~ ZHPDiag v2023.8.24.39 Par Nicolas Coolman (2023/08/24)
~ Démarre par Lea Guillot (Administrator) (2023/08/31 00:30:26)
~ Assistance: https://forum.nicolascoolman.eu/
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Lea Guillot\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Lea Guillot\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Demarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 19045) =>.Microsoft Corporation

---\\ NAVIGATEURS INTERNET (1) - 1s
~ MSIE: Internet Explorer v11.789.19041.0

---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (2) - 3s
~ Windows Server License Manager Script : OK
Windows Automatic Updates : OK

---\\ LOGICIELS DE PROTECTION (1) - 4s
Windows Defender W10 (Deactivate) (Protection)

---\\ INFORMATIONS SUR LE SYSTEME (18) - 1s
~ Operating System: Intel64 Family 6 Model 55 Stepping 8, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
System Restore: Activé (Enable)
System drive C: has 31 GB (31%) free of 97 GB : OK =>.Disk Space

---\\ INFORMATIONS MÉMOIRE (MEMORY INFORMATIONS)
~ Slots Total (Total Slots) : 1
~ Slots Utilisés (Used Slots) : 1
~ Slots Disponibles (Free Slots) : 0
~ Type de barrette (FormFactor): SO-DIMM
~ Taille (Size) : 4 Go
~ Vitesse (Speed) : 1333
~ Charge mémoire (Memory Usage) : 51%
~ RAM physique Total (Total Physical) : 4 Go : OK
~ RAM physique Disponible (Available Physical) : 2 Go
~ Total virtuelle (Total Virtual) : 6.89 Go
~ Disponible virtuelle (Available Virtual): 4.79 Go

---\\ MODE DE CONNEXION AU SYSTEME (3) - 0s
~ Computer Name: PC
~ User Name: Lea Guillot
~ Logged in as Administrator

---\\ ENUMERATION DES UNITES DE STOCKAGE (7) - 1s
~ Drive C: has 31 GB free of 97 GB (System)
~ Drive D: has 100 GB free of 124 GB
~ Drive E: has 380 GB free of 476 GB

---\\ ETAT DE LA COMMANDE TRIM
~ La commande TRIM est active (NTFS)
~ La commande TRIM est active (ReFS)

---\\ CARACTÉRISTIQUES PRINCIPALES DU DISQUE SYSTEME (30) - 35s
~ Model: LITEON L8H-256V2G-HP v2802 (97 Gb )
~ Media Type: SSD Disque Fixe ( Bus: SATA)

---\\ ATTRIBUTS GÉNÉRAUX DU DISQUE SYSTÈME
OK - N0 - Indicateur d'usure du périphérique de stockage (Storage Device Wear Indicator) (%): 0
OK - N1 - Temps de latence maximal de vidage (Maximum Flash latency) (ms): 0.025
OK - N2 - Temps de latence maximal d'écriture (Maximum write latency) (ms): 0.068
OK - N3 - Temps de latence maximal de lecture (Maximum read latency) (ms): 0.534
OK - N4 - Vitesse de rotation (Spindle Speed) (RPM): 0


---\\ PARAMÈTRES S.M.A.R.T. DU DISQUE SYSTÈME (Flag/Actuel/Maxi) [Seuil] [Valeur brute]
OK - 01 - Taux d'erreur de lecture (Raw Read Error Rate) - [47][100][100] [2][0]
OK - 05 - Nombre de secteurs réalloués (Reallocated Sector Count) - [51][100][100] [10][0]
OK - 09 - Heures de fonctionnement (Power-On Hours Count (POH) - [50][100][100] [0][4860]
OK - 0B - Spécifique Constructeur - [34][100][100] [0][0]
OK - 0C - Nombre de cycles en fonctionnement (Power Cycles Count) - [50][100][100] [0][4915]
OK - AA - Nombre de blocs réservés utilisés (Used Reserved Block Count) - [51][100][100] [5][0]
OK - AB - Taux d'Echec du Programme (SSD Program Fail Count) - [34][100][100] [0][0]
OK - AC - Taux d'Echec d'effacement (Erase Fail Count) - [50][100][100] [0][0]
OK - AD - Nombre de blocs effacés (Average Block-Erase Count) - [51][99][99] [5][84]
OK - AE - Nombre inattendu de perte de puissance (Unexpected Power Off Count) - [50][100][100] [0][34]
OK - B7 - Rétrogradation de l'interface SATA (SATA Interface Downshift) - [50][100][100] [1][0]
OK - B8 - Nombre d'erreur de correction (Incorrectable Error Count) - [51][100][100] [97][0]
OK - BB - Nombre d'erreurs incorrigibles (Reported Uncorrectable Errors) - [50][100][100] [0][0]
OK - BC - Délai d’expiration de la commande (Command Time Out) - [50][100][100] [0][0]
OK - C4 - Nombre d’événements de réallocation (Réallocation Event Count) - [50][100][100] [0][0]
OK - C6 - Total d'erreur incorrigibles (Uncorrectable Errors) - [48][100][100] [0][0]
OK - C7 - Nombre d'erreurs CRC Ultra-DMA (CRC Error Count) - [50][100][100] [0][2]
OK - F1 - Nombre total d'écriture Hôte (Total LBA Written, Lifetime Host Writes) - [3][100][100] [0][5167]
OK - F2 - Nombre total de lecture Hôte (Total LBA Read, Lifetime Host Reads) - [3][100][100] [0][64619]

---\\ ETAT DU CENTRE DE SECURITE WINDOWS (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ RECHERCHE PARTICULIERE DE FICHIERS GENERIQUES (26) - 5s
[MD5.28F9983075D4D5B0C7F52F11EDF61BBB] - 16/08/2023 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [5307536] =>.Microsoft®
[MD5.EF3179D498793BF4234F708D3BE28633] - 02/04/2021 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [71680] [Unsigned] =>.Microsoft Corporation
[MD5.D6E3B995E46D08046875E60ECCFF109B] - 29/06/2023 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [420456] [Unsigned] =>.Microsoft Corporation
[MD5.EFE7D1BA60636B191E800C630278D278] - 29/06/2023 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [5039616] [Unsigned] =>.Microsoft Corporation
[MD5.D0AEE0650591DF85618062825F8400A8] - 16/08/2023 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [905728] [Unsigned] =>.Microsoft Corporation
[MD5.E6C31BCDFB65E2DB98AD082E5DABD164] - 26/10/2022 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [316416] [Unsigned] =>.Microsoft Corporation
[MD5.3BFBF674CF23E6F1501AC8599BCAF610] - 29/06/2023 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [821224] =>.Microsoft®
[MD5.F1AC5FCDF2A974E81EDF0B14A9F648AC] - 29/06/2023 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [583104] =>.Microsoft®
[MD5.D9D1E573B40DFC4A85CB5A7CE420BE15] - 29/06/2023 - (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\System32\wuaueng.dll [3447296] [Unsigned] =>.Microsoft Corporation
[MD5.3996E9A5F0CC85E93AA7ADE49A892C5E] - 07/12/2019 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] [Unsigned] =>.Microsoft Corporation
[MD5.741A4DAC54E1E9D6E52EF1C57BCB7695] - 16/08/2023 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [651648] [Unsigned] =>.Microsoft Corporation
[MD5.B2C716CEBC11930E3C1E38C3B6B9DDED] - 26/10/2022 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [31064] [Unsigned] =>.Microsoft Corporation
[MD5.BD8897A464332FA5802486DC64248E03] - 01/11/2022 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [100864] [Unsigned] =>.Microsoft Corporation
[MD5.054ABC6C64AE969D033B7876C04D52B4] - 11/12/2021 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [175616] [Unsigned] =>.Microsoft Corporation
[MD5.AC8F072A3B69339079A65D5F5FC56459] - 29/06/2023 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [152064] [Unsigned] =>.Microsoft Corporation
[MD5.0823AE866BF27AB24F2033DAD69691FA] - 16/08/2023 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [138240] [Unsigned] =>.Microsoft Corporation
[MD5.E4B36C6EAAAB703CBFECB92EE590FB31] - 07/12/2019 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [118272] [Unsigned] =>.Microsoft Corporation
[MD5.E143A8B531B719C681A5FE27DAD7CFB3] - 16/08/2023 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [227840] [Unsigned] =>.Microsoft Corporation
[MD5.FE59E44FA3566A541EEBEBB0F217A3F0] - 16/08/2023 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [584064] [Unsigned] =>.Microsoft Corporation
[MD5.49F7DE6F689C47B64A2C2D46CD98E327] - 28/10/2020 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [341504] [Unsigned] =>.Microsoft Corporation
[MD5.017662E5D15862538854DB8D182CCCAE] - 16/08/2023 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2843456] [Unsigned] =>.Microsoft Corporation
[MD5.138FDB1EBCB61287A645BD3B06DBED5E] - 07/12/2019 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [109056] [Unsigned] =>.Microsoft Corporation
[MD5.BCBEA88C494AA482EC80B0155637B7AD] - 29/06/2023 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [116224] [Unsigned] =>.Microsoft Corporation
[MD5.64991B36F0BD38026F7589572C98E3D6] - 02/06/2021 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [169984] [Unsigned] =>.Microsoft Corporation
[MD5.2A8B28579A4964AA7EA8CEB1AC121243] - 11/12/2021 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [117584] [Unsigned] =>.Microsoft Corporation
[MD5.37988A4065ACBC7A6A7E03E25AFFAE4A] - 16/08/2023 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [430928] [Unsigned] =>.Microsoft Corporation

---\\ LISTE DES SERVICES (Non désactivés) (7) - 9s
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: ESET Forwarder (efwd) . (.ESET - ESET Forwarder.) - C:\Program Files\ESET\ESET Security\efwd.exe =>.ESET, spol. s r.o.®
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\System32\igfxCUIService.exe [Unsigned] =>.Intel Corporation
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: Wondershare Install Assist Service (Wondershare InstallAssist) . (.Wondershare - Wondershare InstallAssist.) - C:\ProgramData\Wondershare\Service\InstallAssistService.exe =>.Wondershare Technology Co.,Ltd®

---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (92) - 18s
SR - Boot [07/12/2019] [ 107320] (3ware) . (.LSI.) - C:\WINDOWS\System32\drivers\3ware.sys =>.Microsoft®
SR - Disabl [13/09/2018] [ 818136] AdobeUpdateService (AdobeUpdateService) . (.Adobe Inc..) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
SR - Boot [07/12/2019] [ 1135416] (ADP80XX) . (.PMC-Sierra.) - C:\WINDOWS\System32\drivers\ADP80XX.SYS =>.Microsoft®
SR - Disabl [11/05/2018] [ 2128872] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
SR - Demand [07/12/2019] [ 18432] AMD GPIO Client Driver (amdgpio2) . (.Advanced Micro Devices, Inc.) - C:\WINDOWS\System32\drivers\amdgpio2.sys [Unsigned] =>.Advanced Micro Devices, Inc
SR - Demand [07/12/2019] [ 45568] AMD I2C Controller Service (amdi2c) . (.Advanced Micro Devices, Inc.) - C:\WINDOWS\System32\drivers\amdi2c.sys [Unsigned] =>.Advanced Micro Devices, Inc
SR - Boot [07/12/2019] [ 83256] (amdsata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdsata.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 259384] (amdsbs) . (.AMD Technologies Inc..) - C:\WINDOWS\System32\drivers\amdsbs.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 26936] (amdxata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdxata.sys =>.Microsoft®
SR - Demand [09/10/2020] [ 20032] Apple KMDF Filter D (AppleKmdfFilter) . (.Apple Inc..) - C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys =>.WDKTestCert build,132303256403278908®
SR - Demand [09/10/2020] [ 35976] Apple Lower Filter (AppleLowerFilter) . (.Apple Inc..) - C:\WINDOWS\System32\drivers\AppleLowerFilter.sys =>.WDKTestCert build,132303256403278908®
SR - Boot [07/12/2019] [ 131896] Adaptec SAS/SATA-II RAID S (arcsas) . (.PMC-Sierra, Inc..) - C:\WINDOWS\System32\drivers\arcsas.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 533816] QLogic Network Adapter VBD (b06bdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\bxvbda.sys =>.Microsoft®
SR - Demand [07/12/2019] [ 9728] bcmfn2 Service (bcmfn2) . (...) - C:\WINDOWS\System32\drivers\bcmfn2.sys [Unsigned] =>.Broadcom Corporation
SR - Auto [12/08/2015] [ 462096] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - Boot [07/12/2019] [ 319800] (cht4iscsi) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4sx64.sys =>.Microsoft®
SR - Demand [07/12/2019] [ 1853752] Chelsio Virtual Bus Driver (cht4vbd) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4vx64.sys =>.Microsoft®
SS - Demand [25/02/2019] [ 394664] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation®
SR - System [04/08/2023] [ 208704] eamonm (eamonm) . (.ESET.) - C:\WINDOWS\System32\DRIVERS\eamonm.sys =>.ESET, spol. s r.o.®
SR - Boot [07/12/2019] [ 3418936] QLogic 10 Gigabit Ethernet Ada (ebdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\evbda.sys =>.Microsoft®
SR - Boot [04/08/2023] [ 118904] edevmon (edevmon) . (.ESET.) - C:\WINDOWS\System32\DRIVERS\edevmon.sys =>.ESET, spol. s r.o.®
SR - Boot [03/08/2023] [ 16336] eelam (eelam) . (.ESET.) - C:\WINDOWS\System32\DRIVERS\eelam.sys =>.Microsoft®
SR - Auto [04/08/2023] [ 2528888] ESET Forwarder (efwd) . (.ESET.) - C:\Program Files\ESET\ESET Security\efwd.exe =>.ESET, spol. s r.o.®
SR - System [04/08/2023] [ 249544] ehdrv (ehdrv) . (.ESET.) - C:\WINDOWS\System32\DRIVERS\ehdrv.sys =>.ESET, spol. s r.o.®
SR - Auto [04/08/2023] [ 55424] ekbdflt (ekbdflt) . (.ESET.) - C:\WINDOWS\System32\DRIVERS\ekbdflt.sys =>.ESET, spol. s r.o.®
SR - Auto [04/08/2023] [ 3860792] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.®
SS - Demand [04/08/2023] [ 3860792] ESET Firewall Helper (ekrnEpfw) . (.ESET.) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.®
SR - System [04/08/2023] [ 81712] epfw (epfw) . (.ESET.) - C:\WINDOWS\System32\DRIVERS\epfw.sys =>.ESET, spol. s r.o.®
SR - System [04/08/2023] [ 123040] epfwwfp (epfwwfp) . (.ESET.) - C:\WINDOWS\System32\DRIVERS\epfwwfp.sys =>.ESET, spol. s r.o.®
SR - Demand [12/11/2013] [ 31232] Intel SoC GPIO Controller Driver (GPIO) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaiogpioe.sys [Unsigned] =>.Intel Corporation
SR - Boot [07/12/2019] [ 64312] (HpSAMD) . (.Hewlett-Packard Company.) - C:\WINDOWS\System32\drivers\HpSAMD.sys =>.Microsoft®
SR - Demand [07/12/2019] [ 36352] Intel Serial IO GPIO Controlle (iagpio) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iagpio.sys [Unsigned] =>.Intel(R) Corporation
SR - Demand [07/12/2019] [ 91136] Intel(R) Serial IO I2C Host Cont (iai2c) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iai2c.sys [Unsigned] =>.Intel(R) Corporation
SR - Demand [12/11/2013] [ 67584] I2C Controller Service (iaioi2c) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaioi2ce.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 79360] Intel(R) S (iaLPSS2i_GPIO2) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 93184] In (iaLPSS2i_GPIO2_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 112128] Intel( (iaLPSS2i_GPIO2_CNL) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 96256] Intel( (iaLPSS2i_GPIO2_GLK) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 171520] Intel(R) Seria (iaLPSS2i_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 175104] Intel( (iaLPSS2i_I2C_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 177152] Intel(R) S (iaLPSS2i_I2C_CNL) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 177664] Intel(R) S (iaLPSS2i_I2C_GLK) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [Unsigned] =>.Intel Corporation
SR - Demand [07/12/2019] [ 38128] Intel(R) Serial IO (iaLPSSi_GPIO) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys =>.Intel Corporation - Client Components Group®
SR - Demand [07/12/2019] [ 113152] Intel(R) Serial IO I (iaLPSSi_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [Unsigned] =>.Intel Corporation
SR - Boot [07/12/2019] [ 884752] Intel Chipset SATA RAI (iaStorAVC) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorAVC.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 412176] Intel RAID Controller Wi (iaStorV) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorV.sys =>.Microsoft®
SR - Demand [07/12/2019] [ 558904] Mellanox InfiniBand Bus/A (ibbus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ibbus.sys =>.Microsoft®
SR - Demand [25/02/2019] [ 3808472] (igfx) . (.Intel Corporation.) - C:\WINDOWS\System32\DRIVERS\igdkmd64.sys =>.Intel Corporation®
SR - Auto [25/02/2019] [ 335576] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel Corporation®
SR - Demand [01/12/2015] [ 50160] Intel WiDi Audio Device (intaud_WaveExtensible) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\intelaud.sys =>.Intel(R) Wireless Display®
SR - Demand [03/07/2015] [ 4515584] Service for Realtek HD Audio (WDM) (IntcAzAudAddService) . (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\drivers\RTKVHD64.sys =>.Realtek Semiconductor Corp®
SR - Demand [21/08/2015] [ 463112] Son Intel(R) pour écrans (IntcDAud) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\IntcDAud.sys =>.Intel Corporation - Client Components Group®
SR - Demand [13/08/2013] [ 46568] Intel(R) Smart Connect Technol (ISCT) . (.Intel(R) Smart Connect software.) - C:\WINDOWS\System32\drivers\ISCTD64.sys =>.Intel(R) Smart Connect software®
SR - Boot [07/12/2019] [ 172344] (ItSas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\ItSas35i.sys =>.Microsoft®
SR - Demand [01/12/2015] [ 38896] IWD Bus Enumerator (iwdbus) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iwdbus.sys =>.Intel(R) Wireless Display®
SR - Boot [07/12/2019] [ 108856] (LSI_SAS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 124216] (LSI_SAS2i) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas2i.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 135992] (LSI_SAS3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\lsi_sas3i.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 82744] (LSI_SSS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sss.sys =>.Microsoft®
SR - Boot [11/10/2013] [ 29464] Intel(R) Sideband Fabric Device Se (MBI) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\MBI.sys =>.Intel(R) Software®
SR - Boot [07/12/2019] [ 59704] (megasas) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\megasas.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 81720] (megasas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\MegaSas2i.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 105480] (megasas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\megasas35i.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 575800] (megasr) . (.LSI Corporation, Inc..) - C:\WINDOWS\System32\drivers\megasr.sys =>.Microsoft®
SR - Demand [07/12/2019] [ 1131320] Mellanox ConnectX Bus E (mlx4_bus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\mlx4_bus.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 63800] (mvumis) . (.Marvell Semiconductor, Inc..) - C:\WINDOWS\System32\drivers\mvumis.sys =>.Microsoft®
SR - Demand [07/12/2019] [ 146232] NetworkDirect Service (ndfltr) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ndfltr.sys =>.Microsoft®
SR - Demand [28/11/2017] [ 32352] Apple Mobile Device E (Netaapl) . (.Apple Inc..) - C:\WINDOWS\System32\drivers\netaapl64.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 150328] (nvraid) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvraid.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 166200] (nvstor) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvstor.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 58680] (percsas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas2i.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 68408] (percsas3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas3i.sys =>.Microsoft®
SR - Demand [07/12/2019] [ 694272] Realtek RT640 NT Dri (rt640x64) . (.Realtek.) - C:\WINDOWS\System32\drivers\rt640x64.sys [Unsigned] =>.Realtek
SR - Auto [03/07/2015] [ 303360] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
SR - Demand [05/11/2016] [ 777944] Realtek PCIE Card Reader - PER (RTSPER) . (.Realsil Semiconductor Corporation.) - C:\WINDOWS\System32\DRIVERS\RtsPer.sys =>.Realtek Semiconductor Corp®
SR - Demand [28/05/2019] [ 9625384] Realtek Wireless LA (RTWlanE02) . (.Realtek Semiconductor Corporation.) - C:\WINDOWS\System32\drivers\rtwlane02.sys =>.Realtek Semiconductor Corp.®
SR - Boot [07/12/2019] [ 44856] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\WINDOWS\System32\drivers\SiSRaid2.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 81720] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\WINDOWS\System32\drivers\sisraid4.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 209720] (SmartSAMD) . (.Microsemi Corportation.) - C:\WINDOWS\System32\drivers\SmartSAMD.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 31032] (stexstor) . (.Promise Technology, Inc..) - C:\WINDOWS\System32\drivers\stexstor.sys =>.Microsoft®
SR - Demand [18/08/2017] [ 716384] Synaptics TouchPad Driver (SynTP) . (.Synaptics Incorporated.) - C:\WINDOWS\System32\DRIVERS\SynTP.sys =>.Synaptics Incorporated®
SR - Auto [18/08/2017] [ 278616] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Demand [24/07/2018] [ 35592] TAP-NordVPN Windows Adapter V9 (tapnordvpn) . (.The OpenVPN Project.) - C:\WINDOWS\System32\DRIVERS\tapnordvpn.sys =>.TEFINCOM S.A.®
SR - Demand [28/05/2015] [ 97320] Intel(R) Trusted Execution Engine (TXEIx64) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\TXEIx64.sys =>.Intel Corporation - Client Components Group®
SR - Demand [31/03/2017] [ 41992] Intel(R) Virtual Buttons (VirtualButtons) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\VirtualButtons.sys =>.Intel(R) Software®
SR - Boot [07/12/2019] [ 166712] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\WINDOWS\System32\drivers\vsmraid.sys =>.Microsoft®
SR - Boot [07/12/2019] [ 305464] VIA StorX Storage RAID Co (VSTXRAID) . (.VIA Corporation.) - C:\WINDOWS\System32\drivers\vstxraid.sys =>.Microsoft®
SR - Demand [26/02/2018] [ 35584] WD SCSI Pass Thru driver (WDC_SAM) . (.Western Digital Technologies, Inc..) - C:\WINDOWS\System32\drivers\wdcsam64.sys =>.WDKTestCert wdclab,130885612892544312®
SR - Demand [07/12/2019] [ 36152] WinMad Service (WinMad) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winmad.sys =>.Microsoft®
SR - Demand [07/12/2019] [ 73016] WinVerbs Service (WinVerbs) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winverbs.sys =>.Microsoft®
SR - Demand [11/05/2018] [ 34944] HP Wireless Button Driver Service (WirelessButtonDriver64) . (.HP.) - C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys =>.HP Inc.®
SR - Auto [27/09/2020] [ 269200] Wondershare Install Assist Service (Wondershare InstallAssist) . (.Wondershare.) - C:\ProgramData\Wondershare\Service\InstallAssistService.exe =>.Wondershare Technology Co.,Ltd®

---\\ TACHES PLANIFIEES EN AUTOMATIQUE (Registre) (6) - 23s
O38 - TASK: {3F2F81A0-6751-44F4-9BD5-CBCFEE85F348} [64Bits][\shutdown] - (.PC\Lea Guillot - .) -- shutdown [0]
O38 - TASK: {5E42A389-5563-4467-9C40-F7FFACC78E37} [64Bits][\Eteindre le PC méditation pour m'endormir] - (.Acer Inc. - .) -- shutdown [0] =>.Acer Inc.
O38 - TASK: {72CD6F30-4464-4A80-8632-8398CFB3AA69} [64Bits][\Opera scheduled Autoupdate 1478357182] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe [1943456] =>.Opera Software
C:\WINDOWS\System32\Tasks\shutdown - (.PC\Lea Guillot.) -- shutdown [/S]
C:\WINDOWS\System32\Tasks\Eteindre le PC méditation pour m'endormir - (.Acer Inc..) -- shutdown [/S] =>.Acer Inc.
C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1478357182 - (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [--scheduledautoupdate .--scheduledautoupdate] =>.Opera Software

---\\ APPLICATIONS LANCEES AU DÉMARRAGE DU SYSTÈME (3) - 0s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Security notification icon.) -- C:\WINDOWS\system32\SecurityHealthSystray.exe [Unsigned] =>.Microsoft Corporation
O4 - HKLM\..\Run: [egui] . (.ESET - ESET command line interface.) -- C:\Program Files\ESET\ESET Security\ecmds.exe =>.ESET, spol. s r.o.®
O4 - HKLM\..\Wow6432Node\Run: [Opera Browser Assistant] . (.Opera Software - Opera Browser Assistant.) -- C:\Program Files (x86)\Opera\assistant\browser_assistant.exe =>.Opera Norway AS®

---\\ PROCESSUS LANCES (17) - 20s
[MD5.7699701EDFA4419C4185149841DB6FAC] - (.ESET - ESET Forwarder.) -- C:\Program Files\ESET\ESET Security\efwd.exe [2528888] [PID.1820] =>.ESET, spol. s r.o.®
[MD5.E3439C6A998F6C408A151A08ED0D1969] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [335576] [PID.2572] [Unsigned] =>.Intel Corporation
[MD5.ABEDA1577FDE088A887E305BC43B1B76] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360] [PID.2904] =>.Realtek Semiconductor Corp®
[MD5.7760A39EB14E40C81E30DE19498A4AE8] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624] [PID.2308] =>.Realtek Semiconductor Corp®
[MD5.7760A39EB14E40C81E30DE19498A4AE8] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624] [PID.2392] =>.Realtek Semiconductor Corp®
[MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.4004] =>.Apple Inc.®
[MD5.91AF2EF13E4F1A555F16C49F50BF8746] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616] [PID.3520] =>.Synaptics Incorporated®
[MD5.DAA51184B95CCB573662A7B2687E3E89] - (.Wondershare - Wondershare InstallAssist.) -- C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200] [PID.4108] =>.Wondershare Technology Co.,Ltd®
[MD5.AEBC1AFA26110E24B324B10FFD7D99D7] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144] [PID.7376] =>.Synaptics Incorporated®
[MD5.1AB155906D707D198CAAC376D71D7E9B] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [547240] [PID.7688] [Unsigned] =>.Intel Corporation
[MD5.39D4A4E069B76504F64A02CA9E5BC971] - (.Intel Corporation - igfxHK Module.) -- C:\WINDOWS\system32\igfxHK.exe [264616] [PID.7716] [Unsigned] =>.Intel Corporation
[MD5.2D04E44F097228EEDCAC9334BC742C19] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxTray.exe [390056] [PID.7748] [Unsigned] =>.Intel Corporation
[MD5.0486C5A48DB97E46E7E4BE47BA302A3A] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [228960] [PID.8032] =>.Synaptics Incorporated®
[MD5.5CDDF06A40E89358807A2B9506F064D9] - (...) -- C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe [793416] [PID.8344] =>.Microsoft®
[MD5.CD2B9C68387298BF4EFA7822C7D38275] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088] [PID.6436] =>.Realtek Semiconductor Corp®
[MD5.C4E32AA8DDE5C282DD43AC961AC063BD] - (.ESET - ESET Proxy GUI.) -- C:\Program Files\ESET\ESET Security\eguiproxy.exe [1190008] [PID.9804] =>.ESET, spol. s r.o.®
[MD5.BA56955557E961929B73FB240CBF92FF] - (.Nicolas Coolman - ZHPSuite.) -- C:\Users\Lea Guillot\AppData\Roaming\ZHP\ZHPSuite.exe [3511456] [PID.7024] [Unsigned] =>.Nicolas Coolman

---\\ OPERA, Démarrage,Recherche,Plugins (6) - 0s
B2 - EXT: [Opera Software AS] C:\Users\Lea Guillot\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk =>.Opera Software AS
B2 - EXT: [Opera Norway AS] C:\Users\Lea Guillot\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk =>.Opera Norway AS
B2 - EXT: [] C:\Users\Lea Guillot\AppData\Roaming\Opera Software\Opera Stable\Extensions\hmffjpdmbgflojiohllanjaggdenggdo
B2 - EXT: [Opera Norway AS] C:\Users\Lea Guillot\AppData\Roaming\Opera Software\Opera Stable\Extensions\igpdmclhhlcpoindmhkhillbfhdgoegm =>.Opera Norway AS
B2 - EXT: [Opera Software AS] C:\Users\Lea Guillot\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk =>.Opera Software AS
B2 - EXT: [] C:\Users\Lea Guillot\AppData\Roaming\Opera Software\Opera Stable\Extensions\omhcddilnfoiiplehpjihipcocdplljn

---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.19041.3324 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation

---\\ INTERNET EXPLORER, Site de confiance et site sensible (2) - 0s
~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad)
~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 0(Good) / 0(Bad)

---\\ INTERNET EXPLORER,Proxy Management (8) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
R5 - HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value

---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ ETUDE DU FICHIER HOSTS (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ RACCOURCIS GLOBAL STARTUP (30) - 6s
O4 - GS\Desktop [Lea Guillot]: ZHPSuite.lnk . (.Nicolas Coolman - ZHPSuite.) C:\Users\Lea Guillot\AppData\Roaming\ZHP\ZHPSuite.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Lea Guillot]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft®
O4 - GS\sendTo [Lea Guillot]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Lea Guillot]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Lea Guillot]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Lea Guillot]: Navigateur Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Norway AS®
O4 - GS\TaskBar [Lea Guillot]: OpenOffice 4.1.7.lnk . (.Apache Software Foundation - OpenOffice 4.1.7.) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [Unsigned] =>.Apache Software Foundation
O4 - GS\TaskBar [Lea Guillot]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Programs [Lea Guillot]: BitTorrent Web.lnk . (...) C:\Users\Lea Guillot\AppData\Roaming\BitTorrent Web\btweb.exe [Unsigned]
O4 - GS\Programs [Lea Guillot]: OneDrive.lnk . (...) C:\Users\Lea Guillot\AppData\Local\Microsoft\OneDrive\OneDrive.exe [Unsigned]
O4 - GS\CommonDesktop [Public]: Protection des transactions bancaires.lnk . (.ESET - .) C:\Program Files (x86)\ESET\ESET Security\ecmd.exe /startprotectedbrowser [Unsigned] =>.ESET
O4 - GS\Programs [Public]: BitTorrent Web.lnk . (...) C:\Users\Lea Guillot\AppData\Roaming\BitTorrent Web\btweb.exe [Unsigned]
O4 - GS\Programs [Public]: OneDrive.lnk . (...) C:\Users\Lea Guillot\AppData\Local\Microsoft\OneDrive\OneDrive.exe [Unsigned]
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft®
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur multimédia Windows.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\Windows\Installer\{19589375-5C58-4AFA-842F-8B34744CCEAD}\AppleSoftwareUpdateIco.exe [Unsigned] =>.Apple Inc.
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Navigateur Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Norway AS®
O4 - GS\ProgramsCommon [Public]: PC Health Check.lnk . (...) C:\Program Files (x86)\PCHealthCheck\PCHealthCheck.exe [Unsigned] =>.Microsoft Corporation

---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (4) - 1s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1 =>.Private IP
O17 - HKLM\System\CCS\Services\Tcpip\..\{207CE81C-7EC3-4B92-B3D4-A974D6DA624B}: DhcpNameServer = 192.168.1.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{9134A62C-24C3-4E02-80DC-D3A05125E438}: DhcpNameServer = 172.20.10.1 =>.Private IP
O17 - HKLM\System\CCS\Services\Tcpip\..\{9bf2e1c3-8d0d-4610-aef5-a54b97c41c59}: DhcpNameServer = 172.20.10.1 =>.Private IP

---\\ PROTOCOLE ADDITIONNEL (22) - 3s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll [Unsigned] =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll [Unsigned] =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll [Unsigned] =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll [Unsigned] =>.Microsoft Corporation

---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\WINDOWS\System32\Userinit.exe =>.Microsoft Corporation

---\\ CLE DE REGISTRE EXPLORER StartupApproved (19) - 1s
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:uTorrent
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:f.lux =>.Microsoft Corporation
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Lync =>.Microsoft Corporation
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Skype =>.Skype
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:CCleaner Smart Cleaning =>.Piriform Ltd
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:ut
[HKEY_USERS\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:uTorrent
[HKEY_USERS\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:f.lux =>.Microsoft Corporation
[HKEY_USERS\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Lync =>.Microsoft Corporation
[HKEY_USERS\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Skype =>.Skype
[HKEY_USERS\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:CCleaner Smart Cleaning =>.Piriform Ltd
[HKEY_USERS\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:ut
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:SecurityHealth =>.Microsoft Corporation
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:iTunesHelper =>.Apple Inc.
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:AdobeAAMUpdater-1.0 =>.Adobe Inc.
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:RTHDVCPL =>.Realtek Semiconductor Corp.
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:DelaypluginInstall
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:Wondershare Helper Compact.exe =>.Wondershare
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:Opera Browser Assistant =>.Opera Software

---\\ COMPOSANTS ACTIVESETUP INSTALLES (ASIC) (4) - 3s
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll [Unsigned] =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur Window.) -- C:\Windows\System32\unregmp2.exe [Unsigned] =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [Unsigned] =>.Microsoft Corporation
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft®

---\\ LOGICIELS INSTALLES (15) - 89s
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {19589375-5C58-4AFA-842F-8B34744CCEAD} [Unsigned] =>.Apple Inc.
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} [Unsigned] =>.Apple Inc.
O42 - Logiciel: Canon MG4100 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4100_series [Unsigned] =>.Canon Inc.
O42 - Logiciel: Canon MG4100 series On-screen Manual - (.Canon Inc..) [HKLM][64Bits] -- Canon MG4100 series On-screen Manual =>.Canon Inc.®
O42 - Logiciel: EPSON XP-215 217 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON XP-215 217 Series =>.SEIKO EPSON Corporation®
O42 - Logiciel: ESET Security - (.ESET, spol. s r.o..) [HKLM][64Bits] -- {32DA3D18-091D-4B85-BFD4-C17C514674ED} [Unsigned] =>.ESET, spol. s r.o.
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {9A431D9C-9FC9-454E-AC8D-15DBAA6ED0F7} [Unsigned] =>.Intel Corporation (Hidden)
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Logiciel pour périphérique à chipset Intel® - (.Intel(R) Corporation.) [HKLM][64Bits] -- {5a6a5d15-d5af-417c-b08f-f7e5eb1f98af} =>.Intel Corporation - Software and Firmware Products® (Hidden)
O42 - Logiciel: OpenOffice 4.1.7 - (.Apache Software Foundation.) [HKLM][64Bits] -- {A9222889-1CDA-42BD-B11B-113E7C91C1C7} [Unsigned] =>.Apache Software Foundation
O42 - Logiciel: Opera Stable 101.0.4843.43 - (.Opera Software.) [HKLM][64Bits] -- Opera 101.0.4843.43 =>.Opera Norway AS®
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconduct Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Synaptics ClickPad Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated®
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player [Unsigned] =>.VideoLAN

---\\ CLE DE REGISTRE SOFTWARE HKCU & HKLM (167) - 89s
HKLM\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\AutoClickerTyper
HKLM\SOFTWARE\Canon =>.Canon
HKLM\SOFTWARE\CVSM =>.Legitimate
HKLM\SOFTWARE\DefaultUserEnvironment =>.Microsoft Corporation
HKLM\SOFTWARE\DTS =>.Creative Technology
HKLM\SOFTWARE\EPSON =>.EPSON
HKLM\SOFTWARE\ESET =>.ESET
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\InstalledOptions =>.Installed Options
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\OEM =>.OEM
HKLM\SOFTWARE\OpenSSH =>.OpenBSD
HKLM\SOFTWARE\Partner =>.Google Inc.
HKLM\SOFTWARE\RAZERWUD
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\SonicFocus =>.Sonic Focus
HKLM\SOFTWARE\SoundResearch =>.Sound Research
HKLM\SOFTWARE\SRS Labs =>.SRS Labs
HKLM\SOFTWARE\Synaptics =>.Synaptics
HKLM\SOFTWARE\Tenorshare =>.Tenorshare
HKLM\SOFTWARE\Windows =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\WOW6432Node\Canon =>.Canon
HKLM\SOFTWARE\WOW6432Node\CleverFiles =>.CleverFiles
HKLM\SOFTWARE\WOW6432Node\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\WOW6432Node\EPSON =>.EPSON
HKLM\SOFTWARE\WOW6432Node\ESET =>.ESET
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\GuidGuid13 =>.Legitimate
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\WOW6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Malwarebytes =>.Malwarebytes
HKLM\SOFTWARE\WOW6432Node\MatchWare =>.MatchWare
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\MWas
HKLM\SOFTWARE\WOW6432Node\MXDevice
HKLM\SOFTWARE\WOW6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\Opera Software =>.Opera Software
HKLM\SOFTWARE\WOW6432Node\Oracle =>.Oracle
HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Sims =>.Electronic Arts, Inc.
HKLM\SOFTWARE\WOW6432Node\Skype =>.Skype
HKLM\SOFTWARE\WOW6432Node\VideoLAN =>.VideoLan Team
HKLM\SOFTWARE\WOW6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\WOW6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\4kdownload.com =>.4kdownload.com
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Adobe Lightroom =>.Adobe Inc.
HKCU\SOFTWARE\Apowersoft =>.Apowersoft
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\BitTorrentPersist
HKCU\SOFTWARE\calibre =>.Kovid Goyal
HKCU\SOFTWARE\Canon =>.Canon
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\CleverFiles =>.CleverFiles
HKCU\SOFTWARE\Dropbox =>.Dropbox
HKCU\SOFTWARE\DropboxUpdate =>.Dropbox Inc.
HKCU\SOFTWARE\EMME =>.Emme Inc.
HKCU\SOFTWARE\Emulators =>.Open Source
HKCU\SOFTWARE\EPSON =>.EPSON
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\iMazing
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\JaboSoft =>.JaboSoft
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Macroplant =>.Macroplant
HKCU\SOFTWARE\MatchWare =>.MatchWare
HKCU\SOFTWARE\Michael Herf =>.Michael Herf
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\N64 Emulation =>.Games Software
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\None provided
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\OpenOffice =>.SourceForge
HKCU\SOFTWARE\Opera Software =>.Opera Software
HKCU\SOFTWARE\Perfect World Platform Client =>.Perfect World International
HKCU\SOFTWARE\Pomotodo
HKCU\SOFTWARE\ProtectedStorage =>.Microsoft Corporation
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\skypeapp-285d4b18408f =>.Skype Technologies
HKCU\SOFTWARE\skypeapp-74b168c71158 =>.Skype Technologies
HKCU\SOFTWARE\Smart Code ltd
HKCU\SOFTWARE\Sony Corporation =>.Sony Corporation
HKCU\SOFTWARE\SubSystems =>.Sub Systems Inc
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKU\.DEFAULT\SOFTWARE\Apple Inc. =>.Apple Inc.
HKU\.DEFAULT\SOFTWARE\Canon =>.Canon
HKU\.DEFAULT\SOFTWARE\Dropbox =>.Dropbox
HKU\.DEFAULT\SOFTWARE\ESET =>.ESET
HKU\.DEFAULT\SOFTWARE\Opera Software =>.Opera Software
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\4kdownload.com =>.4kdownload.com
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Adobe =>.Adobe
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Adobe Lightroom =>.Adobe Inc.
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Apowersoft =>.Apowersoft
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Apple Inc. =>.Apple Inc.
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\BitTorrentPersist
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\calibre =>.Kovid Goyal
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Canon =>.Canon
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Chromium =>.Chromium
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\CleverFiles =>.CleverFiles
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Dropbox =>.Dropbox
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\DropboxUpdate =>.Dropbox Inc.
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\EMME =>.Emme Inc.
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Emulators =>.Open Source
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\EPSON =>.EPSON
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\ESET =>.ESET
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Google =>.Google
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\IM Providers =>.IM Providers
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\iMazing
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Intel =>.Intel
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\JaboSoft =>.JaboSoft
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Macromedia =>.Macromedia
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Macroplant =>.Macroplant
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\MatchWare =>.MatchWare
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Michael Herf =>.Michael Herf
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\N64 Emulation =>.Games Software
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Netscape =>.Netscape
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\None provided
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\OpenOffice =>.SourceForge
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Opera Software =>.Opera Software
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Perfect World Platform Client =>.Perfect World International
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Pomotodo
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\ProtectedStorage =>.Microsoft Corporation
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\QtProject =>.QtProject
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Skype =>.Skype
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\skypeapp-285d4b18408f =>.Skype Technologies
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\skypeapp-74b168c71158 =>.Skype Technologies
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Smart Code ltd
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Sony Corporation =>.Sony Corporation
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\SubSystems =>.Sub Systems Inc
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Synaptics =>.Synaptics
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Wondershare =>.Wondershare
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\SOFTWARE\ZHP =>.Nicolas Coolman

---\\ PACKAGES (5) - 1s
C:\Program Files (x86)\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep - (.Canon Inc..) [][Canon Inkjet Print Utility] =>Canon Inc.
C:\Program Files (x86)\WindowsApps\64885BlueEdge.OneCalendar_2023.805.1.0_x64__8kea50m9krsh2 - (.Code Spark.) [][One Calendar] =>Code Spark
C:\Program Files (x86)\WindowsApps\AD2F1837.HPPrinterControl_148.2.1069.0_x64__v10z8vjag6ke6 - (.Hewlett-Packard.) [][HP Smart] =>Hewlett-Packard
C:\Program Files (x86)\WindowsApps\MicrosoftWindows.UndockedDevKit_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy - (.Microsoft Corporation.) [][UDK Package] =>Microsoft Corporation
C:\Program Files (x86)\WindowsApps\NcsiUwpApp_1000.19041.1023.0_neutral_neutral_8wekyb3d8bbwe - (.Microsoft.) [][NcsiUwpApp] =>Microsoft

---\\ CONTENU DES DOSSIERS PROGRAMMES (95) - 19s
O43 - CFD: 01/07/2021 - [] D -- C:\Program Files\Bonjour =>.Apple Inc.
O43 - CFD: 16/08/2023 - [] D -- C:\Program Files\ESET =>.ESET, spol. s r.o.®
O43 - CFD: 28/10/2020 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 12/10/2020 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 29/06/2023 - [] D -- C:\Program Files\RUXIM =>.Microsoft®
O43 - CFD: 10/10/2020 - [] DC -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 21/09/2020 - [] D -- C:\Program Files (x86)\Apowersoft =>.Apowersoft
O43 - CFD: 01/07/2021 - [] D -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 11/11/2020 - [] D -- C:\Program Files (x86)\Canon =>.Canon Inc.®
O43 - CFD: 14/10/2020 - [] D -- C:\Program Files (x86)\EaseUS =>.EaseUS Software
O43 - CFD: 20/04/2020 - [] D -- C:\Program Files (x86)\Google =>.Google
O43 - CFD: 14/12/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 05/11/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 28/12/2019 - [] D -- C:\Program Files (x86)\OpenOffice 4 =>.OpenOffice.org
O43 - CFD: 31/08/2023 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software
O43 - CFD: 12/07/2023 - [0] D -- C:\Program Files (x86)\Razer =>.Razer
O43 - CFD: 05/11/2016 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 14/10/2020 - [] D -- C:\Program Files (x86)\Tenorshare =>.Tenorshare
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 19/01/2018 - [] D -- C:\Program Files (x86)\WinRAR =>.WinRAR
O43 - CFD: 23/11/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download =>.Legitimate
O43 - CFD: 29/06/2023 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 27/11/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Click Typer
O43 - CFD: 26/10/2022 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira =>.Avira Software
O43 - CFD: 28/02/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biblio Manuels =>.Sejer
O43 - CFD: 10/10/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG4100 series =>.Canon Inc.
O43 - CFD: 11/11/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG4100 series Manual =>.Canon Inc.
O43 - CFD: 16/08/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET =>.ESET
O43 - CFD: 10/10/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 5 =>.International GeoGebra Institute
O43 - CFD: 18/11/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7 =>.Antonio Da Cruz
O43 - CFD: 24/09/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation =>.RomStation
O43 - CFD: 10/10/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SD Association =>.SD Association
O43 - CFD: 26/05/2019 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 3 Complete Collection
O43 - CFD: 10/10/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 21/10/2018 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winmail Opener =>.EolSoft
O43 - CFD: 14/10/2020 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare =>.Wondershare
O43 - CFD: 14/10/2020 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 21/09/2020 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc.
O43 - CFD: 29/11/2016 - [] HD -- C:\ProgramData\CanonBJ =>.Canon Inc.
O43 - CFD: 11/11/2020 - [] HD -- C:\ProgramData\CanonIJEGV =>.Canon Inc.
O43 - CFD: 26/11/2018 - [] D -- C:\ProgramData\Caphyon =>.Caphyon
O43 - CFD: 14/10/2020 - [] D -- C:\ProgramData\CleverFiles =>.CleverFiles
O43 - CFD: 22/05/2018 - [] D -- C:\ProgramData\EPSON =>.EPSON
O43 - CFD: 16/08/2023 - [] D -- C:\ProgramData\ESET =>.ESET
O43 - CFD: 11/03/2019 - [] D -- C:\ProgramData\mwas =>.MWas
O43 - CFD: 14/10/2018 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 29/06/2023 - [] D -- C:\ProgramData\PLUG
O43 - CFD: 11/07/2023 - [] D -- C:\ProgramData\Razer =>.Razer
O43 - CFD: 04/02/2019 - [] D -- C:\ProgramData\Synaptics =>.Synaptics
O43 - CFD: 14/10/2020 - [] D -- C:\ProgramData\WindSolutions =>.WindSolutions
O43 - CFD: 14/10/2020 - [] D -- C:\ProgramData\Wondershare =>.Wondershare
O43 - CFD: 10/08/2020 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 10/10/2020 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 19/07/2017 - [] D -- C:\Program Files (x86)\Common Files\Wondershare =>.Wondershare
O43 - CFD: 29/06/2023 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 21/09/2020 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\Apowersoft =>.Apowersoft
O43 - CFD: 04/02/2019 - [0] D -- C:\Users\Lea Guillot\AppData\Roaming\dvdcss =>.VideoLan Team
O43 - CFD: 14/11/2016 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 28/12/2019 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\OpenOffice =>.SourceForge
O43 - CFD: 05/11/2016 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\Opera Software =>.Opera Software
O43 - CFD: 03/10/2019 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\Sony Corporation =>.Sony Corporation
O43 - CFD: 06/02/2019 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\Synaptics =>.Synaptics
O43 - CFD: 16/08/2023 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 14/10/2020 - [0] D -- C:\Users\Lea Guillot\AppData\Roaming\WindSolutions =>.WindSolutions
O43 - CFD: 16/08/2023 - [0] D -- C:\Users\Lea Guillot\AppData\Roaming\windspro
O43 - CFD: 15/01/2018 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 31/08/2023 - [] D -- C:\Users\Lea Guillot\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 29/06/2023 - [] D -- C:\Users\Lea Guillot\AppData\Local\Adobe =>.Adobe
O43 - CFD: 21/09/2020 - [] D -- C:\Users\Lea Guillot\AppData\Local\Apple Computer =>.Apple Inc.
O43 - CFD: 14/10/2020 - [] D -- C:\Users\Lea Guillot\AppData\Local\assembly =>.Assembly
O43 - CFD: 12/05/2022 - [] D -- C:\Users\Lea Guillot\AppData\Local\cache =>.Legitimate
O43 - CFD: 10/08/2020 - [] D -- C:\Users\Lea Guillot\AppData\Local\calibre-cache =>.Kovid Goyal
O43 - CFD: 10/08/2020 - [] D -- C:\Users\Lea Guillot\AppData\Local\calibre-ebook.com
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Lea Guillot\AppData\Local\CEF =>.CEF
O43 - CFD: 14/10/2020 - [] D -- C:\Users\Lea Guillot\AppData\Local\CleverFiles =>.CleverFiles
O43 - CFD: 14/10/2020 - [] D -- C:\Users\Lea Guillot\AppData\Local\CrashRpt
O43 - CFD: 09/09/2022 - [] D -- C:\Users\Lea Guillot\AppData\Local\D3DSCache =>.Legitimate
O43 - CFD: 01/07/2021 - [] D -- C:\Users\Lea Guillot\AppData\Local\DigiDNA =>.DigiDNA
O43 - CFD: 14/10/2020 - [] D -- C:\Users\Lea Guillot\AppData\Local\DiskDrill =>.Clever Software
O43 - CFD: 19/07/2017 - [] D -- C:\Users\Lea Guillot\AppData\Local\drmingw
O43 - CFD: 28/11/2016 - [0] SHD -- C:\Users\Lea Guillot\AppData\Local\EmieSiteList =>.ATTENTION
O43 - CFD: 28/11/2016 - [0] SHD -- C:\Users\Lea Guillot\AppData\Local\EmieUserList =>.ATTENTION
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Lea Guillot\AppData\Local\FluxSoftware =>.Stereopsis
O43 - CFD: 16/08/2023 - [] D -- C:\Users\Lea Guillot\AppData\Local\mbam =>.Malwarebytes
O43 - CFD: 13/11/2016 - [] D -- C:\Users\Lea Guillot\AppData\Local\mpress =>.MPress
O43 - CFD: 05/11/2016 - [] D -- C:\Users\Lea Guillot\AppData\Local\Opera Software =>.Opera Software
O43 - CFD: 13/05/2020 - [] D -- C:\Users\Lea Guillot\AppData\Local\SquirrelTemp =>.Squirrels
O43 - CFD: 30/08/2023 - [] D -- C:\Users\Lea Guillot\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 14/11/2016 - [0] SHD -- C:\Users\Lea Guillot\AppData\LocalLow\EmieSiteList =>.ATTENTION
O43 - CFD: 14/11/2016 - [0] SHD -- C:\Users\Lea Guillot\AppData\LocalLow\EmieUserList =>.ATTENTION
O43 - CFD: 14/10/2018 - [] D -- C:\Users\Lea Guillot\AppData\LocalLow\Sun =>.Oracle
O43 - CFD: 10/10/2020 - [] RD -- C:\Users\Lea Guillot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 01/06/2020 - [0] D -- C:\Users\Lea Guillot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov =>.Molotov
O43 - CFD: 10/10/2020 - [] SD -- C:\Users\Lea Guillot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.7 =>.SourceForge
O43 - CFD: 12/10/2020 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Opera Software =>.Opera Software

---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 1s
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll [Unsigned] =>.Microsoft Corporation

---\\ RACCOURCIS DES MENUS CONTEXTUELS (SCMH) (25) - 8s
O108 - CMH1: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH2: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH5: igfxDTCM [64Bits] - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\WINDOWS\system32\igfxDTCM.dll [Unsigned] =>.Intel Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH6: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Programme de résolution d’applications.) -- C:\Windows\System32\appresolver.dll =>.Microsoft®
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH7: ESET Security Shell [64Bits] - {B089FE88-FB52-11D3-BDF1-0050DA34150D} . (.ESET - ESET Shell Extension.) -- C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.®
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation

---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (17) - 6s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Driver Installation Module.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation

---\\ LISTE DES PILOTES DU SYSTEME (93) - 58s
O58 - SDL:2019/12/07 11:07:53 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107320] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135416] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:47 A . (.Advanced Micro Devices, Inc - AMD GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\amdgpio2.sys [18432] [Unsigned] =>.Advanced Micro Devices, Inc
O58 - SDL:2019/12/07 11:07:47 A . (.Advanced Micro Devices, Inc - AMD I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\amdi2c.sys [45568] [Unsigned] =>.Advanced Micro Devices, Inc
O58 - SDL:2019/12/07 11:07:53 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83256] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259384] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26936] =>.Microsoft®
O58 - SDL:2020/10/09 14:53:30 A . (.Apple Inc. - Apple Mobile Device USB Device.) -- C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032] =>.WDKTestCert build,132303256403278908®
O58 - SDL:2020/10/09 14:53:32 A . (.Apple Inc. - Apple Mobile Device USB Device.) -- C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976] =>.WDKTestCert build,132303256403278908®
O58 - SDL:2019/12/07 11:07:53 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131896] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:47 A . (. - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] [Unsigned] =>.Broadcom Corporation
O58 - SDL:2019/12/07 11:07:50 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533816] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [144184] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [319800] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Chelsio Communications - VF library for Chelsio ® T5/T6 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vfx.sys [28672] [Unsigned] =>.Chelsio Communications
O58 - SDL:2019/12/07 11:07:54 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1853752] =>.Microsoft®
O58 - SDL:2023/06/29 20:17:37 A . (...) -- C:\WINDOWS\System32\drivers\cimfs.sys [95232] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2023/08/04 12:03:10 A . (.ESET - ESET real-time file system monitor.) -- C:\WINDOWS\System32\drivers\eamonm.sys [208704] =>.ESET, spol. s r.o.®
O58 - SDL:2023/08/04 12:03:10 A . (.ESET - Devmon monitor.) -- C:\WINDOWS\System32\drivers\edevmon.sys [118904] =>.ESET, spol. s r.o.®
O58 - SDL:2023/08/03 04:27:08 A . (.ESET - ESET ELAM driver.) -- C:\WINDOWS\System32\drivers\eelam.sys [16336] =>.Microsoft®
O58 - SDL:2023/08/04 12:03:10 A . (.ESET - ESET Helper driver.) -- C:\WINDOWS\System32\drivers\ehdrv.sys [249544] =>.ESET, spol. s r.o.®
O58 - SDL:2023/08/04 12:03:10 A . (.ESET - ESET OPP Keyboard Filter.) -- C:\WINDOWS\System32\drivers\ekbdflt.sys [55424] =>.ESET, spol. s r.o.®
O58 - SDL:2023/08/04 12:03:10 A . (.ESET - ESET Firewall Driver.) -- C:\WINDOWS\System32\drivers\epfw.sys [81712] =>.ESET, spol. s r.o.®
O58 - SDL:2023/08/04 12:03:10 A . (.ESET - ESET Firewall Driver.) -- C:\WINDOWS\System32\drivers\epfwwfp.sys [123040] =>.ESET, spol. s r.o.®
O58 - SDL:2019/12/07 11:07:50 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3418936] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64312] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:47 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36352] [Unsigned] =>.Intel(R) Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91136] [Unsigned] =>.Intel(R) Corporation
O58 - SDL:2013/11/12 01:54:30 A . (.Intel Corporation - GPIO Controller Driver E.) -- C:\WINDOWS\System32\drivers\iaiogpioe.sys [31232] [Unsigned] =>.Intel Corporation
O58 - SDL:2013/11/12 01:54:30 N . (.Intel Corporation - I2C Controller Driver E.) -- C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:47 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:50 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2019/12/07 11:07:50 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] [Unsigned] =>.Intel Corporation
O58 - SDL:2019/12/07 11:07:54 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAVC.sys [884752] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412176] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [558904] =>.Microsoft®
O58 - SDL:2019/02/25 13:18:44 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3808472] =>.Intel Corporation®
O58 - SDL:2015/08/21 12:50:48 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [463112] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/12/01 21:46:03 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [50160] =>.Intel(R) Wireless Display®
O58 - SDL:2013/08/13 16:02:12 A . (. - Intel(R) Smart Connect Technology Device Dr.) -- C:\WINDOWS\System32\drivers\ISCTD64.sys [46568] =>.Intel(R) Smart Connect software®
O58 - SDL:2019/12/07 11:07:53 A . (.Avago Technologies - Avago SAS Gen3.5 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\ItSas35i.sys [172344] =>.Microsoft®
O58 - SDL:2015/12/01 21:46:03 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [38896] =>.Intel(R) Wireless Display®
O58 - SDL:2019/12/07 11:07:53 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108856] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [124216] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [135992] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82744] =>.Microsoft®
O58 - SDL:2013/10/11 15:44:38 A . (.Intel Corporation - MBI driver.) -- C:\WINDOWS\System32\drivers\MBI.sys [29464] =>.Intel(R) Software®
O58 - SDL:2019/12/07 11:07:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59704] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [81720] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas35i.sys [105480] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575800] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [1131320] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63800] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [146232] =>.Microsoft®
O58 - SDL:2017/11/28 16:56:30 A . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\WINDOWS\System32\drivers\netaapl64.sys [32352] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150328] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166200] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58680] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [68408] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Realtek - Realtek 8125/8136/8168/8169 NDIS 6.40 64-bi.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [694272] [Unsigned] =>.Realtek
O58 - SDL:2019/12/07 11:08:09 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [48640] [Unsigned] =>.Realtek
O58 - SDL:2015/07/03 21:21:48 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4515584] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/11/05 16:57:21 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsBaStor.sys [313048] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/11/05 16:57:21 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsP2Stor.sys [328920] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/11/05 16:57:21 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\WINDOWS\System32\drivers\RtsPer.sys [777944] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/11/05 16:57:21 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsPStor.sys [367320] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/11/05 16:57:21 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [413912] =>.Realtek Semiconductor Corp®
O58 - SDL:2019/05/28 08:07:36 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driver 78045 35786.) -- C:\WINDOWS\System32\drivers\rtwlane02.sys [9625384] =>.Realtek Semiconductor Corp.®
O58 - SDL:2019/12/07 11:07:53 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44856] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81720] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:53 A . (.Microsemi Corportation - Storport Miniport Driver for SmartRAID/Smar.) -- C:\WINDOWS\System32\drivers\SmartSAMD.sys [209720] =>.Microsoft®
O58 - SDL:2017/08/18 03:23:50 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [53848] =>.Synaptics Incorporated®
O58 - SDL:2017/08/18 03:23:50 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [55384] =>.Synaptics Incorporated®
O58 - SDL:2019/12/07 11:07:53 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31032] =>.Microsoft®
O58 - SDL:2017/08/18 03:23:52 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\WINDOWS\System32\drivers\SynRMIHID_Aux.sys [66136] =>.Synaptics Incorporated®
O58 - SDL:2017/08/18 03:23:52 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [716384] =>.Synaptics Incorporated®
O58 - SDL:2018/07/24 15:50:08 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\tapnordvpn.sys [35592] =>.TEFINCOM S.A.®
O58 - SDL:2015/05/28 11:03:06 A . (.Intel Corporation - Intel(R) Trusted Execution Engine Interface.) -- C:\WINDOWS\System32\drivers\TXEIx64.sys [97320] =>.Intel Corporation - Client Components Group®
O58 - SDL:2019/12/07 11:08:37 A . (...) -- C:\WINDOWS\System32\drivers\UsbPmApi.sys [53248] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2017/03/31 19:02:28 A . (.Intel Corporation - Intel(R) Virtual Buttons.) -- C:\WINDOWS\System32\drivers\VirtualButtons.sys [41992] =>.Intel(R) Software®
O58 - SDL:2019/12/07 11:07:54 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166712] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305464] =>.Microsoft®
O58 - SDL:2018/02/26 18:33:16 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\WINDOWS\System32\drivers\wdcsam64.sys [35584] =>.WDKTestCert wdclab,130885612892544312®
O58 - SDL:2019/12/07 11:07:54 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [36152] =>.Microsoft®
O58 - SDL:2019/12/07 11:07:54 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [73016] =>.Microsoft®
O58 - SDL:2018/05/11 18:37:46 A . (.HP - HP Wireless Button Driver.) -- C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944] =>.HP Inc.®

---\\ ASSOCIATION Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value

---\\ MENU DE DÉMARRAGE INTERNET (8) - 1s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe =>.Opera Norway AS®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Show IE Icon Utility.) -- C:\WINDOWS\System32\ie4ushowIE.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Show IE Icon Utility.) -- C:\WINDOWS\System32\ie4ushowIE.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software

---\\ RECHERCHE D'INFECTION SUR NAVIGATEURS (2) - 0s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com

---\\ ENUMERE LES SERVICES DÉMARRES PAR Svchost (53) - 7s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [221696] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [221696] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [304128] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1341952] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [1055232] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [836608] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [32768] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [161280] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [112640] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [813056] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [243712] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [488448] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [542720] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports de problèmes.) -- C:\Windows\System32\wercplsupport.dll [134656] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [2465280] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [333824] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: TroubleshootingSvc (TroubleshootingSvc) . (.Microsoft Corporation - MitigationClient.) -- C:\Windows\System32\MitigationClient.dll [495616] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: LxpSvc (LxpSvc) . (.Microsoft Corporation - Fournit une prise en charge de l'infrastruc.) -- C:\Windows\System32\LanguageOverlayServer.dll [410112] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [223232] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1291264] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [1138176] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: WManSvc (WManSvc) . (.Microsoft Corporation - DLL du Service de gestion de Windows.) -- C:\Windows\System32\Windows.Management.Service.dll [854528] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [70656] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [1483776] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [329216] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2247680] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\Windows\System32\TokenBroker.dll [1522176] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [48640] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [454656] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [111616] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [1009152] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [551936] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [77824] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [619008] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3447296] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1481216] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [283136] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [58880] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [941000] =>.Microsoft®
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [245248] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [217600] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1295360] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session du service Orchest.) -- C:\Windows\System32\usosvc.dll [570368] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [72704] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [171520] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1049088] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [288256] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [207360] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [557056] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [145408] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - Service SvcHost pour le filtre clavier Micr.) -- C:\Windows\System32\KeyboardFilterSvc.dll [162136] =>.Microsoft®
O83 - Search Svchost Services: DcSvc (DcSvc) . (.Microsoft Corporation - dcsvc.) -- C:\Windows\System32\dcsvc.dll [787968] [Unsigned] =>.Microsoft Corporation

---\\ CODES PRODUITS LOGICIELS (1) - 10s
O90 - PUC: "81D3AD23D19058B4FB4D1CC7156447DE" [HKLM] . (.ESET Security.) -- C:\WINDOWS\Installer\{32DA3D18-091D-4B85-BFD4-C17C514674ED}\Icon_Product

---\\ PACKAGES WINDOWS INSTALLER (5) - 11s
[MD5.BFD317B6B040FA216644348A20F6C8EC] [WIS][2015/03/12 12:35:12] (.Intel Corporation - Intel(R) Chipset Device Software.) -- C:\WINDOWS\Installer\131d69.msi [1044480] =>.Intel Corporation
[MD5.24E1B96B703E125A98774CCB8A1ED785] [WIS][2018/03/19 20:06:54] (.Apple Inc. - Apple Software Update Installer.) -- C:\WINDOWS\Installer\5bd7b7a.msi [3608576] =>.Apple Inc.
[MD5.52E471C6CA24D7253D867E4AA1EEF31F] [WIS][2019/09/04 03:09:54] (.OpenOffice - OpenOffice 4.1.7.) -- C:\WINDOWS\Installer\6ad3fdd3.msi [2469888] =>.OpenOffice
[MD5.86E2B390629665FBC20E06DFBF01A48F] [WIS][2021/01/22 01:20:22] (.Apple Inc. - [ProductName] Installer.) -- C:\WINDOWS\Installer\94f5d8cf.msi [2732032] =>.Apple Inc.
[MD5.F5684DE563713F1CA08FFB37908FCE73] [WIS][2023/08/16 04:23:10] (.ESET, spol. s r.o. - ESET Security.) -- C:\WINDOWS\Installer\e9501193.msi [55930880] =>.ESET, spol. s r.o.

---\\ FEATURE CONTROL. (3) - 0s
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:browser_assistant.exe
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_GPU_RENDERING]:RomStation.exe
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SCRIPTURL_MITIGATION]:RomStation.exe

---\\ OBSERVATEURS des évènements (158) - 108s

Application.Error: Application Hang (4)
~Numéro: 77107
~Date: 08/31/2023 12:28:40 AM
~ID: 1002
~Description: Le programme %1 version %2 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de proces
~Suggestion: Essayer les commandes suivantes ipconfig /release et ipconfig / renew.

Application.Warning: Microsoft-Windows-System-Restore (1)
~Numéro: 77097
~Date: 08/31/2023 12:21:02 AM
~ID: 8303
~Description: Scoping unsuccessful for shadowcopy %1 with error %2.
~Suggestion: Exécuter la commande chkdsk / f

Application.Error: MsiInstaller (2)
~Numéro: 77087
~Date: 08/31/2023 12:19:57 AM
~ID: 11721
~Description: Produit : Apple Software Update -- Erreur 1721. Un problème s'est produit sur ce package Windows Installer. Un programme nécessaire pour que cette installation puisse se terminer n'a pas pu être exécuté. Contactez votre service de support ou le distr
~Suggestion: Aucune

Application.Error: Application Error (2)
~Numéro: 76879
~Date: 08/16/2023 05:27:52 AM
~ID: 1000
~Description: Nom de l’application défaillante %1, version : %2, horodatage : 0x5da7ab91 Nom du module défaillant : %4, version : %5, horodatage : 0x00000000 Code d’exception : 0x80131623 Décalage d’erreur : 0x00007ffec746200f ID du processus défaillant : 0x1f84 H
~Suggestion: Réparer ou réinstaller l'application.

Application.Error: .NET Runtime (2)
~Numéro: 76878
~Date: 08/16/2023 05:27:51 AM
~ID: 1025
~Description: Application: wmiprvse.exeFramework Version: v4.0.30319Description: The application requested process termination through System.Environment.FailFast(string message).Message: Une exception inattendue a été levée par le fournisseur : System.IO.FileLoad

Application.Error: Microsoft Security Client (6)
~Numéro: 76877
~Date: 08/16/2023 05:27:47 AM
~ID: 3002
~Description: 0x80041001

Application.Error: SecurityCenter (1)
~Numéro: 76829
~Date: 08/16/2023 04:17:37 AM
~ID: 17
~Description: Security Center n'a pas pu valider l'appelant. Erreur %1.

Application.Warning: Windows Search Service (1)
~Numéro: 76808
~Date: 08/16/2023 03:36:53 AM
~ID: 10023
~Description: Le processus du protocole hôte %2 n’a pas répondu et il est actuellement en cours d’arrêt forcé {processus de filtrage d’hôte %3}.
~Suggestion: Désactiver l'indexation des boîtes aux lettres

Application.Error: Bonjour Service (9)
~Numéro: 75088
~Date: 07/11/2023 08:15:06 PM
~ID: 100
~Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 12 1.A.1.E.5.B.1.B.D.7.C.8.B.8.A.6.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR PC-2.local.
~Suggestion: Supprimer la tâche planifiée correspondante ou le service 'Bonjour Service'

Application.Warning: Software Protection Platform Service (22)
~Numéro: 74098
~Date: 07/06/2023 10:52:34 AM
~ID: 1193
~Description: Échec de la collecte des informations PKEY pour l’OEM:clé de produit (Product Key) DM. Erreur : 0xC004E016 Clé de produit (Product Key) : KRPQB-68N64-PYPY9-CW4BT-TJD66

Application.Warning: Microsoft-Windows-PerfProc (6)
~Numéro: 73643
~Date: 07/01/2023 09:11:25 PM
~ID: 2002
~Description: Impossible d’ouvrir l’objet de traitement %1 pour un accès en interrogation. Le processus appelant peut ne pas disposer de l’autorisation d’ouvrir ce travail. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état.
~Suggestion: Vérifier les compteurs de performances

Application.Warning: ESENT (2)
~Numéro: 73642
~Date: 07/01/2023 09:11:21 PM
~ID: 636
~Description: %1 (%2) %3Le fichier de mappage de vidage « %4 » sera supprimé. Motif : %5.

Application.Error: VSS (2)
~Numéro: 73588
~Date: 07/01/2023 09:08:43 PM
~ID: 8193
~Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine %1. hr = %2. Opération : Opération asynchrone en cours d’exécutionContexte : État actuel: DoSnapshotSet
~Suggestion: Utiliser la procédure de reconstruction du VSS

Application.Warning: Microsoft-Windows-RestartManager (2)
~Numéro: 73249
~Date: 06/30/2023 11:59:17 PM
~ID: 10010
~Description: Impossible de redémarrer l’application « %3 » (pid %2) - %9.
~Suggestion: Redémarrer manuellement l'application ou le service

Application.Warning: Microsoft-Windows-WMI (6)
~Numéro: 72835
~Date: 06/29/2023 11:30:37 PM
~ID: 63
~Description: Un fournisseur, %1, a été inscrit dans l’espace de noms Windows Management Instrumentation %2, afin d’utiliser le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s’il ne représente pas
~Suggestion: Généralement LocalSystem n'est pas nécessaire et le contexte de sécurité NetworkServiceHost est plus approprié.

System.Error: Microsoft-Windows-WindowsUpdateClient (23)
~Numéro: 17780
~Date: 08/31/2023 12:35:32 AM
~ID: 20
~Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur %1 : %2.
~Suggestion: http://kb.eventtracker.com/evtpass/evtpages/EventId_20_Microsoft-Windows-WindowsUpdateClient_63351.asp

System.Error: DCOM (245)
~Numéro: 17758
~Date: 08/31/2023 12:24:23 AM
~ID: 10001
~Description: "C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca2147942402Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdgeNon disponibleNon

System.Warning: Microsoft-Windows-Kernel-PnP (11)
~Numéro: 17715
~Date: 08/31/2023 12:13:26 AM
~ID: 219
~Description: Le chargement du pilote %5 a échoué pour le périphérique %2.
~Suggestion: Vérifier que le pilote a bien été chargé dans les informations système

System.Error: Service Control Manager (20)
~Numéro: 17662
~Date: 08/30/2023 11:34:22 PM
~ID: 7031
~Description: Le service %1 s’est terminé de manière inattendue. Ceci s’est produit %2 fois. L’action corrective suivante va être effectuée dans %3 millisecondes : %5.

System.Warning: disk (33)
~Numéro: 17656
~Date: 08/30/2023 11:21:43 PM
~ID: 51
~Description: Une erreur a été détectée sur le périphérique %1 lors d'une opération de pagination.

System.Warning: Microsoft-Windows-Ntfs (2)
~Numéro: 17643
~ID: 140
~Description: 2F:24\Device\HarddiskVolume120xc000000e{73e696f8-3879-bc37-858c-31a2a7610246}8WD 16My Passport 07404100316WXL1A61T4281 70

System.Warning: Microsoft-Windows-DNS-Client (12)
~Numéro: 17606
~Date: 08/30/2023 10:23:48 PM
~ID: 1014
~Description: La résolution du nom %1 a expiré lorsqu’aucun des serveurs DNS configurés n’a répondu.
~Suggestion: https://social.technet.microsoft.com/wiki/contents/articles/3336.event-id-1014-microsoft-windows-dns-client.aspx

System.Warning: Microsoft-Windows-Time-Service (20)
~Numéro: 17514
~Date: 08/30/2023 09:43:24 PM
~ID: 134
~Description: NtpClient n'a pas pu définir d'homologue manuel utilisable comme source de temps en raison d'une erreur de résolution DNS sur "%3". NtpClient réessaiera dans %2 minutes, puis doublera l'intervalle d'attente pour les tentatives suivantes. L'erreur éta
~Suggestion: Resynchroniser le client avec l'homologue de source de temps

System.Error: EventLog (2)
~Numéro: 16102
~Date: 06/30/2023 11:49:21 PM
~ID: 6008
~Description: L’arrêt système précédant à %1 le %2 n’était pas prévu.

System.Error: volsnap (2)
~Numéro: 15912
~Date: 06/29/2023 08:42:31 PM
~ID: 36
~Description: Les clichés instantanés du volume %2 ont été annulés car le stockage du cliché instantané n’a pas pu s’agrandir en raison d’une limite utilisateur.

System.Error: Microsoft-Windows-Eventlog (1)
~Numéro: 15430
~Date: 11/01/2022 11:52:08 PM
~ID: 30
~Description: Le service de journalisation des événements a rencontré une erreur (%1) lors de l’activation de l’éditeur %3 sur le canal %2. Cette erreur n’affecte pas le fonctionnement du canal, mais a une incidence sur la capacité de l’éditeur de déclencher des é

System.Error: Schannel (3)
~Numéro: 14774
~Date: 10/26/2022 02:45:25 PM
~ID: 4103
~Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification %1 pour TLS. État d'erreur interne : %2.

System.Warning: Microsoft-Windows-Kernel-Processor-Power (2)
~Numéro: 14145
~Date: 08/31/2022 05:02:07 PM
~ID: 37
~Description: La vitesse du processeur logique Hyper-V %2 est limitée par le microprogramme du système. Le processeur a connu cet état de performances réduites pendant %3 secondes depuis le dernier rapport.

System.Warning: Tcpip (1)
~Numéro: 13814
~Date: 06/27/2022 07:12:18 PM
~ID: 4266
~Description: Une demande d’allocation d’un numéro de port éphémère de l’espace de port UDP global a échoué car tous les ports de ce type sont utilisés.

---\\ SCAN ADDITIONNEL (4) - 14s
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Public\Documents\WinDS PRO\windspro.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Public\Documents\WinDS PRO\windspro.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Public\Documents\WinDS PRO\windspro.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3195448107-2143260561-2157292724-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Public\Documents\WinDS PRO\windspro.exe.ApplicationCompany =>.SUP.Orphan.MUICache

---\\ RECAPITULATIF DES ELEMENTS TROUVES (3) - 0s
https://nicolascoolman.eu/forum/Topic/warning-eventlogapp-evenement-dapplication/ =>Warning.EventLogApp
https://nicolascoolman.eu/forum/Topic/warning-eventlogsys-evenement-systeme/ =>Warning.EventLogSys
https://nicolascoolman.eu/forum/Topic/orphan-muicache-logiciel-potentiellement-superflu-lps/ =>.SUP.Orphan.MUICache

---\\ NUMEROS DE SÉRIE
[00A657F778B31AE523D667131718D16EB2] [16/08/2023] (.Malwarebytes Inc..) - C:\Users\Lea Guillot\Desktop\MBSetup.exe =>.Malwarebytes Inc.
[0150B1D803F9F70294A501581DB63264] [03/12/2014] (.SEIKO EPSON Corporation.) - C:\Windows\system32\spool\DRIVERS\x64\3\E_IINSLGE.EXE =>.SEIKO EPSON Corporation
[0249A132815AF42E75A78D7098517EFD] [06/07/2022] (.Opera Norway AS.) - C:\Program Files (x86)\Opera\assistant\browser_assistant.exe =>.Opera Norway AS
[044E790095459B33A82402A442191951] [09/08/2023] (.Opera Norway AS.) - C:\Program Files (x86)\Opera\101.0.4843.43\opera.exe =>.Opera Norway AS
[044E790095459B33A82402A442191951] [09/08/2023] (.Opera Norway AS.) - C:\Program Files (x86)\Opera\launcher.exe =>.Opera Norway AS
[044E790095459B33A82402A442191951] [29/06/2023] (.Opera Norway AS.) - C:\Program Files (x86)\Opera\99.0.4788.88\opera.exe =>.Opera Norway AS
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\callmsi.exe =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\ecmds.exe =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\efwd.exe =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\eguiproxy.exe =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\ekrn.exe =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\Program Files\ESET\ESET Security\shellExt.dll =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\WINDOWS\System32\DRIVERS\eamonm.sys =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\WINDOWS\System32\DRIVERS\edevmon.sys =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\WINDOWS\System32\DRIVERS\ehdrv.sys =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\WINDOWS\System32\DRIVERS\ekbdflt.sys =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\WINDOWS\System32\DRIVERS\epfw.sys =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [04/08/2023] (.ESET, spol. s r.o..) - C:\WINDOWS\System32\DRIVERS\epfwwfp.sys =>.ESET, spol. s r.o.
[05F97D054A9BFCBF9D5E12F8D0ABBE07] [16/08/2023] (.ESET, spol. s r.o..) - C:\Users\Lea Guillot\Desktop\eset_smart_security_premium_live_installer.exe =>.ESET, spol. s r.o.
[05FA56539456871559D29EE4082B71F8] [11/05/2018] (.HP Inc..) - C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys =>.HP Inc.
[063D0C011B143C57893FE839779AFCD0] [28/05/2019] (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\drivers\rtwlane02.sys =>.Realtek Semiconductor Corp.
[06B922A8397E632FE5348DA267275B4F] [11/05/2018] (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated
[06B922A8397E632FE5348DA267275B4F] [13/09/2018] (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated
[0A9F96AABFB5DAC0F29F565D33FF1AF6] [27/09/2020] (.Wondershare Technology Co.,Ltd.) - C:\ProgramData\Wondershare\Service\InstallAssistService.exe =>.Wondershare Technology Co.,Ltd
[0E4418E2DEDE36DD2974C3443AFB5CE5] [01/08/2023] (.Google LLC.) - C:\Users\Lea Guillot\AppData\Roaming\Opera Software\Opera Stable\MediaFoundationWidevineCdm\x86\1.0.2512.1\Google.Widevine.CDM.dll =>.Google LLC
[0E9B5887765BCCA6A3F2CA520E2F1136] [01/06/2016] (.VideoLAN.) - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN
[13222A5DCCF716DF5AF9C87084412DD9] [03/07/2015] (.Realtek Semiconductor Corp.) - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [03/07/2015] (.Realtek Semiconductor Corp.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [03/07/2015] (.Realtek Semiconductor Corp.) - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [03/07/2015] (.Realtek Semiconductor Corp.) - C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [03/07/2015] (.Realtek Semiconductor Corp.) - C:\WINDOWS\System32\drivers\RTKVHD64.sys =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [05/11/2016] (.Realtek Semiconductor Corp.) - C:\Windows\RtCRU64.exe =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [05/11/2016] (.Realtek Semiconductor Corp.) - C:\WINDOWS\System32\drivers\RtsBaStor.sys =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [05/11/2016] (.Realtek Semiconductor Corp.) - C:\WINDOWS\System32\drivers\RtsP2Stor.sys =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [05/11/2016] (.Realtek Semiconductor Corp.) - C:\WINDOWS\System32\DRIVERS\RtsPer.sys =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [05/11/2016] (.Realtek Semiconductor Corp.) - C:\WINDOWS\System32\drivers\RtsPStor.sys =>.Realtek Semiconductor Corp
[13222A5DCCF716DF5AF9C87084412DD9] [05/11/2016] (.Realtek Semiconductor Corp.) - C:\WINDOWS\System32\drivers\RtsUer.sys =>.Realtek Semiconductor Corp
[158B53F6910CDB984F848EE6B39269A1] [26/02/2018] (.WDKTestCert wdclab,130885612892544312.) - C:\WINDOWS\System32\drivers\wdcsam64.sys =>.WDKTestCert wdclab,130885612892544312
[15C98A3198BD4CBAEEC5A7E74A14A8F6] [23/03/2011] (.Canon Inc..) - C:\Program Files (x86)\Canon\IJ Manual\Canon MG4100 series\uninstall.exe =>.Canon Inc.
[15C98A3198BD4CBAEEC5A7E74A14A8F6] [28/03/2011] (.Canon Inc..) - C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmvdrv.exe =>.Canon Inc.
[1C71DEFE3284E66D55131E70] [24/07/2018] (.TEFINCOM S.A..) - C:\WINDOWS\System32\DRIVERS\tapnordvpn.sys =>.TEFINCOM S.A.
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\dpinst.exe =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynISDLL.dll =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\WINDOWS\System32\drivers\SynRMIHID_Aux.sys =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [18/08/2017] (.Synaptics Incorporated.) - C:\WINDOWS\System32\DRIVERS\SynTP.sys =>.Synaptics Incorporated
[2B20EB3380792AB011F662C064FDB473] [12/08/2015] (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.
[2B20EB3380792AB011F662C064FDB473] [12/08/2015] (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.
[3300009D4320E74C7AF0250102000300009D43] [11/10/2013] (.Intel(R) Software.) - C:\WINDOWS\System32\drivers\MBI.sys =>.Intel(R) Software
[330000B7E741A34024FC3AB6E700020000B7E7] [01/12/2015] (.Intel(R) Wireless Display.) - C:\WINDOWS\System32\drivers\intelaud.sys =>.Intel(R) Wireless Display
[330000B7E741A34024FC3AB6E700020000B7E7] [01/12/2015] (.Intel(R) Wireless Display.) - C:\WINDOWS\System32\drivers\iwdbus.sys =>.Intel(R) Wireless Display
[330000B961C0FE2561A698F2D700020000B961] [31/03/2017] (.Intel(R) Software.) - C:\WINDOWS\System32\drivers\VirtualButtons.sys =>.Intel(R) Software
[46331143000100006738] [13/08/2013] (.Intel(R) Smart Connect software.) - C:\WINDOWS\System32\drivers\ISCTD64.sys =>.Intel(R) Smart Connect software
[72F0C9305FD97A974DC024A6980E6886] [09/10/2020] (.WDKTestCert build,132303256403278908.) - C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys =>.WDKTestCert build,132303256403278908
[72F0C9305FD97A974DC024A6980E6886] [09/10/2020] (.WDKTestCert build,132303256403278908.) - C:\WINDOWS\System32\drivers\AppleLowerFilter.sys =>.WDKTestCert build,132303256403278908

~ Unselected Options: NF,
~ End of the scan, 9380 items in 08mn57s (1195)(0)