Publicité
Publicité
Format du document : text/plain
Prévisualisation
Farbar Recovery Scan Tool (x86) Version: 02.01.2018
Exécuté par HAMARD (08-01-2018 06:03:17)
Exécuté depuis C:\Users\HAMARD\Desktop
Mode d'amorçage: Normal
================== Chercher Fichiers: "SearchAll: ehrec;Fliqlo" =============
Fichier:
========
C:\Windows\assembly\GAC_MSIL\Policy.6.0.ehRecObj\6.1.0.0__31bf3856ad364e35\Policy.6.0.ehRecObj.dll
[2017-12-04 18:43][2017-12-04 18:43] 000005632 _____ (Microsoft Corporation) 841736FAB112AC493646E4399E684D38 [Fichier non signé]
C:\Users\HAMARD\AppData\Roaming\Microsoft\Windows\Recent\fliqlo-7468-jetelecharge.lnk
[2017-12-29 07:16][2017-12-29 07:16] 000000690 _____ () 94E5CE22FEC1604EA66CE97F26AAE989 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.CAT
[2017-12-20 16:15][2017-12-20 16:15] 000024064 _____ () 6D79D3BD00F91C2FB68D5AF9032F9AA1 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.DE
[2017-12-20 16:15][2017-12-20 16:15] 000024576 _____ () C4DE8CEF8B75522D71A066434D3CC5BD [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.ES
[2017-12-20 16:15][2017-12-20 16:15] 000024576 _____ () 8B0DF5DAF1789E25B26DE0282BC5A953 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.exe
[2017-12-20 16:15][2017-12-20 16:15] 004048587 _____ () 677A21918514C60EFAAD25BC52B68E93 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.FR
[2017-12-20 16:15][2017-12-20 16:15] 000024576 _____ () E45075F00EBAA61B08CA7FD6BBB3A92B [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.JPN
[2017-12-20 16:15][2017-12-20 16:15] 000018944 _____ () 444EAB3BDF58C885039FBFECF358F950 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.NL
[2017-12-20 16:15][2017-12-20 16:15] 000023552 _____ () 3EDD41D95D6954D9613A3B45EC2186D5 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.PT
[2017-12-20 16:15][2017-12-20 16:15] 000024576 _____ () FADAE26394DEA62F1947389EF629A2FE [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.CAT
[2016-08-24 05:45][2016-08-24 05:45] 000024064 _____ () 6D79D3BD00F91C2FB68D5AF9032F9AA1 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.DE
[2016-08-24 05:45][2016-08-24 05:45] 000024576 _____ () C4DE8CEF8B75522D71A066434D3CC5BD [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.ES
[2016-08-24 05:45][2016-08-24 05:45] 000024576 _____ () 8B0DF5DAF1789E25B26DE0282BC5A953 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.exe
[2016-08-24 05:45][2016-08-24 05:45] 004048587 _____ () 677A21918514C60EFAAD25BC52B68E93 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.FR
[2016-08-24 05:45][2016-08-24 05:45] 000024576 _____ () E45075F00EBAA61B08CA7FD6BBB3A92B [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.JPN
[2016-08-24 05:45][2016-08-24 05:45] 000018944 _____ () 444EAB3BDF58C885039FBFECF358F950 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.NL
[2016-08-24 05:45][2016-08-24 05:45] 000023552 _____ () 3EDD41D95D6954D9613A3B45EC2186D5 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.PT
[2016-08-24 05:45][2016-08-24 05:45] 000024576 _____ () FADAE26394DEA62F1947389EF629A2FE [Fichier non signé]
dossier:
========
2017-12-04 18:43 - 2017-12-04 18:43 _____ C:\Windows\assembly\GAC_MSIL\Policy.6.0.ehRecObj
Registre:
========
===================== Résultats de recherche pour "ehrec" ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D44CBB4F-743E-4818-8077-C47F666CA7EE}\ProgID]
""="ehRecvr.BackgroundScanner.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D44CBB4F-743E-4818-8077-C47F666CA7EE}\VersionIndependentProgID]
""="ehRecvr.BackgroundScanner"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA23DFB6-E23F-4b94-B1A4-095D6E84493C}\ProgID]
""="ehRecvr.EnumRecorderGraph.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA23DFB6-E23F-4b94-B1A4-095D6E84493C}\VersionIndependentProgID]
""="ehRecvr.EnumRecorderGraph"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F4396DC6-E851-4D3A-8D01-34E6949F3500}\ProgID]
""="ehRecvr.RecorderMgr.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F4396DC6-E851-4D3A-8D01-34E6949F3500}\VersionIndependentProgID]
""="ehRecvr.RecorderMgr"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.BackgroundScanner]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.BackgroundScanner\CurVer]
""="ehRecvr.BackgroundScanner.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.BackgroundScanner.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.EnumRecorderGraph]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.EnumRecorderGraph\CurVer]
""="ehRecvr.EnumRecorderGraph.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.EnumRecorderGraph.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.Recorder]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.Recorder.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.RecorderMgr]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.RecorderMgr\CurVer]
""="ehRecvr.RecorderMgr.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.RecorderMgr.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Advertised\Policy\AppPatch\v2.0.50727.00000\ehrec.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Advertised\Policy\AppPatch\v2.0.50727.00000\ehrec.exe\{44D9F380-9050-4365-AA06-DA121F6F2B7D}]
"Internal Name"="eHRec"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Policy\AppPatch\v2.0.50727.00000\ehrec.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Policy\AppPatch\v2.0.50727.00000\ehrec.exe\{44D9F380-9050-4365-AA06-DA121F6F2B7D}]
"Internal Name"="eHRec"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Policy\AppPatch\v4.0.30319.00000\ehrec.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Policy\AppPatch\v4.0.30319.00000\ehrec.exe\{44D9F380-9050-4365-AA06-DA121F6F2B7D}]
"Internal Name"="eHRec"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\PublisherPolicy\Default\Policy.6.0.ehRecObj__31bf3856ad364e35]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\PublisherPolicy\Default\Policy.6.0.ehRecObj__31bf3856ad364e35\1\6.1.0.0\14]
"ConfigFilePath"="C:\WINDOWS\assembly\GAC_MSIL\Policy.6.0.ehRecObj\6.1.0.0__31bf3856ad364e35\Policy.6.0.ehRecObj.config"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\PublisherPolicy\Default\Policy.6.0.ehRecObj__31bf3856ad364e35\1\6.1.0.0\35]
"ConfigFilePath"="C:\WINDOWS\assembly\GAC_MSIL\Policy.6.0.ehRecObj\6.1.0.0__31bf3856ad364e35\Policy.6.0.ehRecObj.config"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\PublisherPolicy\Default\Policy.6.0.ehRecObj__31bf3856ad364e35\1\6.1.0.0\6]
"ConfigFilePath"="C:\Windows\assembly\GAC_MSIL\Policy.6.0.ehRecObj\6.1.0.0__31bf3856ad364e35\Policy.6.0.ehRecObj.config"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09FFC007-9CBA-457D-AD27-E84F4A06394E}]
"Source"="$(@%systemRoot%\ehome\ehrecvr.exe,-104)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09FFC007-9CBA-457D-AD27-E84F4A06394E}]
"Description"="$(@%systemRoot%\ehome\ehrecvr.exe,-103)"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Media Center\ehRecvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Media Center\ehRecvr]
"EventMessageFile"="%SystemRoot%\ehome\ehRecvr.exe"
===================== Résultats de recherche pour "Fliqlo" ==========
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\aa41b471_0]
""="{2}.\\?\hdaudio#func_01&ven_10ec&dev_0888&subsys_10192956&rev_1001#{6994ad04-93ef-11d0-a3cc-00a0c9223196}\elineouttopo/00010001|\Device\HarddiskVolume1\Windows\System32\Fliqlo.scr%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{07A9D9C5-58BD-470A-96EB-64DDCEA07752}]
"AppId"="F:\Sauvegarde aout 2017\fliqlo-7468-jetelecharge\Fliqlo 1.3.3\Fliqlo Setup.exe"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{45075323-5B60-42C6-B0F1-0E36FA7259D4}]
"AppId"="C:\Users\HAMARD\Documents\fliqlo-7468-jetelecharge\Fliqlo 1.3.3\Fliqlo Setup.exe"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Users\HAMARD\Documents\fliqlo-7468-jetelecharge\Fliqlo 1.3.3\Fliqlo Setup.exe"="0x5341435001000000000000000700000028000000CB584800C888080001000000000000000000000A612200009FDD441214A0D20100000000000000000200000028000000000000000000000000000000000000000000000000000000FD356705000000000800000008000000"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Windows\System32\Fliqlo.scr"="0x534143500100000000000000070000002800000000600A00B96C0A00030000000000000000000106710200004DAE7E0C1939D301000000000000000002000000280000000000000000000000000000000000000000000000000000004F050000000000000100000001000000"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"F:\Sauvegarde aout 2017\fliqlo-7468-jetelecharge\Fliqlo 1.3.3\Fliqlo Setup.exe"="0x5341435001000000000000000700000028000000CB584800C888080001000000000000000000000A612200004DAE7E0C1939D30100000000000000000200000028000000000000000000000000000000000000000000000000000000D07D6003000000000100000001000000"
====== Fin de Chercher ======
Exécuté par HAMARD (08-01-2018 06:03:17)
Exécuté depuis C:\Users\HAMARD\Desktop
Mode d'amorçage: Normal
================== Chercher Fichiers: "SearchAll: ehrec;Fliqlo" =============
Fichier:
========
C:\Windows\assembly\GAC_MSIL\Policy.6.0.ehRecObj\6.1.0.0__31bf3856ad364e35\Policy.6.0.ehRecObj.dll
[2017-12-04 18:43][2017-12-04 18:43] 000005632 _____ (Microsoft Corporation) 841736FAB112AC493646E4399E684D38 [Fichier non signé]
C:\Users\HAMARD\AppData\Roaming\Microsoft\Windows\Recent\fliqlo-7468-jetelecharge.lnk
[2017-12-29 07:16][2017-12-29 07:16] 000000690 _____ () 94E5CE22FEC1604EA66CE97F26AAE989 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.CAT
[2017-12-20 16:15][2017-12-20 16:15] 000024064 _____ () 6D79D3BD00F91C2FB68D5AF9032F9AA1 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.DE
[2017-12-20 16:15][2017-12-20 16:15] 000024576 _____ () C4DE8CEF8B75522D71A066434D3CC5BD [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.ES
[2017-12-20 16:15][2017-12-20 16:15] 000024576 _____ () 8B0DF5DAF1789E25B26DE0282BC5A953 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.exe
[2017-12-20 16:15][2017-12-20 16:15] 004048587 _____ () 677A21918514C60EFAAD25BC52B68E93 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.FR
[2017-12-20 16:15][2017-12-20 16:15] 000024576 _____ () E45075F00EBAA61B08CA7FD6BBB3A92B [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.JPN
[2017-12-20 16:15][2017-12-20 16:15] 000018944 _____ () 444EAB3BDF58C885039FBFECF358F950 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.NL
[2017-12-20 16:15][2017-12-20 16:15] 000023552 _____ () 3EDD41D95D6954D9613A3B45EC2186D5 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF2\Fliqlo Setup.PT
[2017-12-20 16:15][2017-12-20 16:15] 000024576 _____ () FADAE26394DEA62F1947389EF629A2FE [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.CAT
[2016-08-24 05:45][2016-08-24 05:45] 000024064 _____ () 6D79D3BD00F91C2FB68D5AF9032F9AA1 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.DE
[2016-08-24 05:45][2016-08-24 05:45] 000024576 _____ () C4DE8CEF8B75522D71A066434D3CC5BD [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.ES
[2016-08-24 05:45][2016-08-24 05:45] 000024576 _____ () 8B0DF5DAF1789E25B26DE0282BC5A953 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.exe
[2016-08-24 05:45][2016-08-24 05:45] 004048587 _____ () 677A21918514C60EFAAD25BC52B68E93 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.FR
[2016-08-24 05:45][2016-08-24 05:45] 000024576 _____ () E45075F00EBAA61B08CA7FD6BBB3A92B [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.JPN
[2016-08-24 05:45][2016-08-24 05:45] 000018944 _____ () 444EAB3BDF58C885039FBFECF358F950 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.NL
[2016-08-24 05:45][2016-08-24 05:45] 000023552 _____ () 3EDD41D95D6954D9613A3B45EC2186D5 [Fichier non signé]
C:\Users\HAMARD\AppData\Local\Screentime\STF1\Fliqlo Setup.PT
[2016-08-24 05:45][2016-08-24 05:45] 000024576 _____ () FADAE26394DEA62F1947389EF629A2FE [Fichier non signé]
dossier:
========
2017-12-04 18:43 - 2017-12-04 18:43 _____ C:\Windows\assembly\GAC_MSIL\Policy.6.0.ehRecObj
Registre:
========
===================== Résultats de recherche pour "ehrec" ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D44CBB4F-743E-4818-8077-C47F666CA7EE}\ProgID]
""="ehRecvr.BackgroundScanner.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D44CBB4F-743E-4818-8077-C47F666CA7EE}\VersionIndependentProgID]
""="ehRecvr.BackgroundScanner"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA23DFB6-E23F-4b94-B1A4-095D6E84493C}\ProgID]
""="ehRecvr.EnumRecorderGraph.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA23DFB6-E23F-4b94-B1A4-095D6E84493C}\VersionIndependentProgID]
""="ehRecvr.EnumRecorderGraph"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F4396DC6-E851-4D3A-8D01-34E6949F3500}\ProgID]
""="ehRecvr.RecorderMgr.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F4396DC6-E851-4D3A-8D01-34E6949F3500}\VersionIndependentProgID]
""="ehRecvr.RecorderMgr"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.BackgroundScanner]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.BackgroundScanner\CurVer]
""="ehRecvr.BackgroundScanner.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.BackgroundScanner.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.EnumRecorderGraph]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.EnumRecorderGraph\CurVer]
""="ehRecvr.EnumRecorderGraph.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.EnumRecorderGraph.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.Recorder]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.Recorder.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.RecorderMgr]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.RecorderMgr\CurVer]
""="ehRecvr.RecorderMgr.1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ehRecvr.RecorderMgr.1]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Advertised\Policy\AppPatch\v2.0.50727.00000\ehrec.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Advertised\Policy\AppPatch\v2.0.50727.00000\ehrec.exe\{44D9F380-9050-4365-AA06-DA121F6F2B7D}]
"Internal Name"="eHRec"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Policy\AppPatch\v2.0.50727.00000\ehrec.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Policy\AppPatch\v2.0.50727.00000\ehrec.exe\{44D9F380-9050-4365-AA06-DA121F6F2B7D}]
"Internal Name"="eHRec"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Policy\AppPatch\v4.0.30319.00000\ehrec.exe]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\Policy\AppPatch\v4.0.30319.00000\ehrec.exe\{44D9F380-9050-4365-AA06-DA121F6F2B7D}]
"Internal Name"="eHRec"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\PublisherPolicy\Default\Policy.6.0.ehRecObj__31bf3856ad364e35]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\PublisherPolicy\Default\Policy.6.0.ehRecObj__31bf3856ad364e35\1\6.1.0.0\14]
"ConfigFilePath"="C:\WINDOWS\assembly\GAC_MSIL\Policy.6.0.ehRecObj\6.1.0.0__31bf3856ad364e35\Policy.6.0.ehRecObj.config"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\PublisherPolicy\Default\Policy.6.0.ehRecObj__31bf3856ad364e35\1\6.1.0.0\35]
"ConfigFilePath"="C:\WINDOWS\assembly\GAC_MSIL\Policy.6.0.ehRecObj\6.1.0.0__31bf3856ad364e35\Policy.6.0.ehRecObj.config"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Fusion\PublisherPolicy\Default\Policy.6.0.ehRecObj__31bf3856ad364e35\1\6.1.0.0\6]
"ConfigFilePath"="C:\Windows\assembly\GAC_MSIL\Policy.6.0.ehRecObj\6.1.0.0__31bf3856ad364e35\Policy.6.0.ehRecObj.config"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09FFC007-9CBA-457D-AD27-E84F4A06394E}]
"Source"="$(@%systemRoot%\ehome\ehrecvr.exe,-104)"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09FFC007-9CBA-457D-AD27-E84F4A06394E}]
"Description"="$(@%systemRoot%\ehome\ehrecvr.exe,-103)"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Media Center\ehRecvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Media Center\ehRecvr]
"EventMessageFile"="%SystemRoot%\ehome\ehRecvr.exe"
===================== Résultats de recherche pour "Fliqlo" ==========
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\aa41b471_0]
""="{2}.\\?\hdaudio#func_01&ven_10ec&dev_0888&subsys_10192956&rev_1001#{6994ad04-93ef-11d0-a3cc-00a0c9223196}\elineouttopo/00010001|\Device\HarddiskVolume1\Windows\System32\Fliqlo.scr%b{00000000-0000-0000-0000-000000000000}"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{07A9D9C5-58BD-470A-96EB-64DDCEA07752}]
"AppId"="F:\Sauvegarde aout 2017\fliqlo-7468-jetelecharge\Fliqlo 1.3.3\Fliqlo Setup.exe"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{45075323-5B60-42C6-B0F1-0E36FA7259D4}]
"AppId"="C:\Users\HAMARD\Documents\fliqlo-7468-jetelecharge\Fliqlo 1.3.3\Fliqlo Setup.exe"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Users\HAMARD\Documents\fliqlo-7468-jetelecharge\Fliqlo 1.3.3\Fliqlo Setup.exe"="0x5341435001000000000000000700000028000000CB584800C888080001000000000000000000000A612200009FDD441214A0D20100000000000000000200000028000000000000000000000000000000000000000000000000000000FD356705000000000800000008000000"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Windows\System32\Fliqlo.scr"="0x534143500100000000000000070000002800000000600A00B96C0A00030000000000000000000106710200004DAE7E0C1939D301000000000000000002000000280000000000000000000000000000000000000000000000000000004F050000000000000100000001000000"
[HKEY_USERS\S-1-5-21-3623109357-3433459825-984393507-1001\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"F:\Sauvegarde aout 2017\fliqlo-7468-jetelecharge\Fliqlo 1.3.3\Fliqlo Setup.exe"="0x5341435001000000000000000700000028000000CB584800C888080001000000000000000000000A612200004DAE7E0C1939D30100000000000000000200000028000000000000000000000000000000000000000000000000000000D07D6003000000000100000001000000"
====== Fin de Chercher ======