBRip.x264-ONLYMOViE.mkv
2024-05-03 13:28 - 2024-05-03 13:28 - 000000913 _____ C:\Users\HP\Desktop\BitTorrent.lnk
2024-05-03 13:20 - 2024-05-03 13:22 - 020725984 _____ (Rainberry, Inc.) C:\Users\HP\Downloads\bittorrent_installer.exe
2024-05-03 13:16 - 2024-05-03 13:17 - 012531983 _____ C:\Users\HP\Downloads\bittorrent_installer.exe.opdownload
2024-05-03 13:10 - 2024-05-03 13:10 - 000031518 _____ C:\Users\HP\Downloads\[ Torrent9.tf ] Damaged FRENCH WEBRIP 2024.torrent
2024-05-03 12:58 - 2024-05-03 13:01 - 000000602 _____ C:\Users\HP\Desktop\boxing schedule 04-05-2024.txt
2024-05-03 11:29 - 2024-05-03 11:30 - 000115840 _____ C:\Users\HP\Downloads\FTX upgrade KCT 20 à 30 Mbps.pdf
2024-05-03 08:23 - 2024-05-06 11:12 - 000048042 _____ C:\Users\HP\Desktop\Addition.txt
2024-05-03 07:48 - 2024-05-07 08:49 - 000030341 _____ C:\Users\HP\Desktop\FRST.txt
2024-05-02 08:03 - 2024-05-02 08:07 - 000000000 ____D C:\Users\HP\Desktop\FSS
2024-05-02 07:51 - 2024-05-03 07:33 - 000000031 _____ C:\ProgramData\swi4b599a52-cec0-495e-8a4e-02c05359154c.txt
2024-05-01 14:05 - 2024-05-01 14:48 - 000000459 _____ C:\Users\HP\Desktop\Outils test.txt
2024-05-01 09:38 - 2024-05-02 07:49 - 000000031 _____ C:\ProgramData\swi44faa9d5-6f18-4999-9384-f1d66885798c.txt
2024-04-30 14:22 - 2024-04-30 14:22 - 000088963 _____ C:\Users\HP\Downloads\FTX retablissement COTCO 150Mbps.pdf
2024-04-30 14:21 - 2024-04-30 14:21 - 000087312 _____ C:\Users\HP\Downloads\FTX retalissement COTCO 60Mbps.pdf
2024-04-30 14:20 - 2024-04-30 14:20 - 000096553 _____ C:\Users\HP\Downloads\FTX suspension COTCO 150Mbps.pdf
2024-04-30 14:17 - 2024-04-30 14:17 - 000095312 _____ C:\Users\HP\Downloads\FTX Suspensoin COTCO 60Mpbs.pdf
2024-04-30 09:03 - 2024-04-30 09:17 - 000000031 _____ C:\ProgramData\swif7746e69-cc62-4151-a4fc-4cb8fee1654d.txt
2024-04-30 07:42 - 2024-05-07 08:27 - 000000000 ____D C:\Users\HP\AppData\Local\Malwarebytes
2024-04-30 07:42 - 2024-04-30 07:42 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-04-30 07:42 - 2024-04-30 07:42 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-04-30 07:42 - 2024-04-30 07:42 - 000000000 ____D C:\Users\HP\AppData\Local\mbam
2024-04-30 07:40 - 2024-04-30 07:40 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-04-30 07:40 - 2024-04-30 07:40 - 000000000 ____D C:\Program Files\Malwarebytes
2024-04-30 07:38 - 2024-04-30 07:38 - 002586520 _____ (Malwarebytes) C:\Users\HP\Downloads\MBSetup.exe
2024-04-29 15:12 - 2024-04-29 15:14 - 000019678 _____ C:\Users\HP\Documents\RAPPORT MENSUEL D'ASSIDUITE DU MOIS D'AVRIL 2024 CESIR-K.xlsx
2024-04-29 15:06 - 2024-04-29 15:06 - 000021455 _____ C:\Users\HP\Downloads\Spécimen Rapport.....xlsx
2024-04-29 12:32 - 2024-04-30 09:01 - 000000031 _____ C:\ProgramData\swiadeaebb7-8690-4200-835a-e83fcc19bcac.txt
2024-04-29 10:12 - 2024-05-06 10:16 - 000084506 _____ C:\Users\HP\Desktop\Fixlog.txt
2024-04-28 19:12 - 2024-04-28 19:14 - 002394112 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2024-04-26 11:15 - 2024-04-26 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds
2024-04-26 11:14 - 2024-04-26 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds Real-time NetFlow Analyzer
2024-04-26 10:33 - 2024-04-26 17:11 - 000000031 _____ C:\ProgramData\swiae82061a-c385-475c-8150-fc2ebca542a9.txt
2024-04-26 10:32 - 2024-04-26 10:36 - 000002231 _____ C:\Users\Public\Desktop\IP Network Browser.lnk
2024-04-26 10:32 - 2024-04-26 10:36 - 000002193 _____ C:\Users\Public\Desktop\Network Performance Monitor.lnk
2024-04-26 10:32 - 2024-04-26 10:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds Engineer's Toolset
2024-04-26 10:32 - 2024-04-26 10:32 - 000001146 _____ C:\Users\Public\Desktop\Toolset Launch Pad.lnk
2024-04-26 10:29 - 2024-04-26 11:15 - 000000000 ____D C:\Program Files (x86)\SolarWinds
2024-04-26 10:20 - 2024-04-26 10:20 - 000000000 ____D C:\Users\HP\AppData\Local\9bfc8001-33b6-487d-aa5e-ab02cace047e
2024-04-26 10:20 - 2024-04-26 10:20 - 000000000 ____D C:\Users\HP\AppData\Local\7b92a30e-bbc9-4c40-8476-a35e0c10acd0
2024-04-26 10:18 - 2024-05-06 15:45 - 000000000 ____D C:\ProgramData\SolarWinds
2024-04-26 10:17 - 2024-04-26 10:17 - 407553920 _____ (SolarWinds Worldwide, LLC.) C:\Users\HP\Downloads\SolarWinds-DesktopToolset-v2024.1.exe
2024-04-25 14:55 - 2014-12-14 11:57 - 000000024 _____ C:\ProgramData\media_9.1.3.7_longdesc.txt
2024-04-25 14:23 - 2024-04-28 21:52 - 000000000 _____ C:\ProgramData\vcruntime140.dll
2024-04-25 14:22 - 2024-04-28 21:52 - 000000000 _____ C:\ProgramData\softokn3.dll
2024-04-25 14:22 - 2024-04-25 14:22 - 000000000 ____D C:\ProgramData\iolo technologies
2024-04-25 14:12 - 2024-04-25 14:21 - 000000000 ____D C:\Users\HP\AppData\Local\PH
2024-04-25 14:08 - 2024-04-25 14:08 - 000000000 ____D C:\Users\HP\AppData\Local\Yandex
2024-04-25 14:07 - 2024-04-25 14:07 - 000000000 ____D C:\Users\HP\AppData\Roaming\iolo
2024-04-25 14:07 - 2024-04-25 14:07 - 000000000 ____D C:\ProgramData\iolo
2024-04-25 14:06 - 2024-04-25 14:06 - 000000000 ____D C:\Users\HP\AppData\Roaming\SecureClient
2024-04-25 14:03 - 2024-04-26 08:15 - 000000000 ____D C:\Users\HP\1000013002
2024-04-25 14:02 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_999e43077df71fdfc52bd5232a22cf9d
2024-04-25 14:02 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7
2024-04-25 14:02 - 2024-04-30 08:54 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae
2024-04-25 13:53 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\MPGPH131
2024-04-25 13:23 - 2024-04-28 21:56 - 000000004 ____H C:\ProgramData\brc_66.dat
2024-04-25 13:23 - 2024-04-25 13:23 - 000000000 ____D C:\Users\HP\AppData\Local\SystemCache
2024-04-25 13:22 - 2024-04-28 22:08 - 000000128 ____H C:\ProgramData\resource-a.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000128 ____H C:\ProgramData\resource-b.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000008 ____H C:\ProgramData\bit_66.dat
2024-04-25 13:21 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\WinTrackerSP
2024-04-25 13:21 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\EventGuide 1.3.11.66
2024-04-25 13:21 - 2024-04-26 15:18 - 000000000 ____D C:\WINDOWS\SysWOW64\wzptgcdn
2024-04-25 13:20 - 2024-04-26 09:11 - 000000000 ____D C:\Users\HP\AppData\Local\PCI Audio Star
2024-04-25 13:18 - 2024-04-30 08:55 - 000000000 ____D C:\Users\HP\Documents\SimpleAdobe
2024-04-25 11:41 - 2024-04-29 10:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Service
2024-04-25 11:41 - 2024-04-25 11:41 - 000000000 ____D C:\Users\HP\AppData\Roaming\ServiceData
2024-04-25 11:31 - 2024-04-25 11:31 - 000000000 ____D C:\Users\HP\AppData\Local\Buyojobuno
2024-04-25 11:30 - 2024-04-25 11:30 - 000000000 ____D C:\Users\HP\AppData\Roaming\Streamsign
2024-04-25 11:06 - 2024-04-25 11:07 - 005790514 _____ C:\Users\HP\Downloads\_Getintopc.com_SolarWinds_Engineer’s_Toolset.mp4
2024-04-24 15:58 - 2024-04-24 15:58 - 000000000 ____D C:\Users\HP\AppData\Roaming\WindowsIPTVPlayer
2024-04-24 15:57 - 2024-04-24 15:57 - 000002291 _____ C:\Users\Public\Desktop\Windows IPTV Player.lnk
2024-04-24 15:57 - 2024-04-24 15:57 - 000000000 ____D C:\Program Files (x86)\Xtream Codes LTD
2024-04-24 08:22 - 2024-04-24 08:32 - 000000000 ____D C:\Users\HP\AppData\Local\5b58858f-64bc-4dc8-8c58-aa113eccaa9c
2024-04-23 15:18 - 2024-04-23 15:18 - 000051891 _____ C:\Users\HP\Downloads\Planning annuel de maintenance CESIR-KBI 2023.xlsx
2024-04-23 14:45 - 2024-04-23 14:45 - 000168380 _____ C:\Users\HP\Downloads\Fiche maintenance informatique et systèmes janvier 2024.pdf
2024-04-23 14:43 - 2024-04-23 14:43 - 000166098 _____ C:\Users\HP\Downloads\Fiche maintenance CESIR IP K janvier 2024.pdf
2024-04-23 14:39 - 2024-04-23 14:39 - 000166622 _____ C:\Users\HP\Downloads\Fiche maintenance CESIR IP K fevrier 2024.pdf
2024-04-22 18:26 - 2024-04-24 08:32 - 000000031 _____ C:\ProgramData\swifeb19617-f189-477f-86a7-b498f8268eaa.txt
2024-04-22 15:50 - 2024-04-22 15:51 - 000016335 _____ C:\Users\HP\Downloads\plannig de maintenance CESIR-K.xlsx
2024-04-22 13:52 - 2024-04-22 13:52 - 000000016 _____ C:\ProgramData\swi7e1058e8-a3d9-4561-bcb1-e1b722158ffd.txt
2024-04-22 13:25 - 2024-04-22 13:25 - 000000000 ____D C:\Users\HP\AppData\Local\d353ba92-b004-4dbc-af42-c97311926945
2024-04-22 09:33 - 2024-04-22 10:14 - 000056720 _____ C:\Users\HP\Downloads\LISTE_DES_EQUIPEMENTS_A_MAINTENIR_NAT_BUF .xlsx
2024-04-19 13:22 - 2024-04-19 13:23 - 004047816 _____ C:\Users\HP\Downloads\RAD ETX 220 manual.pdf
2024-04-19 12:58 - 2024-04-26 07:09 - 000000614 _____ C:\Users\HP\Desktop\boxing schedule 27-04-2024.txt
2024-04-19 12:13 - 2024-04-19 12:13 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-19 12:10 - 2024-04-19 12:10 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-19 10:39 - 2024-04-19 10:39 - 000000000 ___HD C:\$WinREAgent
2024-04-17 09:48 - 2024-04-26 11:40 - 000000000 ____D C:\Users\HP\Desktop\Solarwinds
2024-04-17 08:16 - 2024-04-17 08:16 - 000000627 _____ C:\Program Files (x86)\uninstallsererr.txt
2024-04-16 15:47 - 2024-04-16 15:47 - 000001377 _____ C:\Users\HP\Desktop\boxing schedule 13-04-2024.txt
2024-04-12 08:49 - 2024-04-12 09:05 - 000251012 _____ C:\Users\HP\Downloads\DEVIS GC LS MEN TRAVEL KRIBI.xlsx
2024-04-11 11:38 - 2024-04-11 11:39 - 253391976 _____ (Zoho Corporation Pvt. Ltd.) C:\Users\HP\Downloads\ManageEngine_NetFlowAnalyzer_64bit(1).exe
2024-04-09 13:55 - 2024-04-09 13:56 - 000000000 ____D C:\Users\HP\Desktop\RST WIN
2024-04-08 12:14 - 2024-04-08 13:11 - 786740784 ____R C:\Users\HP\Downloads\[ Torrent911.re ] Strictly.Confidential.2024.FRENCH.HDRip.x264-DDLPZ.mkv
2024-04-08 12:13 - 2024-04-08 12:13 - 000015585 _____ C:\Users\HP\Downloads\[ Torrent9.sb ] Strictly Confidential.torrent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-07 08:46 - 2018-11-06 17:10 - 000000000 ____D C:\FRST
2024-05-07 08:36 - 2018-06-08 14:14 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2024-05-07 08:29 - 2022-06-17 08:22 - 000003948 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002UA
2024-05-07 08:29 - 2022-06-17 08:22 - 000003878 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002Core
2024-05-06 17:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-06 16:16 - 2018-06-06 16:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Excel
2024-05-06 16:14 - 2020-12-02 13:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-06 14:38 - 2018-04-23 11:12 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Word
2024-05-06 14:34 - 2016-04-14 01:43 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2024-05-06 11:27 - 2020-12-02 14:29 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-05-06 11:26 - 2022-10-13 11:05 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-05-06 11:26 - 2022-10-13 11:05 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-05-06 10:19 - 2020-12-02 14:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-05-06 10:19 - 2020-12-02 13:33 - 000008192 ___SH C:\DumpStack.log.tmp
2024-05-06 10:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-05-06 10:17 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-05-06 09:41 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-05-03 15:48 - 2018-08-27 09:53 - 000000000 ____D C:\Users\HP\AppData\Roaming\BitTorrent
2024-05-03 15:44 - 2018-04-23 10:25 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2024-05-03 13:31 - 2018-08-27 20:29 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2024-05-03 13:28 - 2022-10-03 12:46 - 000000893 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2024-05-03 13:23 - 2021-09-06 12:22 - 000000000 ____D C:\Users\HP\AppData\Local\Adaware
2024-05-03 07:22 - 2018-07-29 13:08 - 000000000 ____D C:\Users\HP\AppData\Local\D3DSCache
2024-05-03 07:19 - 2021-12-21 15:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-03 07:19 - 2018-04-23 10:28 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-03 07:19 - 2018-04-23 10:28 - 000002218 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-05-03 07:14 - 2021-04-06 09:37 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-05-03 07:14 - 2016-04-14 02:02 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2024-05-02 15:04 - 2022-11-21 14:14 - 000000000 ____D C:\Users\HP\Desktop\UIM
2024-05-02 10:16 - 2018-07-06 14:10 - 000000000 ____D C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
2024-05-01 10:33 - 2024-01-20 17:46 - 000000000 ____D C:\Users\HP\Desktop\Réseau d'accès IP de Kribi
2024-05-01 09:26 - 2020-12-02 21:19 - 000792706 _____ C:\WINDOWS\system32\perfh00C.dat
2024-05-01 09:26 - 2020-12-02 21:19 - 000150170 _____ C:\WINDOWS\system32\perfc00C.dat
2024-05-01 09:26 - 2020-12-02 14:01 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-01 09:26 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-04-30 08:59 - 2023-08-28 07:45 - 000002346 _____ C:\Users\HP\Desktop\Travail - Edge.lnk
2024-04-30 08:59 - 2020-09-08 07:35 - 000002236 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-04-30 08:55 - 2016-11-10 09:59 - 000000000 ____D C:\ProgramData\KMSAutoS
2024-04-30 07:41 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-29 16:05 - 2023-12-21 12:46 - 000000000 ____D C:\Users\HP\Desktop\Rapport Mensuel
2024-04-29 12:09 - 2023-01-24 14:13 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Temp
2024-04-29 10:16 - 2020-12-02 14:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-29 10:15 - 2020-12-02 13:43 - 000000000 ____D C:\Users\HP
2024-04-29 10:15 - 2015-10-30 08:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2024-04-29 07:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2024-04-29 07:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2024-04-26 13:06 - 2018-08-10 11:56 - 000000000 ____D C:\Users\HP\AppData\Local\SolarWinds
2024-04-26 11:14 - 2018-08-10 11:56 - 000000000 ____D C:\Users\HP\AppData\Local\Solarwinds Toolset Installs
2024-04-26 10:15 - 2019-10-08 10:23 - 000000000 ____D C:\Users\HP\AppData\Roaming\uTorrent
2024-04-26 09:32 - 2016-04-14 02:07 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-04-25 17:26 - 2020-09-08 07:35 - 000002398 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-25 14:03 - 2020-04-24 09:56 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Teams
2024-04-25 13:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-25 13:54 - 2018-08-27 08:09 - 000000000 ____D C:\Users\HP\AppData\Roaming\Opera Software
2024-04-25 13:53 - 2019-10-08 10:24 - 000000000 ____D C:\Users\HP\AppData\Local\BitTorrentHelper
2024-04-25 13:23 - 2023-12-29 13:36 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-04-23 14:40 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-23 14:37 - 2018-07-06 07:39 - 000000000 ____D C:\ProgramData\Packages
2024-04-23 07:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-22 18:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-22 18:27 - 2020-12-02 13:33 - 000450240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-22 18:26 - 2023-12-15 07:38 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-22 18:26 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-19 12:10 - 2020-12-02 13:38 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-18 07:23 - 2022-07-15 08:07 - 000000678 _____ C:\Users\HP\Desktop\Camtel Share & Zoom.txt
2024-04-12 08:12 - 2023-11-10 08:17 - 000000000 ____D C:\Program Files\Npcap
2024-04-11 14:11 - 2023-12-01 09:53 - 000000000 ____D C:\Program Files\ManageEngine
2024-04-11 07:31 - 2024-02-12 19:56 - 000000000 ____D C:\Program Files (x86)\AnyDesk
==================== Fichiers à la racine de certains dossiers ========
2024-04-25 13:22 - 2024-04-25 13:22 - 000000008 ____H () C:\ProgramData\bit_66.dat
2024-04-25 13:23 - 2024-04-28 21:56 - 000000004 ____H () C:\ProgramData\brc_66.dat
2024-04-25 13:22 - 2024-04-28 22:08 - 000000128 ____H () C:\ProgramData\resource-a.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000128 ____H () C:\ProgramData\resource-b.dat
2024-04-25 14:22 - 2024-04-28 21:52 - 000000000 _____ () C:\ProgramData\softokn3.dll
2024-04-25 14:23 - 2024-04-28 21:52 - 000000000 _____ () C:\ProgramData\vcruntime140.dll
2024-04-17 08:16 - 2024-04-17 08:16 - 000000627 _____ () C:\Program Files (x86)\uninstallsererr.txt
2024-02-12 22:52 - 2024-02-13 00:56 - 000000128 _____ () C:\Users\HP\AppData\Roaming\winscp.rnd
2022-04-20 09:38 - 2022-04-20 09:44 - 000000128 _____ () C:\Users\HP\AppData\Local\PUTTY.RND
2018-06-06 15:43 - 2020-08-12 10:46 - 000367105 _____ () C:\Users\HP\AppData\Local\Snip.txt
2020-02-11 14:54 - 2020-08-12 10:46 - 000516822 _____ () C:\Users\HP\AppData\Local\SnipUsages.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== Fin de FRST.txt ========================
Exécuté par HP (administrateur) sur CAMTEL-DRS (HP HP Notebook) (07-05-2024 08:41:56)
Exécuté depuis C:\Users\HP\Desktop\FRST64.exe
Profils chargés: HP
Plate-forme: Microsoft Windows 10 Entreprise Version 22H2 19045.4291 (X64) Langue: Anglais (États-Unis) -> Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\Fortinet\FortiClient\FCHelper64.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiTray.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\fcappdb.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FCDBLog.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\fmon.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiESNAC.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiProxy.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\FortiWF.exe
(C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Fortinet Inc.) [Fichier non signé] C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(svchost.exe ->) (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient\FCHelper64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3349224 2015-08-12] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [247016 2011-09-09] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [SolarWindsToolsetIntegrationTrayApp] => C:\Program Files (x86)\SolarWinds\Toolset\ToolsetIntegrationTray.exe [781136 2024-01-11] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [bt] => C:\Users\HP\AppData\Roaming\BitTorrent\BitTorrent.exe [2637984 2024-05-03] (Accès refusé) [Fichier non signé]
HKU\S-1-5-21-1551542468-2884388448-3857473492-1002\...\Run: [Microsoft Edge Update] => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\1.3.187.37\MicrosoftEdgeUpdateCore.exe [264264 2024-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpcpp160: C:\Windows\System32\spool\prtprocs\x64\hpcpp160.dll [602912 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpcpp255: C:\Windows\System32\spool\prtprocs\x64\hpcpp255.dll [848384 2021-03-03] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\WINDOWS\system32\HPMPW081.DLL [74016 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPMLM135: C:\WINDOWS\system32\hpmlm135.dll [237344 2013-12-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\HPMLM225: C:\WINDOWS\system32\hpmlm225.dll [308224 2018-11-14] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2011-09-09] (CyberLink -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2011-09-09] (CyberLink -> CyberLink)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-02-12]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {F42DD750-4C90-4D60-BA77-181E20135F92} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {B6E8C5AE-8B32-4FF7-9D2B-BCB7930AFAB9} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{6359D36D-5D0A-4B7A-84A0-8A13BD773B4B} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {C8C3A572-AF17-4FEC-BFA5-F080743210F4} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64464 2024-03-14] (HP Inc. -> HP Inc.)
Task: {0C6307DE-D4A6-4764-9835-183E762DEEDC} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64464 2024-03-14] (HP Inc. -> HP Inc.)
Task: {7676A68F-3F0F-42E2-9BB8-519319275F8D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {58B8D55D-F255-45BB-82DC-45740FBB80D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {84842E55-E320-4130-BE60-BEE6AC1468F1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {E78667A8-375D-447F-8026-3A633172BA63} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002Core => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {30462DD4-3E60-4454-BB06-956E8D32A0DF} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002UA => C:\Users\HP\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {50383569-9CDE-4E85-A1C2-7D1F83AC3565} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2022-11-22] () [Fichier non signé]
Task: {E4DE4829-F926-45A6-8F6C-91F5B806F7DE} - System32\Tasks\Opera scheduled Autoupdate 1535353816 => C:\Users\HP\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {42A791F3-9C3C-4AC2-854F-74257C50C078} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{2d1165ea-6aa4-44b2-a629-93a25320ca1b}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}: [DhcpNameServer] 192.168.70.79
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\0534D275946494: [DhcpNameServer] 192.168.4.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\0534D275946494: [DhcpDomain] hg232f
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\147454E43454F534F4D4D45425349414C454: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D413: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D423: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\252535D433: [DhcpNameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\2554F53454E4452514C4F5B42494: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4D22554: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4D22554: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3414D44554C4F53454251434: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425D275946494D205F405: [DhcpNameServer] 192.168.3.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425D275946494D205F405: [DhcpDomain] hg232f
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\3454359425F5E45445: [DhcpNameServer] 195.24.192.33 8.8.8.8 4.2.2.2
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\34564727F6E6F554267716: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\34D46534D2B425942494: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\659405: [DhcpNameServer] 8.8.8.8 195.24.192.33
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\659405F575966696: [DhcpNameServer] 8.8.8.8 195.24.192.33
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\6594C4C4147454D23414E4D254247514: [DhcpNameServer] 192.168.40.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\74942424543535: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\75962756C6563737F534845434D284F4D454: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\75962756C6563737F534845434D284F4D454: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D42535F5E4544575F425B4: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D42535F5E4544575F425B4: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\D4966496F5231483531443: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{75ec7a25-c31d-4dad-b10d-a669ed47ee29}\E474243535: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{916f698f-43b6-4801-bd8a-608fc82deabe}: [NameServer] 195.24.192.33 8.8.8.8
Tcpip\..\Interfaces\{aa3e770d-ec2b-445d-b974-d30e06074a1d}: [DhcpNameServer] 8.8.8.8 195.24.192.33 192.168.240.6
Tcpip\..\Interfaces\{aa3e770d-ec2b-445d-b974-d30e06074a1d}: [DhcpDomain] camtelnet.cm
Tcpip\..\Interfaces\{aa83eb97-8e72-4504-997c-a105cf19541e}: [NameServer] 192.168.200.53
Tcpip\..\Interfaces\{c2ba781b-75c7-457b-b301-9eb4f83fd4a4}: [NameServer] 195.24.192.33,8.8.8.8
Tcpip\..\Interfaces\{f58d751f-e049-48cb-99fc-e9addf8cb3e8}: [DhcpNameServer] 192.168.179.124
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-30]
Edge Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-17]
Edge Extension: (Edge relevant text changes) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
FireFox:
========
FF DefaultProfile: ib75jhl9.default-1685967659881
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 [2024-05-06]
FF Session Restore: Mozilla\Firefox\Profiles\5lj0l5ap.default-release-3 -> est activé.
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\lu3dkpk1.default-release-2 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\z6t7nzpx.default-release-1 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\c89cecq0.default-release-1668589864750 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 [2024-05-07]
FF Homepage: Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\w5xq7gdl.default-release-6 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iapdqss9.default-release-5 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\iapdqss9.default-release-5 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\iapdqss9.default-release-5 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 -> hxxps://192.168.18.51/basicframe
FF Notifications: Mozilla\Firefox\Profiles\ib75jhl9.default-1685967659881 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 [2024-05-06]
FF Homepage: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> hxxps://192.168.18.51/basicframe
FF NetworkProxy: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\gk42c1l4.default-release-4 -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz
FF Extension: (Pas de nom) - C:\Program Files\Mozilla Firefox\browser\features\{85FD6ACE-3736-491B-8514-6C8C9556E131}.xpi [2024-04-28] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @FortinetCacheClean -> C:\Program Files (x86)\Fortinet\FortiClient\npccplugin.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @FortinetCacheCleanEx -> C:\Program Files (x86)\Fortinet\FortiClient\npccpluginex.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @FortinetTunnelControl -> C:\Program Files (x86)\Fortinet\FortiClient\nptcplugin.dll [2018-01-08] (Fortinet Inc.) [Fichier non signé]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2024-05-07]
CHR Extension: (Torrent Scanner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-01-31]
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-05-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-20]
CHR Extension: (Google Docs) - C:\Users\HP\AppData\Local\PH\llg [2024-04-25]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
S4 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5323592 2024-04-11] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
S2 FA_Scheduler; C:\Program Files (x86)\Fortinet\FortiClient\scheduler.exe [119826 2018-01-08] (Fortinet Inc.) [Fichier non signé]
S4 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S4 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887264 2024-04-30] (Malwarebytes Inc. -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SolarWinds TFTP Server; C:\Program Files (x86)\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe [76160 2023-05-16] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
S4 SWBrowserIntegration; C:\Program Files (x86)\SolarWinds\Toolset\SWBrowserIntegration.exe [53072 2024-01-11] (Solarwinds Worldwide, LLC -> SolarWinds Worldwide, LLC.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-09-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-09-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S4 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [55456 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [46544 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S4 fsulhoster; "C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe" --service --namespace ul_default [X]
S4 fsulnethoster; "C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fshoster64.exe" --service --namespace ul_default --id 2 [X]
S4 fsulorsp; "C:\Program Files\F-Secure\Ultralight\ulcore\1709915445\fsorsp64.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 bcmsmbsp; C:\WINDOWS\System32\drivers\bcmsmbsp.sys [53024 2015-07-10] (Broadcom Corporation -> Broadcom Corporation.)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 EMP_MIRRUD; C:\WINDOWS\System32\drivers\EMP_MirrUD.sys [5632 2011-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [18000 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [45792 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [37456 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R0 fortiloader; C:\WINDOWS\System32\drivers\fortiloader.sys [12368 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 fortimon3; C:\WINDOWS\System32\drivers\fortimon3.sys [48208 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [147536 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 FortiRdr; C:\WINDOWS\System32\drivers\FortiRdr2.sys [47184 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [72272 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [92240 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R3 FortiWF; C:\WINDOWS\System32\drivers\FortiWF2.sys [42576 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [66600 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [71928 2018-01-08] (Fortinet Technologies -> Fortinet Inc)
S3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr64.sys [37112 2015-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [201280 2024-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-05-06] (Malwarebytes Inc. -> Malwarebytes)
S3 mdareDriver_63; C:\Program Files (x86)\Fortinet\FortiClient\mdare64_63.sys [106064 2024-01-26] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [78376 2023-04-27] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2018-01-08] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [328784 2023-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55872 2023-09-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-09-04] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-09-04] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
U4 npcap_wifi; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-07 08:50 - 2024-05-07 09:05 - 000000000 ____D C:\Users\HP\AppData\LocalLow\IGDump
2024-05-06 10:20 - 2024-05-06 10:19 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-05-03 13:39 - 2024-05-03 14:37 - 811947345 ____R C:\Users\HP\Downloads\[ Torrent911.pm ] Damaged.2024.FRENCH.HDRip.x264-DDLPZ.mkv
2024-05-03 13:35 - 2024-05-03 13:37 - 488089825 _____ C:\Users\HP\Downloads\[ Torrent911.me ] Control.2022.FRENCH.WEBRip.x264-ONLYMOViE.mkv
2024-05-03 13:28 - 2024-05-03 13:28 - 000000913 _____ C:\Users\HP\Desktop\BitTorrent.lnk
2024-05-03 13:20 - 2024-05-03 13:22 - 020725984 _____ (Rainberry, Inc.) C:\Users\HP\Downloads\bittorrent_installer.exe
2024-05-03 13:16 - 2024-05-03 13:17 - 012531983 _____ C:\Users\HP\Downloads\bittorrent_installer.exe.opdownload
2024-05-03 13:10 - 2024-05-03 13:10 - 000031518 _____ C:\Users\HP\Downloads\[ Torrent9.tf ] Damaged FRENCH WEBRIP 2024.torrent
2024-05-03 12:58 - 2024-05-03 13:01 - 000000602 _____ C:\Users\HP\Desktop\boxing schedule 04-05-2024.txt
2024-05-03 11:29 - 2024-05-03 11:30 - 000115840 _____ C:\Users\HP\Downloads\FTX upgrade KCT 20 à 30 Mbps.pdf
2024-05-03 08:23 - 2024-05-06 11:12 - 000048042 _____ C:\Users\HP\Desktop\Addition.txt
2024-05-03 07:48 - 2024-05-07 08:49 - 000030341 _____ C:\Users\HP\Desktop\FRST.txt
2024-05-02 08:03 - 2024-05-02 08:07 - 000000000 ____D C:\Users\HP\Desktop\FSS
2024-05-02 07:51 - 2024-05-03 07:33 - 000000031 _____ C:\ProgramData\swi4b599a52-cec0-495e-8a4e-02c05359154c.txt
2024-05-01 14:05 - 2024-05-01 14:48 - 000000459 _____ C:\Users\HP\Desktop\Outils test.txt
2024-05-01 09:38 - 2024-05-02 07:49 - 000000031 _____ C:\ProgramData\swi44faa9d5-6f18-4999-9384-f1d66885798c.txt
2024-04-30 14:22 - 2024-04-30 14:22 - 000088963 _____ C:\Users\HP\Downloads\FTX retablissement COTCO 150Mbps.pdf
2024-04-30 14:21 - 2024-04-30 14:21 - 000087312 _____ C:\Users\HP\Downloads\FTX retalissement COTCO 60Mbps.pdf
2024-04-30 14:20 - 2024-04-30 14:20 - 000096553 _____ C:\Users\HP\Downloads\FTX suspension COTCO 150Mbps.pdf
2024-04-30 14:17 - 2024-04-30 14:17 - 000095312 _____ C:\Users\HP\Downloads\FTX Suspensoin COTCO 60Mpbs.pdf
2024-04-30 09:03 - 2024-04-30 09:17 - 000000031 _____ C:\ProgramData\swif7746e69-cc62-4151-a4fc-4cb8fee1654d.txt
2024-04-30 07:42 - 2024-05-07 08:27 - 000000000 ____D C:\Users\HP\AppData\Local\Malwarebytes
2024-04-30 07:42 - 2024-04-30 07:42 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-04-30 07:42 - 2024-04-30 07:42 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-04-30 07:42 - 2024-04-30 07:42 - 000000000 ____D C:\Users\HP\AppData\Local\mbam
2024-04-30 07:40 - 2024-04-30 07:40 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-04-30 07:40 - 2024-04-30 07:40 - 000000000 ____D C:\Program Files\Malwarebytes
2024-04-30 07:38 - 2024-04-30 07:38 - 002586520 _____ (Malwarebytes) C:\Users\HP\Downloads\MBSetup.exe
2024-04-29 15:12 - 2024-04-29 15:14 - 000019678 _____ C:\Users\HP\Documents\RAPPORT MENSUEL D'ASSIDUITE DU MOIS D'AVRIL 2024 CESIR-K.xlsx
2024-04-29 15:06 - 2024-04-29 15:06 - 000021455 _____ C:\Users\HP\Downloads\Spécimen Rapport.....xlsx
2024-04-29 12:32 - 2024-04-30 09:01 - 000000031 _____ C:\ProgramData\swiadeaebb7-8690-4200-835a-e83fcc19bcac.txt
2024-04-29 10:12 - 2024-05-06 10:16 - 000084506 _____ C:\Users\HP\Desktop\Fixlog.txt
2024-04-28 19:12 - 2024-04-28 19:14 - 002394112 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2024-04-26 11:15 - 2024-04-26 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds
2024-04-26 11:14 - 2024-04-26 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds Real-time NetFlow Analyzer
2024-04-26 10:33 - 2024-04-26 17:11 - 000000031 _____ C:\ProgramData\swiae82061a-c385-475c-8150-fc2ebca542a9.txt
2024-04-26 10:32 - 2024-04-26 10:36 - 000002231 _____ C:\Users\Public\Desktop\IP Network Browser.lnk
2024-04-26 10:32 - 2024-04-26 10:36 - 000002193 _____ C:\Users\Public\Desktop\Network Performance Monitor.lnk
2024-04-26 10:32 - 2024-04-26 10:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolarWinds Engineer's Toolset
2024-04-26 10:32 - 2024-04-26 10:32 - 000001146 _____ C:\Users\Public\Desktop\Toolset Launch Pad.lnk
2024-04-26 10:29 - 2024-04-26 11:15 - 000000000 ____D C:\Program Files (x86)\SolarWinds
2024-04-26 10:20 - 2024-04-26 10:20 - 000000000 ____D C:\Users\HP\AppData\Local\9bfc8001-33b6-487d-aa5e-ab02cace047e
2024-04-26 10:20 - 2024-04-26 10:20 - 000000000 ____D C:\Users\HP\AppData\Local\7b92a30e-bbc9-4c40-8476-a35e0c10acd0
2024-04-26 10:18 - 2024-05-06 15:45 - 000000000 ____D C:\ProgramData\SolarWinds
2024-04-26 10:17 - 2024-04-26 10:17 - 407553920 _____ (SolarWinds Worldwide, LLC.) C:\Users\HP\Downloads\SolarWinds-DesktopToolset-v2024.1.exe
2024-04-25 14:55 - 2014-12-14 11:57 - 000000024 _____ C:\ProgramData\media_9.1.3.7_longdesc.txt
2024-04-25 14:23 - 2024-04-28 21:52 - 000000000 _____ C:\ProgramData\vcruntime140.dll
2024-04-25 14:22 - 2024-04-28 21:52 - 000000000 _____ C:\ProgramData\softokn3.dll
2024-04-25 14:22 - 2024-04-25 14:22 - 000000000 ____D C:\ProgramData\iolo technologies
2024-04-25 14:12 - 2024-04-25 14:21 - 000000000 ____D C:\Users\HP\AppData\Local\PH
2024-04-25 14:08 - 2024-04-25 14:08 - 000000000 ____D C:\Users\HP\AppData\Local\Yandex
2024-04-25 14:07 - 2024-04-25 14:07 - 000000000 ____D C:\Users\HP\AppData\Roaming\iolo
2024-04-25 14:07 - 2024-04-25 14:07 - 000000000 ____D C:\ProgramData\iolo
2024-04-25 14:06 - 2024-04-25 14:06 - 000000000 ____D C:\Users\HP\AppData\Roaming\SecureClient
2024-04-25 14:03 - 2024-04-26 08:15 - 000000000 ____D C:\Users\HP\1000013002
2024-04-25 14:02 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_999e43077df71fdfc52bd5232a22cf9d
2024-04-25 14:02 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_72e6459d9280e67b92be0cfd9c31abc7
2024-04-25 14:02 - 2024-04-30 08:54 - 000000000 ____D C:\ProgramData\MSIUpdaterV131_a5899eff6c87eb6c8acb1b5c9328dfae
2024-04-25 13:53 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\MPGPH131
2024-04-25 13:23 - 2024-04-28 21:56 - 000000004 ____H C:\ProgramData\brc_66.dat
2024-04-25 13:23 - 2024-04-25 13:23 - 000000000 ____D C:\Users\HP\AppData\Local\SystemCache
2024-04-25 13:22 - 2024-04-28 22:08 - 000000128 ____H C:\ProgramData\resource-a.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000128 ____H C:\ProgramData\resource-b.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000008 ____H C:\ProgramData\bit_66.dat
2024-04-25 13:21 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\WinTrackerSP
2024-04-25 13:21 - 2024-04-30 08:55 - 000000000 ____D C:\ProgramData\EventGuide 1.3.11.66
2024-04-25 13:21 - 2024-04-26 15:18 - 000000000 ____D C:\WINDOWS\SysWOW64\wzptgcdn
2024-04-25 13:20 - 2024-04-26 09:11 - 000000000 ____D C:\Users\HP\AppData\Local\PCI Audio Star
2024-04-25 13:18 - 2024-04-30 08:55 - 000000000 ____D C:\Users\HP\Documents\SimpleAdobe
2024-04-25 11:41 - 2024-04-29 10:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Service
2024-04-25 11:41 - 2024-04-25 11:41 - 000000000 ____D C:\Users\HP\AppData\Roaming\ServiceData
2024-04-25 11:31 - 2024-04-25 11:31 - 000000000 ____D C:\Users\HP\AppData\Local\Buyojobuno
2024-04-25 11:30 - 2024-04-25 11:30 - 000000000 ____D C:\Users\HP\AppData\Roaming\Streamsign
2024-04-25 11:06 - 2024-04-25 11:07 - 005790514 _____ C:\Users\HP\Downloads\_Getintopc.com_SolarWinds_Engineer’s_Toolset.mp4
2024-04-24 15:58 - 2024-04-24 15:58 - 000000000 ____D C:\Users\HP\AppData\Roaming\WindowsIPTVPlayer
2024-04-24 15:57 - 2024-04-24 15:57 - 000002291 _____ C:\Users\Public\Desktop\Windows IPTV Player.lnk
2024-04-24 15:57 - 2024-04-24 15:57 - 000000000 ____D C:\Program Files (x86)\Xtream Codes LTD
2024-04-24 08:22 - 2024-04-24 08:32 - 000000000 ____D C:\Users\HP\AppData\Local\5b58858f-64bc-4dc8-8c58-aa113eccaa9c
2024-04-23 15:18 - 2024-04-23 15:18 - 000051891 _____ C:\Users\HP\Downloads\Planning annuel de maintenance CESIR-KBI 2023.xlsx
2024-04-23 14:45 - 2024-04-23 14:45 - 000168380 _____ C:\Users\HP\Downloads\Fiche maintenance informatique et systèmes janvier 2024.pdf
2024-04-23 14:43 - 2024-04-23 14:43 - 000166098 _____ C:\Users\HP\Downloads\Fiche maintenance CESIR IP K janvier 2024.pdf
2024-04-23 14:39 - 2024-04-23 14:39 - 000166622 _____ C:\Users\HP\Downloads\Fiche maintenance CESIR IP K fevrier 2024.pdf
2024-04-22 18:26 - 2024-04-24 08:32 - 000000031 _____ C:\ProgramData\swifeb19617-f189-477f-86a7-b498f8268eaa.txt
2024-04-22 15:50 - 2024-04-22 15:51 - 000016335 _____ C:\Users\HP\Downloads\plannig de maintenance CESIR-K.xlsx
2024-04-22 13:52 - 2024-04-22 13:52 - 000000016 _____ C:\ProgramData\swi7e1058e8-a3d9-4561-bcb1-e1b722158ffd.txt
2024-04-22 13:25 - 2024-04-22 13:25 - 000000000 ____D C:\Users\HP\AppData\Local\d353ba92-b004-4dbc-af42-c97311926945
2024-04-22 09:33 - 2024-04-22 10:14 - 000056720 _____ C:\Users\HP\Downloads\LISTE_DES_EQUIPEMENTS_A_MAINTENIR_NAT_BUF .xlsx
2024-04-19 13:22 - 2024-04-19 13:23 - 004047816 _____ C:\Users\HP\Downloads\RAD ETX 220 manual.pdf
2024-04-19 12:58 - 2024-04-26 07:09 - 000000614 _____ C:\Users\HP\Desktop\boxing schedule 27-04-2024.txt
2024-04-19 12:13 - 2024-04-19 12:13 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-19 12:10 - 2024-04-19 12:10 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-19 10:39 - 2024-04-19 10:39 - 000000000 ___HD C:\$WinREAgent
2024-04-17 09:48 - 2024-04-26 11:40 - 000000000 ____D C:\Users\HP\Desktop\Solarwinds
2024-04-17 08:16 - 2024-04-17 08:16 - 000000627 _____ C:\Program Files (x86)\uninstallsererr.txt
2024-04-16 15:47 - 2024-04-16 15:47 - 000001377 _____ C:\Users\HP\Desktop\boxing schedule 13-04-2024.txt
2024-04-12 08:49 - 2024-04-12 09:05 - 000251012 _____ C:\Users\HP\Downloads\DEVIS GC LS MEN TRAVEL KRIBI.xlsx
2024-04-11 11:38 - 2024-04-11 11:39 - 253391976 _____ (Zoho Corporation Pvt. Ltd.) C:\Users\HP\Downloads\ManageEngine_NetFlowAnalyzer_64bit(1).exe
2024-04-09 13:55 - 2024-04-09 13:56 - 000000000 ____D C:\Users\HP\Desktop\RST WIN
2024-04-08 12:14 - 2024-04-08 13:11 - 786740784 ____R C:\Users\HP\Downloads\[ Torrent911.re ] Strictly.Confidential.2024.FRENCH.HDRip.x264-DDLPZ.mkv
2024-04-08 12:13 - 2024-04-08 12:13 - 000015585 _____ C:\Users\HP\Downloads\[ Torrent9.sb ] Strictly Confidential.torrent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-07 08:46 - 2018-11-06 17:10 - 000000000 ____D C:\FRST
2024-05-07 08:36 - 2018-06-08 14:14 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2024-05-07 08:29 - 2022-06-17 08:22 - 000003948 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002UA
2024-05-07 08:29 - 2022-06-17 08:22 - 000003878 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1551542468-2884388448-3857473492-1002Core
2024-05-06 17:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-06 16:16 - 2018-06-06 16:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Excel
2024-05-06 16:14 - 2020-12-02 13:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-06 14:38 - 2018-04-23 11:12 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Word
2024-05-06 14:34 - 2016-04-14 01:43 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2024-05-06 11:27 - 2020-12-02 14:29 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-05-06 11:26 - 2022-10-13 11:05 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-05-06 11:26 - 2022-10-13 11:05 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-05-06 10:19 - 2020-12-02 14:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-05-06 10:19 - 2020-12-02 13:33 - 000008192 ___SH C:\DumpStack.log.tmp
2024-05-06 10:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-05-06 10:17 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-05-06 09:41 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-05-03 15:48 - 2018-08-27 09:53 - 000000000 ____D C:\Users\HP\AppData\Roaming\BitTorrent
2024-05-03 15:44 - 2018-04-23 10:25 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2024-05-03 13:31 - 2018-08-27 20:29 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2024-05-03 13:28 - 2022-10-03 12:46 - 000000893 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2024-05-03 13:23 - 2021-09-06 12:22 - 000000000 ____D C:\Users\HP\AppData\Local\Adaware
2024-05-03 07:22 - 2018-07-29 13:08 - 000000000 ____D C:\Users\HP\AppData\Local\D3DSCache
2024-05-03 07:19 - 2021-12-21 15:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-05-03 07:19 - 2018-04-23 10:28 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-03 07:19 - 2018-04-23 10:28 - 000002218 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-05-03 07:14 - 2021-04-06 09:37 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-05-03 07:14 - 2016-04-14 02:02 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2024-05-02 15:04 - 2022-11-21 14:14 - 000000000 ____D C:\Users\HP\Desktop\UIM
2024-05-02 10:16 - 2018-07-06 14:10 - 000000000 ____D C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
2024-05-01 10:33 - 2024-01-20 17:46 - 000000000 ____D C:\Users\HP\Desktop\Réseau d'accès IP de Kribi
2024-05-01 09:26 - 2020-12-02 21:19 - 000792706 _____ C:\WINDOWS\system32\perfh00C.dat
2024-05-01 09:26 - 2020-12-02 21:19 - 000150170 _____ C:\WINDOWS\system32\perfc00C.dat
2024-05-01 09:26 - 2020-12-02 14:01 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-05-01 09:26 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-04-30 08:59 - 2023-08-28 07:45 - 000002346 _____ C:\Users\HP\Desktop\Travail - Edge.lnk
2024-04-30 08:59 - 2020-09-08 07:35 - 000002236 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-04-30 08:55 - 2016-11-10 09:59 - 000000000 ____D C:\ProgramData\KMSAutoS
2024-04-30 07:41 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-29 16:05 - 2023-12-21 12:46 - 000000000 ____D C:\Users\HP\Desktop\Rapport Mensuel
2024-04-29 12:09 - 2023-01-24 14:13 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Temp
2024-04-29 10:16 - 2020-12-02 14:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-29 10:15 - 2020-12-02 13:43 - 000000000 ____D C:\Users\HP
2024-04-29 10:15 - 2015-10-30 08:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2024-04-29 07:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2024-04-29 07:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2024-04-26 13:06 - 2018-08-10 11:56 - 000000000 ____D C:\Users\HP\AppData\Local\SolarWinds
2024-04-26 11:14 - 2018-08-10 11:56 - 000000000 ____D C:\Users\HP\AppData\Local\Solarwinds Toolset Installs
2024-04-26 10:15 - 2019-10-08 10:23 - 000000000 ____D C:\Users\HP\AppData\Roaming\uTorrent
2024-04-26 09:32 - 2016-04-14 02:07 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-04-25 17:26 - 2020-09-08 07:35 - 000002398 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-25 14:03 - 2020-04-24 09:56 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Teams
2024-04-25 13:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-25 13:54 - 2018-08-27 08:09 - 000000000 ____D C:\Users\HP\AppData\Roaming\Opera Software
2024-04-25 13:53 - 2019-10-08 10:24 - 000000000 ____D C:\Users\HP\AppData\Local\BitTorrentHelper
2024-04-25 13:23 - 2023-12-29 13:36 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-04-23 14:40 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-23 14:37 - 2018-07-06 07:39 - 000000000 ____D C:\ProgramData\Packages
2024-04-23 07:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-22 18:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-22 18:27 - 2020-12-02 13:33 - 000450240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-22 18:26 - 2023-12-15 07:38 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-22 18:26 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-22 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-19 12:10 - 2020-12-02 13:38 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-18 07:23 - 2022-07-15 08:07 - 000000678 _____ C:\Users\HP\Desktop\Camtel Share & Zoom.txt
2024-04-12 08:12 - 2023-11-10 08:17 - 000000000 ____D C:\Program Files\Npcap
2024-04-11 14:11 - 2023-12-01 09:53 - 000000000 ____D C:\Program Files\ManageEngine
2024-04-11 07:31 - 2024-02-12 19:56 - 000000000 ____D C:\Program Files (x86)\AnyDesk
==================== Fichiers à la racine de certains dossiers ========
2024-04-25 13:22 - 2024-04-25 13:22 - 000000008 ____H () C:\ProgramData\bit_66.dat
2024-04-25 13:23 - 2024-04-28 21:56 - 000000004 ____H () C:\ProgramData\brc_66.dat
2024-04-25 13:22 - 2024-04-28 22:08 - 000000128 ____H () C:\ProgramData\resource-a.dat
2024-04-25 13:22 - 2024-04-25 13:22 - 000000128 ____H () C:\ProgramData\resource-b.dat
2024-04-25 14:22 - 2024-04-28 21:52 - 000000000 _____ () C:\ProgramData\softokn3.dll
2024-04-25 14:23 - 2024-04-28 21:52 - 000000000 _____ () C:\ProgramData\vcruntime140.dll
2024-04-17 08:16 - 2024-04-17 08:16 - 000000627 _____ () C:\Program Files (x86)\uninstallsererr.txt
2024-02-12 22:52 - 2024-02-13 00:56 - 000000128 _____ () C:\Users\HP\AppData\Roaming\winscp.rnd
2022-04-20 09:38 - 2022-04-20 09:44 - 000000128 _____ () C:\Users\HP\AppData\Local\PUTTY.RND
2018-06-06 15:43 - 2020-08-12 10:46 - 000367105 _____ () C:\Users\HP\AppData\Local\Snip.txt
2020-02-11 14:54 - 2020-08-12 10:46 - 000516822 _____ () C:\Users\HP\AppData\Local\SnipUsages.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <==== ATTENTION
==================== Fin de FRST.txt ========================