~ ZHPDiag v2023.8.13.38 Par Nicolas Coolman (2023/08/13) ~ Démarre par pmalh (Administrator) (2023/08/21 10:37:09) ~ Assistance: https://forum.nicolascoolman.eu/ ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\pmalh\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\pmalh\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Demarrage du système: Normal (Normal boot) Windows 11 =>.Microsoft Corporation ---\\ NAVIGATEURS INTERNET (4) - 0s ~ GCIE: Google Chrome v116.0.5845.97 ~ MFIE: Mozilla Firefox 116.0.3 (x64 fr) ~ MSIE: Internet Explorer v11.1.22621.0 ~ OBIE: Microsoft Edge v115.0.1901.203 ---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (8) - 0s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK ~ Windows(R) Operating System, OEM_DM channel Windows ID Activation : OK ~ Windows Partial Key : YP2HD Windows License : OK ~ Windows Remaining Initializations Number : 1001 Windows Automatic Updates : OK ---\\ LOGICIELS DE PROTECTION (2) - 1s Kaspersky Total Security v21.3.10.391 (Protection) Windows Defender W10 (Activate) (Protection) ---\\ INFORMATIONS SUR LE SYSTEME (18) - 0s ~ Operating System: Intel64 Family 6 Model 165 Stepping 3, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) System Restore: Activé (Enable) System drive C: has 901 GB (96%) free of 933 GB : OK =>.Disk Space ---\\ INFORMATIONS MÉMOIRE (MEMORY INFORMATIONS) ~ Slots Total (Total Slots) : 2 ~ Slots Utilisés (Used Slots) : 2 ~ Slots Disponibles (Free Slots) : 0 ~ Type de barrette (FormFactor): DIMM ~ Taille (Size) : 8 Go ~ Vitesse (Speed) : 2666 ~ Charge mémoire (Memory Usage) : 34% ~ RAM physique Total (Total Physical) : 16 Go : OK ~ RAM physique Disponible (Available Physical) : 10 Go ~ Total virtuelle (Total Virtual) : 18.61 Go ~ Disponible virtuelle (Available Virtual): 13.35 Go ---\\ MODE DE CONNEXION AU SYSTEME (3) - 0s ~ Computer Name: FILIP ~ User Name: pmalh ~ Logged in as Administrator ---\\ ENUMERATION DES UNITES DE STOCKAGE (5) - 1s ~ Drive C: has 901 GB free of 933 GB (System) ---\\ ETAT DE LA COMMANDE TRIM ~ La commande TRIM est active (NTFS) ~ La commande TRIM est active (ReFS) ---\\ CARACTÉRISTIQUES PRINCIPALES DU DISQUE SYSTEME (33) - 15s ~ Model: ST1000DM010-2EP102 v1001 (933 Gb ) ~ Media Type: HDD Disque Fixe ( Bus: RAID) ---\\ ATTRIBUTS GÉNÉRAUX DU DISQUE SYSTÈME OK - N0 - Indicateur d'usure du périphérique de stockage (Storage Device Wear Indicator) (%): 0 OK - N1 - Temps de latence maximal de vidage (Maximum Flash latency) (ms): 1.041 OK - N2 - Temps de latence maximal d'écriture (Maximum write latency) (ms): 5.232 OK - N3 - Temps de latence maximal de lecture (Maximum read latency) (ms): 5.247 OK - N4 - Vitesse de rotation (Spindle Speed) (RPM): Unknown ---\\ PARAMÈTRES S.M.A.R.T. DU DISQUE SYSTÈME (Flag/Actuel/Maxi) [Seuil] [Valeur brute] OK - 01 - Taux d'erreur de lecture (Raw Read Error Rate) - [15][76][63] [6][36077] RE - 03 - Temps moyen de mise en rotation (ms) (Spin-Up Time) - [3][97][96] [0][0] OK - 04 - Nombre de démarrages/arrêts (Start/Stop Count) - [50][99][99] [20][1951] OK - 05 - Nombre de secteurs réalloués (Reallocated Sector Count) - [51][100][100] [10][0] OK - 07 - Taux d’erreurs de recherche (Seek Error Rate) - [15][86][60] [45][63409] OK - 09 - Heures de fonctionnement (Power-On Hours Count (POH) - [50][92][92] [0][7763] OK - 0A - Nombre d'essai de relance de rotation (Spin Retry Count) - [19][100][100] [97][0] OK - 0C - Nombre total de cycles d’alimentation (Power Cycle Count) - [50][99][99] [20][1926] OK - B7 - Bloc d’exécution incorrect (Runtime Bad Block) - [50][100][100] [0][0] OK - B8 - Transfert de données à travers le cache (End-to-End error ) - [50][100][100] [99][0] OK - BB - Nombre d'erreurs irrécupérable avec ECC (Reported Uncorrectable Errors) - [50][100][100] [0][0] OK - BC - Nombre d'opérations avortées (Command Timeout) - [50][100][100] [0][0] OK - BD - Erreurs incorrigibles signalées (High Fly Writes) - [58][100][100] [0][0] OK - BE - Température interne (Airflow Temperature) - [34][65][56] [40][35] OK - C1 - Cycles de charge/décharge (Load/Unload Cycle Count) - [50][100][100] [0][1954] OK - C2 - Température interne actuelle (Enclosure Temperature) - [34][35][3] [0][35] OK - C3 - Matériel ECC Récupéré (Hardware ECC Recovered) - [26][1][1] [0][36077] OK - C5 - Nombre de secteurs instables (Current Pending Sector Count) - [18][100][100] [0][0] OK - C6 - Total d'erreurs incorrigibles d'un secteur (Off-Line Uncorrectable Sector Count) - [16][100][100] [0][0] OK - C7 - Nombre d'erreurs dans le transfert de données (Ultra ATA CRC Error Rate) - [62][200][200] [0][0] OK - F0 - Heures de navigation des têtes (Head Flying Hours) - [0][100][253] [0][7760] OK - F1 - Total Ecriture Hôte (Total Host Writing) - [0][100][253] [0][3252] ---\\ ETAT DU CENTRE DE SECURITE WINDOWS (7) - 0s [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ RECHERCHE PARTICULIERE DE FICHIERS GENERIQUES (26) - 1s [MD5.CE8416C5F87A2DDB3BAD27B379AACE8F] - 19/08/2023 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [5158128] =>.Microsoft® [MD5.57A6B4BDF247C1A6CA08AC09A8F9B742] - 07/05/2022 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [73728] [Unsigned] =>.Microsoft Corporation [MD5.A6D1FD82F5D7490B0A5157602494A583] - 19/08/2023 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [579944] [Unsigned] =>.Microsoft Corporation [MD5.9AC036A82C513E99F9201B76E1CFFD08] - 19/08/2023 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [5232512] =>.Microsoft® [MD5.6B990056898F658BB1F7B7C706024EA0] - 19/08/2023 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [909312] [Unsigned] =>.Microsoft Corporation [MD5.A25984968D7841E684031105CCF0E418] - 19/08/2023 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [356352] [Unsigned] =>.Microsoft Corporation [MD5.B9865FE7E1A6AFD34B88394A408A677F] - 19/08/2023 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [1009640] =>.Microsoft® [MD5.0F9AF2A4EC532FD144A5B47F2A3EE0DE] - 19/08/2023 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [755608] =>.Microsoft® [MD5.B7C03A33F132399A5A5E1A7023484F15] - 19/08/2023 - (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\System32\wuaueng.dll [136520] [Unsigned] =>.Microsoft Corporation [MD5.54DB796A38084C3DDC564713528E8FBD] - 07/05/2022 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] [Unsigned] =>.Microsoft Corporation [MD5.FD362EDBE729690B8C2A7A1B34EF38A4] - 19/08/2023 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [701776] [Unsigned] =>.Microsoft Corporation [MD5.5EB4309B030968F9B884CBEF5049C473] - 19/08/2023 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [62808] [Unsigned] =>.Microsoft Corporation [MD5.8D74B96430DDC074D1A21A2E93514696] - 19/08/2023 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [131072] [Unsigned] =>.Microsoft Corporation [MD5.BD94BB6159F87B6D4D3E10CDC20C069A] - 07/05/2022 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [204800] [Unsigned] =>.Microsoft Corporation [MD5.E12B18875B3E81F62A87D76992F87E7C] - 19/08/2023 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [184320] [Unsigned] =>.Microsoft Corporation [MD5.1EC4864C077BF53138C783FBE1DEE9C1] - 19/08/2023 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [192512] [Unsigned] =>.Microsoft Corporation [MD5.566132924EBEEAE1A41FB521B56E0AAA] - 07/05/2022 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [159744] [Unsigned] =>.Microsoft Corporation [MD5.63442DC3378180ACB98022D40E46BE15] - 19/08/2023 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [258048] [Unsigned] =>.Microsoft Corporation [MD5.CEF33B2C11B8C2B416EFA98AAEB387C9] - 19/08/2023 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [660864] [Unsigned] =>.Microsoft Corporation [MD5.E04590A290CD698C8E56426E00427A7F] - 19/08/2023 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [327680] [Unsigned] =>.Microsoft Corporation [MD5.2289BC396B709BA174701138A4AD331D] - 19/08/2023 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [3343744] [Unsigned] =>.Microsoft Corporation [MD5.3A4E501001979A77B7F2C353944699A9] - 07/05/2022 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [135168] [Unsigned] =>.Microsoft Corporation [MD5.A8FFE421616054B11C1ADC1C15E97664] - 19/08/2023 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [147456] [Unsigned] =>.Microsoft Corporation [MD5.9327D2D9AEA1C64BC6993E48849232E9] - 07/05/2022 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196608] [Unsigned] =>.Microsoft Corporation [MD5.0764FE1EDF3CFE3133B0BD42A51447EC] - 19/08/2023 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [157000] [Unsigned] =>.Microsoft Corporation [MD5.FCE3EC1EBD7DCBFCFCA7FE6C2E08B6ED] - 19/08/2023 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [468352] [Unsigned] =>.Microsoft Corporation ---\\ LISTE DES SERVICES (Non désactivés) (14) - 3s O23 - Service: AtherosSvc (AtherosSvc) . (. - Windows Setup API.) - C:\WINDOWS\System32\drivers\AdminService.exe [Unsigned] =>.Atheros O23 - Service: Kaspersky Anti-Virus Service 21.3 (AVP21.3) . (.AO Kaspersky Lab - Kaspersky Lab launcher.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe =>.Kaspersky Lab JSC® O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) . (.Intel Corporation - Intel HD Graphics Drivers for Windows(R).) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ab24aa47846b0119\IntelCpHDCPSvc.exe {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google LLC - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC® O23 - Service: HP Print Scan Doctor Service (HPPrintScanDoctorService) . (.HP Inc. - .) - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe =>.HP Inc.® O23 - Service: Intel(R) Graphics Command Center Service (igccservice) . (.Intel Corporation - Intel® Graphics Command Center Service.) - C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_6bfff1da475a22be\OneApp.IGCC.WinService.exe {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_617efc0299240684\igfxCUIService.exe {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation O23 - Service: Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (.Intel(R) Corporation - Intel(R) TPM Provisioning Service.) - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_183917c66152901d\lib\TPMProvisioningService.exe {3BCEA6A75123B821E309D6399265C7BD}. =>.Intel(R) Corporation O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe =>.Intel(R) Embedded Subsystems and IP Blocks Group® O23 - Service: Qualcomm Atheros WLAN Driver Service (QcomWlanSrv) . (.Qualcomm Technologies Inc. - Qualcomm Atheros Universal WLAN Driver Serv.) - C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [Unsigned] =>.Qualcomm Technologies Inc. O23 - Service: Intel(R) Storage Middleware Service (RstMwService) . (.Intel Corporation - Intel(R) Rapid Storage Technology Managemen.) - C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_d6e4236a0f82e7b4\RstMwService.exe {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) . (.Realtek Semiconductor - Realtek HD Audio Universal Service.) - C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a4555e9b35287491\RtkAudUService64.exe =>.Realtek Semiconductor Corp.® O23 - Service: Waves Audio Services (WavesSysSvc) . (.Waves Audio Ltd. - WavesSysSvc Service Application.) - C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSysSvc64.exe {010E858706668954EFAEB80257C7BA95}. =>.Waves Audio Ltd. O23 - Service: Intel(R) Management Engine WMI Provider Registration (WMIRegistrationService) . (.Intel Corporation - Intel(R) Management Engine WMI Provider Reg.) - C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d4564390a9b1e980\WMIRegistrationService.exe {0ADE8114D7679B066F2DB2DFD2F67AC2}. =>.Intel Corporation ---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (115) - 11s SR - Boot [07/05/2022] [ 108376] (3ware) . (.LSI.) - C:\WINDOWS\System32\drivers\3ware.sys =>.Microsoft® SR - Boot [07/05/2022] [ 1136472] (ADP80XX) . (.PMC-Sierra.) - C:\WINDOWS\System32\drivers\ADP80XX.SYS =>.Microsoft® SR - Demand [07/05/2022] [ 18432] AMD GPIO Client Driver (amdgpio2) . (.Advanced Micro Devices, Inc.) - C:\WINDOWS\System32\drivers\amdgpio2.sys [Unsigned] =>.Advanced Micro Devices, Inc SR - Demand [07/05/2022] [ 45568] AMD I2C Controller Service (amdi2c) . (.Advanced Micro Devices, Inc.) - C:\WINDOWS\System32\drivers\amdi2c.sys [Unsigned] =>.Advanced Micro Devices, Inc SR - Boot [07/05/2022] [ 84312] (amdsata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdsata.sys =>.Microsoft® SR - Boot [07/05/2022] [ 260440] (amdsbs) . (.AMD Technologies Inc..) - C:\WINDOWS\System32\drivers\amdsbs.sys =>.Microsoft® SR - Boot [07/05/2022] [ 28008] (amdxata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdxata.sys =>.Microsoft® SR - Boot [07/05/2022] [ 113496] Apple Solid State Drive Device (AppleSSD) . (.Apple Inc..) - C:\WINDOWS\System32\drivers\AppleSSD.sys =>.Microsoft® SR - Boot [07/05/2022] [ 132968] Adaptec SAS/SATA-II RAID S (arcsas) . (.PMC-Sierra, Inc..) - C:\WINDOWS\System32\drivers\arcsas.sys =>.Microsoft® SR - Auto [27/11/2021] [ 404384] AtherosSvc (AtherosSvc) . (.Microsoft.) - C:\WINDOWS\System32\drivers\AdminService.exe =>.Microsoft® SR - Auto [02/08/2022] [ 184768] Kaspersky Anti-Virus Service 21.3 (AVP21.3) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe =>.Kaspersky Lab JSC® SR - Boot [07/05/2022] [ 534872] QLogic Network Adapter VBD (b06bdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\bxvbda.sys =>.Microsoft® SR - Demand [07/05/2022] [ 9728] bcmfn2 Service (bcmfn2) . (...) - C:\WINDOWS\System32\drivers\bcmfn2.sys [Unsigned] =>.Broadcom Corporation SR - Demand [27/11/2021] [ 104744] BtFilter (BtFilter) . (.Qualcomm.) - C:\WINDOWS\System32\drivers\btfilter.sys =>.Qualcomm Atheros, Inc.® SR - Boot [07/05/2022] [ 320880] (cht4iscsi) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4sx64.sys =>.Microsoft® SR - Demand [07/05/2022] [ 1854832] Chelsio Virtual Bus Driver (cht4vbd) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4vx64.sys =>.Microsoft® SR - Boot [02/08/2022] [ 237288] AO Kaspersky Lab Cryptographic Module x64 (56 bit) (cm_km) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\cm_km.sys =>.Microsoft® SS - Demand [14/09/2022] [ 528352] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ab24aa47846b0119\IntelCpHeciSvc.exe {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation SR - Auto [14/09/2022] [ 352768] Intel(R) Content Protection HDCP Service (cplspcon) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ab24aa47846b0119\IntelCpHDCPSvc.exe {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation SR - Demand [22/05/2019] [ 165224] Cypress Service de périphé (CyUcmClient_Device) . (.Cypress Semiconductor Corporation.) - C:\WINDOWS\System32\drivers\CyUcmClient.sys {2B4590395C4F04B9A549891B2D85BBE0}. =>.Cypress Semiconductor Corporation SR - Demand [07/01/2022] [ 48464] System Management Driver (dcdbas) . (.Dell Inc..) - C:\WINDOWS\System32\drivers\dcdbas64.sys =>.Dell Inc.® SR - Demand [24/11/2020] [ 609544] Intel(R) PRO/1000 P (e1dexpress) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_77f27cab0778c241\e1d68x64.sys =>.INTELEPGSW2022® SR - Boot [07/05/2022] [ 3441512] QLogic 10 Gigabit Ethernet Ada (ebdrv) . (.Marvell Semiconductor Inc..) - C:\WINDOWS\System32\drivers\evbda.sys =>.Microsoft® SR - Boot [07/05/2022] [ 3424104] QLogic Legacy Ethernet Adapte (ebdrv0) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\evbd0a.sys =>.Microsoft® SS - Demand [12/08/2023] [ 1759520] Google Chrome Elevation Service (GoogleChromeElevationServi (GoogleChromeElevationService) . (.Google LLC.) - C:\Program Files\Google\Chrome\Application\116.0.5845.97\elevation_service.exe =>.Google LLC® SR - Auto [19/08/2023] [ 162072] Service Google Update (gupdate) (gupdate) . (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC® SS - Demand [19/08/2023] [ 162072] Service Google Update (gupdatem) (gupdatem) . (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC® SR - Disabl [18/12/2022] [ 1918624] Intel(R) RST HFC (HfcDisableService) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_d6e4236a0f82e7b4\HfcDisableService.exe {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation SR - Auto [19/08/2023] [ 230352] HP Print Scan Doctor Service (HPPrintScanDoctorService) . (.HP Inc..) - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe =>.HP Inc.® SR - Boot [07/05/2022] [ 65360] (HpSAMD) . (.Hewlett-Packard Company.) - C:\WINDOWS\System32\drivers\HpSAMD.sys =>.Microsoft® SR - Demand [07/05/2022] [ 36352] Intel Serial IO GPIO Controlle (iagpio) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iagpio.sys [Unsigned] =>.Intel(R) Corporation SR - Demand [07/05/2022] [ 91136] Intel(R) Serial IO I2C Host Cont (iai2c) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iai2c.sys [Unsigned] =>.Intel(R) Corporation SR - Demand [07/05/2022] [ 79360] Intel(R) S (iaLPSS2i_GPIO2) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [Unsigned] =>.Intel Corporation SR - Demand [07/05/2022] [ 93184] In (iaLPSS2i_GPIO2_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [Unsigned] =>.Intel Corporation SR - Demand [07/05/2022] [ 112128] Intel( (iaLPSS2i_GPIO2_CNL) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [Unsigned] =>.Intel Corporation SR - Demand [07/05/2022] [ 96256] Intel( (iaLPSS2i_GPIO2_GLK) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [Unsigned] =>.Intel Corporation SR - Demand [07/05/2022] [ 171520] Intel(R) Seria (iaLPSS2i_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [Unsigned] =>.Intel Corporation SR - Demand [07/05/2022] [ 175104] Intel( (iaLPSS2i_I2C_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [Unsigned] =>.Intel Corporation SR - Demand [07/05/2022] [ 177152] Intel(R) S (iaLPSS2i_I2C_CNL) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [Unsigned] =>.Intel Corporation SR - Demand [07/05/2022] [ 177664] Intel(R) S (iaLPSS2i_I2C_GLK) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [Unsigned] =>.Intel Corporation SR - Demand [15/05/2020] [ 128776] Intel(R) Serial IO G (iaLPSS2_GPIO2_CNL) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_cnl.inf_amd64_d920c2a844f26eba\iaLPSS2_GPIO2_CNL.sys {00B15FDDBBCD5912920FFAB85C4F6064D5}. =>.Intel Corporation SR - Demand [15/05/2020] [ 196360] Intel(R) Serial IO I2C (iaLPSS2_I2C_CNL) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_cnl.inf_amd64_666eecf21665eb26\iaLPSS2_I2C_CNL.sys {00B15FDDBBCD5912920FFAB85C4F6064D5}. =>.Intel Corporation SR - Demand [07/05/2022] [ 38128] Intel(R) Serial IO (iaLPSSi_GPIO) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys =>.Intel Corporation - Client Components Group® SR - Demand [07/05/2022] [ 113152] Intel(R) Serial IO I (iaLPSSi_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [Unsigned] =>.Intel Corporation SR - Boot [18/12/2022] [ 1348760] Intel(R) Chipset SATA/PCI (iaStorAC) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorAC.sys {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation SR - Demand [18/12/2022] [ 74904] iaStorAfs (iaStorAfs) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorAfs.sys {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation SS - Demand [18/12/2022] [ 3104408] Intel(R) Optane(T (iaStorAfsService) . (.Intel Corporation.) - C:\WINDOWS\System32\iaStorAfsService.exe {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation SR - Boot [07/05/2022] [ 885584] Intel Chipset SATA RAI (iaStorAVC) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorAVC.sys =>.Microsoft® SR - Boot [07/05/2022] [ 413008] Intel RAID Controller Wi (iaStorV) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorV.sys =>.Microsoft® SR - Demand [07/05/2022] [ 559976] Mellanox InfiniBand Bus/A (ibbus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ibbus.sys =>.Microsoft® SR - Auto [14/09/2022] [ 93712] Intel(R) Graphics Command Center Service (igccservice) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_6bfff1da475a22be\OneApp.IGCC.WinService.exe {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation SR - Demand [14/09/2022] [44243448] (igfx) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ab24aa47846b0119\igdkmd64.sys {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation SR - Auto [14/09/2022] [ 410120] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_617efc0299240684\igfxCUIService.exe {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation SR - Demand [02/03/2023] [ 6449048] Service for Realtek HD Audio (WDM) (IntcAzAudAddService) . (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\drivers\RTKVHD64.sys =>.Realtek Semiconductor Corp.® SR - Demand [14/09/2022] [ 358368] Son Intel(R) pour écrans (IntcDAud) . (.Intel(R) Corporation.) - C:\Windows\System32\DriverStore\FileRepository\intcdaud.inf_amd64_718877413f6508de\IntcDAud.sys {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel(R) Corporation SS - Demand [08/12/2021] [ 785240] Intel(R) Capability Lice (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_183917c66152901d\lib\SocketHeciServer.exe {3BCEA6A75123B821E309D6399265C7BD}. =>.Intel(R) Corporation SR - Auto [08/12/2021] [ 730960] Intel(R) TPM Provis (Intel(R) TPM Provisioning Service) . (.Intel(R) Corporation.) - C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_183917c66152901d\lib\TPMProvisioningService.exe {3BCEA6A75123B821E309D6399265C7BD}. =>.Intel(R) Corporation SR - Boot [07/05/2022] [ 187224] (ItSas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\ItSas35i.sys =>.Microsoft® SR - Auto [01/12/2021] [ 628616] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe =>.Intel(R) Embedded Subsystems and IP Blocks Group® SR - System [02/08/2022] [ 105280] Kaspersky Lab klbackupdisk (klbackupdisk) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys =>.Microsoft® SR - System [02/08/2022] [ 206600] Kaspersky Lab klbackupflt (klbackupflt) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klbackupflt.sys =>.Microsoft® SR - System [02/08/2022] [ 119568] kldisk (kldisk) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\kldisk.sys =>.Microsoft® SR - Boot [19/02/2021] [ 41656] klelam (klelam) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klelam.sys =>.Microsoft® SR - System [02/08/2022] [ 522504] Kaspersky Lab Kernel DLL (klflt) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klflt.sys =>.Microsoft® SR - System [10/07/2023] [ 738824] Kaspersky Lab Security Extender Driver (klgse) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klgse.sys =>.Microsoft® SR - System [10/07/2023] [ 1822752] Kaspersky Lab service driver (klhk) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klhk.sys =>.Microsoft® SR - Demand [19/08/2023] [ 235704] klids (klids) . (.AO Kaspersky Lab.) - C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys =>.Microsoft® SR - System [02/08/2022] [ 1049864] Kaspersky Lab Driver (KLIF) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klif.sys =>.Microsoft® SR - System [02/08/2022] [ 90896] Kaspersky Anti-Virus NDIS 6 Filter (klim6) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klim6.sys =>.Microsoft® SR - Demand [02/08/2022] [ 104728] Kaspersky Lab KLKBDFLT (klkbdflt) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klkbdflt.sys =>.Microsoft® SR - Demand [02/08/2022] [ 107328] Kaspersky Lab KLMOUFLT (klmouflt) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klmouflt.sys =>.Microsoft® SR - System [02/08/2022] [ 78088] Kaspersky Lab format recognizer driver (klpd) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klpd.sys =>.Microsoft® SR - System [02/08/2022] [ 88328] Kaspersky Lab klpnpflt (klpnpflt) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klpnpflt.sys =>.Microsoft® SR - Boot [19/08/2023] [ 369432] (klupd_klif_arkmon) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys =>.Microsoft® SR - Demand [19/08/2023] [ 351912] (klupd_klif_klark) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys =>.Microsoft® SR - Boot [19/08/2023] [ 179816] (klupd_klif_klbg) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys =>.Microsoft® SR - Demand [19/08/2023] [ 260512] (klupd_klif_mark) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys =>.Microsoft® SS - Demand [19/02/2021] [ 479280] Kaspersky Volume Shadow Copy Service Bridge 21.3 (klvssbridge64_21.3) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe =>.Kaspersky Lab JSC® SR - System [02/08/2022] [ 150280] klwfp (klwfp) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klwfp.sys =>.Microsoft® SR - System [02/08/2022] [ 325400] KLwtp - WFP callout traffic inspector (klwtp) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\klwtp.sys =>.Microsoft® SR - System [02/08/2022] [ 294680] kneps (kneps) . (.AO Kaspersky Lab.) - C:\WINDOWS\System32\DRIVERS\kneps.sys =>.Microsoft® SR - Boot [07/05/2022] [ 109920] (LSI_SAS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas.sys =>.Microsoft® SR - Boot [07/05/2022] [ 125280] (LSI_SAS2i) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas2i.sys =>.Microsoft® SR - Boot [07/05/2022] [ 138600] (LSI_SAS3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\lsi_sas3i.sys =>.Microsoft® SR - Boot [07/05/2022] [ 81752] (megasas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\MegaSas2i.sys =>.Microsoft® SR - Boot [07/05/2022] [ 101224] (megasas35i) . (.Broadcom Inc.) - C:\WINDOWS\System32\drivers\megasas35i.sys =>.Microsoft® SR - Boot [07/05/2022] [ 576856] (megasr) . (.LSI Corporation, Inc..) - C:\WINDOWS\System32\drivers\megasr.sys =>.Microsoft® SR - Demand [27/02/2023] [ 320096] Intel(R) Management Engine Interf (MEIx64) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\heci.inf_amd64_cf249bf95c3b8dcb\x64\TeeDriverW10x64.sys {0ADE8114D7679B066F2DB2DFD2F67AC2}. =>.Intel Corporation SR - Demand [07/05/2022] [ 1132392] Mellanox ConnectX Bus E (mlx4_bus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\mlx4_bus.sys =>.Microsoft® SS - Demand [15/08/2023] [ 241056] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Boot [07/05/2022] [ 90472] (mpi3drvi) . (.Broadcom Limited.) - C:\WINDOWS\System32\drivers\mpi3drvi.sys =>.Microsoft® SR - Boot [07/05/2022] [ 64872] (mvumis) . (.Marvell Semiconductor, Inc..) - C:\WINDOWS\System32\drivers\mvumis.sys =>.Microsoft® SR - Demand [07/05/2022] [ 147304] NetworkDirect Service (ndfltr) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ndfltr.sys =>.Microsoft® SR - Demand [07/05/2022] [ 83288] NDKPerf Driver (NDKPerf) . (.Microsoft.) - C:\WINDOWS\System32\drivers\NDKPerf.sys =>.Microsoft® SR - Boot [07/05/2022] [ 151392] (nvraid) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvraid.sys =>.Microsoft® SR - Boot [07/05/2022] [ 167256] (nvstor) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvstor.sys =>.Microsoft® SR - Boot [07/05/2022] [ 59752] (percsas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas2i.sys =>.Microsoft® SR - Boot [07/05/2022] [ 69464] (percsas3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas3i.sys =>.Microsoft® SR - Boot [07/05/2022] [ 45408] pvscsi Storage Controller Dr (pvscsi) . (.VMware, Inc..) - C:\WINDOWS\System32\drivers\pvscsii.sys =>.Microsoft® SR - Demand [10/04/2020] [ 2434840] Qualcomm Extensible Wire (Qcamain10x64) . (.Qualcomm Atheros, Inc..) - C:\WINDOWS\System32\drivers\Qcamain10x64.sys =>.Qualcomm Atheros® SR - Auto [10/04/2020] [ 191768] Qualcomm Atheros WLAN Driver Service (QcomWlanSrv) . (.Qualcomm Technologies Inc..) - C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe =>.Qualcomm Atheros® SR - Demand [07/05/2022] [ 98304] Microsoft Route Poli (RoutePolicy) . (...) - C:\WINDOWS\System32\drivers\RoutePolicy.sys [Unsigned] SR - Auto [18/12/2022] [ 2245784] Intel(R) Storage Midd (RstMwService) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_d6e4236a0f82e7b4\RstMwService.exe {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation SR - Auto [02/03/2023] [ 1649504] Realtek Audio Universal Service (RtkAudioUniversalService) . (.Realtek Semiconductor.) - C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a4555e9b35287491\RtkAudUService64.exe =>.Realtek Semiconductor Corp.® SR - Demand [03/05/2020] [ 434680] Realtek USB Card Reader - UER (RTSUER) . (.Realsil Semiconductor Corporation.) - C:\WINDOWS\System32\Drivers\RtsUer.sys =>.Realtek Semiconductor Corp.® SR - Boot [07/05/2022] [ 45920] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\WINDOWS\System32\drivers\SiSRaid2.sys =>.Microsoft® SR - Boot [07/05/2022] [ 82784] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\WINDOWS\System32\drivers\sisraid4.sys =>.Microsoft® SR - Boot [07/05/2022] [ 210784] (SmartSAMD) . (.Microsemi Corportation.) - C:\WINDOWS\System32\drivers\SmartSAMD.sys =>.Microsoft® SR - Boot [07/05/2022] [ 32080] (stexstor) . (.Promise Technology, Inc..) - C:\WINDOWS\System32\drivers\stexstor.sys =>.Microsoft® SR - Boot [07/05/2022] [ 167784] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\WINDOWS\System32\drivers\vsmraid.sys =>.Microsoft® SR - Boot [07/05/2022] [ 306512] VIA StorX Storage RAID Co (VSTXRAID) . (.VIA Corporation.) - C:\WINDOWS\System32\drivers\vstxraid.sys =>.Microsoft® SR - Auto [22/02/2023] [ 4599896] Waves Audio Services (WavesSysSvc) . (.Waves Audio Ltd..) - C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSysSvc64.exe {010E858706668954EFAEB80257C7BA95}. =>.Waves Audio Ltd. SR - Demand [07/05/2022] [ 37224] WinMad Service (WinMad) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winmad.sys =>.Microsoft® SR - Demand [07/05/2022] [ 74096] WinVerbs Service (WinVerbs) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winverbs.sys =>.Microsoft® SR - Auto [21/03/2022] [ 144008] Intel(R) Management Engine WMI Provider Registration (WMIRegistrationService) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d4564390a9b1e980\WMIRegistrationService.exe {0ADE8114D7679B066F2DB2DFD2F67AC2}. =>.Intel Corporation ---\\ TACHES PLANIFIEES EN AUTOMATIQUE (Registre) (12) - 6s O38 - TASK: {0BD48F03-492D-4AF7-839D-87AD8DC4F3AB} [64Bits][\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB] - (.Mozilla Foundation - Firefox Default Browser Agent.) -- C:\Program Files\Mozilla Firefox\default-browser-agent.exe [733088] =>.Mozilla Foundation O38 - TASK: {4C7F0AAB-6500-4741-AC12-B6E5811FB401} [64Bits][\GoogleUpdateTaskMachineCore{73DDF112-2FB3-479C-B47D-51A5EF7BE76A}] - (.Google LLC - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072] =>.Google LLC O38 - TASK: {610DB2F2-9619-45EA-920F-56ED8070032F} [64Bits][\Mozilla\Firefox Background Update 308046B0AF4A39CB] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [687008] =>.Mozilla Corporation O38 - TASK: {68C15318-0AC5-4658-A1D5-50C45025EE0F} [64Bits][\PrivaZer_SkipUAC] - (.Goversoft LLC - PrivaZer.) -- C:\Program Files (x86)\PrivaZer\PrivaZer.exe [21909472] =>.Goversoft LLC O38 - TASK: {706D5EBA-0998-4A3E-A9D2-9AD630D0AB2E} [64Bits][\Microsoft\Windows\PI\SecureBootEncodeUEFI] - (...) -- C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [102400] O38 - TASK: {7C0466EE-52D7-49D4-A6B5-FD3473B5D939} [64Bits][\GoogleUpdateTaskMachineUA{29CE0AC3-DCEC-4A6C-9CB8-A94CBA47A3A0}] - (.Google LLC - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072] =>.Google LLC C:\WINDOWS\System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - (.Mozilla Foundation.) -- C:\Program Files\Mozilla Firefox\default-browser-agent.exe [do-task "308046B0AF4A39CB.do-task] =>.Mozilla Foundation C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{73DDF112-2FB3-479C-B47D-51A5EF7BE76A} - (.Google LLC.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/c] =>.Google LLC C:\WINDOWS\System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB - (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe [--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla] =>.Mozilla Corporation C:\WINDOWS\System32\Tasks\PrivaZer_SkipUAC - (.Goversoft LLC.) -- C:\Program Files (x86)\PrivaZer\PrivaZer.exe [$(Arg0)] =>.Goversoft LLC C:\WINDOWS\System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI - (...) -- C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [] C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{29CE0AC3-DCEC-4A6C-9CB8-A94CBA47A3A0} - (.Google LLC.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/ua ./ua] =>.Google LLC ---\\ APPLICATIONS LANCEES AU DÉMARRAGE DU SYSTÈME (17) - 0s O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Security notification icon.) -- C:\WINDOWS\system32\SecurityHealthSystray.exe [Unsigned] =>.Microsoft Corporation O4 - HKLM\..\Run: [RtkAudUService] . (.Realtek Semiconductor - Realtek HD Audio Universal Service.) -- C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a4555e9b35287491\RtkAudUService64.exe =>.Realtek Semiconductor Corp.® O4 - HKLM\..\Run: [WavesSvc] . (.Waves Audio Ltd. - Waves MaxxAudio Service Application.) -- C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSvc64.exe {010E858706668954EFAEB80257C7BA95}. =>.Waves Audio Ltd. O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_E5CFCE88D71D483501C3ACBA4A11E4C0] . (...) -- . [Unsigned] O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\pmalh\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft® O4 - HKCU\..\Run: [f.lux] . (.f.lux Software LLC - f.lux.) -- C:\Users\pmalh\AppData\Local\FluxSoftware\Flux\flux.exe {1E76077152583A372C338AF11A6ECF83}. =>.f.lux Software LLC O4 - HKCU\..\Run: [TheAeroClock] . (.Nenad Hrg (SoftwareOK.com) - TheAeroClock - is a Watch for all Windows D.) -- C:\Users\pmalh\Downloads\TheAeroClock_x64\TheAeroClock_x64.exe {0728CF127EB4526B3FC8DF87}. =>.Nenad Hrg (SoftwareOK.com) O4 - HKCU\..\Run: [Kalender] . (.Ulrich Krebs - Calendar, ToDo-Manager and Reminder.) -- C:\Program Files (x86)\Kalender\Kalender.exe [Unsigned] =>.Ulrich Krebs O4 - HKCU\..\Run: [Google Update] . (. - .) -- C:\Users\pmalh\AppData\Local\Google\Update\1.3.36.131\GoogleUpdateCore.exe (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive (64 bit) Setup.) -- C:\Windows\System32\OneDriveSetup.exe [Unsigned] =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive (64 bit) Setup.) -- C:\Windows\System32\OneDriveSetup.exe [Unsigned] =>.Microsoft Corporation O4 - HKUS\S-1-5-21-438082756-1125671509-3346762400-1001\..\Run: [MicrosoftEdgeAutoLaunch_E5CFCE88D71D483501C3ACBA4A11E4C0] . (...) -- . [Unsigned] O4 - HKUS\S-1-5-21-438082756-1125671509-3346762400-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\pmalh\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft® O4 - HKUS\S-1-5-21-438082756-1125671509-3346762400-1001\..\Run: [f.lux] . (.f.lux Software LLC - f.lux.) -- C:\Users\pmalh\AppData\Local\FluxSoftware\Flux\flux.exe {1E76077152583A372C338AF11A6ECF83}. =>.f.lux Software LLC O4 - HKUS\S-1-5-21-438082756-1125671509-3346762400-1001\..\Run: [TheAeroClock] . (.Nenad Hrg (SoftwareOK.com) - TheAeroClock - is a Watch for all Windows D.) -- C:\Users\pmalh\Downloads\TheAeroClock_x64\TheAeroClock_x64.exe {0728CF127EB4526B3FC8DF87}. =>.Nenad Hrg (SoftwareOK.com) O4 - HKUS\S-1-5-21-438082756-1125671509-3346762400-1001\..\Run: [Kalender] . (.Ulrich Krebs - Calendar, ToDo-Manager and Reminder.) -- C:\Program Files (x86)\Kalender\Kalender.exe [Unsigned] =>.Ulrich Krebs O4 - HKUS\S-1-5-21-438082756-1125671509-3346762400-1001\..\Run: [Google Update] . (. - .) -- C:\Users\pmalh\AppData\Local\Google\Update\1.3.36.131\GoogleUpdateCore.exe (.Not File.) =>.SUP.Orphan ---\\ PROCESSUS LANCES (43) - 6s [MD5.C871D3B9E717F61C933CBD27CC883048] - (.Intel Corporation - Intel HD Graphics Drivers for Windows(R).) -- C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ab24aa47846b0119\IntelCpHDCPSvc.exe [352768] [PID.2024] {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation [MD5.AE460F3D0ADD1D3A78A4CE683FFFFAEB] - (.Intel Corporation - IntelCpHeciSvc Executable.) -- C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ab24aa47846b0119\IntelCpHeciSvc.exe [528352] [PID.2232] {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation [MD5.08CC5E0516B22A1A2378E9BC6F3C3B64] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_617efc0299240684\igfxCUIService.exe [410120] [PID.2968] {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation [MD5.F5496AB7677BB1DD5C165DF6D6CD3854] - (. - Windows Setup API.) -- C:\Windows\System32\drivers\AdminService.exe [404384] [PID.3364] [Unsigned] =>.Atheros [MD5.A1E68DA6AA072D94E6DFF453F07057F3] - (.HP Inc. - .) -- C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352] [PID.3424] =>.HP Inc.® [MD5.2C16E100CE3FD71310F8B21A42108779] - (.Intel Corporation - Intel® Graphics Command Center Service.) -- C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_6bfff1da475a22be\OneApp.IGCC.WinService.exe [93712] [PID.3088] {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation [MD5.E09F66F1B265A79C59F2788B92285EBC] - (.Intel Corporation - Intel(R) Rapid Storage Technology Managemen.) -- C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_d6e4236a0f82e7b4\RstMwService.exe [2245784] [PID.4220] {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation [MD5.4AB790BDAA1D31C85E128F09B7B2A140] - (.Realtek Semiconductor - Realtek HD Audio Universal Service.) -- C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a4555e9b35287491\RtkAudUService64.exe [1649504] [PID.4248] =>.Realtek Semiconductor Corp.® [MD5.89699A114EA05F402E7768248E42CD72] - (.Qualcomm Technologies Inc. - Qualcomm Atheros Universal WLAN Driver Serv.) -- C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [191768] [PID.4288] [Unsigned] =>.Qualcomm Technologies Inc. [MD5.B2BF7F0343A1606A09C7840E327A644C] - (.Waves Audio Ltd. - WavesSysSvc Service Application.) -- C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSysSvc64.exe [4599896] [PID.4300] {010E858706668954EFAEB80257C7BA95}. =>.Waves Audio Ltd. [MD5.6F7D7632DF27F5EC43C5670C938073E7] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe [628616] [PID.4372] =>.Intel(R) Embedded Subsystems and IP Blocks Group® [MD5.A5CBB4842CD8AF8302C0DEC747A3EFB6] - (.Intel Corporation - Intel(R) Management Engine WMI Provider Reg.) -- C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d4564390a9b1e980\WMIRegistrationService.exe [144008] [PID.4392] {0ADE8114D7679B066F2DB2DFD2F67AC2}. =>.Intel Corporation [MD5.274EC68420E54FDF535D980F37BBE3D5] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_617efc0299240684\igfxEM.exe [780784] [PID.6040] {63F80010501D2B4B6C5FD1004665FFE7}. =>.Intel Corporation [MD5.4AB790BDAA1D31C85E128F09B7B2A140] - (.Realtek Semiconductor - Realtek HD Audio Universal Service.) -- C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a4555e9b35287491\RtkAudUService64.exe [1649504] [PID.6324] =>.Realtek Semiconductor Corp.® [MD5.DA1DD236ECD7C2C550604F1DD791AB81] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe [301848] [PID.7320] =>.Google LLC® [MD5.5692DD1940AC1D772B3508169BFA0148] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe [401688] [PID.7340] =>.Google LLC® [MD5.C2318EF5D63EDEFEF04DCDCBDFB87EAE] - (...) -- C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.21300.10.0_x64__cw5n1h2txyewy\Dashboard\widgetservice.exe [193320] [PID.9944] =>.Microsoft® [MD5.4AB790BDAA1D31C85E128F09B7B2A140] - (.Realtek Semiconductor - Realtek HD Audio Universal Service.) -- C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a4555e9b35287491\RtkAudUService64.exe [1649504] [PID.9252] =>.Realtek Semiconductor Corp.® [MD5.56EB7FC3D4035A9DDC6B918AEE6A74D6] - (.Waves Audio Ltd. - Waves MaxxAudio Service Application.) -- C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSvc64.exe [5083736] [PID.9292] {010E858706668954EFAEB80257C7BA95}. =>.Waves Audio Ltd. [MD5.99A3917581E9A93750BEF448BE96171C] - (.f.lux Software LLC - f.lux.) -- C:\Users\pmalh\AppData\Local\FluxSoftware\Flux\flux.exe [1525880] [PID.4856] {1E76077152583A372C338AF11A6ECF83}. =>.f.lux Software LLC [MD5.3D2A9E6C408B619CECDDEF932C83D9D8] - (.Nenad Hrg (SoftwareOK.com) - TheAeroClock - is a Watch for all Windows D.) -- C:\Users\pmalh\Downloads\TheAeroClock_x64\TheAeroClock_x64.exe [2231608] [PID.7136] {0728CF127EB4526B3FC8DF87}. =>.Nenad Hrg (SoftwareOK.com) [MD5.28B862AEEEA70B2C95AA9434DA25D059] - (.Ulrich Krebs - Calendar, ToDo-Manager and Reminder.) -- C:\Program Files (x86)\Kalender\Kalender.exe [1019904] [PID.6204] [Unsigned] =>.Ulrich Krebs [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.5472] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.12036] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.13624] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.9604] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.1232] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.15612] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.10032] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.8844] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.15576] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.14308] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.12336] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.13544] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.12232] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.10796] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.2404] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.7560] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.10924] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.10260] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.6396] =>.Google LLC® [MD5.D6009387BC64E532411A1E45D8BD6D94] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [3218208] [PID.15780] =>.Google LLC® [MD5.5A496BAF6BD291C87F96F04DCAF38ED7] - (.Nicolas Coolman - ZHPSuite.) -- C:\Users\pmalh\AppData\Roaming\ZHP\ZHPSuite.exe [3511456] [PID.13696] [Unsigned] =>.Nicolas Coolman ---\\ CHROME, Démarrage, Recherche, Extensions (27) - 1s G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [ahkjpbeeocnddjkakilopmfdlnjdpcdm] =>.Kaspersky Labs G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [cjpalhdlnbpafiamejdnhcphjbkeiagm] uBlock Origin =>.Raymond Hill G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [dapfmaempgppekcneleonmpoebhkfaol] HTTPS Somewhere G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [dcjichoefijpinlfnjghokpkojhlhkgl] Notifier for Gmail™ =>.add0n.com G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [efaidnbmnnnibpcajpcglclefindmkaj] =>.Adobe Inc. {Acrobat} G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [fihnjjcciajhdojfnbdddfaoknhalnja] Daniel Kladnik @ kiboke studio G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [fllaojicojecljbmefodhfapmkghcbnh] =>.ga-extension-publishers {Désactivation Google Analytics} G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [fndcenfgdacibjnofbbdndfijggefgmp] Majuscules Accentuées =>.Legitimate G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [fpnmgdkabkmnadcjpehmlllkndpkmiak] Wayback Machine G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [gdebnehfojpoccpaocfbelbclfnpbmij] =>.Legitimate G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion} G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet} G2 - GCE: Preference [pmalh][User Data\Default\Extensions] [oeopbcgkkoapgobdbedcemjljbihmemj] Checker Plus for Gmail™ =>.jasonsavard.com G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [ahkjpbeeocnddjkakilopmfdlnjdpcdm] =>.Kaspersky Labs G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [cjpalhdlnbpafiamejdnhcphjbkeiagm] =>.uBlock Origin G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [dapfmaempgppekcneleonmpoebhkfaol] G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [dcjichoefijpinlfnjghokpkojhlhkgl] G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [efaidnbmnnnibpcajpcglclefindmkaj] =>.Adobe Inc. {Acrobat} G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [fihnjjcciajhdojfnbdddfaoknhalnja] G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [fpnmgdkabkmnadcjpehmlllkndpkmiak] G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion} G2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [oeopbcgkkoapgobdbedcemjljbihmemj] G2 - GCE: Preference [pmalh][User Data\Default\Managed Extension Settings] [cjpalhdlnbpafiamejdnhcphjbkeiagm] =>.uBlock Origin G2 - GCE: Preference [pmalh][User Data\Default\Managed Extension Settings] [efaidnbmnnnibpcajpcglclefindmkaj] =>.Adobe Inc. {Acrobat} G2 - GCE: Preference [pmalh][User Data\Default\Managed Extension Settings] [oeopbcgkkoapgobdbedcemjljbihmemj] G2 - GCE: Preference [pmalh][User Data\Default\Sync Extension Settings] [gcbommkclmclpchllfjekcdonpmejbdp] =>.eff.org {HTTPS partout} G2 - GCE: Preference [pmalh][User Data\Default\Sync Extension Settings] [oeopbcgkkoapgobdbedcemjljbihmemj] ---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (22) - 1s P2 - EXT FILE: (.Kaspersky Labs.) -- C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [Unsigned] =>.Kaspersky Labs P2 - EXT FILE: (.uBlock Origin.) -- C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\extensions\uBlock0@raymondhill.net.xpi [Unsigned] =>.uBlock Origin P2 - EXT FILE: (.Mozilla - Firefox.) -- C:\Program Files\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi =>.Mozilla P2 - EXT FILE: (.Mozilla - Firefox.) -- C:\Program Files\Mozilla Firefox\browser\features\pictureinpicture@mozilla.org.xpi =>.Mozilla P2 - EXT FILE: (.Mozilla - Firefox.) -- C:\Program Files\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla P2 - EXT FILE: (.Mozilla - Firefox.) -- C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi =>.Mozilla P2 - EXT FILE: (.Mozilla - Firefox.) -- C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\bookmarkbackups =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\crashes =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\datareporting =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\extensions =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\gmp-gmpopenh264 =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\gmp-widevinecdm =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\minidumps =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\saved-telemetry-pings =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\security_state =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\sessionstore-backups =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\settings =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\shader-cache =>Mozilla Corporation C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\storage =>Mozilla Corporation C:\Program Files\Mozilla Firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js =>Kaspersky Labs [LockPref:kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg] C:\Program Files\Mozilla Firefox\defaults\pref\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg =>Kaspersky Labs ---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (15) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.22621.2275 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation ---\\ INTERNET EXPLORER, Site de confiance et site sensible (1) - 0s ~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad) ---\\ MICROSOFT EDGE, Plugin,Favoris,Démarrage,Recherche,Extension (7) - 0s E2 - GCE: Preference [pmalh][User Data\Default\Extensions] [ahkjpbeeocnddjkakilopmfdlnjdpcdm] =>.Kaspersky Labs E2 - GCE: Preference [pmalh][User Data\Default\Extensions] [jmjflgjpcpepeafmmgdpfkogkghcpiha] Edge relevant text changes =>.Legitimate E2 - GCE: Preference [pmalh][User Data\Default\Extensions] [odfafepnkmbhccpbejgmiehpchacaeak] uBlock Origin =>.Raymond Hill E2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [ahkjpbeeocnddjkakilopmfdlnjdpcdm] =>.Kaspersky Labs E2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [jdiccldimpdaibmpdkjnbmckianbfold] =>.Microsoft Corporation E2 - GCE: Preference [pmalh][User Data\Default\Local Extension Settings] [odfafepnkmbhccpbejgmiehpchacaeak] =>.Raymond Hill E2 - GCE: Preference [pmalh][User Data\Default\Managed Extension Settings] [odfafepnkmbhccpbejgmiehpchacaeak] =>.Raymond Hill ---\\ INTERNET EXPLORER,Proxy Management (3) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft ---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 1s F2 - REG:system.ini: UserInit= F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ ETUDE DU FICHIER HOSTS (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (40) ---\\ BROWSER HELPER OBJECT DE NAVIGATEUR (BHO) (1) - 0s O2 - BHO: IEToEdge BHO [64Bits] - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} . (.Microsoft Corporation - IEToEdge BHO.) -- C:\Program Files (x86)\Microsoft\Edge\Application\115.0.1901.203\BHO\ie_to_edge_bho_64.dll =>.Microsoft® ---\\ RACCOURCIS GLOBAL STARTUP (44) - 2s O4 - GS\Desktop [pmalh]: Bel Atout.lnk . (...) C:\Program Files (x86)\Jeux de cartes\Bel Atout\belatout.exe [Unsigned] O4 - GS\Desktop [pmalh]: Macgo Windows Blu-ray Player.lnk . (...) C:\Program Files (x86)\MacGo\Mac Blu-ray Player.exe {07144E11B8CED882ECDBD8BB}. O4 - GS\Desktop [pmalh]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\pmalh\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Desktop [pmalh]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\pmalh\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Desktop [pmalh]: ZHPSuite.lnk . (.Nicolas Coolman - ZHPSuite.) C:\Users\pmalh\AppData\Roaming\ZHP\ZHPSuite.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [pmalh]: Google Chrome.lnk . (.Google LLC - Accéder à Internet.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [Unsigned] =>.Google LLC O4 - GS\Quicklaunch [pmalh]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O4 - GS\Quicklaunch [pmalh]: PrivaZer.lnk . (.Goversoft LLC - PrivaZer.) C:\Program Files (x86)\PrivaZer\PrivaZer.exe {009C91D8D991C56342F031B82DA330CCAF}. =>.Goversoft LLC O4 - GS\sendTo [pmalh]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [pmalh]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [pmalh]: Bel Atout.lnk . (...) C:\Program Files (x86)\Jeux de cartes\Bel Atout\belatout.exe [Unsigned] O4 - GS\TaskBar [pmalh]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\TaskBar [pmalh]: Google Chrome.lnk . (.Google LLC - Accéder à Internet.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [Unsigned] =>.Google LLC O4 - GS\TaskBar [pmalh]: Lightscreen.lnk . (.Christian Kaiser - Lightscreen Screenshot Tool.) C:\Program Files (x86)\Lightscreen\lightscreen.exe [Unsigned] =>.Christian Kaiser O4 - GS\TaskBar [pmalh]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --profile-directory=Default =>.Microsoft® O4 - GS\Programs [pmalh]: Administrative Tools.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\system32\control.exe /name Microsoft.AdministrativeTools =>.Microsoft Corporation O4 - GS\Programs [pmalh]: f.lux.lnk . (.f.lux Software LLC - f.lux.) C:\Users\pmalh\AppData\Local\FluxSoftware\Flux\flux.exe {1E76077152583A372C338AF11A6ECF83}. =>.f.lux Software LLC O4 - GS\Programs [pmalh]: MaxxAudio Pro de Waves - Contrôle audio du microphone et des haut-parleurs et son 3D Nx.lnk . (.Waves Audio Ltd. - Waves MaxxAudio Service Application.) C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSvc64.exe /toast {010E858706668954EFAEB80257C7BA95}. =>.Waves Audio Ltd. O4 - GS\Programs [pmalh]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\pmalh\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft® O4 - GS\CommonDesktop [Public]: BCUninstaller.lnk . (.Marcin Szeniak - BCUninstaller launcher.) C:\Program Files\BCUninstaller\BCUninstaller.exe {1DB3A78E25F58790729C9B21BCCC6170}. =>.Marcin Szeniak O4 - GS\CommonDesktop [Public]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google LLC - Accéder à Internet.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [Unsigned] =>.Google LLC O4 - GS\CommonDesktop [Public]: Google Earth Pro.lnk . (.Google LLC - Google Earth Pro.) C:\Program Files (x86)\Google\Google Earth Pro\client\googleearth.exe [Unsigned] =>.Google LLC O4 - GS\CommonDesktop [Public]: Kaspersky Total Security.lnk . (.AO Kaspersky Lab - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe =>.Kaspersky Lab JSC® O4 - GS\CommonDesktop [Public]: Lightscreen.lnk . (.Christian Kaiser - Lightscreen Screenshot Tool.) C:\Program Files (x86)\Lightscreen\lightscreen.exe [Unsigned] =>.Christian Kaiser O4 - GS\CommonDesktop [Public]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O4 - GS\CommonDesktop [Public]: PrivaZer.lnk . (.Goversoft LLC - PrivaZer.) C:\Program Files (x86)\PrivaZer\PrivaZer.exe {009C91D8D991C56342F031B82DA330CCAF}. =>.Goversoft LLC O4 - GS\Programs [Public]: Administrative Tools.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\system32\control.exe /name Microsoft.AdministrativeTools =>.Microsoft Corporation O4 - GS\Programs [Public]: f.lux.lnk . (.f.lux Software LLC - f.lux.) C:\Users\pmalh\AppData\Local\FluxSoftware\Flux\flux.exe {1E76077152583A372C338AF11A6ECF83}. =>.f.lux Software LLC O4 - GS\Programs [Public]: MaxxAudio Pro de Waves - Contrôle audio du microphone et des haut-parleurs et son 3D Nx.lnk . (.Waves Audio Ltd. - Waves MaxxAudio Service Application.) C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSvc64.exe /toast {010E858706668954EFAEB80257C7BA95}. =>.Waves Audio Ltd. O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\pmalh\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft® O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Media Player Legacy.lnk . (.Microsoft Corporation - Lecteur multimédia Windows.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google LLC - Accéder à Internet.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [Unsigned] =>.Google LLC O4 - GS\ProgramsCommon [Public]: Google Earth Pro.lnk . (.Google LLC - Google Earth Pro.) C:\Program Files (x86)\Google\Google Earth Pro\client\googleearth.exe [Unsigned] =>.Google LLC O4 - GS\ProgramsCommon [Public]: Kaspersky Total Security.lnk . (.AO Kaspersky Lab - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe =>.Kaspersky Lab JSC® O4 - GS\ProgramsCommon [Public]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O4 - GS\ProgramsCommon [Public]: Navigation privée de Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\private_browsing.exe =>.Mozilla Corporation® O4 - GS\ProgramsCommon [Public]: PrivaZer.lnk . (.Goversoft LLC - PrivaZer.) C:\Program Files (x86)\PrivaZer\PrivaZer.exe {009C91D8D991C56342F031B82DA330CCAF}. =>.Goversoft LLC ---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{8086a890-afa5-4f08-bdaa-1d0b034e93dc}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress ---\\ PROTOCOLE ADDITIONNEL (19) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll [Unsigned] =>.Microsoft Corporation ---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\WINDOWS\system32\userinit.exe =>.Microsoft Corporation ---\\ CLE DE REGISTRE EXPLORER StartupApproved (1) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:SecurityHealth =>.Microsoft Corporation ---\\ COMPOSANTS ACTIVESETUP INSTALLES (ASIC) (6) - 1s O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll [Unsigned] =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur multim.) -- C:\Windows\System32\unregmp2.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [Unsigned] =>.Microsoft Corporation O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft® O40 - ASIC: Google Chrome [64Bits] - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google LLC - Google Chrome Installer.) -- C:\Program Files\Google\Chrome\Application\116.0.5845.97\Installer\chrmstp.exe =>.Google LLC® O40 - ASIC: Microsoft Edge [64Bits] - {9459C573-B17A-45AE-9F64-1857B5D58CEE} . (.Microsoft Corporation - Microsoft Edge Installer.) -- C:\Program Files (x86)\Microsoft\Edge\Application\115.0.1901.203\Installer\setup.exe =>.Microsoft® ---\\ LOGICIELS INSTALLES (19) - 4s O42 - Logiciel: BCUninstaller - (.Marcin Szeniak.) [HKLM][64Bits] -- {f4fef76c-1aa9-441c-af7e-d27f58d898d1}_is1 [Unsigned] =>.Marcin Szeniak O42 - Logiciel: Bel Atout 6.56 - (.Vincent Brévart.) [HKLM][64Bits] -- BelAtoutFr_is1 [Unsigned] =>.Vincent Brévart O42 - Logiciel: Docs - (.Google\Chrome.) [HKCU][64Bits] -- 2c668e4080aff573e08127c4f5186b27 =>.Google LLC® O42 - Logiciel: f.lux - (.f.lux Software LLC.) [HKCU][64Bits] -- Flux [Unsigned] =>.f.lux Software LLC O42 - Logiciel: Feuilles de calcul - (.Google\Chrome.) [HKCU][64Bits] -- c8b66c2e5f9d7739fbfe80cf8fdf66ac =>.Google LLC® O42 - Logiciel: Gmail - (.Google\Chrome.) [HKCU][64Bits] -- c46a31d5080f290db82f7eb54471f796 =>.Google LLC® O42 - Logiciel: Google Chrome - (.Google LLC.) [HKLM][64Bits] -- Google Chrome =>.Google LLC® O42 - Logiciel: Google Drive - (.Google\Chrome.) [HKCU][64Bits] -- f2a8fcdb8353600fb099cedc2d11048b =>.Google LLC® O42 - Logiciel: Google Earth Pro - (.Google.) [HKLM][64Bits] -- {F27DBA46-80E1-4858-9285-19198FFFBF3D} [Unsigned] =>.Google O42 - Logiciel: Kaspersky Total Security - (.Kaspersky.) [HKLM][64Bits] -- {4FC79BE9-AD63-46C0-9626-E4F6BCE6A976} [Unsigned] =>.Kaspersky (Hidden) O42 - Logiciel: Kaspersky Total Security - (.Kaspersky.) [HKLM][64Bits] -- InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976} [Unsigned] =>.Kaspersky O42 - Logiciel: Lightscreen version 2.5 - (.Christian Kaiser.) [HKLM][64Bits] -- {4A59754E-D644-4F84-9768-41F68053F08E}_is1 [Unsigned] =>.Christian Kaiser O42 - Logiciel: Mac Blu-ray Player - (.Macgo Inc..) [HKLM][64Bits] -- Mac Blu-ray Player [Unsigned] =>.Macgo Inc. O42 - Logiciel: Mozilla Firefox (x64 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 116.0.3 (x64 fr) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService [Unsigned] =>.Mozilla O42 - Logiciel: Présentations - (.Google\Chrome.) [HKCU][64Bits] -- 836ad4fdfd397861974a9460e2bcc911 =>.Google LLC® O42 - Logiciel: PrivaZer - (.Goversoft LLC.) [HKLM][64Bits] -- PrivaZer =>.Goversoft LLC® O42 - Logiciel: UK's Kalender 2.5.6 - (.Ulrich Krebs.) [HKLM][64Bits] -- UK's Kalender_is1 [Unsigned] =>.Ulrich Krebs O42 - Logiciel: YouTube - (.Google\Chrome.) [HKCU][64Bits] -- e92da61e7e88bdbd3f25d8f72fbd047d =>.Google LLC® ---\\ CLE DE REGISTRE SOFTWARE HKCU & HKLM (65) - 4s HKLM\SOFTWARE\ASIO =>.Steinberg Media Technologies HKLM\SOFTWARE\Atheros =>.Qualcomm Atheros HKLM\SOFTWARE\Conexant =>.Conexant Systems, Inc. HKLM\SOFTWARE\CVSM =>.Legitimate HKLM\SOFTWARE\DefaultUserEnvironment =>.Microsoft Corporation HKLM\SOFTWARE\Google =>.Google HKLM\SOFTWARE\HP =>.HP HKLM\SOFTWARE\Intel =>.Intel HKLM\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKLM\SOFTWARE\Mozilla =>.Mozilla HKLM\SOFTWARE\mozilla.org =>.mozilla.org HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\OEM =>.OEM HKLM\SOFTWARE\OpenSSH =>.OpenBSD HKLM\SOFTWARE\Partner =>.Google Inc. HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKLM\SOFTWARE\Setup =>.Unknown HKLM\SOFTWARE\Waves Audio =>.Waves Audio HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node\ASIO =>.Steinberg Media Technologies HKLM\SOFTWARE\WOW6432Node\Google =>.Google HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel HKLM\SOFTWARE\WOW6432Node\KasperskyLab =>.Kaspersky Labs HKLM\SOFTWARE\WOW6432Node\Malwarebytes =>.Malwarebytes HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\appdatalow =>.Microsoft Corporation HKCU\SOFTWARE\ChangeTracker =>.Legitimate HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\Intel =>.Intel HKCU\SOFTWARE\K HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKCU\SOFTWARE\MacGo =>.MacGo HKCU\SOFTWARE\Michael Herf =>.Michael Herf HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\PrivaZer =>.Goversoft LLC HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation HKCU\SOFTWARE\Trolltech =>.Trolltech HKCU\SOFTWARE\Ulrich Krebs =>.Ulrich Krebs HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\software =>.Microsoft Corporation HKU\.DEFAULT\SOFTWARE\AppDataLow =>.Microsoft Corporation HKU\.DEFAULT\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\appdatalow =>.Microsoft Corporation HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\ChangeTracker =>.Legitimate HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\Google =>.Google HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\Intel =>.Intel HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\K HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\MacGo =>.MacGo HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\Michael Herf =>.Michael Herf HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\Mozilla =>.Mozilla HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\PrivaZer =>.Goversoft LLC HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\SyncEngines =>.Microsoft Corporation HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\Trolltech =>.Trolltech HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\Ulrich Krebs =>.Ulrich Krebs HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKU\S-1-5-21-438082756-1125671509-3346762400-1001\SOFTWARE\ZHP =>.Nicolas Coolman ---\\ PACKAGES (17) - 0s C:\Program Files (x86)\WindowsApps\1527c705-839a-4832-9118-54d4Bd6a0c89_10.0.19640.1000_neutral_neutral_cw5n1h2txyewy - (..) [][ms-resource:AppxManifest_DisplayName] C:\Program Files (x86)\WindowsApps\664D3057.MahjongDeluxeFree_7.6.37.0_x86__wwtpmf9bcrwqj - (.EnsenaSoft S.A. de C.V..) [][Mahjong Deluxe Free] =>EnsenaSoft S.A. de C.V. C:\Program Files (x86)\WindowsApps\AD2F1837.HPPrinterControl_148.2.1069.0_x64__v10z8vjag6ke6 - (.Hewlett-Packard.) [][HP Smart] =>Hewlett-Packard C:\Program Files (x86)\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5180.0_x64__8j3eq9eme6ctt - (.INTEL CORP.) [][ms-resource:System_Item_Title_IntelGraphicsControlPanel] =>INTEL CORP C:\Program Files (x86)\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt - (.Intel Corporation.) [][Intel® Optane™ Memory and Storage Management] =>Intel Corporation C:\Program Files (x86)\WindowsApps\c5e2524a-ea46-4f67-841f-6a9465d9d515_10.0.22621.1_neutral_neutral_cw5n1h2txyewy - (.Microsoft Corporation.) [][ms-resource:AppxManifest_DisplayName] =>Microsoft Corporation C:\Program Files (x86)\WindowsApps\E2A4F912-2574-4A75-9BB0-0D023378592B_10.0.19640.1000_neutral_neutral_cw5n1h2txyewy - (..) [][ms-resource:AppxManifest_DisplayName] C:\Program Files (x86)\WindowsApps\F46D4000-FD22-4DB4-AC8E-4E1DDDE828FE_10.0.22621.1_neutral_neutral_cw5n1h2txyewy - (.Microsoft Corporation.) [][ms-resource:AppxManifest_DisplayName] =>Microsoft Corporation C:\Program Files (x86)\WindowsApps\Goversoft.PrivaZer_1.0.5.0_neutral__ps1j8khqkbvfa - (..) [][PrivaZer] C:\Program Files (x86)\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.39.0_x64__8wekyb3d8bbwe - (.Microsoft Corporation.) [][Microsoft Family] =>Microsoft Corporation C:\Program Files (x86)\WindowsApps\MicrosoftCorporationII.QuickAssist_2.0.21.0_x64__8wekyb3d8bbwe - (.Microsoft Corporation.) [][ms-resource://MicrosoftCorporationII.QuickAssist/resources/APP_WINDOW_NAME] =>Microsoft Corporation C:\Program Files (x86)\WindowsApps\MicrosoftTeams_23195.1511.2279.823_x64__8wekyb3d8bbwe - (.Microsoft Corporation.) [][Microsoft Teams] =>Microsoft Corporation C:\Program Files (x86)\WindowsApps\MicrosoftWindows.Client.CBS_1000.22659.1000.0_x64__cw5n1h2txyewy - (.Microsoft Corporation.) [][ms-resource:ProductPkgDisplayName] =>Microsoft Corporation C:\Program Files (x86)\WindowsApps\MicrosoftWindows.Client.WebExperience_423.21300.10.0_x64__cw5n1h2txyewy - (.Microsoft Corporation.) [][Windows Web Experience Pack] =>Microsoft Corporation C:\Program Files (x86)\WindowsApps\MicrosoftWindows.UndockedDevKit_10.0.22621.1_neutral_neutral_cw5n1h2txyewy - (.Microsoft Corporation.) [][UDK Package] =>Microsoft Corporation C:\Program Files (x86)\WindowsApps\NcsiUwpApp_1000.22621.1.0_neutral_neutral_8wekyb3d8bbwe - (.Microsoft.) [][NcsiUwpApp] =>Microsoft C:\Program Files (x86)\WindowsApps\WavesAudio.MaxxAudioProforDell2020_3.0.98.0_x64__fh4rh281wavaa - (.Waves Audio.) [][Waves MaxxAudio Pro for Dell 2020] =>Waves Audio ---\\ CONTENU DES DOSSIERS PROGRAMMES (43) - 2s O43 - CFD: 19/08/2023 - [] D -- C:\Program Files\BCUninstaller {1DB3A78E25F58790729C9B21BCCC6170}. O43 - CFD: 19/08/2023 - [] D -- C:\Program Files\Google =>.Google LLC® O43 - CFD: 19/08/2023 - [] D -- C:\Program Files\HPPrintScanDoctor =>.HP Inc.® O43 - CFD: 19/08/2023 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla O43 - CFD: 19/08/2023 - [] D -- C:\Program Files\Waves =>.Waves O43 - CFD: 21/08/2023 - [] D -- C:\Program Files (x86)\Google =>.Google LLC® O43 - CFD: 19/08/2023 - [] D -- C:\Program Files (x86)\Jeux de cartes =>.Games Software O43 - CFD: 20/08/2023 - [] D -- C:\Program Files (x86)\Kalender =>.Ulrich Krebs O43 - CFD: 19/08/2023 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab O43 - CFD: 19/08/2023 - [] AD -- C:\Program Files (x86)\Lightscreen [Unsigned] O43 - CFD: 21/08/2023 - [] D -- C:\Program Files (x86)\MacGo =>.MacGo Inc. O43 - CFD: 19/08/2023 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla O43 - CFD: 19/08/2023 - [] D -- C:\Program Files (x86)\PrivaZer =>.Goversoft LLC O43 - CFD: 07/05/2022 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 19/08/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BCUninstaller O43 - CFD: 19/08/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jeux de cartes =>.Games Software O43 - CFD: 19/08/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightscreen O43 - CFD: 20/08/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UK's Kalender =>.Ulrich Krebs O43 - CFD: 19/08/2023 - [] D -- C:\ProgramData\Intel =>.Intel Corporation O43 - CFD: 19/08/2023 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab O43 - CFD: 19/08/2023 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab O43 - CFD: 21/08/2023 - [] D -- C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 =>.Mozilla Corporation O43 - CFD: 19/08/2023 - [] D -- C:\ProgramData\privazer =>.Goversoft LLC O43 - CFD: 21/08/2023 - [] D -- C:\Program Files (x86)\Common Files\Kaspersky Lab =>.Kaspersky Lab O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Roaming\Mozilla =>.Mozilla Corporation O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Roaming\TheAeroClock O43 - CFD: 21/08/2023 - [] D -- C:\Users\pmalh\AppData\Roaming\UK's Kalender =>.Ulrich Krebs O43 - CFD: 21/08/2023 - [] D -- C:\Users\pmalh\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 21/08/2023 - [] AD -- C:\Users\pmalh\AppData\Local\D3DSCache =>.Legitimate O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Local\FluxSoftware =>.Stereopsis O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Local\Google =>.Google O43 - CFD: 21/08/2023 - [] D -- C:\Users\pmalh\AppData\Local\MacGo =>.MacGo Inc. O43 - CFD: 20/08/2023 - [] D -- C:\Users\pmalh\AppData\Local\mbam =>.Malwarebytes O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Local\Mozilla =>.Mozilla Corporation O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Local\PrivaZer =>.Goversoft LLC O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\LocalLow\Google =>.Google O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\LocalLow\Intel =>.Intel Corporation O43 - CFD: 19/08/2023 - [] RD -- C:\Users\pmalh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome =>.Google Inc. O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Macgo Windows Blu-ray Player =>.MacGo O43 - CFD: 19/08/2023 - [] D -- C:\Users\pmalh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer =>.Goversoft LLC ---\\ ShellIconOverlayIdentifiers (SIOI) (1) - 0s O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation ---\\ RACCOURCIS DES MENUS CONTEXTUELS (SCMH) (29) - 2s O108 - CMH1: Kaspersky Anti-Virus 21.3 [64Bits] - {37303E08-14C9-4FC3-B1D9-7993682A4691} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll =>.AO Kaspersky Lab® O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft® O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft® O108 - CMH1: PrivaZer [64Bits] - {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} . (...) -- C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll =>.Goversoft LLC® O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation O108 - CMH2: Kaspersky Anti-Virus 21.3 [64Bits] - {37303E08-14C9-4FC3-B1D9-7993682A4691} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll =>.AO Kaspersky Lab® O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft® O108 - CMH2: PrivaZer [64Bits] - {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} . (...) -- C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll =>.Goversoft LLC® O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft® O108 - CMH3: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH3: PrivaZer [64Bits] - {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} . (...) -- C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll =>.Goversoft LLC® O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft® O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft® O108 - CMH4: Kaspersky Anti-Virus 21.3 [64Bits] - {37303E08-14C9-4FC3-B1D9-7993682A4691} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll =>.AO Kaspersky Lab® O108 - CMH4: PrivaZer [64Bits] - {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} . (...) -- C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll =>.Goversoft LLC® O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft® O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation O108 - CMH6: Kaspersky Anti-Virus 21.3 [64Bits] - {37303E08-14C9-4FC3-B1D9-7993682A4691} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll =>.AO Kaspersky Lab® O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft® O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Programme de résolution d’applications.) -- C:\Windows\System32\appresolver.dll =>.Microsoft® O108 - CMH6: PrivaZer [64Bits] - {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} . (...) -- C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll =>.Goversoft LLC® O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation O108 - CMH7: Kaspersky Anti-Virus 21.3 [64Bits] - {37303E08-14C9-4FC3-B1D9-7993682A4691} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll =>.AO Kaspersky Lab® O108 - CMH7: PrivaZer [64Bits] - {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} . (...) -- C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll =>.Goversoft LLC® O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation ---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (12) - 0s O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\LSASS.exe - (.Microsoft Corporation - Local Security Authority Process.) [AuditLevel\\8] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\notepad.exe - (.Microsoft Corporation - Bloc-notes.) [UseFilter\\1] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] [Unsigned] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft® ---\\ LISTE DES PILOTES DU SYSTEME (89) - 17s O58 - SDL:2022/05/07 07:19:03 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108376] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1136472] =>.Microsoft® O58 - SDL:2022/05/07 07:19:00 A . (.Advanced Micro Devices, Inc - AMD GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\amdgpio2.sys [18432] [Unsigned] =>.Advanced Micro Devices, Inc O58 - SDL:2022/05/07 07:19:00 A . (.Advanced Micro Devices, Inc - AMD I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\amdi2c.sys [45568] [Unsigned] =>.Advanced Micro Devices, Inc O58 - SDL:2022/05/07 07:19:03 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [84312] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [260440] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [28008] =>.Microsoft® O58 - SDL:2022/05/07 07:19:00 A . (.Apple Inc. - Apple Solid State Drive Device.) -- C:\WINDOWS\System32\drivers\AppleSSD.sys [113496] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132968] =>.Microsoft® O58 - SDL:2022/05/07 07:19:00 A . (. - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] [Unsigned] =>.Broadcom Corporation O58 - SDL:2021/11/27 19:07:54 A . (.Qualcomm - BT Filter.) -- C:\WINDOWS\System32\drivers\btfilter.sys [104744] =>.Qualcomm Atheros, Inc.® O58 - SDL:2022/05/07 07:19:02 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [534872] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [145256] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [320880] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Chelsio Communications - VF library for Chelsio ® T5/T6 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vfx.sys [28672] [Unsigned] =>.Chelsio Communications O58 - SDL:2022/05/07 07:19:04 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1854832] =>.Microsoft® O58 - SDL:2022/08/02 11:55:02 A . (.AO Kaspersky Lab - Cryptographic Module Driver x86 (56 bit).) -- C:\WINDOWS\System32\drivers\cm_km.sys [237288] =>.Microsoft® O58 - SDL:2019/05/22 04:55:08 A . (.Cypress Semiconductor Corporation - Cypress UCM Client Driver.) -- C:\WINDOWS\System32\drivers\CyUcmClient.sys [165224] {2B4590395C4F04B9A549891B2D85BBE0}. =>.Cypress Semiconductor Corporation O58 - SDL:2022/01/07 10:18:17 A . (.Dell Inc. - Dell BASE Device Driver.) -- C:\WINDOWS\System32\drivers\dcdbas64.sys [48464] =>.Dell Inc.® O58 - SDL:2022/05/07 07:19:02 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbd0a.sys [3424104] =>.Microsoft® O58 - SDL:2022/05/07 07:19:02 A . (.Marvell Semiconductor Inc. - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3441512] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [65360] =>.Microsoft® O58 - SDL:2022/05/07 07:19:00 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36352] [Unsigned] =>.Intel(R) Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91136] [Unsigned] =>.Intel(R) Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] [Unsigned] =>.Intel Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184] [Unsigned] =>.Intel Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128] [Unsigned] =>.Intel Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256] [Unsigned] =>.Intel Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] [Unsigned] =>.Intel Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104] [Unsigned] =>.Intel Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152] [Unsigned] =>.Intel Corporation O58 - SDL:2022/05/07 07:19:00 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664] [Unsigned] =>.Intel Corporation O58 - SDL:2022/05/07 07:19:02 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2022/05/07 07:19:01 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] [Unsigned] =>.Intel Corporation O58 - SDL:2022/12/18 16:24:00 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\WINDOWS\System32\drivers\iaStorAC.sys [1348760] {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation O58 - SDL:2022/12/18 16:24:02 A . (.Intel Corporation - Intel(R) Optane(TM) Memory Minifilter Drive.) -- C:\WINDOWS\System32\drivers\iaStorAfs.sys [74904] {34770BB53021480D308F5E5593B49D84}. =>.Intel Corporation O58 - SDL:2022/05/07 07:19:04 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAVC.sys [885584] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [413008] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [559976] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.Avago Technologies - Avago SAS Gen3.5 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\ItSas35i.sys [187224] =>.Microsoft® O58 - SDL:2022/08/02 11:55:04 A . (.AO Kaspersky Lab - Backup Disk Filter [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [105280] =>.Microsoft® O58 - SDL:2022/08/02 11:55:06 A . (.AO Kaspersky Lab - Backup File Filter [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [206600] =>.Microsoft® O58 - SDL:2022/08/02 11:55:08 A . (.AO Kaspersky Lab - Virtual Disk [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [119568] =>.Microsoft® O58 - SDL:2021/02/19 21:08:56 A . (.AO Kaspersky Lab - Early Launch Anti-Malware Filter [fre_win8_.) -- C:\WINDOWS\System32\drivers\klelam.sys [41656] =>.Microsoft® O58 - SDL:2022/08/02 11:55:16 A . (.AO Kaspersky Lab - Filter Core [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [522504] =>.Microsoft® O58 - SDL:2023/07/10 19:44:42 A . (.AO Kaspersky Lab - Security Extender [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klgse.sys [738824] =>.Microsoft® O58 - SDL:2023/07/10 19:44:40 A . (.AO Kaspersky Lab - klhk [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [1822752] =>.Microsoft® O58 - SDL:2022/08/02 11:55:12 A . (.AO Kaspersky Lab - Core System Interceptors [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [1049864] =>.Microsoft® O58 - SDL:2022/08/02 11:55:14 A . (.AO Kaspersky Lab - Packet Network Filter [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klim6.sys [90896] =>.Microsoft® O58 - SDL:2022/08/02 11:55:34 A . (.AO Kaspersky Lab - Keyboard Device Filter [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [104728] =>.Microsoft® O58 - SDL:2022/08/02 11:55:38 A . (.AO Kaspersky Lab - Mouse Device Filter [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [107328] =>.Microsoft® O58 - SDL:2022/08/02 11:55:18 A . (.AO Kaspersky Lab - Format Recognizer [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [78088] =>.Microsoft® O58 - SDL:2022/08/02 11:55:18 A . (.AO Kaspersky Lab - Generic PnP filter [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klpnpflt.sys [88328] =>.Microsoft® O58 - SDL:2023/08/19 10:29:28 A . (.AO Kaspersky Lab - Kaspersky Lab Anti-Rootkit Monitor Driver.) -- C:\WINDOWS\System32\drivers\klupd_klif_arkmon.sys [369432] =>.Microsoft® O58 - SDL:2023/08/19 10:29:21 A . (.AO Kaspersky Lab - Kaspersky Lab Anti-Rootkit.) -- C:\WINDOWS\System32\drivers\klupd_klif_klark.sys [351912] =>.Microsoft® O58 - SDL:2023/08/19 10:29:21 A . (.AO Kaspersky Lab - Kaspersky Lab Boot Guard Driver.) -- C:\WINDOWS\System32\drivers\klupd_klif_klbg.sys [179816] =>.Microsoft® O58 - SDL:2023/08/19 10:29:27 A . (.AO Kaspersky Lab - Kaspersky Lab Anti-Rootkit Memory Driver.) -- C:\WINDOWS\System32\drivers\klupd_klif_mark.sys [260512] =>.Microsoft® O58 - SDL:2022/08/02 11:55:20 A . (.AO Kaspersky Lab - WFP Network Filter [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [150280] =>.Microsoft® O58 - SDL:2022/08/02 11:55:22 A . (.AO Kaspersky Lab - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [325400] =>.Microsoft® O58 - SDL:2022/08/02 11:55:24 A . (.AO Kaspersky Lab - Network Processor [fre_win7_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [294680] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109920] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [125280] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [138600] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.Avago Technologies - MEGASAS2i RAID Controller Driver for Window.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [81752] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.Broadcom Inc - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas35i.sys [101224] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [576856] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [1132392] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.Broadcom Limited - Broadcom MPI 3.0 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\mpi3drvi.sys [90472] =>.Microsoft® O58 - SDL:2022/05/07 07:19:03 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [64872] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [147304] =>.Microsoft® O58 - SDL:2022/05/07 07:20:14 A . (...) -- C:\WINDOWS\System32\drivers\NDKPerf.sys [83288] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [151392] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [167256] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [59752] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [69464] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.VMware, Inc. - VMware PVSCSI StorPort driver (64-bit).) -- C:\WINDOWS\System32\drivers\pvscsii.sys [45408] =>.Microsoft® O58 - SDL:2020/04/10 22:06:18 A . (.Qualcomm Atheros, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2434840] =>.Qualcomm Atheros® O58 - SDL:2022/05/07 07:20:02 A . (...) -- C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304] [Unsigned] O58 - SDL:2022/05/07 07:19:00 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [86016] [Unsigned] =>.Realtek O58 - SDL:2023/03/02 22:34:50 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [6449048] =>.Realtek Semiconductor Corp.® O58 - SDL:2020/05/03 02:34:12 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [434680] =>.Realtek Semiconductor Corp.® O58 - SDL:2022/05/07 07:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [45920] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [82784] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Microsemi Corportation - Storport Miniport Driver for SmartRAID/Smar.) -- C:\WINDOWS\System32\drivers\SmartSAMD.sys [210784] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [32080] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [167784] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [306512] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [37224] =>.Microsoft® O58 - SDL:2022/05/07 07:19:04 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [74096] =>.Microsoft® ---\\ DERNIERS FICHIERS MODIFIES OU CREES (Utilisateur) (2) - 5s O61 - LFC: 2023/08/20 11:53:08 A . (..) -- C:\Users\pmalh\AppData\Local\FluxSoftware\Flux\uninstall.exe [57324] [Unsigned] O61 - LFC: 2023/08/19 10:36:47 A . (..) -- C:\Users\pmalh\Downloads\flux-setup.exe [685448] {1E76077152583A372C338AF11A6ECF83}. ---\\ ASSOCIATION Shell Spawning (10) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe [Unsigned] =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe [Unsigned] =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe [Unsigned] =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value ---\\ MENU DE DÉMARRAGE INTERNET (16) - 0s O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft® O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Show IE Icon Utility.) -- C:\WINDOWS\System32\ie4ushowIE.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Show IE Icon Utility.) -- C:\WINDOWS\System32\ie4ushowIE.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation ---\\ RECHERCHE D'INFECTION SUR NAVIGATEURS (1) - 6s O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com ---\\ ENUMERE LES SERVICES DÉMARRES PAR Svchost (49) - 3s O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\System32\srvsvc.dll [344064] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1376256] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [1531904] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [843776] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [53248] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [180224] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [122880] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [811008] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [245760] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [598016] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports de problèmes.) -- C:\Windows\System32\wercplsupport.dll [139264] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2052096] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [1658880] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [434176] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [114688] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1044480] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [1191936] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1040384] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\Windows\System32\TokenBroker.dll [1810432] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [86016] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [241664] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [135168] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [1138688] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [512000] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [98304] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [683168] =>.Microsoft® O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [335872] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [136520] =>.Microsoft® O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1388544] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [270336] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [143360] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [1030304] =>.Microsoft® O83 - Search Svchost Services: WManSvc (WManSvc) . (.Microsoft Corporation - DLL du Service de gestion de Windows.) -- C:\Windows\System32\Windows.Management.Service.dll [1245184] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [270336] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1392640] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session du service Orchest.) -- C:\Windows\System32\usosvc.dll [102400] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [315392] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [2793472] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: LxpSvc (LxpSvc) . (.Microsoft Corporation - Fournit une prise en charge de l'infrastruc.) -- C:\Windows\System32\LanguageOverlayServer.dll [610304] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: TroubleshootingSvc (TroubleshootingSvc) . (.Microsoft Corporation - MitigationClient.) -- C:\Windows\System32\MitigationClient.dll [516096] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [299008] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: DcSvc (DcSvc) . (.Microsoft Corporation - dcsvc.) -- C:\Windows\System32\dcsvc.dll [802816] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [188416] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [319488] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [131072] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [425984] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [241664] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [241664] [Unsigned] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [643072] [Unsigned] =>.Microsoft Corporation ---\\ PACKAGES WINDOWS INSTALLER (4) - 3s [MD5.C776BBE95E379BADA267D932D2205F4A] [WIS][2023/08/19 10:27:46] (.Kaspersky - Kaspersky Total Security.) -- C:\WINDOWS\Installer\139810.msi [15765504] =>.Kaspersky [MD5.0BF25C36EA30DF8A7EEF8533F9113319] [WIS][2023/08/19 10:49:02] (.Google - Google Earth Pro.) -- C:\WINDOWS\Installer\231221.msi [67309568] =>.Google [MD5.ADD24DD2A80A2380D4AB745B20B7B546] [WIS][2023/08/19 10:31:46] (.AO Kaspersky Lab.) -- C:\WINDOWS\Installer\139825.msp [8966144] =>.AO Kaspersky Lab [MD5.541287A87109215DA5C806ACE5DCF83F] [WIS][2023/08/19 10:31:51] (.Kaspersky Lab JSC.) -- C:\WINDOWS\Installer\139831.msp [1241088] =>.Kaspersky Lab JSC ---\\ OBSERVATEURS des évènements (55) - 12s Application.Warning: Microsoft-Windows-WMI (18) ~Numéro: 366 ~Date: 08/21/2023 07:37:58 AM ~ID: 63 ~Description: Un fournisseur, %1, a été inscrit dans l’espace de noms Windows Management Instrumentation %2, afin d’utiliser le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s’il ne représente pas ~Suggestion: Généralement LocalSystem n'est pas nécessaire et le contexte de sécurité NetworkServiceHost est plus approprié. Application.Error: VSS (2) ~Numéro: 257 ~Date: 08/20/2023 10:45:13 AM ~ID: 8194 ~Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = %1. Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opéra ~Suggestion: Localiser les enregistreurs VSS qui se trompent et changer le compte sous lequel ils s'exécutent du service réseau au système local. Ajuster les autorisations d'activation du service COM par défaut Application.Error: Application Error (1) ~Numéro: 255 ~Date: 08/20/2023 10:41:23 AM ~ID: 1000 ~Description: Nom de l’application défaillante %1, version : %2, horodatage : 0x004687c2 Nom du module défaillant : %4, version : %5, horodatage : 0x63a7bf48 Code d’exception : 0xc000027b Décalage d’erreur : 0x00000000000c08d3 ID du processus défaillant : 0x0x13d0 ~Suggestion: Réparer ou réinstaller l'application. Application.Warning: Microsoft-Windows-RestartManager (2) ~Numéro: 5 ~Date: 08/19/2023 02:33:37 PM ~ID: 10010 ~Description: Impossible de redémarrer l’application « %3 » (pid %2) - %9. ~Suggestion: Redémarrer manuellement l'application ou le service System.Warning: DCOM (71) ~Numéro: 1497 ~Date: 08/21/2023 10:23:03 AM ~ID: 10016 ~Description: propres à l’applicationLocalActivation{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}{15C20B67-12E7-4BB6-92BB-7AFF07997402}FILIPpmalhS-1-5-21-438082756-1125671509-3346762400-1001LocalHost (avec LRPC)Non disponibleNon disponible ~Suggestion: Vérifier les autorisations pour l'accès DCOM System.Error: Microsoft-Windows-Kernel-Power (6) ~Numéro: 1488 ~Date: 08/21/2023 08:47:35 AM ~ID: 137 ~Description: 4 ~Suggestion: Aucune System.Warning: LsaSrv (60) ~Numéro: 1406 ~Date: 08/21/2023 07:37:48 AM ~ID: 6155 ~Description: Le package LSA n’est pas signé comme prévu. Cela peut provoquer un comportement inattendu avec Credential Guard. PackageName: msv1_0 System.Warning: Microsoft-Windows-Wininit (6) ~Numéro: 1395 ~ID: 15 ~Description: Credential Guard et/ou l’isolation de clé VBS sont configurés, mais le noyau sécurisé n’est pas en cours d’exécution ; en continuant sans eux. System.Warning: MEIx64 (1) ~Numéro: 1303 ~Date: 08/21/2023 05:15:07 AM ~ID: 4 ~Description: The Intel(R) Management Engine Interface is being disabled. System.Error: Service Control Manager (12) ~Numéro: 1091 ~Date: 08/20/2023 10:27:12 AM ~ID: 7034 ~Description: Le service %1 s’est terminé de façon inattendue pour la %2ème fois. ---\\ SCAN ADDITIONNEL (10) - 3s C:\Users\pmalh\AppData\Local\Temp\mat-debug-11836.log =>.SUP.Temporary.Microsoft C:\Users\pmalh\AppData\Local\Temp\mat-debug-14744.log =>.SUP.Temporary.Microsoft C:\Users\pmalh\AppData\Local\Temp\mat-debug-3752.log =>.SUP.Temporary.Microsoft C:\Users\pmalh\AppData\Local\Temp\mat-debug-5460.log =>.SUP.Temporary.Microsoft C:\Users\pmalh\AppData\Local\Temp\mat-debug-5904.log =>.SUP.Temporary.Microsoft C:\Users\pmalh\AppData\Local\Temp\mat-debug-8792.log =>.SUP.Temporary.Microsoft C:\Users\pmalh\AppData\Local\Temp\mat-debug-8844.log =>.SUP.Temporary.Microsoft C:\Users\pmalh\AppData\Local\Temp\mat-debug-9380.log =>.SUP.Temporary.Microsoft [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\pmalh\Downloads\flux-setup.exe.FriendlyAppName =>.Unsigned [HKU\S-1-5-21-438082756-1125671509-3346762400-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\pmalh\Downloads\flux-setup.exe.FriendlyAppName =>.Unsigned ---\\ RECAPITULATIF DES ELEMENTS TROUVES (5) - 0s https://nicolascoolman.eu/2022/09/05/zhpdiag-lanalyse-s-m-a-r-t-du-disque-systeme/ => SMART Information https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan https://nicolascoolman.eu/forum/Topic/warning-eventlogapp-evenement-dapplication/ =>Warning.EventLogApp https://nicolascoolman.eu/forum/Topic/warning-eventlogsys-evenement-systeme/ =>Warning.EventLogSys https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/ =>.SUP.Temporary.Microsoft ---\\ NUMEROS DE SÉRIE [009C91D8D991C56342F031B82DA330CCAF] [19/08/2023] (.Goversoft LLC.) - C:\Program Files (x86)\PrivaZer\PrivaZer.exe =>.Not verified [00A3FBDAE5432EE44D42F26CB268E09319] [19/08/2023] (.Goversoft LLC.) - C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll =>.Goversoft LLC [00A3FBDAE5432EE44D42F26CB268E09319] [19/08/2023] (.Goversoft LLC.) - C:\Program Files (x86)\PrivaZer\privazer_remover.exe =>.Goversoft LLC [00A657F778B31AE523D667131718D16EB2] [19/08/2023] (.Malwarebytes Inc..) - C:\Users\pmalh\Downloads\adwcleaner_8.4.0.exe =>.Malwarebytes Inc. [00A657F778B31AE523D667131718D16EB2] [20/08/2023] (.Malwarebytes Inc..) - C:\Users\pmalh\Downloads\MBSetup.exe =>.Malwarebytes Inc. [00CD802F7BB8E43E4CE297152EA3BF92F6] [19/08/2023] (.Goversoft LLC.) - C:\Users\pmalh\AppData\Local\PrivaZer\leveldb-viewer.exe =>.Goversoft LLC [010E858706668954EFAEB80257C7BA95] [22/02/2023] (.Waves Inc.) - C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSvc64.exe =>.Not verified [010E858706668954EFAEB80257C7BA95] [22/02/2023] (.Waves Inc.) - C:\Windows\System32\DriverStore\FileRepository\wavesapo9de.inf_amd64_c6bfc5767fc0181c\WavesSysSvc64.exe =>.Not verified [013C6684E0F39030C05FA36B42AF33CA] [02/08/2022] (.Kaspersky Lab JSC.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe =>.Kaspersky Lab JSC [013C6684E0F39030C05FA36B42AF33CA] [19/02/2021] (.Kaspersky Lab JSC.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe =>.Kaspersky Lab JSC [013C6684E0F39030C05FA36B42AF33CA] [19/08/2023] (.Kaspersky Lab JSC.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe =>.Kaspersky Lab JSC [02154F7C8CD907A55BE7B16ECAE524B5] [27/11/2021] (.Qualcomm Atheros, Inc..) - C:\WINDOWS\System32\drivers\btfilter.sys =>.Qualcomm Atheros, Inc. [0222A8D60B06B04FAFFBDA53EFFD5795] [19/08/2023] (.HP Inc..) - C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe =>.HP Inc. [0222A8D60B06B04FAFFBDA53EFFD5795] [19/08/2023] (.HP Inc..) - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe =>.HP Inc. [0339022CF98DDA042A02961EE062E49C] [02/03/2023] (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\drivers\RTKVHD64.sys =>.Realtek Semiconductor Corp. [0339022CF98DDA042A02961EE062E49C] [02/03/2023] (.Realtek Semiconductor Corp..) - C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a4555e9b35287491\RtkAudUService64.exe =>.Realtek Semiconductor Corp. [045D9B6716C516EF45A1216DFD9F3060] [03/05/2020] (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\Drivers\RtsUer.sys =>.Realtek Semiconductor Corp. [067CE8A9F2E02AC7D49304F85E9474E1] [19/08/2023] (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\shellex.dll =>.AO Kaspersky Lab [07144E11B8CED882ECDBD8BB] [04/09/2020] (.Macgo International Limited.) - C:\Program Files (x86)\MacGo\Mac Blu-ray Player.exe =>.Not verified [07144E11B8CED882ECDBD8BB] [21/08/2023] (.Macgo International Limited.) - C:\Users\pmalh\Downloads\Mac_Bluray_Player_for_Windows.exe =>.Not verified [0728CF127EB4526B3FC8DF87] [19/08/2023] (.Nenad Hrg.) - C:\Users\pmalh\Downloads\TheAeroClock_x64\TheAeroClock_x64.exe =>.Not verified [0A91F3B6841E24786BA268D145DCA144] [19/08/2023] (.Kaspersky Lab JSC.) - C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\Cache\vapm_745577040\vapmhst.exe =>.Kaspersky Lab JSC [0C1CD3EEA47EDDA7A032573B014D0AFD] [15/08/2023] (.Mozilla Corporation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation [0C1CD3EEA47EDDA7A032573B014D0AFD] [15/08/2023] (.Mozilla Corporation.) - C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation [0C1CD3EEA47EDDA7A032573B014D0AFD] [15/08/2023] (.Mozilla Corporation.) - C:\Program Files\Mozilla Firefox\private_browsing.exe =>.Mozilla Corporation [0C1CD3EEA47EDDA7A032573B014D0AFD] [15/08/2023] (.Mozilla Corporation.) - C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation [0C1CD3EEA47EDDA7A032573B014D0AFD] [19/08/2023] (.Mozilla Corporation.) - C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.dll =>.Mozilla Corporation [0E4418E2DEDE36DD2974C3443AFB5CE5] [12/08/2023] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\116.0.5845.97\elevation_service.exe =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [12/08/2023] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [19/08/2023] (.Google LLC.) - C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [19/08/2023] (.Google LLC.) - C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [19/08/2023] (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [19/08/2023] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\116.0.5845.97\Installer\chrmstp.exe =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [19/08/2023] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\116.0.5845.97\Installer\setup.exe =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [19/08/2023] (.Google LLC.) - C:\Users\pmalh\AppData\Roaming\Mozilla\Firefox\Profiles\w97utf8d.default-release\gmp-widevinecdm\4.10.2557.0\widevinecdm.dll =>.Google LLC [0E4418E2DEDE36DD2974C3443AFB5CE5] [29/12/2022] (.Google LLC.) - C:\Program Files\Google\Google Earth Pro\client\googleearth.exe =>.Google LLC [0F668FB0F0F002B774C7DDBD769EE5B1] [19/08/2023] (.Kaspersky Lab.) - C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\Cache\Ia\1.8.0.14\klia.dll =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [19/08/2023] (.Kaspersky Lab.) - C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\Cache\Ia\1.8.0.14\klia64.dll =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [19/08/2023] (.Kaspersky Lab.) - C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\Cache\Ia\1.8.0.14\kliae.dll =>.Kaspersky Lab [14D4785D09B38EE8D252EBC02FB11EC1] [07/01/2022] (.Dell Inc..) - C:\WINDOWS\System32\drivers\dcdbas64.sys =>.Dell Inc. [1DB3A78E25F58790729C9B21BCCC6170] [20/05/2023] (.Open Source Developer, Marcin Szeniak.) - C:\Program Files\BCUninstaller\BCUninstaller.exe =>.Not verified [1E76077152583A372C338AF11A6ECF83] [18/05/2023] (.F.lux Software LLC.) - C:\Users\pmalh\AppData\Local\FluxSoftware\Flux\flux.exe =>.Not verified [1E76077152583A372C338AF11A6ECF83] [19/08/2023] (.F.lux Software LLC.) - C:\Users\pmalh\Downloads\flux-setup.exe =>.Not verified [2B4590395C4F04B9A549891B2D85BBE0] [22/05/2019] (.Cypress Semiconductor Corporation.) - C:\WINDOWS\System32\drivers\CyUcmClient.sys =>.Not verified [3DD79449EA86A17D1AED3D553A987DDF] [10/04/2020] (.Qualcomm Atheros.) - C:\WINDOWS\System32\drivers\Qcamain10x64.sys =>.Qualcomm Atheros [3DD79449EA86A17D1AED3D553A987DDF] [10/04/2020] (.Qualcomm Atheros.) - C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe =>.Qualcomm Atheros [5600000C7C7406EA74E3B2ABB5000000000C7C] [24/11/2020] (.INTELEPGSW2022.) - C:\Windows\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_77f27cab0778c241\e1d68x64.sys =>.INTELEPGSW2022 [5600000C970A207F2C4F00043D000000000C97] [01/12/2021] (.Intel(R) Embedded Subsystems and IP Blocks Group.) - C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe =>.Intel(R) Embedded Subsystems and IP Blocks Group ~ Unselected Options: NF, ~ End of the scan, 6721 items in 02mn01s (1056)(0)