~ ZHPDiag v2024.10.21.29 Par Nicolas Coolman (2024/10/21)
~ Démarre par Didier (Administrator) (2024/11/03 09:22:04)
~ Assistance: https://forum.nicolascoolman.eu/
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Didier\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Didier\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Demarrage du système: Normal (Normal boot)
Windows 11 =>.Microsoft Corporation

---\\ NAVIGATEURS INTERNET (3) - 0s
~ GCIE: Google Chrome v130.0.6723.92
~ MSIE: Internet Explorer v11.1.22000.0
~ OBIE: Microsoft Edge v130.0.2849.68

---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (8) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : FC2HD
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : OK

---\\ LOGICIELS DE PROTECTION (2) - 1s
Windows Defender W11 (Activate) (Protection)
Malwarebytes version 5.2.0.140 v5.2.0.140 (Protection)

---\\ LOGICIELS D'OPTIMISATION (1) - 1s
~ CCleaner v6.29 (Optimisation)

---\\ INFORMATIONS SUR LE SYSTEME (18) - 1s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
System Restore: Activé (Enable)
System drive C: has 751 GB (78%) free of 953 GB : OK =>.Disk Space

---\\ INFORMATIONS MÉMOIRE (MEMORY INFORMATIONS)
~ Slots Total (Total Slots) : 2
~ Slots Utilisés (Used Slots) : 2
~ Slots Disponibles (Free Slots) : 0
~ Type de barrette (FormFactor): DIMM
~ Taille (Size) : 4 Go
~ Vitesse (Speed) : 1600
~ Charge mémoire (Memory Usage) : 35%
~ RAM physique Total (Total Physical) : 8 Go : OK
~ RAM physique Disponible (Available Physical) : 5 Go
~ Total virtuelle (Total Virtual) : 9.21 Go
~ Disponible virtuelle (Available Virtual): 5.69 Go

---\\ MODE DE CONNEXION AU SYSTEME (3) - 0s
~ Computer Name: CENTAURUS
~ User Name: Didier
~ Logged in as Administrator

---\\ ENUMERATION DES UNITES DE STOCKAGE (5) - 0s
~ Drive C: has 751 GB free of 953 GB (System)

---\\ ETAT DE LA COMMANDE TRIM
~ La commande TRIM est active (NTFS)
~ La commande TRIM est active (ReFS)

---\\ CARACTÉRISTIQUES PRINCIPALES DU DISQUE SYSTEME (26) - 11s
~ Model: Samsung SSD 870 EVO 1TB vSVT03B6Q (953 Gb )
~ Media Type: SSD Disque Fixe ( Bus: SATA)

---\\ ATTRIBUTS GÉNÉRAUX DU DISQUE SYSTÈME
OK - N0 - Indicateur d'usure du périphérique de stockage (Storage Device Wear Indicator) (%): 0
OK - N1 - Temps de latence maximal de vidage (Maximum Flash latency) (ms): 0.768
OK - N2 - Temps de latence maximal d'écriture (Maximum write latency) (ms): 1.186
OK - N3 - Temps de latence maximal de lecture (Maximum read latency) (ms): 1.026
OK - N4 - Vitesse de rotation (Spindle Speed) (RPM): 0


---\\ PARAMÈTRES S.M.A.R.T. DU DISQUE SYSTÈME (Flag/Actuel/Maxi) [Seuil] [Valeur brute]
OK - 05 - Pourcentage utilisé (Percentage Used) - [51][100][100] [10][0]
OK - 09 - Commandes d'écriture de l'hôte (Host Write Commands) - [50][99][99] [0][1110]
OK - 0C - Heures de mise sous tension (Power On Hours) - [50][99][99] [0][792]
OK - B1 - Total du Nombre de niveau d'usure (Total Wear Leveling Count) - [19][99][99] [0][7]
OK - B3 - Nombre Total de blocs réservés utilisés (Total Used reserved Block Count) - [19][100][100] [10][0]
OK - B5 - Nombre d’échecs de programme (total) (Total Program Fail Count) - [50][100][100] [10][0]
OK - B6 - Total de Pire effacement du nombre d’échecs (Total Erase Fail Count) - [50][100][100] [10][0]
OK - B7 - Rétrogradation de l'interface SATA (SATA Interface Downshift) - [19][100][100] [10][0]
OK - BB - Nombre d'erreurs incorrigibles (Reported Uncorrectable Errors) - [50][100][100] [0][0]
OK - BE - Temperature débit d'air (Temperature Airflow) - [50][63][52] [0][37]
OK - C3 - Taux d'erreurs ECC (ECC Errors Rate) - [26][200][200] [0][0]
OK - C7 - Nombre d'erreurs CRC Ultra-DMA (CRC Error Count) - [62][100][100] [0][0]
OK - EB - Nombre de récupérations POR (POR Recovery Count) - [18][99][99] [0][7]
OK - F1 - Nombre total d'écriture Hôte (Total LBA Written, Lifetime Host Writes) - [50][99][99] [0][28272]
OK - FC - Unknown SMART Attribute - [50][100][100] [0][0]

---\\ ETAT DU CENTRE DE SECURITE WINDOWS (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ RECHERCHE PARTICULIERE DE FICHIERS GENERIQUES (26) - 2s
[MD5.088F5B58FBB32C66FF194C606B1F293D] - 19/11/2023 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [5092056] =>.Microsoft®
[MD5.5B6074C9C7461198561B7B68A0A46FFE] - 19/11/2023 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [73728] [Unsigned] =>.Microsoft Corporation
[MD5.9EFA02FBA3A4A914F7E800F3D5B2DF54] - 19/11/2023 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [555144] [Unsigned] =>.Microsoft Corporation
[MD5.16020000BD2633CE96CEE7CA6FE19B14] - 19/11/2023 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [5261416] =>.Microsoft®
[MD5.457E563F25E4E16B07A2634F4FC41939] - 19/11/2023 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [884736] [Unsigned] =>.Microsoft Corporation
[MD5.5668ED3F900217783B853A0153AE4F0A] - 19/11/2023 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [339968] [Unsigned] =>.Microsoft Corporation
[MD5.8F9F591B3F1FEB4B4B771FE265164BEA] - 19/11/2023 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [960016] =>.Microsoft®
[MD5.0198ADBAC775B1BD416CBF1EC30BDB3F] - 19/11/2023 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [709704] =>.Microsoft®
[MD5.3034325AF01EF2FEC41243C793DA811E] - 19/11/2023 - (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3596288] [Unsigned] =>.Microsoft Corporation
[MD5.E7BB7B471CFC16E98562D8FDD6920107] - 05/06/2021 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] [Unsigned] =>.Microsoft Corporation
[MD5.263F13194C5ACF21E247B0574EF21289] - 19/11/2023 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\drivers\AFD.sys [685440] [Unsigned] =>.Microsoft Corporation
[MD5.042C8D972ED850473764904938B5D515] - 19/11/2023 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [62832] [Unsigned] =>.Microsoft Corporation
[MD5.55E43A0ADCCB6D31EFD85C96615913BD] - 19/11/2023 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [126976] [Unsigned] =>.Microsoft Corporation
[MD5.ADC230AF330C70963495928A7CC269A5] - 05/06/2021 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [196608] [Unsigned] =>.Microsoft Corporation
[MD5.3837A0F4CBD9AA4146CB58BB9C7031FF] - 19/11/2023 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [180224] [Unsigned] =>.Microsoft Corporation
[MD5.822D9789FF87E66EFDC4448EAF5A1B13] - 19/11/2023 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [188416] [Unsigned] =>.Microsoft Corporation
[MD5.6E27484BEA3669E52DE405FE0907B70C] - 19/11/2023 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [155648] [Unsigned] =>.Microsoft Corporation
[MD5.BDC665822F1E6AF2932452585B308BEC] - 19/11/2023 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [249856] [Unsigned] =>.Microsoft Corporation
[MD5.D13999166803254BD5962B716CF12F5C] - 19/11/2023 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\drivers\MRxSmb.sys [636272] [Unsigned] =>.Microsoft Corporation
[MD5.4F1CDD6726946886DC44A890F56B99C8] - 05/06/2021 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [364544] [Unsigned] =>.Microsoft Corporation
[MD5.50826934827A67E82769698FDC8B9DD6] - 19/11/2023 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [3192176] [Unsigned] =>.Microsoft Corporation
[MD5.6C59C459DBFA9A2A3AC2E89B5CC7C5C0] - 19/11/2023 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [126976] [Unsigned] =>.Microsoft Corporation
[MD5.3FA30677D9759B571DE7813D9456CD90] - 19/11/2023 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [147456] [Unsigned] =>.Microsoft Corporation
[MD5.9A6C811E02B515B69C43145E22D9C19C] - 05/06/2021 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\Windows\System32\drivers\rdpdr.sys [192512] [Unsigned] =>.Microsoft Corporation
[MD5.B6DAA0729A5008547A0B8CBA32BFEC16] - 04/11/2021 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [151888] [Unsigned] =>.Microsoft Corporation
[MD5.9E3F3D59D907D37393E64DB3D7C28AC3] - 19/11/2023 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [480584] [Unsigned] =>.Microsoft Corporation

---\\ LISTE DES SERVICES (Non désactivés) (18) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Adobe Genuine Software Monitor Service (AGMService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Monitor Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe {098A2F313AB2C29CD42B062A0E467B0C}. =>.Adobe Systems, Incorporated
O23 - Service: CMigrationService (CMigrationService) . (.Clonix & CottonCandy - MigrationService.) - C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe {0908FD1E35F8ED62CFAF6FD54C441614}.
O23 - Service: Foxit PDF Reader Update Service (FoxitReaderUpdateService) . (.Foxit Software Inc. - Foxit PDF Reader Update Service.) - C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe {0B7593CAAEA54207BBC0C65A153F7601}. =>.Foxit Software Inc.
O23 - Service: FreeMi UPnP Media Server Service (FreeMiWindowsService) . (.Stéphane Mitermite - FreeMi UPnP Media Server.) - C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe [Unsigned] =>.Stéphane Mitermite
O23 - Service: Service interne de mise à jour Google (GoogleUpdaterInterna (GoogleUpdaterInternalService131.0.6776.0) . (.Google LLC - Google Updater.) - C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe =>.Google LLC®
O23 - Service: Service de mise à jour Google (GoogleUpdaterService131.0.67 (GoogleUpdaterService131.0.6776.0) . (.Google LLC - Google Updater.) - C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe =>.Google LLC®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google LLC - Google Updater.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC®
O23 - Service: HP App Helper HSA Service (HPAppHelperCap) . (.HP Inc. - .) - C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
O23 - Service: HP Diagnostics HSA Service (HPDiagsCap) . (.HP Inc. - .) - C:\Program Files\HP\HP Enabling Services\DiagsCap.exe {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
O23 - Service: HP Network HSA Service (HPNetworkCap) . (.HP Inc. - .) - C:\Program Files\HP\HP Enabling Services\NetworkCap.exe {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
O23 - Service: HP Print Scan Doctor Service (HPPrintScanDoctorService) . (.HP Inc. - .) - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe =>.HP Inc.®
O23 - Service: HP System Info HSA Service (HPSysInfoCap) . (.HP Inc. - .) - C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe =>.Malwarebytes Inc.®
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) . (.NVIDIA Corporation - NVIDIA Container.) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation®
O23 - Service: ONLYOFFICE Update Service (ONLYOFFICE Update Service) . (.Ascensio System SIA - ONLYOFFICE Update Service.) - C:\Program Files\ONLYOFFICE\DesktopEditors\updatesvc.exe {0206F1561473B5AD43B3BD938ECB82BE}.
O23 - Service: SamsungMagicianSVC (SamsungMagicianSVC) . (.Samsung Electronics Co., Ltd. - SamsungMagicianSVC.) - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe {0908FD1E35F8ED62CFAF6FD54C441614}. =>.Samsung Electronics Co., Ltd.
O23 - Service: TeamViewer (TeamViewer) . (.TeamViewer Germany GmbH - TeamViewer.) - C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer Germany GmbH®

---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (95) - 8s
SR - Boot [05/06/2021] [ 107344] (3ware) . (.LSI.) - C:\Windows\System32\drivers\3ware.sys =>.Microsoft®
SR - Auto [01/11/2017] [ 82640] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Boot [05/06/2021] [ 1135432] (ADP80XX) . (.PMC-Sierra.) - C:\Windows\System32\drivers\ADP80XX.SYS =>.Microsoft®
SR - Auto [26/07/2024] [ 4578736] Adobe Genuine Software Monitor Service (AGMService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe {098A2F313AB2C29CD42B062A0E467B0C}. =>.Adobe Systems, Incorporated
SR - Demand [05/06/2021] [ 18432] AMD GPIO Client Driver (amdgpio2) . (.Advanced Micro Devices, Inc.) - C:\Windows\System32\drivers\amdgpio2.sys [Unsigned] =>.Advanced Micro Devices, Inc
SR - Demand [05/06/2021] [ 45568] AMD I2C Controller Service (amdi2c) . (.Advanced Micro Devices, Inc.) - C:\Windows\System32\drivers\amdi2c.sys [Unsigned] =>.Advanced Micro Devices, Inc
SR - Boot [05/06/2021] [ 83280] (amdsata) . (.Advanced Micro Devices.) - C:\Windows\System32\drivers\amdsata.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 259384] (amdsbs) . (.AMD Technologies Inc..) - C:\Windows\System32\drivers\amdsbs.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 26960] (amdxata) . (.Advanced Micro Devices.) - C:\Windows\System32\drivers\amdxata.sys =>.Microsoft®
SR - Demand [01/04/2024] [ 155744] AM USB Stroage Driver (AmUStor) . (.Copyright(C) 2017.) - C:\Windows\System32\drivers\AmUStorU.sys {0B22C18BA13224C057F9256DEAA1E430}.
SR - Boot [05/06/2021] [ 112440] Apple Solid State Drive Device (AppleSSD) . (.Apple Inc..) - C:\Windows\System32\drivers\AppleSSD.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 131912] Adaptec SAS/SATA-II RAID S (arcsas) . (.PMC-Sierra, Inc..) - C:\Windows\System32\drivers\arcsas.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 533816] QLogic Network Adapter VBD (b06bdrv) . (.QLogic Corporation.) - C:\Windows\System32\drivers\bxvbda.sys =>.Microsoft®
SR - Demand [05/06/2021] [ 9728] bcmfn2 Service (bcmfn2) . (...) - C:\Windows\System32\drivers\bcmfn2.sys [Unsigned] =>.Broadcom Corporation
SS - Demand [15/10/2024] [ 1087792] CCleaner Performance Optimizer Service (CCleanerPerformanceOptimizerService) . (.Piriform Software Ltd.) - C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe {07A61ECFA74CC7B2CEB42035C772BE1D}. =>.Piriform Software Ltd
SR - Boot [05/06/2021] [ 319800] (cht4iscsi) . (.Chelsio Communications.) - C:\Windows\System32\drivers\cht4sx64.sys =>.Microsoft®
SR - Demand [05/06/2021] [ 1853752] Chelsio Virtual Bus Driver (cht4vbd) . (.Chelsio Communications.) - C:\Windows\System32\drivers\cht4vx64.sys =>.Microsoft®
SR - Auto [23/08/2024] [ 763200] CMigrationService (CMigrationService) . (.Clonix & CottonCandy.) - C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe {0908FD1E35F8ED62CFAF6FD54C441614}.
SR - Boot [05/06/2021] [ 3440440] QLogic 10 Gigabit Ethernet Ada (ebdrv) . (.Marvell Semiconductor Inc..) - C:\Windows\System32\drivers\evbda.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 3423032] QLogic Legacy Ethernet Adapte (ebdrv0) . (.QLogic Corporation.) - C:\Windows\System32\drivers\evbd0a.sys =>.Microsoft®
SR - Auto [01/02/2024] [ 2433528] Foxit PDF Reader Update Service (FoxitReaderUpdateService) . (.Foxit Software Inc..) - C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe {0B7593CAAEA54207BBC0C65A153F7601}. =>.Foxit Software Inc.
SR - Auto [24/05/2016] [ 71168] FreeMi UPnP Media Server Service (FreeMiWindowsService) . (.Stéphane Mitermite.) - C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe [Unsigned] =>.Stéphane Mitermite
SS - Demand [25/10/2023] [ 2350048] GalaxyClientService (GalaxyClientService) . (.GOG.com.) - C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe {0B976DD3814E722F750A35F3BC91BFA0}. =>.GOG.com
SS - Demand [25/10/2023] [ 7173088] GalaxyCommunication (GalaxyCommunication) . (.GOG.com.) - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe {0B976DD3814E722F750A35F3BC91BFA0}. =>.GOG.com
SS - Demand [29/10/2024] [ 1815648] Google Chrome Elevation Service (GoogleChromeElevationServi (GoogleChromeElevationService) . (.Google LLC.) - C:\Program Files\Google\Chrome\Application\130.0.6723.92\elevation_service.exe =>.Google LLC®
SR - Auto [14/10/2024] [ 5507168] Service interne de mise à jour Google (GoogleUpdaterInterna (GoogleUpdaterInternalService131.0.6776.0) . (.Google LLC.) - C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe =>.Google LLC®
SR - Auto [14/10/2024] [ 5507168] Service de mise à jour Google (GoogleUpdaterService131.0.67 (GoogleUpdaterService131.0.6776.0) . (.Google LLC.) - C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe =>.Google LLC®
SR - Auto [14/10/2024] [ 5507168] Service Google Update (gupdate) (gupdate) . (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC®
SS - Demand [14/10/2024] [ 5507168] Service Google Update (gupdatem) (gupdatem) . (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC®
SR - Auto [04/09/2024] [ 927848] HP App Helper HSA Service (HPAppHelperCap) . (.HP Inc..) - C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
SR - Auto [04/09/2024] [ 926304] HP Diagnostics HSA Service (HPDiagsCap) . (.HP Inc..) - C:\Program Files\HP\HP Enabling Services\DiagsCap.exe {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
SR - Auto [04/09/2024] [ 922208] HP Network HSA Service (HPNetworkCap) . (.HP Inc..) - C:\Program Files\HP\HP Enabling Services\NetworkCap.exe {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
SR - Auto [16/10/2024] [ 243664] HP Print Scan Doctor Service (HPPrintScanDoctorService) . (.HP Inc..) - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe =>.HP Inc.®
SR - Boot [05/06/2021] [ 64328] (HpSAMD) . (.Hewlett-Packard Company.) - C:\Windows\System32\drivers\HpSAMD.sys =>.Microsoft®
SR - Auto [04/09/2024] [ 927336] HP System Info HSA Service (HPSysInfoCap) . (.HP Inc..) - C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
SR - Demand [05/06/2021] [ 36352] Intel Serial IO GPIO Controlle (iagpio) . (.Intel(R) Corporation.) - C:\Windows\System32\drivers\iagpio.sys [Unsigned] =>.Intel(R) Corporation
SR - Demand [05/06/2021] [ 91136] Intel(R) Serial IO I2C Host Cont (iai2c) . (.Intel(R) Corporation.) - C:\Windows\System32\drivers\iai2c.sys [Unsigned] =>.Intel(R) Corporation
SR - Demand [05/06/2021] [ 79360] Intel(R) S (iaLPSS2i_GPIO2) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [Unsigned] =>.Intel Corporation
SR - Demand [05/06/2021] [ 93184] In (iaLPSS2i_GPIO2_BXT_P) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [Unsigned] =>.Intel Corporation
SR - Demand [05/06/2021] [ 112128] Intel( (iaLPSS2i_GPIO2_CNL) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [Unsigned] =>.Intel Corporation
SR - Demand [05/06/2021] [ 96256] Intel( (iaLPSS2i_GPIO2_GLK) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [Unsigned] =>.Intel Corporation
SR - Demand [05/06/2021] [ 171520] Intel(R) Seria (iaLPSS2i_I2C) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [Unsigned] =>.Intel Corporation
SR - Demand [05/06/2021] [ 175104] Intel( (iaLPSS2i_I2C_BXT_P) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [Unsigned] =>.Intel Corporation
SR - Demand [05/06/2021] [ 177152] Intel(R) S (iaLPSS2i_I2C_CNL) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [Unsigned] =>.Intel Corporation
SR - Demand [05/06/2021] [ 177664] Intel(R) S (iaLPSS2i_I2C_GLK) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [Unsigned] =>.Intel Corporation
SR - Demand [05/06/2021] [ 38128] Intel(R) Serial IO (iaLPSSi_GPIO) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys =>.Intel Corporation - Client Components Group®
SR - Demand [05/06/2021] [ 113152] Intel(R) Serial IO I (iaLPSSi_I2C) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSSi_I2C.sys [Unsigned] =>.Intel Corporation
SR - Boot [05/06/2021] [ 884552] Intel Chipset SATA RAI (iaStorAVC) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStorAVC.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 411976] Intel RAID Controller Wi (iaStorV) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStorV.sys =>.Microsoft®
SR - Demand [05/06/2021] [ 558928] Mellanox InfiniBand Bus/A (ibbus) . (.Mellanox.) - C:\Windows\System32\drivers\ibbus.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 176952] (ItSas35i) . (.Avago Technologies.) - C:\Windows\System32\drivers\ItSas35i.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 108880] (LSI_SAS) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sas.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 124240] (LSI_SAS2i) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sas2i.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 137552] (LSI_SAS3i) . (.Avago Technologies.) - C:\Windows\System32\drivers\lsi_sas3i.sys =>.Microsoft®
SR - Auto [26/10/2024] [ 232000] MBAMChameleon (mbamchameleon) . (.Malwarebytes.) - C:\Windows\System32\Drivers\MbamChameleon.sys =>.Microsoft®
SR - Boot [09/10/2024] [ 21480] MbamElam (MbamElam) . (.Malwarebytes.) - C:\Windows\System32\DRIVERS\MbamElam.sys =>.Microsoft®
SR - Auto [26/10/2024] [ 9258144] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe =>.Malwarebytes Inc.®
SR - Demand [09/10/2024] [ 239568] MBAMSwissArmy (MBAMSwissArmy) . (.Malwarebytes.) - C:\Windows\System32\Drivers\mbamswissarmy.sys =>.Microsoft®
SS - Demand [09/10/2024] [ 3073888] MBVpnTunnelService (MBVpnTunnelService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe =>.Malwarebytes Inc.®
SR - Boot [05/06/2021] [ 80696] (megasas2i) . (.Avago Technologies.) - C:\Windows\System32\drivers\MegaSas2i.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 100176] (megasas35i) . (.Broadcom Inc.) - C:\Windows\System32\drivers\megasas35i.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 575824] (megasr) . (.LSI Corporation, Inc..) - C:\Windows\System32\drivers\megasr.sys =>.Microsoft®
SR - Demand [05/06/2021] [ 1131344] Mellanox ConnectX Bus E (mlx4_bus) . (.Mellanox.) - C:\Windows\System32\drivers\mlx4_bus.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 87352] (mpi3drvi) . (.Broadcom Limited.) - C:\Windows\System32\drivers\mpi3drvi.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 63816] (mvumis) . (.Marvell Semiconductor, Inc..) - C:\Windows\System32\drivers\mvumis.sys =>.Microsoft®
SR - Demand [05/06/2021] [ 146256] NetworkDirect Service (ndfltr) . (.Mellanox.) - C:\Windows\System32\drivers\ndfltr.sys =>.Microsoft®
SR - Demand [19/11/2023] [ 79192] NDKPerf Driver (NDKPerf) . (.Microsoft.) - C:\Windows\System32\drivers\NDKPerf.sys =>.Microsoft®
SR - Demand [01/06/2021] [ 2537984] Ralink 802.11n Exte (netr28x) . (.MediaTek Inc..) - C:\Windows\System32\drivers\netr28x.sys [Unsigned] =>.MediaTek Inc.
SR - Auto [07/10/2020] [ 893848] NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) . (.NVIDIA Corporation.) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation®
SR - Demand [07/10/2020] [ 230720] Service for NVIDIA High Definitio (NVHDA) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvhda64v.sys =>.NVIDIA Corporation®
SR - Demand [07/10/2020] [32479640] (nvlddmkm) . (.NVIDIA Corporation.) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nvlddmkm.sys =>.NVIDIA Corporation®
SR - Boot [05/06/2021] [ 150344] (nvraid) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvraid.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 166216] (nvstor) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvstor.sys =>.Microsoft®
SR - Auto [11/07/2024] [ 639184] ONLYOFFICE Update Service (ONLYOFFICE Update Service) . (.Ascensio System SIA.) - C:\Program Files\ONLYOFFICE\DesktopEditors\updatesvc.exe {0206F1561473B5AD43B3BD938ECB82BE}.
SR - Boot [05/06/2021] [ 58704] (percsas2i) . (.Avago Technologies.) - C:\Windows\System32\drivers\percsas2i.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 68432] (percsas3i) . (.Avago Technologies.) - C:\Windows\System32\drivers\percsas3i.sys =>.Microsoft®
SS - Demand [12/08/2024] [ 474848] ProtonVPN Service (ProtonVPN Service) . (.ProtonVPN.) - C:\Program Files\Proton\VPN\v3.3.2\ProtonVPNService.exe =>.Proton AG®
SS - Demand [12/08/2024] [ 474336] ProtonVPN WireGuard (ProtonVPN WireGuard) . (.ProtonVPN.) - C:\Program Files\Proton\VPN\v3.3.2\ProtonVPN.WireGuardService.exe =>.Proton AG®
SR - Demand [30/07/2024] [ 37768] ProtonVPNCallout (ProtonVPNCallout) . (.Proton Technologies AG.) - C:\Program Files\Proton\VPN\v3.3.2\Resources\ProtonVPN.CalloutDriver.sys =>.Proton AG®
SR - Demand [07/08/2015] [ 896752] Realtek RT640 NT Driver (rt640x64) . (.Realtek.) - C:\Windows\System32\drivers\rt640x64.sys =>.Realtek Semiconductor Corp®
SR - Auto [23/08/2024] [ 460096] SamsungMagicianSVC (SamsungMagicianSVC) . (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe {0908FD1E35F8ED62CFAF6FD54C441614}. =>.Samsung Electronics Co., Ltd.
SR - Boot [05/06/2021] [ 44872] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\Windows\System32\drivers\SiSRaid2.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 81736] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\Windows\System32\drivers\sisraid4.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 209736] (SmartSAMD) . (.Microsemi Corportation.) - C:\Windows\System32\drivers\SmartSAMD.sys =>.Microsoft®
SS - Demand [13/09/2024] [ 2659688] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\steamservice.exe =>.Valve Corp.®
SR - Boot [05/06/2021] [ 31032] (stexstor) . (.Promise Technology, Inc..) - C:\Windows\System32\drivers\stexstor.sys =>.Microsoft®
SR - Auto [18/10/2023] [20992824] TeamViewer (TeamViewer) . (.TeamViewer Germany GmbH.) - C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer Germany GmbH®
SR - Demand [20/08/2016] [ 34424] TI xHCI Lower Filter Driver Ser (tilfilter) . (.Texas Instruments, Inc..) - C:\Windows\System32\drivers\TIxHCIlfilter.sys =>.Texas Instruments, Inc.®
SR - Demand [20/08/2016] [ 39032] TI xHCI Upper Filter Driver Ser (tiufilter) . (.Texas Instruments, Inc..) - C:\Windows\System32\drivers\TIxHCIufilter.sys =>.Texas Instruments, Inc.®
SR - Boot [05/06/2021] [ 166712] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\Windows\System32\drivers\vsmraid.sys =>.Microsoft®
SR - Boot [05/06/2021] [ 305488] VIA StorX Storage RAID Co (VSTXRAID) . (.VIA Corporation.) - C:\Windows\System32\drivers\vstxraid.sys =>.Microsoft®
SR - Demand [05/06/2021] [ 36152] WinMad Service (WinMad) . (.Mellanox.) - C:\Windows\System32\drivers\winmad.sys =>.Microsoft®
SR - Demand [28/09/2024] [ 29592] Wintun (wintun) . (.WireGuard LLC.) - C:\Windows\System32\drivers\wintun.sys =>.Microsoft®
SR - Demand [05/06/2021] [ 73016] WinVerbs Service (WinVerbs) . (.Mellanox.) - C:\Windows\System32\drivers\winverbs.sys =>.Microsoft®
SR - Demand [28/09/2024] [ 489368] WireGuard (WireGuard) . (.WireGuard LLC.) - C:\Windows\System32\drivers\wireguard.sys =>.Microsoft®

---\\ TACHES PLANIFIEES EN AUTOMATIQUE (Registre) (14) - 6s
O38 - TASK: {118B0088-F513-4D91-BF0D-3015E7089C81} [64Bits][\Adobe-Genuine-Software-Integrity-Scheduler-1.0] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4454832] =>.Adobe Systems, Incorporated
O38 - TASK: {20DF542E-DCF2-4CE8-A12C-AB74733CD14D} [64Bits][\CCleanerSkipUAC - Didier] - (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [39090480] =>.Piriform Software Ltd
O38 - TASK: {42F38AC4-BED9-43E5-A36C-18714128272C} [64Bits][\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{71701F6B-A43C-48D5-B398-2F4E2790608B}] - (.Google LLC - Google Updater.) -- C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168] =>.Google LLC
O38 - TASK: {71A05EC2-17C1-4B55-8ED9-A3EF6114AEBE} [64Bits][\SamsungMagician] - (.Samsung Electronics Co., Ltd. - SamsungMagician.) -- C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056] =>.Samsung Electronics Co., Ltd.
O38 - TASK: {BECF44FB-4011-46F1-B529-D851475D5336} [64Bits][\CCleanerCrashReporting] - (.Gen Digital Inc. - CCleaner Bug Report.) -- C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536] =>.Gen Digital Inc.
O38 - TASK: {CB4072D4-F924-415F-91DD-CC6D912045EF} [64Bits][\CCleaner Update] - (.Gen Digital Inc. - CCleaner CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe [829408] =>.Gen Digital Inc.
O38 - TASK: {F4549621-B796-400E-80A2-75C1419A91FF} [64Bits][\AdobeGCInvoker-1.0] - (.Adobe Systems, Incorporated - Adobe GC Invoker Utility.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116912] =>.Adobe Systems, Incorporated
C:\Windows\System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 - (.Adobe Systems, Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [] =>.Adobe Systems, Incorporated
C:\Windows\System32\Tasks\CCleanerSkipUAC - Didier - (.Piriform Software Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [$(Arg0)] =>.Piriform Software Ltd
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{71701F6B-A43C-48D5-B398-2F4E2790608B} - (.Google LLC.) -- C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [--wake --system.--wake] =>.Google LLC
C:\Windows\System32\Tasks\SamsungMagician - (.Samsung Electronics Co., Ltd..) -- C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [--disable-gpu-sandbox .--disable-gpu-sandbox] =>.Samsung Electronics Co., Ltd.
C:\Windows\System32\Tasks\CCleanerCrashReporting - (.Gen Digital Inc..) -- C:\Program Files\CCleaner\CCleanerBugReport.exe [1] =>.Gen Digital Inc.
C:\Windows\System32\Tasks\CCleaner Update - (.Gen Digital Inc..) -- C:\Program Files\CCleaner\CCUpdate.exe [] =>.Gen Digital Inc.
C:\Windows\System32\Tasks\AdobeGCInvoker-1.0 - (.Adobe Systems, Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [-mode=scheduled] =>.Adobe Systems, Incorporated

---\\ APPLICATIONS LANCEES AU DÉMARRAGE DU SYSTÈME (20) - 7s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Security notification icon.) -- C:\Windows\system32\SecurityHealthSystray.exe [Unsigned] =>.Microsoft Corporation
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] . (.Adobe Systems, Incorporated - Adobe GC Invoker Utility.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe {098A2F313AB2C29CD42B062A0E467B0C}. =>.Adobe Systems, Incorporated
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\steam.exe =>.Valve Corp.®
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] . (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe {07A61ECFA74CC7B2CEB42035C772BE1D}. =>.Piriform Software Ltd
O4 - HKCU\..\Run: [GogGalaxy] . (.GOG.com - GOG Galaxy.) -- C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe {0B976DD3814E722F750A35F3BC91BFA0}. =>.GOG.com
O4 - HKCU\..\Run: [RiotClient] . (. - .) -- C:\Riot Games\Riot Client\RiotClientServices.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [Proton Drive] . (.Proton AG - Proton Drive.) -- C:\Users\Didier\AppData\Local\Programs\Proton\Drive\ProtonDrive.exe {00ADBB744067E4CD3A5FAB7339A8F4CC77}.
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_9ED8E2A5A7760875507C687D0866253F] . (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive (32 bit) Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive (32 bit) Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft®
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated®
O4 - HKUS\S-1-5-19\..\StartupApproved\Run: [OneDriveSetup] . (. - .) -- 0x020000000000000000000000
O4 - HKUS\S-1-5-20\..\StartupApproved\Run: [OneDriveSetup] . (. - .) -- 0x020000000000000000000000
O4 - HKUS\S-1-5-21-3262927612-1677394149-2524797181-1001\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\steam.exe =>.Valve Corp.®
O4 - HKUS\S-1-5-21-3262927612-1677394149-2524797181-1001\..\Run: [CCleaner Smart Cleaning] . (.Piriform Software Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe {07A61ECFA74CC7B2CEB42035C772BE1D}. =>.Piriform Software Ltd
O4 - HKUS\S-1-5-21-3262927612-1677394149-2524797181-1001\..\Run: [GogGalaxy] . (.GOG.com - GOG Galaxy.) -- C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe {0B976DD3814E722F750A35F3BC91BFA0}. =>.GOG.com
O4 - HKUS\S-1-5-21-3262927612-1677394149-2524797181-1001\..\Run: [RiotClient] . (. - .) -- C:\Riot Games\Riot Client\RiotClientServices.exe (.Not File.) =>.SUP.Orphan
O4 - HKUS\S-1-5-21-3262927612-1677394149-2524797181-1001\..\Run: [Proton Drive] . (.Proton AG - Proton Drive.) -- C:\Users\Didier\AppData\Local\Programs\Proton\Drive\ProtonDrive.exe {00ADBB744067E4CD3A5FAB7339A8F4CC77}.
O4 - HKUS\S-1-5-21-3262927612-1677394149-2524797181-1001\..\Run: [MicrosoftEdgeAutoLaunch_9ED8E2A5A7760875507C687D0866253F] . (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®

---\\ PROCESSUS LANCES (27) - 13s
[MD5.FF172556E001C52C3776D809615A0D28] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe [893848] [PID.1796] =>.NVIDIA Corporation®
[MD5.E800C91BD849794C7D53EBE327CF5580] - (.HP Inc. - .) -- C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [927848] [PID.2168] {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
[MD5.EEF0D046830B9A7BA3015F81355F5AE2] - (.HP Inc. - .) -- C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [926304] [PID.2172] {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
[MD5.50C50A7ED77AD1A31CC7EBD8D8780C47] - (.HP Inc. - .) -- C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [922208] [PID.2184] {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
[MD5.DF487D66456026E6F66EA3922A1B8231] - (.HP Inc. - .) -- C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [927336] [PID.2200] {080379A0E2F7B42EB7045FD0E094BBA4}. =>.HP Inc.
[MD5.52997B1282BDAFC4275874B8990F9BE3] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640] [PID.3964] =>.Adobe Systems, Incorporated®
[MD5.7CF9A77FF5E9B131C63B640FA56038BD] - (.Adobe Systems, Incorporated - Adobe Genuine Software Monitor Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [4578736] [PID.3996] {098A2F313AB2C29CD42B062A0E467B0C}. =>.Adobe Systems, Incorporated
[MD5.B0A6A0B32D831DC2EC0DB24BE88B4722] - (.Clonix & CottonCandy - MigrationService.) -- C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [763200] [PID.4072] {0908FD1E35F8ED62CFAF6FD54C441614}.
[MD5.D4BC9A107925167FD3D9A21AA9DC53D6] - (.Foxit Software Inc. - Foxit PDF Reader Update Service.) -- C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2433528] [PID.4164] {0B7593CAAEA54207BBC0C65A153F7601}. =>.Foxit Software Inc.
[MD5.4E250F5C80619D2527D7BCBE4133DC14] - (.Stéphane Mitermite - FreeMi UPnP Media Server.) -- C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe [71168] [PID.4184] [Unsigned] =>.Stéphane Mitermite
[MD5.CFB4460F8486FD4152FEF33D9C4273A5] - (.HP Inc. - .) -- C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664] [PID.4252] =>.HP Inc.®
[MD5.B1A9C7F8924FB5B710E8068E1E4641D0] - (.Ascensio System SIA - ONLYOFFICE Update Service.) -- C:\Program Files\ONLYOFFICE\DesktopEditors\updatesvc.exe [639184] [PID.4428] {0206F1561473B5AD43B3BD938ECB82BE}.
[MD5.749585DD2A7CD3D4F511BEF78D8D2AEC] - (.Samsung Electronics Co., Ltd. - SamsungMagicianSVC.) -- C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [460096] [PID.4476] {0908FD1E35F8ED62CFAF6FD54C441614}. =>.Samsung Electronics Co., Ltd.
[MD5.0BE2246FCCB28383AB8590DD73CADAED] - (.TeamViewer Germany GmbH - TeamViewer.) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe [20992824] [PID.4548] =>.TeamViewer Germany GmbH®
[MD5.2391716AB58A3E16D2D62BAFD23ADC38] - (...) -- C:\Windows\System32\AggregatorHost.exe [286720] [PID.5664] [Unsigned]
[MD5.EC5F385DC2DC7E1D3247B0D29BD79E49] - (.ProtonVPN - Proton VPN.) -- C:\Program Files\Proton\VPN\v3.3.2\ProtonVPNService.exe [474848] [PID.10768] =>.Proton AG®
[MD5.FF172556E001C52C3776D809615A0D28] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe [893848] [PID.12992] =>.NVIDIA Corporation®
[MD5.E23FA7F3048A66D3E026C7548B947C17] - (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe [298760] [PID.10876] =>.Malwarebytes Inc.®
[MD5.2E5BD37723B0FE8F55E507678DA111ED] - (...) -- C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe [1001320] [PID.5728] =>.Microsoft®
[MD5.211831EF38102CDBC816AB4E6036A5B1] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3500056] [PID.1256] =>.Adobe Systems, Incorporated®
[MD5.4F858439DB52F69416AF1354364B8B90] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208] [PID.14900] {060E2F8F9E1B8BE518D5FE2B69CFCCB1}. =>.Oracle Corporation
[MD5.CD2AD02E1BC22F950EEDFE403C8199D3] - (.Samsung Electronics Co., Ltd. - SamsungMagician.) -- C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056] [PID.2224] {0908FD1E35F8ED62CFAF6FD54C441614}. =>.Samsung Electronics Co., Ltd.
[MD5.CD2AD02E1BC22F950EEDFE403C8199D3] - (.Samsung Electronics Co., Ltd. - SamsungMagician.) -- C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056] [PID.1608] {0908FD1E35F8ED62CFAF6FD54C441614}. =>.Samsung Electronics Co., Ltd.
[MD5.CD2AD02E1BC22F950EEDFE403C8199D3] - (.Samsung Electronics Co., Ltd. - SamsungMagician.) -- C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056] [PID.9304] {0908FD1E35F8ED62CFAF6FD54C441614}. =>.Samsung Electronics Co., Ltd.
[MD5.CD2AD02E1BC22F950EEDFE403C8199D3] - (.Samsung Electronics Co., Ltd. - SamsungMagician.) -- C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056] [PID.10488] {0908FD1E35F8ED62CFAF6FD54C441614}. =>.Samsung Electronics Co., Ltd.
[MD5.DD0D785F47E3BB757E4012ABE93A7DF1] - (.Oracle Corporation - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [1225304] [PID.32] {060E2F8F9E1B8BE518D5FE2B69CFCCB1}. =>.Oracle Corporation
[MD5.6884928AA4275B930942B5794B3901C3] - (.Nicolas Coolman - ZHPSuite.) -- C:\Users\Didier\Desktop\ZHPSuite.exe [3536896] [PID.6984] [Unsigned] =>.Nicolas Coolman

---\\ CHROME, Démarrage, Recherche, Extensions (36) - 1s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.reseau-tao.fr/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.facebook.com =>.Facebook
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.jeanmarcmorandini.com
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.credit-agricole.fr/
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [alplpnakfeabeiebipdmaenpmbgknjce] Adblocker for Chrome - NoAds
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [bibdombdcdbbnfdjkaajfgnfhlapibde] Shoptimate =>.shoptimate.com
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [bmnlcjabgnpnenekpadlanbbkooimhnj] PayPal Honey
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [ddlbpiadoechcolndfeaonajmngmhblj] Compose AI
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [eimadpbcbfnmbkopoojfekhnkhdbieeh] Dark Reader =>.Alexander Shutov
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [emnoomldgleagdjapdeckpmebokijail] Wanteeed =>.wanteed.com
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [fojbeoliffkbkfgaehkoeeihphibcjdk] Scamdoc
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [gpdjojdkbbmdfjfahjcgigfpmkopogic] =>.pinterest.com {Save Button}
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [jkfpchpiljkaemlpmpebnglgkomamfeo] =>.Hewlett-Packard {HP Network}
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [laldfbfjhaogodemgonegbingpmjldnh]
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [mfidniedemcgceagapgdekdbmanojomk] =>.Legitimate
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [mhkejggchhilmabpicojddgaahkkgoln] =>.Legitimate
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [mihcahmgecmbnbcchbopgniflfhgnkff] =>.Google Inc. {Verifier}
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [Didier][User Data\Default\Extensions] [ohahllgiabjaoigichmmfljhkcfikeof]
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [alplpnakfeabeiebipdmaenpmbgknjce]
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [bmnlcjabgnpnenekpadlanbbkooimhnj]
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [ddlbpiadoechcolndfeaonajmngmhblj]
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [eimadpbcbfnmbkopoojfekhnkhdbieeh] =>.Legitimate
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [emnoomldgleagdjapdeckpmebokijail]
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [fojbeoliffkbkfgaehkoeeihphibcjdk]
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [gpdjojdkbbmdfjfahjcgigfpmkopogic] =>.pinterest.com {Save Button}
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [laldfbfjhaogodemgonegbingpmjldnh]
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [mfidniedemcgceagapgdekdbmanojomk] =>.Legitimate
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [mhkejggchhilmabpicojddgaahkkgoln] =>.Legitimate
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [mihcahmgecmbnbcchbopgniflfhgnkff] =>.Google Inc. {Verifier}
G2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [ohahllgiabjaoigichmmfljhkcfikeof]
G2 - GCE: Preference [Didier][User Data\Default\Sync Extension Settings] [alplpnakfeabeiebipdmaenpmbgknjce]
G2 - GCE: Preference [Didier][User Data\Default\Sync Extension Settings] [bmnlcjabgnpnenekpadlanbbkooimhnj]
G2 - GCE: Preference [Didier][User Data\Default\Sync Extension Settings] [eimadpbcbfnmbkopoojfekhnkhdbieeh] =>.Legitimate

---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.22000.2652 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation

---\\ INTERNET EXPLORER, Site de confiance et site sensible (1) - 0s
~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad)

---\\ MICROSOFT EDGE, Plugin,Favoris,Démarrage,Recherche,Extension (17) - 1s
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [alplpnakfeabeiebipdmaenpmbgknjce] Adblocker for Chrome - NoAds
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [bihmplhobchoageeokmgbdihknkjbknd] =>.northghost.com {Free Proxy}
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [bkkbcggnhapdmkeljlodobbkopceiche] Poper Blocker =>.DingoSolutions
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [jfcjijcigimhjjdimpghneggnegiphhh]
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [jmfikkaogpplgnfjmbjdpalkhclendgd] Save to Facebook =>.Facebook
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [jmjflgjpcpepeafmmgdpfkogkghcpiha] Edge relevant text changes =>.Legitimate
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [mfidniedemcgceagapgdekdbmanojomk] =>.Legitimate
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [mihcahmgecmbnbcchbopgniflfhgnkff] =>.Google Inc. {Verifier}
E2 - GCE: Preference [Didier][User Data\Default\Extensions] [pnnfemgpilpdaojpnkjdgfgbnnjojfik] Streak - CRM for Gmail =>.Legitimate
E2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [alplpnakfeabeiebipdmaenpmbgknjce]
E2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [jdiccldimpdaibmpdkjnbmckianbfold] =>.Microsoft Corporation
E2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [jfcjijcigimhjjdimpghneggnegiphhh]
E2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [mfidniedemcgceagapgdekdbmanojomk] =>.Legitimate
E2 - GCE: Preference [Didier][User Data\Default\Local Extension Settings] [mihcahmgecmbnbcchbopgniflfhgnkff] =>.Google Inc. {Verifier}
E2 - GCE: Preference [Didier][User Data\Default\Sync Extension Settings] [alplpnakfeabeiebipdmaenpmbgknjce]
E2 - GCE: Preference [Didier][User Data\Default\Sync Extension Settings] [mfidniedemcgceagapgdekdbmanojomk] =>.Legitimate

---\\ INTERNET EXPLORER,Proxy Management (4) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ ETUDE DU FICHIER HOSTS (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ BROWSER HELPER OBJECT DE NAVIGATEUR (BHO) (4) - 0s
O2 - BHO: IEToEdge BHO [64Bits] - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} . (.Microsoft Corporation - IEToEdge BHO.) -- C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.68\BHO\ie_to_edge_bho_64.dll =>.Microsoft®
O2 - BHO: Adobe Acrobat Create PDF Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll =>.Adobe Systems, Incorporated®
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.HP Inc. - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll =>.HP Inc.®
O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll =>.Adobe Systems, Incorporated®

---\\ RACCOURCIS GLOBAL STARTUP (62) - 10s
O4 - GS\Desktop [Didier]: Folder Marker.lnk . (.ArcticLine Software - Folder Marker Free - folder labeling tool.) C:\Program Files (x86)\Folder Marker\FolderMarker.exe {68C44BDAD6D73B4462C2E1B22DEA8790}. =>.ArcticLine Software
O4 - GS\Desktop [Didier]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Software Technology Co., Ltd.®
O4 - GS\Desktop [Didier]: Paradox Launcher v2.lnk . (...) C:\Users\Didier\AppData\Local\Programs\Paradox Interactive\launcher\bootstrapper-v2.exe {0332386F94B0B6BFD23422B56B8A0C29}.
O4 - GS\Desktop [Didier]: Proton Drive.lnk . (.Proton AG - Proton Drive.) C:\Users\Didier\AppData\Local\Programs\Proton\Drive\ProtonDrive.exe {00ADBB744067E4CD3A5FAB7339A8F4CC77}.
O4 - GS\Desktop [Didier]: ZHPSuite.lnk . (.Nicolas Coolman - ZHPSuite.) C:\Users\Didier\AppData\Roaming\ZHP\ZHPSuite.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Didier]: Comptabilité Personnelle.lnk . (.Emjysoft - Comptabilité Personnelle.) C:\Program Files (x86)\Emjysoft\Compta\compta.exe {00989AAB57D7FCC43812B213AEDEA41AB6}. =>.Emjysoft
O4 - GS\Quicklaunch [Didier]: Google Chrome.lnk . (.Google LLC - Accéder à Internet.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [Unsigned] =>.Google LLC
O4 - GS\Quicklaunch [Didier]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®
O4 - GS\sendTo [Didier]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Didier]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Software Technology Co., Ltd.®
O4 - GS\sendTo [Didier]: Format Player.lnk . (.FreeTime - FormatPlayer.) C:\Program Files (x86)\FormatFactory\FormatPlayer.exe =>.Free Time Software Technology Co., Ltd.®
O4 - GS\sendTo [Didier]: TeamViewer.lnk . (.TeamViewer Germany GmbH - TeamViewer.) C:\Program Files\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer Germany GmbH®
O4 - GS\sendTo [Didier]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Didier]: Comptabilité Personnelle.lnk . (.Emjysoft - Comptabilité Personnelle.) C:\Program Files (x86)\Emjysoft\Compta\compta.exe {00989AAB57D7FCC43812B213AEDEA41AB6}. =>.Emjysoft
O4 - GS\TaskBar [Didier]: Excel.lnk . (.Microsoft Corporation - Explorez, visualisez et partag.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation
O4 - GS\TaskBar [Didier]: Google Chrome.lnk . (.Google LLC - Accéder à Internet.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [Unsigned] =>.Google LLC
O4 - GS\TaskBar [Didier]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --profile-directory=Default =>.Microsoft®
O4 - GS\TaskBar [Didier]: PowerPoint.lnk . (.Microsoft Corporation - Concevez et livrez facilement .) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE =>.Microsoft Corporation
O4 - GS\TaskBar [Didier]: Proton VPN.lnk . (.ProtonVPN - Proton VPN.) C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe =>.Proton AG®
O4 - GS\TaskBar [Didier]: TikTok.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc --app-url=http://www.tiktok.com/ =>.Microsoft Corporation
O4 - GS\TaskBar [Didier]: Word.lnk . (.Microsoft Corporation - Créez de magnifiques documents.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation
O4 - GS\Programs [Didier]: Administrative Tools.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\Windows\system32\control.exe /name Microsoft.AdministrativeTools =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Software Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe {07A61ECFA74CC7B2CEB42035C772BE1D}. =>.Piriform Software Ltd
O4 - GS\CommonDesktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited®
O4 - GS\CommonDesktop [Public]: Comptabilité Personnelle.lnk . (.Emjysoft - Comptabilité Personnelle.) C:\Program Files (x86)\Emjysoft\Compta\compta.exe {00989AAB57D7FCC43812B213AEDEA41AB6}. =>.Emjysoft
O4 - GS\CommonDesktop [Public]: Darkest Dungeon.lnk . (.GOG.com - GOG Galaxy.) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe /command=runGame /gameId=1450711444 /path="C:\Program Files (x86)\GOG Galaxy\Games\Darkest Dungeon" {0B976DD3814E722F750A35F3BC91BFA0}. =>.GOG.com
O4 - GS\CommonDesktop [Public]: EaseUS PDF Editor.lnk . (...) C:\Program Files (x86)\EaseUS\EaseUS PDF Editor\EaseUS PDF Editor.exe {03BD221937F2D796FA7029547B190301}. =>.EaseUS Software
O4 - GS\CommonDesktop [Public]: Foxit PDF Reader.lnk . (.Foxit Software Inc. - Foxit PDF Reader.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe {0B7593CAAEA54207BBC0C65A153F7601}. =>.Foxit Software Inc.
O4 - GS\CommonDesktop [Public]: FreeMi UPnP Media Server.lnk . (.Stéphane Mitermite - FreeMi UPnP Media Server.) C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe [Unsigned] =>.Stéphane Mitermite
O4 - GS\CommonDesktop [Public]: GOG GALAXY.lnk . (.GOG.com - GOG Galaxy.) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe {0B976DD3814E722F750A35F3BC91BFA0}. =>.GOG.com
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google LLC - Accéder à Internet.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [Unsigned] =>.Google LLC
O4 - GS\CommonDesktop [Public]: Hekasoft Backup & Restore.lnk . (.Hekasoft - Hekasoft Backup Restore.) C:\Program Files\Hekasoft Backup & Restore\hbr.exe [Unsigned] =>.Hekasoft
O4 - GS\CommonDesktop [Public]: HP Print and Scan Doctor.lnk . (.HP Development Company, L.P. - HP Print and Scan Doctor 5.7.4.) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe {0FE61CE3A48D36CE6BFFF377F7B46A5B}. =>.HP Development Company, L.P.
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (.Malwarebytes - .) C:\Program Files (x86)\Malwarebytes\Anti-Malware\Malwarebytes.exe [Unsigned] =>.Malwarebytes
O4 - GS\CommonDesktop [Public]: ONLYOFFICE Editors.lnk . (.Ascensio System SIA - ONLYOFFICE Editors.) C:\Program Files\ONLYOFFICE\DesktopEditors\DesktopEditors.exe {0206F1561473B5AD43B3BD938ECB82BE}.
O4 - GS\CommonDesktop [Public]: Proton VPN.lnk . (.ProtonVPN - Proton VPN.) C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe =>.Proton AG®
O4 - GS\CommonDesktop [Public]: Samsung Magician.lnk . (.Samsung Electronics Co., Ltd. - SamsungMagician.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe --disable-gpu-sandbox {0908FD1E35F8ED62CFAF6FD54C441614}. =>.Samsung Electronics Co., Ltd.
O4 - GS\CommonDesktop [Public]: Steam.lnk . (.Valve Corporation - Steam.) C:\Program Files (x86)\Steam\Steam.exe =>.Valve Corp.®
O4 - GS\CommonDesktop [Public]: TeamViewer.lnk . (.TeamViewer Germany GmbH - TeamViewer.) C:\Program Files\TeamViewer\TeamViewer.exe =>.TeamViewer Germany GmbH®
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: WinDirStat.lnk . (.Seifert - Windows Directory Statistics.) C:\Program Files (x86)\WinDirStat\windirstat.exe [Unsigned] =>.Seifert
O4 - GS\CommonDesktop [Public]: WinRAR.lnk . (.Alexander Roshal - Traiter les archives au format.) C:\Program Files (x86)\WinRAR\WinRAR.exe [Unsigned] =>.Alexander Roshal
O4 - GS\Programs [Public]: Administrative Tools.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\Windows\system32\control.exe /name Microsoft.AdministrativeTools =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\Windows\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\Windows\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur multimédia Windows.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Adobe Acrobat Distiller XI.lnk . (.Adobe Systems Incorporated. - Acrobat Distiller.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrodist.exe =>.Adobe Systems, Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Acrobat XI Pro.lnk . (...) C:\Windows\Installer\{AC76BA86-1033-FFFF-7760-000000000006}\_SC_Acrobat.ico [Unsigned]
O4 - GS\ProgramsCommon [Public]: Adobe FormsCentral.lnk . (...) C:\Program Files (x86)\Adobe\Acrobat 11.0\FormsCentral\FormsCentralForAcrobat.exe =>.Adobe Systems, Incorporated®
O4 - GS\ProgramsCommon [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited®
O4 - GS\ProgramsCommon [Public]: Excel.lnk . (.Microsoft Corporation - Explorez, visualisez et partag.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Folder Marker.lnk . (.ArcticLine Software - Folder Marker Free - folder labeling tool.) C:\Program Files (x86)\Folder Marker\FolderMarker.exe {68C44BDAD6D73B4462C2E1B22DEA8790}. =>.ArcticLine Software
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google LLC - Accéder à Internet.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [Unsigned] =>.Google LLC
O4 - GS\ProgramsCommon [Public]: Malwarebytes.lnk . (.Malwarebytes - .) C:\Program Files (x86)\Malwarebytes\Anti-Malware\Malwarebytes.exe [Unsigned] =>.Malwarebytes
O4 - GS\ProgramsCommon [Public]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®
O4 - GS\ProgramsCommon [Public]: PowerPoint.lnk . (.Microsoft Corporation - Concevez et livrez facilement .) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: TeamViewer.lnk . (.TeamViewer Germany GmbH - TeamViewer.) C:\Program Files\TeamViewer\TeamViewer.exe =>.TeamViewer Germany GmbH®
O4 - GS\ProgramsCommon [Public]: Word.lnk . (.Microsoft Corporation - Créez de magnifiques documents.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation

---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{3f5dd364-8acb-4923-8833-902bb51ed8f6}: NameServer = 208.67.222.222,208.67.220.220,199.85.126.10,199.85.127.10 =>.OpenDNS, LLC DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{3f5dd364-8acb-4923-8833-902bb51ed8f6}: DhcpNameServer = 192.168.1.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{f0af5e82-6a14-4395-a323-70a6537d5409}: DhcpNameServer = 192.168.15.12 =>.Local IP Adress

---\\ PROTOCOLE ADDITIONNEL (27) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office component.) -- C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft®
O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office component.) -- C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft®
O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office component.) -- C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office component.) -- C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll [Unsigned] =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll [Unsigned] =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll [Unsigned] =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll [Unsigned] =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL =>.Microsoft®

---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation

---\\ COMPOSANTS ACTIVESETUP INSTALLES (ASIC) (6) - 1s
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll [Unsigned] =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur Window.) -- C:\Windows\System32\unregmp2.exe [Unsigned] =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [Unsigned] =>.Microsoft Corporation
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft®
O40 - ASIC: Google Chrome [64Bits] - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google LLC - Google Chrome Installer.) -- C:\Program Files\Google\Chrome\Application\130.0.6723.92\Installer\chrmstp.exe =>.Google LLC®
O40 - ASIC: Microsoft Edge [64Bits] - {9459C573-B17A-45AE-9F64-1857B5D58CEE} . (.Microsoft Corporation - Microsoft Edge Installer.) -- C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.68\Installer\setup.exe =>.Microsoft®

---\\ LOGICIELS INSTALLES (38) - 13s
O42 - Logiciel: 7-Zip 23.01 (x64) - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip [Unsigned] =>.Igor Pavlov
O42 - Logiciel: Adobe Genuine Service - (.Adobe Inc..) [HKLM][64Bits] -- AdobeGenuineService {098A2F313AB2C29CD42B062A0E467B0C}. =>.Adobe Inc.
O42 - Logiciel: Assistant de téléchargement - (.Druide informatique inc..) [HKLM][64Bits] -- {93154A3C-9BB7-49D7-A571-4EB6373FA601} [Unsigned] =>.Druide informatique inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner {07A61ECFA74CC7B2CEB42035C772BE1D}. =>.Piriform
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 [Unsigned] =>.CDBurnerXP
O42 - Logiciel: Comptabilité Personnelle - (.Emjysoft.) [HKLM][64Bits] -- Emjysoft_070224_is1 {00989AAB57D7FCC43812B213AEDEA41AB6}. =>.Emjysoft
O42 - Logiciel: Crusader Kings III - (.Paradox Development Studio.) [HKLM][64Bits] -- Steam App 1158310 =>.Valve Corp.®
O42 - Logiciel: Darkest Dungeon - (.GOG.com.) [HKLM][64Bits] -- 1450711444_is1 =>.GOG Sp. z o.o.®
O42 - Logiciel: Darkest Dungeon: Musketeer - (.GOG.com.) [HKLM][64Bits] -- 1405492047_is1 =>.GOG Sp. z o.o.®
O42 - Logiciel: EaseUS PDF Editor - (.EaseUS.) [HKLM][64Bits] -- {8691C793-7B2C-46C5-9AB2-AB80D129A5EE}_is1 {0CB89701EE2FDCD8EF74A9DBA626780A}. =>.EaseUS
O42 - Logiciel: Folder Marker Free - (.ArcticLine Software.) [HKLM][64Bits] -- Folder Marker Free_is1 {68C44BDAD6D73B4462C2E1B22DEA8790}. =>.ArcticLine Software
O42 - Logiciel: FormatFactory 5.15.0.0 - (.Free Time.) [HKLM][64Bits] -- FormatFactory [Unsigned] =>.Free Time
O42 - Logiciel: Foxit PDF Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1 {0B7593CAAEA54207BBC0C65A153F7601}. =>.Foxit Software Inc.
O42 - Logiciel: FreeMi UPnP Media Server - (.Stéphane Mitermite.) [HKLM][64Bits] -- FreeMi UPnP Media Server [Unsigned] =>.Stéphane Mitermite
O42 - Logiciel: GOG GALAXY - (.GOG.com.) [HKLM][64Bits] -- {7258BA11-600C-430E-A759-27E2C691A335}_is1 {0B976DD3814E722F750A35F3BC91BFA0}. =>.GOG.com
O42 - Logiciel: Google Chrome - (.Google LLC.) [HKLM][64Bits] -- Google Chrome =>.Google LLC®
O42 - Logiciel: Hekasoft Backup & Restore 0.96 - (.Hekasoft.) [HKLM][64Bits] -- {PBR27112011-M1447-7KS6-C3E2-1X8374W715U4}_is1 [Unsigned] =>.Hekasoft
O42 - Logiciel: Java 8 Update 421 - (.Oracle Corporation.) [HKLM][64Bits] -- {77924AE4-039E-4CA4-87B4-2F32180421F0} [Unsigned] =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} [Unsigned] =>.Oracle Corporation (Hidden)
O42 - Logiciel: Malwarebytes version 5.2.0.140 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Inc.®
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer [Unsigned] =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Pilote graphique 456.71 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver [Unsigned] =>.NVIDIA Corporation
O42 - Logiciel: ONLYOFFICE Desktop Editors 8.1.1 (x64) - (.Ascensio System SIA.) [HKLM][64Bits] -- ONLYOFFICE Desktop Editors_is1 {0206F1561473B5AD43B3BD938ECB82BE}.
O42 - Logiciel: Paradox Launcher v2 - (.Paradox Interactive.) [HKLM][64Bits] -- {1EB84579-4A27-417A-89AC-13082CFC9A44} [Unsigned] =>.Paradox Interactive
O42 - Logiciel: Persona 4 Golden - (.ATLUS.) [HKLM][64Bits] -- Steam App 1113000 =>.Valve Corp.®
O42 - Logiciel: Proton Drive - (.Proton AG.) [HKCU][64Bits] -- {B6F53ED2-348F-4CF0-910F-A17E69E9ED97} [Unsigned]
O42 - Logiciel: Proton Drive - (.Proton AG.) [HKLM][64Bits] -- {EF09DE4F-015C-435F-B51D-E3FD62C70F8B} [Unsigned] (Hidden)
O42 - Logiciel: Proton VPN - (.Proton AG.) [HKLM][64Bits] -- Proton VPN_is1 =>.Proton AG®
O42 - Logiciel: Riot Client - (.Riot Games, Inc.) [HKCU][64Bits] -- Riot Game Riot_Client. [Unsigned] =>.Riot Games, Inc
O42 - Logiciel: Samsung Magician - (.Samsung Electronics.) [HKLM][64Bits] -- {29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1 {0908FD1E35F8ED62CFAF6FD54C441614}. =>.SAMSUNG Electronics
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam =>.Valve Corp.®
O42 - Logiciel: TeamViewer - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer Germany GmbH®
O42 - Logiciel: The Elder Scrolls V: Skyrim Special Edition - (.Bethesda Game Studios.) [HKLM][64Bits] -- Steam App 489830 =>.Valve Corp.®
O42 - Logiciel: Ultracopier 2.2.6.7 - (.Ultracopier.) [HKLM][64Bits] -- Ultracopier [Unsigned] =>.Ultracopier
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player [Unsigned] =>.VideoLAN
O42 - Logiciel: Wallpaper Engine - (.Wallpaper Engine Team.) [HKLM][64Bits] -- Steam App 431960 =>.Valve Corp.®
O42 - Logiciel: WinDirStat 1.1.2 - (.Seifert Systems.) [HKCU][64Bits] -- WinDirStat [Unsigned] =>.Seifert Systems
O42 - Logiciel: WinRAR 6.24 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver {048B08399EC703623C72CD2077AD65D9}. =>.win.rar GmbH

---\\ CLE DE REGISTRE SOFTWARE HKCU & HKLM (159) - 13s
HKLM\SOFTWARE\1D0EC6DE-4A80-4CC3-A335-E6E41C951198
HKLM\SOFTWARE\7-Zip =>.Igor Pavlov
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\ArcticLine =>.ArcticLine
HKLM\SOFTWARE\Autodesk =>.Autodesk
HKLM\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited
HKLM\SOFTWARE\CVSM =>.Legitimate
HKLM\SOFTWARE\DefaultUserEnvironment =>.Microsoft Corporation
HKLM\SOFTWARE\Druide informatique inc. =>.Druide informatique inc.
HKLM\SOFTWARE\FormatPlayer
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\HP =>.HP
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Malwarebytes =>.Malwarebytes
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\OEM =>.OEM
HKLM\SOFTWARE\ONLYOFFICE
HKLM\SOFTWARE\OpenSSH =>.OpenBSD
HKLM\SOFTWARE\Partner =>.Google Inc.
HKLM\SOFTWARE\PDF Tools AG =>.PDF Tools AG
HKLM\SOFTWARE\Piriform =>.Piriform
HKLM\SOFTWARE\Proton AG =>.Legitimate
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Soda PDF Desktop 14 =>.Lulu Software
HKLM\SOFTWARE\TeamViewer =>.TeamViewer GmbH
HKLM\SOFTWARE\VideoLAN =>.VideoLan Team
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\Bethesda Softworks =>.Bethesda Softworks
HKLM\SOFTWARE\WOW6432Node\Druide informatique inc. =>.Druide informatique inc.
HKLM\SOFTWARE\WOW6432Node\Foxit Software =>.Foxit Software
HKLM\SOFTWARE\WOW6432Node\GOG.com =>.GOG.com
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\WOW6432Node\HP =>.HP
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\WOW6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Malwarebytes =>.Malwarebytes
HKLM\SOFTWARE\WOW6432Node\MAXSOFT-OCRON =>.Maxsoft-Ocron, Inc
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\Novell =>.Novell
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\Oracle =>.Oracle
HKLM\SOFTWARE\WOW6432Node\Samsung Magician =>.Samsung Electronics
HKLM\SOFTWARE\WOW6432Node\Soda PDF Desktop 14 =>.Lulu Software
HKLM\SOFTWARE\WOW6432Node\Valve =>.Valve
HKLM\SOFTWARE\WOW6432Node\Wow6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\7-Zip =>.Igor Pavlov
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKCU\SOFTWARE\Apowersoft =>.Apowersoft
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\ArcticLine =>.ArcticLine
HKCU\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
HKCU\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited
HKCU\SOFTWARE\CD Projekt Red =>.CD Projekt RED
HKCU\SOFTWARE\ChangeTracker =>.Legitimate
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Druide informatique inc. =>.Druide informatique inc.
HKCU\SOFTWARE\Emjysoft =>.Emjysoft
HKCU\SOFTWARE\Foxit Software =>.Foxit Software
HKCU\SOFTWARE\FreeTime =>.FreeTime Inc
HKCU\SOFTWARE\FreeTime/FormatFactory
HKCU\SOFTWARE\GOG.com =>.GOG.com
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Novell =>.Novell
HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\ONLYOFFICE
HKCU\SOFTWARE\Paradox Interactive =>.Paradox Interactive
HKCU\SOFTWARE\PC SOFT =>.PC SOFT
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\Proton
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Seifert =>.Seifert Systems
HKCU\SOFTWARE\ShowKey
HKCU\SOFTWARE\Soda PDF Desktop 14 =>.Lulu Software
HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKCU\SOFTWARE\TeamViewer =>.TeamViewer GmbH
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\WallpaperEngine
HKCU\SOFTWARE\WinDev Applications =>.WinDev
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wintertree =>.Wintertree Software
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKU\.DEFAULT\SOFTWARE\Adobe =>.Adobe
HKU\.DEFAULT\SOFTWARE\Druide informatique inc. =>.Druide informatique inc.
HKU\.DEFAULT\SOFTWARE\Google =>.Google
HKU\.DEFAULT\SOFTWARE\Malwarebytes =>.Malwarebytes
HKU\.DEFAULT\SOFTWARE\PDF Tools AG =>.PDF Tools AG
HKU\.DEFAULT\SOFTWARE\Piriform =>.Piriform
HKU\.DEFAULT\SOFTWARE\Soda PDF Desktop 14 =>.Lulu Software
HKU\.DEFAULT\SOFTWARE\WinRAR =>.WinRAR
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\7-Zip =>.Igor Pavlov
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Adobe =>.Adobe
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Apowersoft =>.Apowersoft
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\ArcticLine =>.ArcticLine
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\CD Projekt Red =>.CD Projekt RED
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\ChangeTracker =>.Legitimate
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Chromium =>.Chromium
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Druide informatique inc. =>.Druide informatique inc.
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Emjysoft =>.Emjysoft
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Foxit Software =>.Foxit Software
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\FreeTime =>.FreeTime Inc
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\FreeTime/FormatFactory
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\GOG.com =>.GOG.com
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Google =>.Google
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\HP =>.HP
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\JavaSoft =>.JavaSoft
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Malwarebytes =>.Malwarebytes
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Netscape =>.Netscape
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Novell =>.Novell
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\ONLYOFFICE
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Paradox Interactive =>.Paradox Interactive
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\PC SOFT =>.PC SOFT
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Piriform =>.Piriform
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Proton
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\QtProject =>.QtProject
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Seifert =>.Seifert Systems
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\ShowKey
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Soda PDF Desktop 14 =>.Lulu Software
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\TeamViewer =>.TeamViewer GmbH
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Valve =>.Valve
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\WallpaperEngine
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\WinDev Applications =>.WinDev
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\WinRAR =>.WinRAR
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\WinRAR SFX =>.RarLab
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Wintertree =>.Wintertree Software
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\SOFTWARE\ZHP =>.Nicolas Coolman

---\\ PACKAGES (11) - 1s
C:\Program Files (x86)\WindowsApps\AD2F1837.HPPrinterControl_156.1.1125.0_x64__v10z8vjag6ke6 - (.Hewlett-Packard.) [][HP Smart] =>Hewlett-Packard
C:\Program Files (x86)\WindowsApps\AD2F1837.HPSupportAssistant_9.39.17.0_x64__v10z8vjag6ke6 - (.Hewlett-Packard.) [][HP Support Assistant] =>Hewlett-Packard
C:\Program Files (x86)\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se - (..) [][TikTok]
C:\Program Files (x86)\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.275.500.0_x64__8wekyb3d8bbwe - (.Microsoft Corporation.) [][WinAppRuntime.Main.1.5] =>Microsoft Corporation
C:\Program Files (x86)\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.266.2241.0_x64__8wekyb3d8bbwe - (.Microsoft Corporation.) [][WinAppRuntime.Singleton] =>Microsoft Corporation
C:\Program Files (x86)\WindowsApps\MicrosoftTeams_24277.3102.3183.2670_x64__8wekyb3d8bbwe - (.Microsoft Corporation.) [][Microsoft Teams (personal)] =>Microsoft Corporation
C:\Program Files (x86)\WindowsApps\MicrosoftWindows.Client.WebExperience_524.28801.30.0_x64__cw5n1h2txyewy - (.Microsoft Corporation.) [][Windows Web Experience Pack] =>Microsoft Corporation
C:\Program Files (x86)\WindowsApps\MicrosoftWindows.UndockedDevKit_10.0.22000.1_neutral_neutral_cw5n1h2txyewy - (.Microsoft Corporation.) [][UDK Package] =>Microsoft Corporation
C:\Program Files (x86)\WindowsApps\NcsiUwpApp_1000.22000.1.0_neutral_neutral_8wekyb3d8bbwe - (.Microsoft.) [][NcsiUwpApp] =>Microsoft
C:\Program Files (x86)\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj - (.nVidia Corporation.) [][NVIDIA Control Panel] =>nVidia Corporation
C:\Program Files (x86)\WindowsApps\WinRAR.ShellExtension_1.0.0.2_x64__d9ma7nkbkv4rp - (..) [][WinRAR]

---\\ CONTENU DES DOSSIERS PROGRAMMES (142) - 6s
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files\7-Zip =>.Igor Pavlov
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files\Adobe =>.Adobe
O43 - CFD: 31/10/2024 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files\CDBurnerXP =>.Stefan Haglund
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files\FreeMi UPnP Media Server =>.Stéphane Mitermite
O43 - CFD: 25/10/2024 - [] D -- C:\Program Files\Google =>.Google LLC®
O43 - CFD: 25/10/2024 - [] D -- C:\Program Files\Hekasoft Backup & Restore [Unsigned]
O43 - CFD: 16/10/2024 - [] D -- C:\Program Files\HPPrintScanDoctor =>.HP Inc.®
O43 - CFD: 09/10/2024 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 12/09/2024 - [] D -- C:\Program Files\ONLYOFFICE {0206F1561473B5AD43B3BD938ECB82BE}.
O43 - CFD: 28/09/2024 - [] D -- C:\Program Files\Proton =>.Legitimate
O43 - CFD: 18/10/2024 - [] D -- C:\Program Files\RUXIM =>.Microsoft®
O43 - CFD: 25/10/2024 - [] D -- C:\Program Files\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files\Ultracopier =>.Herman Brule
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files\WinRAR {048B08399EC703623C72CD2077AD65D9}. =>.WinRAR
O43 - CFD: 01/04/2024 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 07/03/2024 - [] D -- C:\Program Files (x86)\Druide =>.Druide Informatique Inc.®
O43 - CFD: 31/03/2024 - [] D -- C:\Program Files (x86)\EaseUS =>.EaseUS Software
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files (x86)\Emjysoft =>.Emjysoft
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files (x86)\Folder Marker {68C44BDAD6D73B4462C2E1B22DEA8790}.
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files (x86)\FormatFactory =>.Free Time Software Technology Co., Ltd.®
O43 - CFD: 17/03/2024 - [] D -- C:\Program Files (x86)\Foxit Software =>.Foxit Software
O43 - CFD: 08/12/2023 - [] D -- C:\Program Files (x86)\GOG Galaxy =>.GOG Sp. z o.o.®
O43 - CFD: 18/01/2024 - [] D -- C:\Program Files (x86)\Google =>.Google LLC®
O43 - CFD: 19/11/2023 - [0] D -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 03/08/2024 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 28/11/2023 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics
O43 - CFD: 21/09/2024 - [] D -- C:\Program Files (x86)\Steam =>.Steam Games
O43 - CFD: 19/11/2023 - [] D -- C:\Program Files (x86)\WinDirStat =>.Seifert Systems
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov
O43 - CFD: 19/11/2023 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 19/09/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comptabilité Personnelle
O43 - CFD: 03/01/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Darkest Dungeon [GOG.com]
O43 - CFD: 31/03/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS PDF Editor =>.EaseUS Software
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Marker
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeMi UPnP Media Server =>.Stéphane Mitermite
O43 - CFD: 08/12/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com =>.GOG.com
O43 - CFD: 25/10/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hekasoft Backup & Restore
O43 - CFD: 03/08/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 12/09/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ONLYOFFICE
O43 - CFD: 28/09/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton =>.Legitimate
O43 - CFD: 15/07/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games =>.Riot Games
O43 - CFD: 06/10/2024 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician =>.Samsung Electronics
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam =>.Steam Games
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat =>.Seifert Systems
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 01/04/2024 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 17/03/2024 - [] D -- C:\ProgramData\boost_interprocess =>.boost.org
O43 - CFD: 19/11/2023 - [] D -- C:\ProgramData\BrightData
O43 - CFD: 15/01/2024 - [0] D -- C:\ProgramData\dbg =>.DBG
O43 - CFD: 17/03/2024 - [] D -- C:\ProgramData\Foxit ContentPlatform =>.Foxit Corporation
O43 - CFD: 17/03/2024 - [] D -- C:\ProgramData\Foxit Software =>.Foxit Software
O43 - CFD: 03/01/2024 - [] D -- C:\ProgramData\GOG.com =>.GOG.com
O43 - CFD: 09/10/2024 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 17/03/2024 - [] D -- C:\ProgramData\Norton =>.Symantec Corporation
O43 - CFD: 04/03/2024 - [] D -- C:\ProgramData\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 12/09/2024 - [] D -- C:\ProgramData\ONLYOFFICE
O43 - CFD: 17/03/2024 - [] D -- C:\ProgramData\Piriform =>.Piriform
O43 - CFD: 10/02/2024 - [] D -- C:\ProgramData\Riot Games =>.Riot Games
O43 - CFD: 28/11/2023 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics
O43 - CFD: 01/04/2024 - [] D -- C:\ProgramData\SurfaceReduction
O43 - CFD: 03/04/2024 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 17/03/2024 - [] D -- C:\Program Files (x86)\Common Files\Foxit
O43 - CFD: 03/08/2024 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 03/08/2024 - [] D -- C:\Program Files (x86)\Common Files\Oracle =>.Oracle
O43 - CFD: 15/09/2024 - [] D -- C:\Program Files (x86)\Common Files\Steam =>.Steam Games
O43 - CFD: 09/04/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Roaming\ArcticLine =>.ArcticLine
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Roaming\Canneverbe Limited =>.Canneverbe Limited
O43 - CFD: 26/11/2023 - [] D -- C:\Users\Didier\AppData\Roaming\com.adobe.dunamis =>.Adobe Inc.
O43 - CFD: 15/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\CRL
O43 - CFD: 07/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Druide =>.Druide
O43 - CFD: 31/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\EaseUS =>.EaseUS Software
O43 - CFD: 19/02/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Emjysoft =>.Emjysoft
O43 - CFD: 17/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Foxit AgentInformation =>.Foxit Corporation
O43 - CFD: 17/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Foxit Software =>.Foxit Software
O43 - CFD: 12/06/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Hekasoft =>.Hekasoft
O43 - CFD: 28/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\HPPSDr
O43 - CFD: 01/04/2024 - [] D -- C:\Users\Didier\AppData\Roaming\PaperScan Free =>.Flexera
O43 - CFD: 04/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Paradox Interactive =>.Paradox Interactive
O43 - CFD: 06/03/2024 - [0] D -- C:\Users\Didier\AppData\Roaming\paradox-launcher-v2
O43 - CFD: 03/11/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Samsung Magician =>.Samsung Electronics
O43 - CFD: 16/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Sejda PDF Desktop
O43 - CFD: 16/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\sejda-desktop
O43 - CFD: 17/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Soda PDF Desktop 14 =>.Lulu Software
O43 - CFD: 23/07/2024 - [] D -- C:\Users\Didier\AppData\Roaming\SolidDocuments =>.SolidDocuments
O43 - CFD: 03/08/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 15/07/2024 - [] D -- C:\Users\Didier\AppData\Roaming\The Witcher 3 =>.Atari Inc
O43 - CFD: 11/08/2024 - [] D -- C:\Users\Didier\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 31/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\WinScan2PDF
O43 - CFD: 03/11/2024 - [] D -- C:\Users\Didier\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 07/07/2024 - [] D -- C:\Users\Didier\AppData\Local\Adobe =>.Adobe
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Local\BrightData
O43 - CFD: 15/07/2024 - [] D -- C:\Users\Didier\AppData\Local\cache =>.Legitimate
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Local\CEF =>.CEF
O43 - CFD: 30/10/2024 - [] D -- C:\Users\Didier\AppData\Local\D3DSCache =>.Legitimate
O43 - CFD: 15/01/2024 - [0] D -- C:\Users\Didier\AppData\Local\DBG =>.DBG
O43 - CFD: 07/03/2024 - [] D -- C:\Users\Didier\AppData\Local\Druide =>.Druide
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Local\Free_Time_Co.,_Ltd
O43 - CFD: 15/03/2024 - [0] D -- C:\Users\Didier\AppData\Local\FTMod
O43 - CFD: 08/12/2023 - [] D -- C:\Users\Didier\AppData\Local\GOG.com =>.GOG.com
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Local\Google =>.Google
O43 - CFD: 12/06/2024 - [] D -- C:\Users\Didier\AppData\Local\Hekasoft =>.Hekasoft
O43 - CFD: 03/11/2024 - [] D -- C:\Users\Didier\AppData\Local\Malwarebytes =>.Malwarebytes
O43 - CFD: 15/03/2024 - [] D -- C:\Users\Didier\AppData\Local\NVIDIA =>.nVidia Corporation
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Local\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 12/09/2024 - [] D -- C:\Users\Didier\AppData\Local\ONLYOFFICE
O43 - CFD: 04/03/2024 - [] D -- C:\Users\Didier\AppData\Local\Paradox Interactive =>.Paradox Interactive
O43 - CFD: 28/09/2024 - [] D -- C:\Users\Didier\AppData\Local\Proton =>.Legitimate
O43 - CFD: 29/09/2024 - [] D -- C:\Users\Didier\AppData\Local\ProtonVPN =>.Legitimate
O43 - CFD: 15/07/2024 - [] D -- C:\Users\Didier\AppData\Local\REDEngine
O43 - CFD: 08/12/2023 - [] D -- C:\Users\Didier\AppData\Local\Riot Games =>.Riot Games
O43 - CFD: 27/08/2024 - [] D -- C:\Users\Didier\AppData\Local\Rufus
O43 - CFD: 16/07/2024 - [] D -- C:\Users\Didier\AppData\Local\SEGA =>.SEGA
O43 - CFD: 01/01/2024 - [] D -- C:\Users\Didier\AppData\Local\Skyrim Special Edition =>.Nogenious Skyrim Game
O43 - CFD: 26/11/2023 - [] D -- C:\Users\Didier\AppData\Local\SolidDocuments =>.SolidDocuments
O43 - CFD: 16/07/2024 - [] D -- C:\Users\Didier\AppData\Local\Steam =>.Steam Games
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Local\SumatraPDF =>.Krzysztof Kowalczyk
O43 - CFD: 03/02/2024 - [] D -- C:\Users\Didier\AppData\Local\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 28/09/2024 - [] D -- C:\Users\Didier\AppData\Local\ToastNotificationManagerCompat
O43 - CFD: 03/11/2024 - [] D -- C:\Users\Didier\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 15/07/2024 - [] D -- C:\Users\Didier\AppData\Local\Programs\CD Projekt Red =>.CD Projekt RED
O43 - CFD: 04/03/2024 - [] D -- C:\Users\Didier\AppData\Local\Programs\Paradox Interactive =>.Paradox Interactive
O43 - CFD: 28/09/2024 - [] D -- C:\Users\Didier\AppData\Local\Programs\Proton =>.Legitimate
O43 - CFD: 26/11/2023 - [] D -- C:\Users\Didier\AppData\LocalLow\Adobe =>.Adobe
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\LocalLow\Sun =>.Oracle
O43 - CFD: 19/11/2023 - [] RD -- C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory =>.FormatFactory
O43 - CFD: 04/03/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paradox Interactive =>.Paradox Interactive
O43 - CFD: 28/09/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Proton =>.Legitimate
O43 - CFD: 08/12/2023 - [0] D -- C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games =>.Riot Games
O43 - CFD: 27/08/2024 - [] D -- C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam =>.Steam Games
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultracopier =>.Herman Brule
O43 - CFD: 19/11/2023 - [] D -- C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 21/10/2024 - [] D -- C:\Users\Default\AppData\Local\Malwarebytes =>.Malwarebytes
O43 - CFD: 21/10/2024 - [] D -- C:\Users\Default User\AppData\Local\Malwarebytes =>.Malwarebytes
O43 - CFD: 09/10/2024 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Malwarebytes =>.Malwarebytes

---\\ ShellIconOverlayIdentifiers (SIOI) (1) - 0s
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation

---\\ RACCOURCIS DES MENUS CONTEXTUELS (SCMH) (34) - 1s
O108 - CMH1: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll [Unsigned] =>.Igor Pavlov
O108 - CMH1: Adobe.Acrobat.ContextMenu [64Bits] - {A6595CD1-BF77-430A-A452-18696685F7C7} . (.Adobe Systems Inc. - Adobe Acrobat Context Menu.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll =>.Adobe Systems, Incorporated®
O108 - CMH1: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft®
O108 - CMH1: FormatFactoryShell [64Bits] - {A3888923-CFD3-4A6B-89BF-08E6B95716E8} . (.Free Time - FormatFactory Shell Menu Module.) -- C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [Unsigned] =>.Free Time
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH2: NvAppShExt [64Bits] - {A929C4CE-FD36-4270-B4F5-34ECAC5BD63C} . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nv3dappshext.dll =>.NVIDIA Corporation®
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH2: OpenGLShExt [64Bits] - {E97DEC16-A50D-49bb-AE24-CF682282E08D} . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nv3dappshext.dll =>.NVIDIA Corporation®
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH3: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Inc.®
O108 - CMH3: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH4: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll [Unsigned] =>.Igor Pavlov
O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH4: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft®
O108 - CMH4: FormatFactoryShell [64Bits] - {A3888923-CFD3-4A6B-89BF-08E6B95716E8} . (.Free Time - FormatFactory Shell Menu Module.) -- C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [Unsigned] =>.Free Time
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH5: NvCplDesktopContext [64Bits] - {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nvshext.dll =>.NVIDIA Corporation®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH6: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll [Unsigned] =>.Igor Pavlov
O108 - CMH6: Adobe.Acrobat.ContextMenu [64Bits] - {A6595CD1-BF77-430A-A452-18696685F7C7} . (.Adobe Systems Inc. - Adobe Acrobat Context Menu.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll =>.Adobe Systems, Incorporated®
O108 - CMH6: FMMenuExt [64Bits] - {47C91696-894C-46A1-B196-2C7CA1952F45} . (.ArcticLine Software - Shell extension for Folder Marker.) -- C:\Program Files (x86)\Folder Marker\ShellExt64.dll {68C44BDAD6D73B4462C2E1B22DEA8790}. =>.ArcticLine Software
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft®
O108 - CMH6: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Inc.®
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Programme de résolution d’applications.) -- C:\Windows\System32\appresolver.dll =>.Microsoft®
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH7: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft®
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation

---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (11) - 1s
O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\notepad.exe - (.Microsoft Corporation - Bloc-notes.) [UseFilter\\1] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft®

---\\ LISTE DES PILOTES DU SYSTEME (71) - 11s
O58 - SDL:2021/06/05 13:04:44 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107344] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:44 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135432] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:42 A . (.Advanced Micro Devices, Inc - AMD GPIO Controller Driver.) -- C:\Windows\System32\drivers\amdgpio2.sys [18432] [Unsigned] =>.Advanced Micro Devices, Inc
O58 - SDL:2021/06/05 13:04:42 A . (.Advanced Micro Devices, Inc - AMD I2C Controller Driver.) -- C:\Windows\System32\drivers\amdi2c.sys [45568] [Unsigned] =>.Advanced Micro Devices, Inc
O58 - SDL:2021/06/05 13:04:44 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83280] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:44 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259384] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:44 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [26960] =>.Microsoft®
O58 - SDL:2024/04/01 00:57:32 A . (.Copyright(C) 2017 - USB Mass Storage Universal Driver.) -- C:\Windows\System32\drivers\AmUStorU.sys [155744] {0B22C18BA13224C057F9256DEAA1E430}.
O58 - SDL:2021/06/05 13:04:42 A . (.Apple Inc. - Apple Solid State Drive Device.) -- C:\Windows\System32\drivers\AppleSSD.sys [112440] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:44 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [131912] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:42 A . (. - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [9728] [Unsigned] =>.Broadcom Corporation
O58 - SDL:2021/06/05 13:04:44 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [533816] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\Windows\System32\drivers\cht4dx64.sys [144184] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\Windows\System32\drivers\cht4sx64.sys [319800] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Chelsio Communications - VF library for Chelsio ® T5/T6 Chipset.) -- C:\Windows\System32\drivers\cht4vfx.sys [28672] [Unsigned] =>.Chelsio Communications
O58 - SDL:2021/06/05 13:04:45 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\Windows\System32\drivers\cht4vx64.sys [1853752] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:44 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbd0a.sys [3423032] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:44 A . (.Marvell Semiconductor Inc. - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3440440] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64328] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:42 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iagpio.sys [36352] [Unsigned] =>.Intel(R) Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\drivers\iai2c.sys [91136] [Unsigned] =>.Intel(R) Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [79360] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [171520] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:42 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:44 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2021/06/05 13:04:43 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [113152] [Unsigned] =>.Intel Corporation
O58 - SDL:2021/06/05 13:04:45 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAVC.sys [884552] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [411976] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [558928] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Avago Technologies - Avago SAS Gen3.5 Driver (StorPort).) -- C:\Windows\System32\drivers\ItSas35i.sys [176952] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108880] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [124240] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [137552] =>.Microsoft®
O58 - SDL:2024/10/09 09:05:33 A . (.Malwarebytes - Malwarebytes Anti-Exploit.) -- C:\Windows\System32\drivers\mbae64.sys [158640] =>.Microsoft®
O58 - SDL:2024/10/26 06:45:51 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\Windows\System32\drivers\MbamChameleon.sys [232000] =>.Microsoft®
O58 - SDL:2024/10/09 09:05:31 A . (.Malwarebytes - Malwarebytes Early Launch Anti-Malware Driv.) -- C:\Windows\System32\drivers\MbamElam.sys [21480] =>.Microsoft®
O58 - SDL:2024/10/09 09:05:49 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\Windows\System32\drivers\mbamswissarmy.sys [239568] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Avago Technologies - MEGASAS2i RAID Controller Driver for Window.) -- C:\Windows\System32\drivers\MegaSas2i.sys [80696] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Broadcom Inc - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas35i.sys [100176] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575824] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [1131344] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Broadcom Limited - Broadcom MPI 3.0 Driver (StorPort).) -- C:\Windows\System32\drivers\mpi3drvi.sys [87352] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63816] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [146256] =>.Microsoft®
O58 - SDL:2023/11/19 18:14:01 A . (...) -- C:\Windows\System32\drivers\NDKPerf.sys [79192] =>.Microsoft®
O58 - SDL:2021/06/01 15:27:00 A . (.MediaTek Inc. - MediaTek 802.11 Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28x.sys [2537984] [Unsigned] =>.MediaTek Inc.
O58 - SDL:2020/10/07 13:33:50 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [230720] =>.NVIDIA Corporation®
O58 - SDL:2021/06/05 13:04:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150344] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166216] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58704] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [68432] =>.Microsoft®
O58 - SDL:2015/08/07 19:34:40 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\Windows\System32\drivers\rt640x64.sys [896752] =>.Realtek Semiconductor Corp®
O58 - SDL:2021/06/05 13:04:54 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\Windows\System32\drivers\rteth.sys [81920] [Unsigned] =>.Realtek
O58 - SDL:2021/06/05 13:04:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44872] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81736] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Microsemi Corportation - Storport Miniport Driver for SmartRAID/Smar.) -- C:\Windows\System32\drivers\SmartSAMD.sys [209736] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31032] =>.Microsoft®
O58 - SDL:2016/08/20 00:07:12 A . (.Texas Instruments, Inc. - Lower Filter Driver for TI TUSB73x0 USB3.0.) -- C:\Windows\System32\drivers\TIxHCIlfilter.sys [34424] =>.Texas Instruments, Inc.®
O58 - SDL:2016/08/20 00:07:12 A . (.Texas Instruments, Inc. - Upper Filter Driver for TI TUSB73x0 USB3.0.) -- C:\Windows\System32\drivers\TIxHCIufilter.sys [39032] =>.Texas Instruments, Inc.®
O58 - SDL:2021/06/05 13:05:16 A . (...) -- C:\Windows\System32\drivers\UsbPmApi.sys [86016] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2021/06/05 13:04:45 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166712] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305488] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [36152] =>.Microsoft®
O58 - SDL:2024/09/28 14:47:47 A . (.WireGuard LLC - Wintun Driver.) -- C:\Windows\System32\drivers\wintun.sys [29592] =>.Microsoft®
O58 - SDL:2021/06/05 13:04:45 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [73016] =>.Microsoft®
O58 - SDL:2024/09/28 14:47:35 A . (.WireGuard LLC - WireGuard Driver.) -- C:\Windows\System32\drivers\wireguard.sys [489368] =>.Microsoft®

---\\ ASSOCIATION Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value

---\\ MENU DE DÉMARRAGE INTERNET (12) - 0s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Show IE Icon Utility.) -- C:\Windows\System32\ie4ushowIE.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Show IE Icon Utility.) -- C:\Windows\System32\ie4ushowIE.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation

---\\ RECHERCHE D'INFECTION SUR NAVIGATEURS (1) - 0s
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com

---\\ ENUMERE LES SERVICES DÉMARRES PAR Svchost (51) - 1s
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [331776] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1351680] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [1511424] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [835584] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [53248] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [172032] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [122880] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [835584] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [245760] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [610304] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [577536] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports de problèmes.) -- C:\Windows\System32\wercplsupport.dll [135168] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2109440] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [1540096] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [466944] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [110592] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1294336] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [1290240] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1155072] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\Windows\System32\TokenBroker.dll [1785856] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [69632] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [253952] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: WManSvc (WManSvc) . (.Microsoft Corporation - DLL du Service de gestion de Windows.) -- C:\Windows\System32\Windows.Management.Service.dll [1347584] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [135168] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [1073152] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [520192] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [98304] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [662536] =>.Microsoft®
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [335872] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3596288] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1662976] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [278528] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [143360] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [1137688] =>.Microsoft®
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [303104] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1388544] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session du service Orchest.) -- C:\Windows\System32\usosvc.dll [94208] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [352256] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [2748416] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: LxpSvc (LxpSvc) . (.Microsoft Corporation - Fournit une prise en charge de l'infrastruc.) -- C:\Windows\System32\LanguageOverlayServer.dll [516096] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: TroubleshootingSvc (TroubleshootingSvc) . (.Microsoft Corporation - MitigationClient.) -- C:\Windows\System32\MitigationClient.dll [569344] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [311296] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [188416] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [294912] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [131072] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [376832] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [241664] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [241664] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [163840] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [581632] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DcSvc (DcSvc) . (.Microsoft Corporation - dcsvc.) -- C:\Windows\System32\dcsvc.dll [835584] [Unsigned] =>.Microsoft Corporation

---\\ LISTE DES EXCEPTIONS PAREFEU WINDOWS (9) - 11s
O87 - FAEL: "{8E903EBD-1140-4914-86FB-10556FBE6137}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe {0332386F94B0B6BFD23422B56B8A0C29}. =>.Steam Games
O87 - FAEL: "{342ED5A0-B55F-48D3-B65E-107CA0117A14}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe {0332386F94B0B6BFD23422B56B8A0C29}. =>.Steam Games
O87 - FAEL: "{40B20ED7-E25C-4C8F-90C3-927A3DC77579}" [In-None-P17-TRUE] .(...) -- C:\Users\Didier\AppData\Local\Temp\7zS5347\HP.EasyStart.exe [Unsigned] (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{58C81AA1-949F-4F96-9274-CC807DD75FF6}" [In-None-P17-TRUE] .(...) -- C:\Users\Didier\AppData\Local\Temp\7zS6EA0\HP.EasyStart.exe [Unsigned] (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{3C9F6770-D9E0-4687-90EB-66BFEF6D8879}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Hades II\Ship\Hades2.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{C82585D2-2E60-4AC0-8B13-6F6039C8A710}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Hades II\Ship\Hades2.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{7B99C3AD-F8D2-4DAD-B56D-F5AD003CE501}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Persona 4 Golden\P4G.exe {05AEF466A7BEDF5884758F9C2663647C}. =>.Steam Games
O87 - FAEL: "{121C9CB6-4FBB-4EF7-83DB-FB7B8695D191}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Persona 4 Golden\P4G.exe {05AEF466A7BEDF5884758F9C2663647C}. =>.Steam Games
O87 - FAEL: "{BA97CDC2-76DA-4FDE-B9CA-C39B2B4389D5}" [In-None-P17-TRUE] .(...) -- C:\Users\Didier\AppData\Local\Temp\7zS5B0E\HP.EasyStart.exe [Unsigned] (.not file.) =>.Temporary file not necessary

---\\ CODES PRODUITS LOGICIELS (6) - 0s
O90 - PUC: "910A08ADB3C4AAD4CA1A96737DACFAE9" [HKLM] . (.Update for x64-based Windows Systems (KB5001716).)
O90 - PUC: "C3A451397BB97D945A17E46B73F36A10" [HKLM] . (.Assistant de téléchargement.) -- C:\Windows\Installer\{93154A3C-9BB7-49D7-A571-4EB6373FA601}\ARPPRODUCTICON.exe
O90 - PUC: "97548BE172A4A71498CA3180C2CFA944" [HKCU] . (.Paradox Launcher v2.) -- %APPDATA%\Microsoft\Installer\{1EB84579-4A27-417A-89AC-13082CFC9A44}\ParadoxIcon
O90 - PUC: "F4ED90FEC510F5345BD13EDF267CF0B8" [HKCU] . (.Proton Drive.) -- %APPDATA%\Microsoft\Installer\{EF09DE4F-015C-435F-B51D-E3FD62C70F8B}\ProtonDrive.ico
O90 - PUC: "97548BE172A4A71498CA3180C2CFA944" [HKU] . (.Paradox Launcher v2.) -- %APPDATA%\Microsoft\Installer\{1EB84579-4A27-417A-89AC-13082CFC9A44}\ParadoxIcon
O90 - PUC: "F4ED90FEC510F5345BD13EDF267CF0B8" [HKU] . (.Proton Drive.) -- %APPDATA%\Microsoft\Installer\{EF09DE4F-015C-435F-B51D-E3FD62C70F8B}\ProtonDrive.ico

---\\ PACKAGES WINDOWS INSTALLER (6) - 3s
[MD5.2B8F193D236DB18A24FBACD46ED44623] [WIS][2024/07/12 06:09:50] (.Proton AG - Proton Drive.) -- C:\Windows\Installer\1a8df23e.msi [73641984]
[MD5.0C6B7DA8DA1A842D20719BF6E346E09B] [WIS][2024/03/04 13:46:14] (.Paradox Interactive - Paradox Launcher v2.) -- C:\Windows\Installer\4e63ae9a.msi [126812160] =>.Paradox Interactive
[MD5.CD5B915A1F5F8E6A10A92A8E97746F33] [WIS][2019/03/12 23:28:24] (.Druide informatique inc. - Assistant de téléchargement.) -- C:\Windows\Installer\5d1c9351.msi [26886656] =>.Druide informatique inc.
[MD5.870CCC7D65593DA6B3820AE3E2B931F7] [WIS][2017/11/14 00:15:16] (.Adobe Systems Incorporated - Installers.) -- C:\Windows\Installer\746af.msi [10674176] =>.Adobe Systems Incorporated
[MD5.1280C93728DA0F95831DBA0CD9DB84D2] [WIS][2024/08/03 10:21:36] (.Oracle Corporation - Java SE Runtime Environment 8 Update 421.) -- C:\Windows\Installer\a21cf548.msi [59146240] =>.Oracle Corporation
[MD5.1F50B4B8E18C3C296455BF67E456A0DC] [WIS][2024/08/03 10:21:29] (.Oracle Corporation - Java Auto Updater.) -- C:\Windows\Installer\a21cf553.msi [1073152] =>.Oracle Corporation

---\\ FEATURE CONTROL. (5) - 0s
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:OneDrive.exe
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:WCTestSimulator.exe
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:HPWarrantyChecker.exe
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:FoxitPDFReader.exe
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:EaseUS PDF Editor.exe

---\\ OBSERVATEURS des évènements (137) - 27s

Application.Error: Application Error (18)
~Numéro: 21714
~Date: 10/26/2024 06:41:05 AM
~ID: 1000
~Description: Nom de l’application défaillante explorer.exe, version : 10.0.22000.2482, horodatage : 0x23d9d4c9 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x708e37a0 ID du proces
~Suggestion: Réparer ou réinstaller l'application.

Application.Error: VSS (1)
~Numéro: 21680
~Date: 10/25/2024 01:51:28 PM
~ID: 13
~Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ]
~Suggestion: Aucune

Application.Error: Application Hang (3)
~Numéro: 21031
~Date: 10/16/2024 08:42:53 AM
~ID: 1002
~Description: Le programme explorer.exe version 10.0.22000.2538 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et mai
~Suggestion: Essayer les commandes suivantes ipconfig /release et ipconfig / renew.

Application.Warning: Windows Search Service (2)
~Numéro: 20944
~Date: 10/15/2024 08:35:45 AM
~ID: 3036
~Description: Impossible de terminer l’analyse dans la source de contenu .Contexte : Application , Catalogue SystemIndexDétails : 0x%08x (0x80072ee4 - Une erreur interne s’est produite dans les Service
~Suggestion: https://www.repairwin.com/fix-windows-event-3036-search-content-source-cannot-accessed-solved/

Application.Error: Microsoft-Windows-Defrag (12)
~Numéro: 20849
~Date: 10/14/2024 12:34:12 PM
~ID: 264
~Description: L’optimiseur de stockage n’a pas pu terminer défragmentation sur (F:) car : Les volumes ne peuvent pas être optimisés en raison du type de système de fichiers non pris en charge (0x8900002F)
~Suggestion: Désactivez la surveillance du disque logique dans le pack d'administration du système d'exploitation de base SCOM pour arrêter l'analyse automatique de la défragmentation.

Application.Warning: Microsoft-Windows-RestartManager (8)
~Numéro: 19942
~Date: 09/29/2024 09:39:38 AM
~ID: 10010
~Description: Impossible de redémarrer l’application « C:\Program Files\Proton\VPN\v3.3.2\ProtonVPN.exe » (pid 17040) - 1.
~Suggestion: Redémarrer manuellement l'application ou le service

Application.Warning: Dwminit (2)
~Numéro: 19897
~Date: 09/28/2024 04:37:28 PM
~ID: 0
~Description: Le processus Gestionnaire de fenêtrage a été quitté. (Code de sortie du processus : 0x000000ff, nombre de redémarrages : 1, ID de périphérique d’affichage principal : NVIDIA GeForce GT 710)
~Suggestion: Exécuter l'utilitaire de résolution des problèmes des applications Windows.

Application.Warning: ESENT (1)
~Numéro: 17653
~Date: 08/16/2024 10:49:22 AM
~ID: 472
~Description: taskhostw (1456,R,98) WebCacheLocal: Page d’en-tête de sauvegarde du fichier C:\Users\Didier\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat endommagée. La page d’en-tête primaire (32768 octets) a été utilisée à la place.
~Suggestion: 1)Fermer le processus explorer.exe. 2)lancer la commande 'del/f/s/q/a C:\Users\\AppData\Local\Microsoft\Windows\WebCacheLock.dat'. 3) Redémarrer le processus explorer.exe

System.Error: Microsoft-Windows-WindowsUpdateClient (28)
~Numéro: 28062
~Date: 11/03/2024 08:59:23 AM
~ID: 20
~Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9MSSGKG348SP-MicrosoftWindows.Client.WebExperience.
~Suggestion: http://kb.eventtracker.com/evtpass/evtpages/EventId_20_Microsoft-Windows-WindowsUpdateClient_63351.asp

System.Warning: DCOM (377)
~Numéro: 28055
~Date: 11/03/2024 08:37:05 AM
~ID: 10016
~Description: propres à l’applicationLocalActivation{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}{15C20B67-12E7-4BB6-92BB-7AFF07997402}CENTAURUSDidierS-1-5-21-3262927612-1677394149-2524797181-1001LocalHost (avec LRPC)Non disponibleNon disponible
~Suggestion: Vérifier les autorisations pour l'accès DCOM

System.Error: Server (217)
~Numéro: 28045
~Date: 11/03/2024 08:12:32 AM
~ID: 2505
~Description: Le serveur n’a pas pu se lier au transport \Device\NetBT_Tcpip_{3F5DD364-8ACB-4923-8833-902BB51ED8F6} car un autre ordinateur du réseau porte le même nom. Le serveur n’a pas pu démarrer.

System.Warning: Microsoft-Windows-Time-Service (31)
~Numéro: 28039
~Date: 11/03/2024 08:12:29 AM
~ID: 134
~Description: NtpClient n'a pas pu définir d'homologue manuel utilisable comme source de temps en raison d'une erreur de résolution DNS sur "time.windows.com,0x9". NtpClient réessaiera dans 15 minutes, puis doublera l'intervalle d'attente pour les tentatives suiva
~Suggestion: Resynchroniser le client avec l'homologue de source de temps

System.Warning: Microsoft-Windows-DNS-Client (89)
~Numéro: 27890
~Date: 11/01/2024 10:36:42 AM
~ID: 1014
~Description: t-ring-fdv2.msedge.net12802000000D043DEDE00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
~Suggestion: https://social.technet.microsoft.com/wiki/contents/articles/3336.event-id-1014-microsoft-windows-dns-client.aspx

System.Error: Service Control Manager (26)
~Numéro: 27837
~Date: 11/01/2024 09:35:46 AM
~ID: 7023
~Description: Le service Assistant Connexion avec un compte Microsoft s’est arrêté avec l’erreur : %Assistant Connexion avec un compte Microsoft93

System.Warning: Tcpip (49)
~Numéro: 27773
~Date: 10/31/2024 08:43:45 AM
~ID: 4291
~Description: La carte réseau portant l’adresse matérielle F4-B7-E2-12-32-9E a indiqué une fonctionnalité de fusion de paquets, sans indiquer de prise en charge d’une ou plusieurs fonctionnalités de filtres de réception prérequis (IPv6 0x00000000).

System.Error: NetBT (20)
~Numéro: 27772
~Date: 10/31/2024 08:35:37 AM
~ID: 4311
~Description: L’initialisation a échoué car le pilote de périphérique n’a pas pu être créé. Utilisez la chaîne « %2 » pour identifier l’interface pour laquelle l’initialisation a échoué. Cette chaîne représente l’adresse MAC de l’interface défaillante ou l’identi

System.Warning: Microsoft-Windows-WLAN-AutoConfig (13)
~Numéro: 26911
~Date: 10/19/2024 06:59:17 AM
~ID: 4003
~Description: Le service de configuration automatique de réseau WLAN a détecté une connectivité limitée, en tentant une récupération automatique. Type de récupération : 4 Code d’erreur : 0x0 Motif de déclenchement : 3 Famille IP : 0
~Suggestion: Vérifier les paramètres d'économie d'énergie

System.Warning: disk (7)
~Numéro: 26455
~Date: 10/14/2024 09:37:20 PM
~ID: 51
~Description: Une erreur a été détectée sur le périphérique \Device\Harddisk1\DR1 lors d'une opération de pagination.

System.Error: Microsoft-Windows-NDIS (5)
~Numéro: 25280
~Date: 10/04/2024 04:52:15 PM
~ID: 10317
~Description: Le miniport Remote NDIS Compatible Device, {f0af5e82-6a14-4395-a323-70a6537d5409}, a eu l’événement 74

System.Warning: Microsoft-Windows-Ntfs (2)
~Numéro: 25279
~ID: 140
~Description: 2D:24\Device\HarddiskVolume220xc000000e{a8656a9a-b1ea-23b0-3480-e9e1d98bbbba}8Samsung 13S2 Portable 323
1600000000011E0CE670

System.Warning: Ntfs (1)
~Numéro: 25277
~Date: 10/04/2024 04:52:14 PM
~ID: 50
~Description: {L'écriture différée a échoué} Windows n'a pas pu enregistrer les données du fichier D:\. Les données ont été perdues. Cette erreur peut être due à une panne de votre matériel ou de votre connexion réseau. Essayez d'enregistrer ce fichier à un autre

System.Error: BugCheck (2)
~Numéro: 24461
~Date: 09/23/2024 11:01:24 AM
~ID: 1001
~Description: 0x0000001a (0x0000000000041792, 0xffff810125dd52a8, 0x0000000010000000, 0x0000000000000000)C:\Windows\MEMORY.DMP1bcc2ba8-afa2-4b40-bbc8-c88bb6d2a877

System.Error: volmgr (2)
~Numéro: 24429
~Date: 09/23/2024 11:01:10 AM
~ID: 162
~Description: Nous avons généré le fichier de l’image mémoire.

System.Error: EventLog (2)
~Numéro: 24413
~Date: 09/23/2024 11:01:15 AM
~ID: 6008
~Description: L’arrêt système précédant à 11:49:57 le ‎23/‎09/‎2024 n’était pas prévu.

System.Error: Microsoft-Windows-BitLocker-Driver (1)
~Numéro: 23441
~Date: 09/12/2024 10:32:59 AM
~ID: 24620
~Description: Vérification du volume chiffré : impossible de lire les informations de volume sur F:.

---\\ SCAN ADDITIONNEL (236) - 8s
C:\Users\Didier\AppData\Local\Temp\mat-debug-10068.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-10552.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-10632.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-11400.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-11500.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-11552.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-12744.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-12808.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-1284.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-13808.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-14692.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-1724.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-2552.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-3876.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-3956.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-4720.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-5392.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-5396.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-5908.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-6252.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-6264.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-6476.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-6840.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-6844.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-7032.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-8068.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-8460.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-88.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Temp\mat-debug-9112.log =>.SUP.Temporary.Microsoft
C:\Users\Didier\AppData\Local\Google\Chrome\User Data\Default\File System\000 =>.SUP.Temporary.Chrome
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\Ninite 7Zip CCleaner CDBurnerXP Chrome Installer.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\Ninite 7Zip CCleaner CDBurnerXP Chrome Installer.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\ed542f43-86c2-11ee-8ac3-10604b89e39a\Ninite.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\ed542f43-86c2-11ee-8ac3-10604b89e39a\Ninite.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPWPD.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPWPD.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Malwarebytes\Anti-Malware\mb4uns.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Malwarebytes\Anti-Malware\mb4uns.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\FF001.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\FF001.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds3711734.tmp\jre-8u391-windows-i586-iftw.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds3711734.tmp\jre-8u391-windows-i586-iftw.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSALight\msiinstaller.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSALight\msiinstaller.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\ultracopier_2-2-6-7_fr_336026_32.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\wireguard-installer.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\wireguard-installer.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\WireGuard\wireguard.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\WireGuard\wireguard.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Install\Comptabilité personnelle.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Install\Comptabilité personnelle.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\mes_comptes.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\mes_comptes.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Desktop\office\Office\Setup32.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Desktop\office\Office\Setup32.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:F:\Logiciels\Office 2021 Pro Plus (dernier 18-07-23)\OInstall.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:F:\Logiciels\OFFICE WITH DUOTECH\OInstall.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\installation Office.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\installation Office.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:F:\Logiciels\Installation Office\Office 2013-2021 nouveau logiciel\Office 2013-2021 C2R Install 7.3.0\Microsoft Office 2021 Pro Plus LTSC\OInstall.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Java\jre-1.8\bin\javaw.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Java\jre-1.8\bin\javaw.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Java\jre-1.8\bin\jp2launcher.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Java\jre-1.8\bin\jp2launcher.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Adobe\Acrobat DC\Acrobat\acrodist.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Adobe\Acrobat DC\Acrobat\acrodist.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\Sumatra-Uninstaller.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\Sumatra-Uninstaller.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\setup_Logiciel_de_creation_CEWE.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\setup_Univers_photo_Pixum.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\GalaxyInstaller_PdzLo\GalaxyInstaller.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\GalaxyInstaller_PdzLo\GalaxyInstaller.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Riot Games\Riot Client\UX\RiotClientUx.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Riot Games\Riot Client\UX\RiotClientUx.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Riot Games\League of Legends\Game\League of Legends.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Riot Games\League of Legends\Game\League of Legends.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\ShowKeyPlus1.0.7060\ShowKeyPlus1.0.7060\ShowKeyPlus_x64\ShowKeyPlus_x64\ShowKeyPlus.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds1593761640.tmp\jre-8u401-windows-au.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds1593761640.tmp\jre-8u401-windows-au.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\binaries\ck3.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\Antidote 10\Antidote 10\Antidote_10v1_Patcher_64bits.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\SodaPDFDesktop14.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\SodaPDFDesktop14.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\ProgramData\Soda PDF Desktop 14\Installation\SodaPDFDesktop14.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\ProgramData\Soda PDF Desktop 14\Installation\SodaPDFDesktop14.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\HPPSdr.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\HPEasyStart_16_5_6.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS5347\HP.EasyStart.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS5347\HP.EasyStart.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\HPPSdr.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS6EA0\HP.EasyStart.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS6EA0\HP.EasyStart.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\WinScan2PDF.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\WinScan2PDF.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\{3460B16A-D81F-4681-81AB-25114D7D4D99}\paperscanfree-3.0.127.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\{3460B16A-D81F-4681-81AB-25114D7D4D99}\paperscanfree-3.0.127.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\EaseUS\EaseUS PDF Editor\EaseUS PDF Editor.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\EaseUS\EaseUS PDF Editor\EaseUS PDF Editor.exe.ApplicationCompany =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\is-MBNA3.tmp\Adobe.Acrobat.XI.v11.0.23.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\is-MBNA3.tmp\Adobe.Acrobat.XI.v11.0.23.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds431573781.tmp\jre-8u411-windows-au.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds431573781.tmp\jre-8u411-windows-au.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\Hades II\Ship\Hades2.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\Hades II\Ship\Hades2.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\Persona 4 Golden\P4G.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds-1575188109.tmp\jre-8u421-windows-au.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds-1575188109.tmp\jre-8u421-windows-au.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\GOG_Galaxy_2.0.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\GOG_Galaxy_2.0.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\Install League of Legends euw.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\Install League of Legends euw.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\rufus_4-1_fr_430321.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\rufus_4-1_fr_430321.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\OperaGXSetup.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\HPEasyStart_16_7_5.exe.FriendlyAppName =>.Unsigned
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS5B0E\HP.EasyStart.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS5B0E\HP.EasyStart.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\MBSetup.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\MBSetup.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\adwcleaner.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\adwcleaner.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\adwcleaner(1).exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\adwcleaner(1).exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\ChromeSetup.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\ChromeSetup.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\paperscanfree-3.0.127.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\paperscanfree-3.0.127.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\Ninite 7Zip CCleaner CDBurnerXP Chrome Installer.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\Ninite 7Zip CCleaner CDBurnerXP Chrome Installer.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\ed542f43-86c2-11ee-8ac3-10604b89e39a\Ninite.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\ed542f43-86c2-11ee-8ac3-10604b89e39a\Ninite.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPWPD.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPWPD.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Malwarebytes\Anti-Malware\mb4uns.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Malwarebytes\Anti-Malware\mb4uns.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\FF001.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\FF001.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds3711734.tmp\jre-8u391-windows-i586-iftw.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds3711734.tmp\jre-8u391-windows-i586-iftw.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSALight\msiinstaller.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\UpdaterTemp\HPSALight\msiinstaller.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\ultracopier_2-2-6-7_fr_336026_32.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\wireguard-installer.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\wireguard-installer.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\WireGuard\wireguard.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\WireGuard\wireguard.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Install\Comptabilité personnelle.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Install\Comptabilité personnelle.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\mes_comptes.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\mes_comptes.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Desktop\office\Office\Setup32.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Desktop\office\Office\Setup32.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:F:\Logiciels\Office 2021 Pro Plus (dernier 18-07-23)\OInstall.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:F:\Logiciels\OFFICE WITH DUOTECH\OInstall.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\installation Office.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\installation Office.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:F:\Logiciels\Installation Office\Office 2013-2021 nouveau logiciel\Office 2013-2021 C2R Install 7.3.0\Microsoft Office 2021 Pro Plus LTSC\OInstall.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Java\jre-1.8\bin\javaw.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Java\jre-1.8\bin\javaw.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Java\jre-1.8\bin\jp2launcher.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Java\jre-1.8\bin\jp2launcher.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Adobe\Acrobat DC\Acrobat\acrodist.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Adobe\Acrobat DC\Acrobat\acrodist.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\Sumatra-Uninstaller.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\Sumatra-Uninstaller.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\setup_Logiciel_de_creation_CEWE.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\setup_Univers_photo_Pixum.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\GalaxyInstaller_PdzLo\GalaxyInstaller.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\GalaxyInstaller_PdzLo\GalaxyInstaller.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Riot Games\Riot Client\UX\RiotClientUx.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Riot Games\Riot Client\UX\RiotClientUx.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Riot Games\League of Legends\Game\League of Legends.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Riot Games\League of Legends\Game\League of Legends.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\ShowKeyPlus1.0.7060\ShowKeyPlus1.0.7060\ShowKeyPlus_x64\ShowKeyPlus_x64\ShowKeyPlus.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds1593761640.tmp\jre-8u401-windows-au.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds1593761640.tmp\jre-8u401-windows-au.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\binaries\ck3.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\Antidote 10\Antidote 10\Antidote_10v1_Patcher_64bits.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\SodaPDFDesktop14.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\SodaPDFDesktop14.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\ProgramData\Soda PDF Desktop 14\Installation\SodaPDFDesktop14.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\ProgramData\Soda PDF Desktop 14\Installation\SodaPDFDesktop14.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\HPPSdr.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\HPEasyStart_16_5_6.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS5347\HP.EasyStart.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS5347\HP.EasyStart.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\HPPSdr.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS6EA0\HP.EasyStart.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS6EA0\HP.EasyStart.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\WinScan2PDF.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\WinScan2PDF.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\{3460B16A-D81F-4681-81AB-25114D7D4D99}\paperscanfree-3.0.127.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\{3460B16A-D81F-4681-81AB-25114D7D4D99}\paperscanfree-3.0.127.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\EaseUS\EaseUS PDF Editor\EaseUS PDF Editor.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\EaseUS\EaseUS PDF Editor\EaseUS PDF Editor.exe.ApplicationCompany =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\is-MBNA3.tmp\Adobe.Acrobat.XI.v11.0.23.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\is-MBNA3.tmp\Adobe.Acrobat.XI.v11.0.23.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds431573781.tmp\jre-8u411-windows-au.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds431573781.tmp\jre-8u411-windows-au.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\Hades II\Ship\Hades2.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\Hades II\Ship\Hades2.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Steam\steamapps\common\Persona 4 Golden\P4G.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds-1575188109.tmp\jre-8u421-windows-au.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\jds-1575188109.tmp\jre-8u421-windows-au.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\GOG_Galaxy_2.0.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\GOG_Galaxy_2.0.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\Install League of Legends euw.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\Install League of Legends euw.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\rufus_4-1_fr_430321.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Documents\Logiciels\rufus_4-1_fr_430321.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\OperaGXSetup.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\HPEasyStart_16_7_5.exe.FriendlyAppName =>.Unsigned
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS5B0E\HP.EasyStart.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\AppData\Local\Temp\7zS5B0E\HP.EasyStart.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\MBSetup.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\MBSetup.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\adwcleaner.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\adwcleaner.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\adwcleaner(1).exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\adwcleaner(1).exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\ChromeSetup.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Didier\Downloads\ChromeSetup.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\paperscanfree-3.0.127.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-3262927612-1677394149-2524797181-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\paperscanfree-3.0.127.exe.ApplicationCompany =>.SUP.Orphan.MUICache

---\\ RECAPITULATIF DES ELEMENTS TROUVES (6) - 0s
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/forum/Topic/warning-eventlogapp-evenement-dapplication/ =>Warning.EventLogApp
https://nicolascoolman.eu/forum/Topic/warning-eventlogsys-evenement-systeme/ =>Warning.EventLogSys
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/ =>.SUP.Temporary.Microsoft
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/ =>.SUP.Temporary.Chrome
https://nicolascoolman.eu/forum/Topic/2024/08/26/muicache-cle-de-registre/ =>.SUP.Orphan.MUICache

---\\ NUMEROS DE SÉRIE
[00989AAB57D7FCC43812B213AEDEA41AB6] [07/09/2024] (.Emjysoft.) - C:\Program Files (x86)\Emjysoft\Compta\compta.exe =>.Not verified
[00989AAB57D7FCC43812B213AEDEA41AB6] [19/09/2024] (.Emjysoft.) - C:\Program Files (x86)\Emjysoft\Compta\unins000.exe =>.Not verified
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\ProgramData\Malwarebytes\MBAMService\lkg_db\Actions.dll =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\ProgramData\Malwarebytes\MBAMService\lkg_db\BrowserSDKDLL.dll =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\ProgramData\Malwarebytes\MBAMService\lkg_db\ig.exe =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\ProgramData\Malwarebytes\MBAMService\lkg_db\MBAMCore.dll =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\ProgramData\Malwarebytes\MBAMService\lkg_db\sample.dll =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\ProgramData\Malwarebytes\MBAMService\MBAMCore.dll =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\ProgramData\Malwarebytes\MBAMService\MBAMCore_b.dll =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [09/10/2024] (.Malwarebytes Inc..) - C:\Users\Didier\Documents\Logiciels\MBSetup.exe =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [26/10/2024] (.Malwarebytes Inc..) - C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [26/10/2024] (.Malwarebytes Inc..) - C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mb5uns.exe =>.Malwarebytes Inc.
[00A657F778B31AE523D667131718D16EB2] [26/10/2024] (.Malwarebytes Inc..) - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe =>.Malwarebytes Inc.
[00ADBB744067E4CD3A5FAB7339A8F4CC77] [12/07/2024] (.Proton AG.) - C:\Users\Didier\AppData\Local\Programs\Proton\Drive\ProtonDrive.exe =>.Not verified
[0150ED150B2020AF72ACC168F237CC7A] [27/08/2024] (.Skutta Software GmbH.) - C:\program files (x86)\steam\steamapps\common\wallpaper_engine\bin\ui32.exe =>.Not verified
[0150ED150B2020AF72ACC168F237CC7A] [27/08/2024] (.Skutta Software GmbH.) - C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe =>.Not verified
[01A84E7F9FE48DA3EBEBE2247FF4CC27] [01/11/2017] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe =>.Adobe Systems, Incorporated
[0206F1561473B5AD43B3BD938ECB82BE] [11/07/2024] (.Ascensio System SIA.) - C:\Program Files\ONLYOFFICE\DesktopEditors\DesktopEditors.exe =>.Not verified
[0206F1561473B5AD43B3BD938ECB82BE] [11/07/2024] (.Ascensio System SIA.) - C:\Program Files\ONLYOFFICE\DesktopEditors\updatesvc.exe =>.Not verified
[0206F1561473B5AD43B3BD938ECB82BE] [12/09/2024] (.Ascensio System SIA.) - C:\Program Files\ONLYOFFICE\DesktopEditors\unins000.exe =>.Not verified
[0332386F94B0B6BFD23422B56B8A0C29] [04/03/2024] (.Paradox Interactive AB (publ).) - C:\Users\Didier\AppData\Local\Programs\Paradox Interactive\launcher\bootstrapper-v2.exe =>.Not verified
[0332386F94B0B6BFD23422B56B8A0C29] [15/07/2024] (.Paradox Interactive AB (publ).) - C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe =>.Not verified
[03BD221937F2D796FA7029547B190301] [22/01/2024] (.CHENGDU YIWO Tech Development Co., Ltd..) - C:\Program Files (x86)\EaseUS\EaseUS PDF Editor\EaseUS PDF Editor.exe =>.Not verified
[0407ABB64E9990180789EACB81F5F914] [30/10/2023] (.VideoLAN.) - C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN
[048B08399EC703623C72CD2077AD65D9] [03/10/2023] (.win.rar GmbH.) - C:\Program Files\WinRAR\Rar.exe =>.Not verified
[048B08399EC703623C72CD2077AD65D9] [03/10/2023] (.win.rar GmbH.) - C:\Program Files\WinRAR\uninstall.exe =>.Not verified
[04CB5B116CEE82840C020914B1A4D04D] [18/10/2023] (.TeamViewer Germany GmbH.) - C:\Program Files\TeamViewer\TeamViewer.exe =>.TeamViewer Germany GmbH
[04CB5B116CEE82840C020914B1A4D04D] [18/10/2023] (.TeamViewer Germany GmbH.) - C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer Germany GmbH
[04CB5B116CEE82840C020914B1A4D04D] [18/10/2023] (.TeamViewer Germany GmbH.) - C:\Program Files\TeamViewer\uninstall.exe =>.TeamViewer Germany GmbH
[05AEF466A7BEDF5884758F9C2663647C] [16/07/2024] (.Sega of America, Inc..) - C:\Program Files (x86)\Steam\steamapps\common\Persona 4 Golden\P4G.exe =>.Not verified
[060E2F8F9E1B8BE518D5FE2B69CFCCB1] [05/06/2024] (.Oracle America, Inc..) - C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe =>.Not verified
[060E2F8F9E1B8BE518D5FE2B69CFCCB1] [05/06/2024] (.Oracle America, Inc..) - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Not verified
[0689B3BCEB4409890A32D71976B132A4] [13/09/2024] (.Valve Corp..) - C:\Program Files (x86)\Common Files\Steam\steamservice.exe =>.Valve Corp.
[0689B3BCEB4409890A32D71976B132A4] [13/09/2024] (.Valve Corp..) - C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe =>.Valve Corp.
[0689B3BCEB4409890A32D71976B132A4] [13/09/2024] (.Valve Corp..) - C:\Program Files (x86)\Steam\steam.exe =>.Valve Corp.
[0689B3BCEB4409890A32D71976B132A4] [22/03/2022] (.Valve Corp..) - C:\Program Files (x86)\Steam\uninstall.exe =>.Valve Corp.
[07A61ECFA74CC7B2CEB42035C772BE1D] [15/10/2024] (.Gen Digital Inc..) - C:\Program Files\CCleaner\CCleaner64.exe =>.Not verified
[07A61ECFA74CC7B2CEB42035C772BE1D] [15/10/2024] (.Gen Digital Inc..) - C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe =>.Not verified
[07A61ECFA74CC7B2CEB42035C772BE1D] [15/10/2024] (.Gen Digital Inc..) - C:\Program Files\CCleaner\uninst.exe =>.Not verified
[080379A0E2F7B42EB7045FD0E094BBA4] [04/09/2024] (.HP Inc..) - C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe =>.Not verified
[080379A0E2F7B42EB7045FD0E094BBA4] [04/09/2024] (.HP Inc..) - C:\Program Files\HP\HP Enabling Services\DiagsCap.exe =>.Not verified
[080379A0E2F7B42EB7045FD0E094BBA4] [04/09/2024] (.HP Inc..) - C:\Program Files\HP\HP Enabling Services\NetworkCap.exe =>.Not verified
[080379A0E2F7B42EB7045FD0E094BBA4] [04/09/2024] (.HP Inc..) - C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe =>.Not verified
[0847C0D333578DAFA9934DA5A3788807] [17/11/2019] (.Canneverbe Limited.) - C:\Program Files\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited
[0908FD1E35F8ED62CFAF6FD54C441614] [06/10/2024] (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\Samsung Magician\unins000.exe =>.Not verified
[0908FD1E35F8ED62CFAF6FD54C441614] [23/08/2024] (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe =>.Not verified
[0908FD1E35F8ED62CFAF6FD54C441614] [23/08/2024] (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe =>.Not verified
[0908FD1E35F8ED62CFAF6FD54C441614] [23/08/2024] (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe =>.Not verified
[096DCF2E35C66F13EF95FCC8BFAC3E11] [25/10/2023] (.GOG Sp. z o.o..) - C:\Program Files (x86)\GOG Galaxy\CrashReporter.exe =>.GOG Sp. z o.o.
[098A2F313AB2C29CD42B062A0E467B0C] [26/07/2024] (.Adobe Inc..) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeCleanUpUtility.exe =>.Not verified
[098A2F313AB2C29CD42B062A0E467B0C] [26/07/2024] (.Adobe Inc..) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe =>.Not verified
[098A2F313AB2C29CD42B062A0E467B0C] [26/07/2024] (.Adobe Inc..) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe =>.Not verified
[09AC064D052817FF4D7942EA6976C3D8] [01/11/2017] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Adobe\Acrobat 11.0\PDFMaker\Office\HTML2PDFWrapFor64Bit.exe =>.Adobe Systems, Incorporated
[09AC064D052817FF4D7942EA6976C3D8] [23/09/2012] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll =>.Adobe Systems, Incorporated
[0A4F4B7FAB3BC22098B4C6A9CF3E78DD] [19/06/2018] (.Druide Informatique Inc..) - C:\Program Files (x86)\Druide\Utilitaires\AssistantTelechargement_v6\Bin32\AssistantTelechargement.exe =>.Druide Informatique Inc.
[0A9E62B2C1B2951C32926B4C6478D1DF] [21/07/2023] (.Free Time Software Technology Co., Ltd..) - C:\Program Files (x86)\FormatFactory\FFInst.exe =>.Free Time Software Technology Co., Ltd.
[0A9E62B2C1B2951C32926B4C6478D1DF] [21/07/2023] (.Free Time Software Technology Co., Ltd..) - C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Software Technology Co., Ltd.
[0A9E62B2C1B2951C32926B4C6478D1DF] [21/07/2023] (.Free Time Software Technology Co., Ltd..) - C:\Program Files (x86)\FormatFactory\FormatPlayer.exe =>.Free Time Software Technology Co., Ltd.
[0B22C18BA13224C057F9256DEAA1E430] [01/04/2024] (.Alcorlink Corp..) - C:\Windows\System32\drivers\AmUStorU.sys =>.Not verified
[0B2CE86937CD32092D0C003EFDF5D988] [03/01/2024] (.GOG Sp. z o.o..) - C:\Program Files (x86)\GOG Galaxy\Games\Darkest Dungeon\unins000.exe =>.GOG Sp. z o.o.
[0B2CE86937CD32092D0C003EFDF5D988] [03/01/2024] (.GOG Sp. z o.o..) - C:\Program Files (x86)\GOG Galaxy\Games\Darkest Dungeon\unins001.exe =>.GOG Sp. z o.o.
[0B50CF246B263EFD85A729315158F3FF] [01/11/2024] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\130.0.6723.92\Installer\chrmstp.exe =>.Google LLC
[0B50CF246B263EFD85A729315158F3FF] [01/11/2024] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\130.0.6723.92\Installer\setup.exe =>.Google LLC
[0B50CF246B263EFD85A729315158F3FF] [14/10/2024] (.Google LLC.) - C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe =>.Google LLC
[0B50CF246B263EFD85A729315158F3FF] [14/10/2024] (.Google LLC.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google LLC
[0B50CF246B263EFD85A729315158F3FF] [22/10/2024] (.Google LLC.) - C:\Program Files\Google\Chrome\Temp\scoped_dir14604_1495834994\old_chrome.exe =>.Google LLC
[0B50CF246B263EFD85A729315158F3FF] [29/10/2024] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\130.0.6723.92\elevation_service.exe =>.Google LLC
[0B50CF246B263EFD85A729315158F3FF] [29/10/2024] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC
[0B7593CAAEA54207BBC0C65A153F7601] [01/02/2024] (.FOXIT SOFTWARE INC..) - C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe =>.Not verified
[0B7593CAAEA54207BBC0C65A153F7601] [04/02/2024] (.FOXIT SOFTWARE INC..) - C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe =>.Not verified
[0B7593CAAEA54207BBC0C65A153F7601] [17/03/2024] (.FOXIT SOFTWARE INC..) - C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\unins000.exe =>.Not verified
[0B976DD3814E722F750A35F3BC91BFA0] [08/12/2023] (.GOG sp. z o.o.) - C:\Program Files (x86)\GOG Galaxy\unins000.exe =>.Not verified
[0B976DD3814E722F750A35F3BC91BFA0] [25/10/2023] (.GOG sp. z o.o.) - C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe =>.Not verified
[0B976DD3814E722F750A35F3BC91BFA0] [25/10/2023] (.GOG sp. z o.o.) - C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe =>.Not verified
[0B976DD3814E722F750A35F3BC91BFA0] [25/10/2023] (.GOG sp. z o.o.) - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe =>.Not verified
[0C0712E8A9B1FAED49AD9F9BEF25D0FD] [12/08/2024] (.Proton AG.) - C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe =>.Proton AG
[0C0712E8A9B1FAED49AD9F9BEF25D0FD] [12/08/2024] (.Proton AG.) - C:\Program Files\Proton\VPN\v3.3.2\ProtonVPN.WireGuardService.exe =>.Proton AG
[0C0712E8A9B1FAED49AD9F9BEF25D0FD] [12/08/2024] (.Proton AG.) - C:\Program Files\Proton\VPN\v3.3.2\ProtonVPNService.exe =>.Proton AG
[0C0712E8A9B1FAED49AD9F9BEF25D0FD] [28/09/2024] (.Proton AG.) - C:\Program Files\Proton\VPN\unins000.exe =>.Proton AG
[0C0712E8A9B1FAED49AD9F9BEF25D0FD] [30/07/2024] (.Proton AG.) - C:\Program Files\Proton\VPN\v3.3.2\Resources\ProtonVPN.CalloutDriver.sys =>.Proton AG
[0C834A23A8F6DA243E24A688741CCB0F] [04/09/2024] (.HP Inc..) - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll =>.HP Inc.
[0CB89701EE2FDCD8EF74A9DBA626780A] [31/03/2024] (.Apowersoft Ltd.) - C:\Program Files (x86)\EaseUS\EaseUS PDF Editor\unins000.exe =>.Not verified
[0DE0334681D807F0FE33B3CA718CE5F9] [16/10/2024] (.HP Inc..) - C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe =>.HP Inc.
[0DE0334681D807F0FE33B3CA718CE5F9] [16/10/2024] (.HP Inc..) - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe =>.HP Inc.
[0FE61CE3A48D36CE6BFFF377F7B46A5B] [08/02/2024] (.HP Inc..) - C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe =>.Not verified
[10FB713319027F3F1F1C0667B3C38CA9] [01/11/2017] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated
[10FB713319027F3F1F1C0667B3C38CA9] [01/11/2017] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated
[13222A5DCCF716DF5AF9C87084412DD9] [07/08/2015] (.Realtek Semiconductor Corp.) - C:\Windows\System32\drivers\rt640x64.sys =>.Realtek Semiconductor Corp
[3744F4E381F631AB7BFA66ADDE2787F9] [01/11/2017] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll =>.Adobe Systems, Incorporated
[3744F4E381F631AB7BFA66ADDE2787F9] [01/11/2017] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll =>.Adobe Systems, Incorporated
[62E745E92165213C971F5C490AEA12A5] [07/10/2020] (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvhda64v.sys =>.NVIDIA Corporation
[62E745E92165213C971F5C490AEA12A5] [07/10/2020] (.NVIDIA Corporation.) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation
[62E745E92165213C971F5C490AEA12A5] [07/10/2020] (.NVIDIA Corporation.) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nv3dappshext.dll =>.NVIDIA Corporation
[62E745E92165213C971F5C490AEA12A5] [07/10/2020] (.NVIDIA Corporation.) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nvlddmkm.sys =>.NVIDIA Corporation
[62E745E92165213C971F5C490AEA12A5] [07/10/2020] (.NVIDIA Corporation.) - C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\nvshext.dll =>.NVIDIA Corporation
[67CF0B01CCC274123087C8DD99EE603C] [20/08/2016] (.Texas Instruments, Inc..) - C:\Windows\System32\drivers\TIxHCIlfilter.sys =>.Texas Instruments, Inc.
[67CF0B01CCC274123087C8DD99EE603C] [20/08/2016] (.Texas Instruments, Inc..) - C:\Windows\System32\drivers\TIxHCIufilter.sys =>.Texas Instruments, Inc.
[68ADD7AFFC72183C31865ACD3CB2D70C] [01/11/2017] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrodist.exe =>.Adobe Systems, Incorporated
[68ADD7AFFC72183C31865ACD3CB2D70C] [01/11/2017] (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Adobe\Acrobat 11.0\FormsCentral\FormsCentralForAcrobat.exe =>.Adobe Systems, Incorporated
[68C44BDAD6D73B4462C2E1B22DEA8790] [17/05/2023] (.ArcticLine Software.) - C:\Program Files (x86)\Folder Marker\FolderMarker.exe =>.Not verified
[68C44BDAD6D73B4462C2E1B22DEA8790] [17/05/2023] (.ArcticLine Software.) - C:\Program Files (x86)\Folder Marker\ShellExt64.dll =>.Not verified
[68C44BDAD6D73B4462C2E1B22DEA8790] [19/11/2023] (.ArcticLine Software.) - C:\Program Files (x86)\Folder Marker\unins000.exe =>.Not verified
[6DC3ED4566163E279D2784C99FFFD787] [07/01/2016] (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated

~ Unselected Options: NF,
~ End of the scan, 18507 items in 04mn27s (1643)(0)