Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-10-2021
Exécuté par JessManleMeq (administrateur) sur INFOSERVEUR (Hewlett-Packard HP Compaq dc5800 Small Form Factor) (29-10-2021 09:21:15)
Exécuté depuis C:\Users\JessManleMeq\Desktop
Profils chargés: JessManleMeq
Platform: Microsoft Windows 10 Entreprise LTSC Version 1809 17763.2029 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Beijing Qihu Technology Co., Ltd. -> Qihu 360 Software Co., Ltd.) C:\Program Files (x86)\360\Total Security\safemon\chrome\360webshield.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(Greatis Software LLC -> Greatis Software, LLC) C:\Windows\Y891NREA60\SU10Guard.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\WINWORD.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Nitro PDF Software -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro PDF Software -> Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
(Tonec Inc. -> Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe
(Tonec Inc. -> Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2>
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Corel Update Helper] => c:\Program Files\Corel\Corel VideoStudio X9\pua.exe [2012104 2016-03-01] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2261600 2021-05-12] (voidtools -> voidtools)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Windows Updates Service] => C:\Users\JessManleMeq\AppData\Roaming\Windows Updates Files\Windows Updates Service.vbe [1000 2021-06-15] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Cybera Client] => "C:\Program Files (x86)\Cybera Client\cybcli.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Google Update] => C:\Users\JessManleMeq\AppData\Local\Google\Update\1.3.35.451\GoogleUpdateCore.exe [217544 2021-10-04] (Google LLC -> Google LLC)
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5451576 2021-10-29] (Tonec Inc. -> Tonec Inc.) [Fichier non signé]
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {011e28ce-f993-11eb-af1d-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {08bc5650-e4a5-11eb-af0b-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {0e15b68a-e4c8-11eb-af0b-0026553eb10a} - "G:\Startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {205934c6-37ac-11ec-af67-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {2163b9c4-0bd3-11ec-af31-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {31be21cf-b7e1-11eb-aee9-0026553eb10a} - "G:\AutoRun.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {3e29bddf-1aeb-11ec-af40-0026553eb10a} - "G:\Startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {47ae6d6a-0e9a-11ec-af33-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {51893252-101f-11ec-af33-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {51893272-101f-11ec-af33-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {580cfacd-162c-11ec-af39-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {8b18e380-cc3b-11eb-aefa-0026553eb10a} - "G:\Windows/AutoRun.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {8bce056a-1d95-11ec-af42-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {98761586-095a-11ec-af2d-0026553eb10a} - "I:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {a41920a0-ca6e-11eb-aef7-0026553eb10a} - "G:\AutoRun.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {bcb94acb-d4c0-11eb-af01-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c09971ee-e2e3-11eb-af0a-0026553eb10a} - "G:\startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c0cc89c4-141b-11ec-af37-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c776e33e-34ef-11ec-af64-0026553eb10a} - "I:\Startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {d655041a-cdba-11eb-aefa-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {d88e384a-c9a6-11eb-aef4-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e1e9d524-c5d6-11eb-aef1-0026553eb10a} - "G:\.\Setup.exe" AUTORUN=1
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e38f2d97-be1b-11eb-aeee-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e38f2dde-be1b-11eb-aeee-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e4c5c0f8-bd2a-11eb-aeee-0026553eb10a} - "G:\SETUP.EXE"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e4c5c271-bd2a-11eb-aeee-0026553eb10a} - "G:\STARTUP.EXE"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e75d63f3-1f92-11ec-af44-0026553eb10a} - "G:\Setup.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e8886e93-1ed8-11ec-af43-0026553eb10a} - "G:\OPPODriver.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e8886e9f-1ed8-11ec-af43-0026553eb10a} - "G:\OPPODriver.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {eb7325bb-ead4-11eb-af0f-0026553eb10a} - "I:\startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {f87d3431-bc96-11eb-aeee-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {f8d149f9-c03b-11eb-aef1-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKLM\...\Windows x64\Print Processors\Canon MG8200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAV.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG8200 series: C:\Windows\system32\CNMLMAV.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\Windows\system32\CNAS0MOK.DLL [1282048 2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\EPSON L380 Series 64MonitorBE: C:\Windows\system32\E_YLMBRQE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\system32\nitrolocalmon2.dll [29704 2012-03-25] (Nitro PDF Software -> Nitro PDF Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-07] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\advpack.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
AppInit_DLLs-x32: C:\PROGRA~1\COMMON~1\System\symsrv.dll => C:\Program Files\Common Files\system\symsrv.dll [73436 2021-10-28] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05E750C4-F318-4C8C-89C0-47BCA3D5ADBC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002UA => C:\Users\JessManleMeq\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {0C0308D1-D25B-41F4-929F-25DE4B752EEB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002Core => C:\Users\JessManleMeq\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {0F4A4C0D-90F6-4DF5-9576-95F5D3235423} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {214CB9FB-7892-4302-B300-B3350EBDAFA3} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {318839F8-25DF-47A5-BE02-BFD97FD77426} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3B9AF75F-30D6-4AC6-BA04-96925D2F7DBF} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {44100A67-3423-4B99-8EA1-6CC41716E1AE} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {50D836AA-669C-4A70-98BB-E16D817D8609} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-07-07] (Adobe Inc. -> Adobe)
Task: {5E2AF35A-6ACC-4EE8-8F9B-486FB7635C46} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {6571B773-6223-4724-B2BC-D238DBCEA186} - System32\Tasks\CCleanerSkipUAC - JessManleMeq => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7587860D-01C0-4B88-8BD0-FFD91A14CB56} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {86180294-B37A-4B7E-BFBD-97D9CED5B7D5} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
Task: {8AFC38FD-5295-4C4D-9FE1-44ABDED9411C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {94C5DBFD-D1F8-4D25-A65A-0EF6CD09288B} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
Task: {99959940-39A5-4B10-9EB3-53BC7DB645C8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {A57BFC7F-AF2E-492F-B6D2-10C218D4FAE7} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml"
Task: {B3C49DAC-6507-414B-BF65-D343AB303627} - System32\Tasks\Uninstaller_SkipUac_JessManleMeq => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5276944 2018-11-27] (IObit Information Technology -> IObit)
Task: {CEA7C566-5D8C-4FA6-801B-61F2E06D714E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe
Task: {D0E1293C-DD28-433B-BDA9-4BC9B1D7F192} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {D6053C8B-7026-4107-8317-F45718EA2F7D} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
Task: {D774A178-031C-4E03-82D6-C06EBDACBD99} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {DE9C1265-8553-4CDF-82C2-448658C51095} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EA0A7FB3-9F0B-4380-81E6-E6F087037619} - System32\Tasks\Opera scheduled Autoupdate 1632481439 => C:\Users\JessManleMeq\AppData\Local\Programs\Opera\launcher.exe
"C:\Windows\System32\Tasks\Microsoft\Windows\Google" n'a pas pu être déverrouillé. <==== ATTENTION
"C:\Windows\System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIW" a été déverrouillé. <==== ATTENTION
Task: {F1E3C439-AD68-4F6E-9279-1323735B24BB} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIW => C:\Windows\SysWOW64\MUI\dispspec\H-1-75-52\IS_1.3.85.13.exe (Accès refusé) <==== ATTENTION
Task: {F20F792D-926A-4670-BC06-AC67B99D4266} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {FA448C76-724D-4700-BF97-0B65CF80D53B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
Task: {FA97F8B9-3C8F-4733-BBF2-F08BA28C110D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF7897FA-0844-4C6C-BD82-D6D248E53809} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2021-07-07] (Adobe Inc. -> Adobe)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [176589 2006-02-28] (Apple Computer, Inc.) [Fichier non signé]
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 196.192.32.5 41.188.9.130
Tcpip\..\Interfaces\{3f1311cd-7629-4c3f-ae11-3ba00c7644d8}: [DhcpNameServer] 192.168.0.1 196.192.32.5 41.188.9.130
Tcpip\..\Interfaces\{b803e9c1-95a5-46ba-8bcd-224a617ac644}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d6fa44ea-a082-405d-b924-0a63b242f2d4}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Profile: C:\Users\JessManleMeq\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-12]
Edge Extension: (IDM Integration Module) - C:\Users\JessManleMeq\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2021-07-19]
Edge HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2021-07-17]
Edge HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
FireFox:
========
FF DefaultProfile: ds9jf3p5.default
FF ProfilePath: C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default [2021-10-28]
FF Notifications: Mozilla\Firefox\Profiles\ds9jf3p5.default -> hxxps//www.instagram.com; hxxps//www.hutgaming.com; hxxps//thehugejournal.com; hxxps//talkmill.com.ng; hxxps//txxx.com; hxxps//upornia.com; hxxps//fr.biguz.net
FF Extension: (Social Video Downloader) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{00e68183-fc7d-4a91-b5cc-f7f8272386db}.xpi [2021-07-19]
FF Extension: (Flash Player 2021) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{6cc0a66e-ae3d-4cd8-9a03-5cd93b392903}.xpi [2021-09-23]
FF Extension: (Videos Downloader pour Facebook) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{814a14eb-b15c-49d7-ad8c-302875a54b45}.xpi [2021-07-22]
FF Extension: (Video DownloadHelper) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-19]
FF Extension: (IDM CC) - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5 [2021-10-03] [] [non signé]
FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] []
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2021-07-07] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) [Fichier non signé]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2021-07-07] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-08-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-1599086502-872597112-702781568-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\JessManleMeq\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies SF -> Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - d:\Program Files (x86)\Mozilla Firefox\firefox.exe
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-branding.js [2012-01-29]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-l10n.js [2012-01-29]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox.js [2012-01-29]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\reporter.js [2012-01-29]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default [2021-10-29]
CHR Notifications: Default -> hxxps//agetintopc.com; hxxps//en.y2mate.guru; hxxps//icrypto.media; hxxps//noirporno.com; hxxps//web.skype.com; hxxps//wholehugewords.com; hxxps//www.facebook.com; hxxps//www.femmeactuelle.fr; hxxps//www.iskysoft.com; hxxps//www.mp3juices.cc; hxxps//www.santemagazine.fr; hxxps//www.y2mate.com
CHR Extension: (Slides) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-20]
CHR Extension: (Docs) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-07-20]
CHR Extension: (Google Drive) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-07-20]
CHR Extension: (YouTube) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-07-20]
CHR Extension: (Sheets) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-13]
CHR Extension: (360 Internet Protection) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2021-09-17]
CHR Extension: (IDM Integration Module) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2021-10-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-20]
CHR Extension: (Gmail) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-07-20]
CHR Extension: (Chrome Media Router) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-20]
CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-06]
CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-10-06]
CHR NewTab: Profile 1 -> "active": true,
"entry": "chrome-extension://imhlianhlhdicjchlbmbfaefhhjencbe/newtab.html"
CHR Extension: (Slides) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-05]
CHR Extension: (Docs) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-05]
CHR Extension: (Google Drive) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-05]
CHR Extension: (OrangeMonkey) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ekmeppjgajofkpiofbebgcbohbmfldaf [2021-08-05]
CHR Extension: (Sheets) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-05]
CHR Extension: (NewTab) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\imhlianhlhdicjchlbmbfaefhhjencbe [2021-08-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-05]
CHR Extension: (Chrome Media Router) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-05]
CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-06]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
CHR HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ekmeppjgajofkpiofbebgcbohbmfldaf]
CHR HKLM-x32\...\Chrome\Extension: [ekmeppjgajofkpiofbebgcbohbmfldaf]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh]
CHR HKLM-x32\...\Chrome\Extension: [imhlianhlhdicjchlbmbfaefhhjencbe]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-07-07] (Adobe Inc. -> Adobe)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2016-09-20] (Nero AG -> Nero AG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [153360 2018-09-25] (IObit Information Technology -> IObit)
R2 NitroDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe [204296 2012-03-25] (Nitro PDF Software -> Nitro PDF Software)
R2 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [69640 2012-03-26] (Nitro PDF Software -> Nalpeiron Ltd.)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6486232 2021-07-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SU10Guard; C:\Windows\Y891NREA60\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-04-11] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [199888 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [95232 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [58200 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S0 360elam64; C:\Windows\System32\DRIVERS\360elam64.sys [17192 2021-08-25] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn)
R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [494080 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S4 360Hvm; C:\Windows\System32\Drivers\360Hvm64.sys [334336 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360安全中心)
R1 360netmon; C:\Windows\System32\DRIVERS\360netmon.sys [96424 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [232688 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S1 deeuiznu; C:\Windows\system32\drivers\deeuiznu.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 e1express; C:\Windows\System32\drivers\e1e6032e.sys [300544 2018-09-15] (Microsoft Windows -> Intel Corporation)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-02] (3am.com(Test) -> HTC, Corporation)
S3 htcnprot; C:\Windows\system32\DRIVERS\htcnprot.sys [36928 2013-10-17] (HTC Corp. -> Windows (R) Win 7 DDK provider)
S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (Sqa.com(Test) -> QUALCOMM Incorporated)
S1 ifhckfof; C:\Windows\system32\drivers\ifhckfof.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37184 2018-10-16] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [43392 2018-10-16] (IObit Information Technology -> IObit)
S1 pqkjqgmz; C:\Windows\system32\drivers\pqkjqgmz.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 qcusbnet; C:\Windows\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S1 sgliyhtq; C:\Windows\system32\drivers\sgliyhtq.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2021-10-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-10-24] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-24] (Microsoft Windows -> Microsoft Corporation)
S1 wqqcvnek; C:\Windows\system32\drivers\wqqcvnek.sys [50400 2021-10-29] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [282112 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S1 360Box64; system32\DRIVERS\360Box64.sys [X]
S1 ahdmtgpr; \??\C:\Windows\system32\drivers\ahdmtgpr.sys [X]
S1 amebuxne; \??\C:\Windows\system32\drivers\amebuxne.sys [X]
S1 arnskfsi; \??\C:\Windows\system32\drivers\arnskfsi.sys [X]
S1 aubgaryn; \??\C:\Windows\system32\drivers\aubgaryn.sys [X]
S1 bdepluzh; \??\C:\Windows\system32\drivers\bdepluzh.sys [X]
S1 cwbdyoqm; \??\C:\Windows\system32\drivers\cwbdyoqm.sys [X]
S1 fxeblscf; \??\C:\Windows\system32\drivers\fxeblscf.sys [X]
S1 fxgdceys; \??\C:\Windows\system32\drivers\fxgdceys.sys [X]
S1 ghkbdcmx; \??\C:\Windows\system32\drivers\ghkbdcmx.sys [X]
S1 hexasahd; \??\C:\Windows\system32\drivers\hexasahd.sys [X]
S1 knkcihgh; \??\C:\Windows\system32\drivers\knkcihgh.sys [X]
S1 naxgdefv; \??\C:\Windows\system32\drivers\naxgdefv.sys [X]
S1 nuuewxsd; \??\C:\Windows\system32\drivers\nuuewxsd.sys [X]
S1 ozseddjr; \??\C:\Windows\system32\drivers\ozseddjr.sys [X]
S1 tjsdkjoi; \??\C:\Windows\system32\drivers\tjsdkjoi.sys [X]
S1 vghojpxv; \??\C:\Windows\system32\drivers\vghojpxv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-29 09:23 - 2021-10-29 09:24 - 066236123 _____ C:\Users\JessManleMeq\Desktop\Les nouveautés dans Photoshop CC 2022 (mise à jour octobre 2021) - YouTube.mkv
2021-10-29 09:21 - 2021-10-29 09:23 - 000035648 _____ C:\Users\JessManleMeq\Desktop\FRST.txt
2021-10-29 09:20 - 2021-10-29 09:22 - 000000000 ____D C:\FRST
2021-10-29 09:19 - 2021-10-29 09:17 - 002310656 _____ (Farbar) C:\Users\JessManleMeq\Desktop\FRST64.exe
2021-10-29 09:05 - 2021-10-29 09:05 - 000001078 _____ C:\Users\JessManleMeq\Desktop\Internet Download Manager.lnk
2021-10-28 19:57 - 2021-10-28 20:23 - 000000000 ____D C:\Users\JessManleMeq\Desktop\image mariage
2021-10-28 18:06 - 2021-10-28 18:06 - 010130134 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - comment formater un pc windows 7 facilement et rapide_480p.mp4
2021-10-28 18:04 - 2021-10-28 18:04 - 003685113 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - TUTO 1 Comment supprimer un système dexploitation de son Ordinateur SANS LOGICIEL _480p (1).mp4
2021-10-28 18:02 - 2021-10-28 18:02 - 003685113 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - TUTO 1 Comment supprimer un système dexploitation de son Ordinateur SANS LOGICIEL _480p.mp4
2021-10-28 17:36 - 2021-10-28 17:36 - 006871078 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - Désinstaller Windows 10 pour revenir sous Windows 7 8 ou 8 1_480p.mp4
2021-10-28 15:09 - 2021-10-28 15:09 - 000000000 ____D C:\Windows\SysWOW64\%LOCALAPPDATA%
2021-10-28 10:58 - 2021-10-28 10:58 - 000663764 _____ C:\Users\JessManleMeq\Downloads\CURRICULUM VITAE.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 003940184 _____ C:\Users\JessManleMeq\Downloads\Transposition Didactique.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 001347133 _____ C:\Users\JessManleMeq\Downloads\POWER Pratique d'Animations des Situations de formation.pptx
2021-10-27 13:28 - 2021-10-27 13:28 - 001144365 _____ C:\Users\JessManleMeq\Downloads\Gestion et Administration d'un Etablissement Scolaire ou de Formation L3 PDF.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 000980740 _____ C:\Users\JessManleMeq\Downloads\METHODOLOGIE DE RECHERCHE L3-converted.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 000854426 _____ C:\Users\JessManleMeq\Downloads\L3 ANGLAIS 2021.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 000622579 _____ C:\Users\JessManleMeq\Downloads\L3 methodologie-6-etapes-recherche-documentaire2.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 000339456 _____ C:\Users\JessManleMeq\Downloads\Méthodologie de recherche et de rédaction d’un mémoire.ppt
2021-10-27 13:28 - 2021-10-27 13:28 - 000051077 _____ C:\Users\JessManleMeq\Downloads\TRANSPOSITION_DIDACTIQUES.pdf
2021-10-27 13:27 - 2021-10-27 13:28 - 002812289 _____ C:\Users\JessManleMeq\Downloads\TRANSPOSITION_DIDACTIQUE INTERNE.pdf
2021-10-27 13:25 - 2021-10-27 13:25 - 000169491 _____ C:\Users\JessManleMeq\Downloads\COURS HISTOIRE EDUCATION NON FORMELLE .pdf
2021-10-27 13:25 - 2021-10-27 13:25 - 000169491 _____ C:\Users\JessManleMeq\Downloads\COURS HISTOIRE EDUCATION NON FORMELLE (1).pdf
2021-10-27 13:19 - 2021-10-27 13:19 - 001466096 _____ C:\Users\JessManleMeq\Downloads\Dr Tefy DIDACTIQUE AU PRESCOLAIRE L3SE presco.pdf
2021-10-27 13:19 - 2021-10-27 13:19 - 000395117 _____ C:\Users\JessManleMeq\Downloads\Cours de Relation éducative PDF L3.pdf
2021-10-24 22:20 - 2021-10-24 22:20 - 001326726 _____ C:\Users\JessManleMeq\Desktop\SCAN0006.PDF
2021-10-23 18:04 - 2021-10-23 18:04 - 000183280 _____ C:\Users\JessManleMeq\Desktop\FANEKENA.pdf
2021-10-23 08:19 - 2021-10-23 18:05 - 002713577 _____ C:\Users\JessManleMeq\Desktop\MyTravelHealthForm.pdf
2021-10-22 18:15 - 2021-10-22 18:15 - 000001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk
2021-10-22 18:15 - 2021-10-22 18:15 - 000000000 ____D C:\ProgramData\FLEXnet
2021-10-22 18:13 - 2021-10-24 20:28 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-10-22 18:13 - 2021-10-22 18:13 - 000001296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk
2021-10-22 18:11 - 2021-10-22 18:11 - 000001480 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk
2021-10-22 18:11 - 2021-10-22 18:11 - 000001265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk
2021-10-22 18:10 - 2021-10-22 18:10 - 000000000 ____D C:\Windows\SysWOW64\spool
2021-10-22 18:09 - 2021-10-22 18:09 - 000001172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk
2021-10-22 13:16 - 2021-10-22 13:16 - 000463509 _____ C:\Users\JessManleMeq\Desktop\CV call juillet modif.pdf
2021-10-22 10:01 - 2021-10-22 10:01 - 000376361 _____ C:\Users\JessManleMeq\Desktop\CV Douane.pdf
2021-10-21 20:27 - 2021-10-21 20:27 - 000218624 _____ C:\Users\JessManleMeq\Desktop\Composition1.pub
2021-10-21 18:43 - 2021-10-21 18:43 - 000000000 ____D C:\Users\JessManleMeq\Documents\Modèles Office personnalisés
2021-10-21 17:53 - 2021-10-22 09:46 - 000000000 ____D C:\Users\JessManleMeq\Documents\HTC
2021-10-21 16:45 - 2012-03-25 23:01 - 000029704 _____ (Nitro PDF Software) C:\Windows\system32\nitrolocalmon2.dll
2021-10-21 16:45 - 2012-03-25 23:01 - 000017928 _____ (Nitro PDF Software) C:\Windows\system32\nitrolocalui2.dll
2021-10-21 16:44 - 2021-10-21 16:44 - 000002573 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 7.lnk
2021-10-21 16:44 - 2021-10-21 16:44 - 000002132 _____ C:\Users\Public\Desktop\Nitro Pro 7.lnk
2021-10-21 16:44 - 2021-10-21 16:44 - 000000000 ____D C:\Program Files\Common Files\Nitro PDF
2021-10-21 16:31 - 2021-10-21 17:53 - 000000000 ____D C:\Program Files (x86)\Photoshop
2021-10-21 16:15 - 2021-10-21 16:15 - 000002990 _____ C:\Windows\system32\Tasks\Uninstaller_SkipUac_JessManleMeq
2021-10-21 16:15 - 2021-10-21 16:15 - 000001424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2021-10-21 16:15 - 2021-10-21 16:15 - 000001412 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\IObit
2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\ProductData
2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2021-10-21 16:13 - 2021-10-21 16:31 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\IObit
2021-10-21 16:13 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\IObit
2021-10-21 16:13 - 2021-10-21 16:13 - 000000000 ____D C:\Program Files (x86)\IObit
2021-10-21 15:37 - 2021-10-21 15:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Debenu PDF Tools Pro
2021-10-21 15:37 - 2021-10-21 15:37 - 000000000 ____D C:\ProgramData\Debenu
2021-10-21 15:37 - 2021-10-21 15:37 - 000000000 ____D C:\Program Files (x86)\Debenu
2021-10-19 10:00 - 2021-10-27 13:21 - 000000000 ____D C:\Users\JessManleMeq\Downloads\Video
2021-10-09 20:21 - 2021-10-27 08:57 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-10-08 13:28 - 2021-10-26 13:55 - 000001136 _____ C:\Users\JessManleMeq\Desktop\Format Factory.lnk
2021-10-08 13:28 - 2021-10-08 13:28 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2021-10-07 13:18 - 2021-10-07 13:18 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\OfficeBSCache-MyComputer
2021-10-06 14:52 - 2021-10-29 09:13 - 000000000 ____D C:\Users\JessManleMeq\Desktop\DOCUMMENT MIKA
2021-10-04 03:15 - 2021-10-04 03:15 - 000002221 _____ C:\Users\Public\Desktop\Google Earth.lnk
2021-10-04 03:15 - 2021-10-04 03:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2021-10-04 02:24 - 2021-10-04 02:24 - 000003860 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002UA
2021-10-04 02:24 - 2021-10-04 02:24 - 000003592 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002Core
2021-10-04 02:24 - 2021-10-04 02:24 - 000002295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2021-10-04 02:12 - 2021-10-04 02:12 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Google
2021-10-03 14:07 - 2021-10-29 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2021-10-03 14:06 - 2021-10-03 15:18 - 000000000 ____D C:\Users\JessManleMeq\Downloads\idm.6.39.2+patch.1.2
2021-10-02 17:53 - 2021-10-02 17:53 - 000000000 ____D C:\ProgramData\360sd
2021-09-24 15:32 - 2019-06-04 22:35 - 000000000 ____D C:\ProgramData\Arobas Music
2021-09-24 14:04 - 2021-09-26 17:56 - 000004268 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1632481439
2021-09-24 14:04 - 2021-09-26 17:56 - 000001517 _____ C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-09-23 16:53 - 2021-09-23 16:53 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\IsolatedStorage
2021-09-23 03:59 - 2021-09-23 03:59 - 000000000 ____D C:\Users\JessManleMeq\Documents\Modèl invitation
2021-09-20 07:11 - 2021-09-20 07:11 - 000000000 ____D C:\Program Files (x86)\Canon
2021-09-20 02:56 - 2021-09-24 14:03 - 000000000 ____D C:\Users\JessManleMeq\Downloads\TS Recommended Apps
2021-09-17 12:28 - 2021-09-17 12:28 - 000000000 __SHD C:\Users\JessManleMeq\AppData\Roaming\360Quarant
2021-09-17 12:28 - 2021-09-17 12:28 - 000000000 ____D C:\Windows\Tasks\360Disabled
2021-09-17 04:15 - 2021-10-22 12:06 - 000000000 __SHD C:\$360Section
2021-09-17 04:14 - 2021-09-17 12:29 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360safe
2021-09-17 03:47 - 2021-10-29 09:20 - 000000000 ____D C:\ProgramData\360Quarant
2021-09-17 03:45 - 2021-10-28 15:09 - 000000000 _RSHD C:\360SANDBOX
2021-09-17 03:45 - 2021-10-28 08:02 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\360WD
2021-09-17 03:45 - 2021-10-21 01:47 - 000000000 ____D C:\ProgramData\360safe
2021-09-17 03:45 - 2021-09-17 03:45 - 000001222 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2021-09-17 03:45 - 2021-09-17 03:45 - 000000001 _____ C:\Windows\system32\Drivers\360Hvm64.dat
2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Centre 360 Security
2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360DesktopLite
2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre 360 Security
2021-09-17 03:45 - 2021-08-25 09:24 - 000494080 _____ (360.cn) C:\Windows\system32\Drivers\360FsFlt.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000334336 _____ (360安全中心) C:\Windows\system32\Drivers\360Hvm64.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000232688 _____ (360.cn) C:\Windows\system32\Drivers\BAPIDRV64.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000199888 _____ (360.cn) C:\Windows\system32\Drivers\360AntiHacker64.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000096424 _____ (360.cn) C:\Windows\system32\Drivers\360netmon.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000095232 _____ (360.cn) C:\Windows\system32\Drivers\360AvFlt.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000058200 _____ (360.cn) C:\Windows\system32\Drivers\360Camera64.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000017192 _____ (360.cn) C:\Windows\system32\Drivers\360elam64.sys
2021-09-17 03:44 - 2021-09-20 03:51 - 000000000 ____D C:\ProgramData\360TotalSecurity
2021-09-17 03:44 - 2021-09-17 12:27 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360TotalSecurity
2021-09-17 03:44 - 2021-09-17 03:44 - 000000000 ____D C:\Program Files (x86)\360
2021-09-17 03:42 - 2021-10-29 08:58 - 000000000 ____D C:\Program Files (x86)\SMADAV
2021-09-17 03:42 - 2021-09-17 04:10 - 000000000 __SHD C:\[Smad-Cage]
2021-09-17 03:42 - 2021-09-17 03:42 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Smadav
2021-09-16 11:54 - 2021-09-16 11:54 - 000000000 ____D C:\Users\JessManleMeq\Documents\KONAMI
2021-09-16 11:50 - 2021-09-16 11:50 - 000000000 ____D C:\Program Files (x86)\KONAMI
2021-09-09 04:34 - 2021-10-21 15:40 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Mobisystems
2021-09-09 04:34 - 2021-09-10 03:36 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\MobiSystems Inc
2021-09-09 04:34 - 2021-09-09 04:34 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\CrashRpt
2021-09-09 02:27 - 2021-09-09 02:27 - 000000000 ____D C:\Program Files\MobiSystems
2021-09-08 12:27 - 2021-09-08 16:02 - 000000000 ____D C:\Program Files (x86)\AlterPDF Pro
2021-09-08 12:27 - 2021-09-08 12:27 - 000000000 ____D C:\Users\JessManleMeq\Documents\AlterPDF Pro
2021-09-01 13:43 - 2021-09-01 13:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign5ac61837f9546231
2021-09-01 13:43 - 2021-09-01 13:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign1a3164a1503f808b
2021-08-30 09:27 - 2021-08-30 09:27 - 000000769 _____ C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nouveau dossier (5).lnk
2021-08-30 09:16 - 2021-08-30 09:16 - 000003662 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2021-08-29 13:59 - 2021-08-29 13:59 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2021-08-29 13:54 - 2021-08-29 13:54 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\VirtualDJ
2021-08-28 17:37 - 2021-08-28 17:37 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Full
2021-08-28 13:15 - 2021-08-29 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2021-08-28 13:15 - 2021-08-29 16:55 - 000000000 ____D C:\Program Files\KMSpico
2021-08-28 13:15 - 2021-08-28 13:15 - 000003822 _____ C:\Windows\system32\Tasks\AutoPico Daily Restart
2021-08-25 09:16 - 2021-08-25 09:16 - 000000000 ____D C:\MSI
2021-08-24 10:16 - 2021-08-24 10:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsignf586efb624b54f5d
2021-08-24 10:16 - 2021-08-24 10:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign0ed5c78b4c215546
2021-08-22 17:29 - 2021-08-22 17:29 - 000001024 ____H C:\AMTAG.BIN
2021-08-19 07:43 - 2021-09-08 16:03 - 000002928 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - JessManleMeq
2021-08-14 08:36 - 2021-08-14 08:37 - 000000000 ____D C:\Windows\Y6SEPW
2021-08-13 12:59 - 2021-08-13 12:59 - 000000000 ____D C:\Windows\system32\appmgmt
2021-08-07 09:17 - 2021-08-07 09:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign84efd1a3276a422e
2021-08-07 09:16 - 2021-08-07 09:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign59bb80d831ff5b0c
2021-08-06 16:44 - 2021-08-06 16:44 - 000002104 _____ C:\Users\Public\Desktop\HTC Sync Manager.lnk
2021-08-06 12:48 - 2021-09-02 06:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-08-05 17:29 - 2021-08-05 17:29 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\dvdcss
2021-08-05 10:18 - 2021-10-21 16:25 - 000000000 ____D C:\Program Files\Adobe
2021-08-05 10:18 - 2021-08-05 10:21 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-07-31 19:18 - 2021-07-31 19:18 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Temp
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-29 09:20 - 2018-09-15 10:31 - 000000000 ____D C:\Windows\INF
2021-10-29 09:16 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\IDM
2021-10-29 09:14 - 2021-07-17 11:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Everything
2021-10-29 09:14 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\DMCache
2021-10-29 09:14 - 2021-05-18 14:02 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2021-10-29 09:06 - 2018-09-15 10:33 - 000000000 ____D C:\Program Files\Common Files\system
2021-10-29 09:05 - 2021-05-18 14:02 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2021-10-29 09:01 - 2021-05-25 11:09 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-10-29 09:00 - 2021-05-26 06:53 - 000000000 ____D C:\Program Files (x86)\ Gsm4Crack Mega Tool V1.0
2021-10-29 08:59 - 2021-06-11 15:23 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\CrashDumps
2021-10-29 08:57 - 2018-09-15 10:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-29 07:45 - 2020-11-10 21:30 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-10-29 05:51 - 2021-05-18 10:23 - 000004188 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{2CA8E02F-B989-499B-BC58-DD5E55036FFE}
2021-10-29 02:57 - 2021-07-07 15:33 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Mozilla
2021-10-28 17:44 - 2021-07-12 11:21 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\vlc
2021-10-28 15:25 - 2021-05-18 10:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Packages
2021-10-28 15:18 - 2020-11-10 21:36 - 001771410 _____ C:\Windows\system32\PerfStringBackup.INI
2021-10-28 15:18 - 2018-09-15 19:38 - 000791936 _____ C:\Windows\system32\perfh00C.dat
2021-10-28 15:18 - 2018-09-15 19:38 - 000150004 _____ C:\Windows\system32\perfc00C.dat
2021-10-28 15:11 - 2021-07-14 16:56 - 000000000 ____D C:\Program Files\CCleaner
2021-10-28 15:10 - 2021-07-07 16:37 - 000000000 ____D C:\Windows\Y891NREA60
2021-10-28 15:10 - 2021-06-23 18:11 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\HTC MediaHub
2021-10-28 15:10 - 2020-11-10 21:30 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-10-28 15:09 - 2021-05-18 10:16 - 000000000 ____D C:\Users\JessManleMeq
2021-10-28 15:09 - 2018-09-15 09:09 - 000065536 _____ C:\Windows\system32\config\BBI
2021-10-28 13:47 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\system32\NDF
2021-10-28 08:31 - 2021-07-07 15:33 - 000000000 ____D C:\ProgramData\Mozilla
2021-10-26 13:55 - 2021-07-22 09:52 - 000001295 _____ C:\Users\JessManleMeq\Desktop\Wondershare EdrawMax.lnk
2021-10-26 13:55 - 2021-06-17 10:20 - 000001076 _____ C:\Users\JessManleMeq\Desktop\UltraISO.lnk
2021-10-24 08:54 - 2020-11-10 21:30 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-10-23 05:58 - 2020-11-10 21:30 - 002451832 _____ C:\Windows\system32\FNTCACHE.DAT
2021-10-23 05:57 - 2021-07-18 07:07 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Everything
2021-10-22 21:52 - 2021-05-19 16:35 - 000000000 ____D C:\ProgramData\Adobe
2021-10-22 21:52 - 2021-05-19 16:34 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Adobe
2021-10-22 18:16 - 2021-05-18 10:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Adobe
2021-10-22 18:14 - 2021-05-19 16:34 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-21 16:43 - 2021-05-21 15:42 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Downloaded Installations
2021-10-21 12:52 - 2021-07-14 16:56 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-10-19 08:57 - 2021-07-20 14:38 - 000000472 __RSH C:\ProgramData\ntuser.pol
2021-10-12 22:17 - 2021-06-25 22:39 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\ElevatedDiagnostics
2021-10-12 16:03 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\system32\spool
2021-10-09 23:57 - 2021-07-07 15:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-10-09 23:57 - 2021-07-07 14:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-10-09 20:21 - 2021-07-07 15:33 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-09 00:44 - 2021-05-19 23:17 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2021-10-08 13:22 - 2021-05-20 17:40 - 000000000 ____D C:\Program Files (x86)\FreeTime
2021-10-07 03:43 - 2021-07-19 11:34 - 000002317 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-07 03:43 - 2021-07-19 11:34 - 000002276 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-07 03:42 - 2021-07-01 10:59 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-07 03:42 - 2021-07-01 10:59 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-07 03:42 - 2021-07-01 10:59 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-06 13:15 - 2020-11-10 15:29 - 000000000 ____D C:\Windows\Panther
2021-10-06 13:15 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\LiveKernelReports
2021-10-04 22:13 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\Downloads\Compressed
2021-10-04 02:24 - 2021-07-01 10:59 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Google
2021-10-04 02:16 - 2021-07-19 11:34 - 000000000 ____D C:\Program Files\Google
==================== Fichiers à la racine de certains dossiers ========
2021-05-20 08:16 - 2021-05-20 08:16 - 000000000 _____ () C:\Users\JessManleMeq\AppData\Roaming\.NANotifyHere
2021-07-10 12:47 - 2021-09-23 02:59 - 000000096 _____ () C:\Users\JessManleMeq\AppData\Roaming\Camdata.ini
2021-07-10 12:47 - 2021-09-23 02:59 - 000000408 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamLayout.ini
2021-07-10 12:47 - 2021-09-23 02:59 - 000000408 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamShapes.ini
2021-07-10 12:32 - 2021-09-23 02:59 - 000004534 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamStudio.cfg
2021-05-20 08:26 - 2014-12-19 10:43 - 000000034 _____ () C:\Users\JessManleMeq\AppData\Roaming\pdfdrawcodec.dll
2021-05-19 14:26 - 2021-09-23 02:58 - 000000096 _____ () C:\Users\JessManleMeq\AppData\Roaming\version2.xml
2021-05-21 02:15 - 2021-05-21 02:15 - 000000000 _____ () C:\Users\JessManleMeq\AppData\Local\oobelibMkey.log
2021-05-18 15:54 - 2021-05-18 15:54 - 000000017 _____ () C:\Users\JessManleMeq\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2021-05-19 09:46 - 2012-06-14 18:18 - 000359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
2021-05-19 09:46 - 2012-06-14 18:18 - 000039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
2021-05-25 11:13 - 1998-11-13 12:16 - 000308224 _____ (InstallShield Software Corporation) C:\Windows\IsUn040c.exe
2021-05-19 09:46 - 2012-06-14 18:18 - 000366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
2021-06-19 13:58 - 1998-09-02 11:28 - 001088272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\danim.dll
2006-05-11 01:15 - 2006-05-11 01:15 - 000561179 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dao360.dll
2006-02-28 12:41 - 2006-02-28 12:41 - 000061440 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dns-sd.exe
2006-02-28 12:41 - 2006-02-28 12:41 - 000053248 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dnssd.dll
2021-06-19 13:58 - 1998-08-27 07:51 - 000182032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft3.dll
2021-06-19 13:58 - 1998-09-02 11:28 - 000155408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LMRT.dll
2021-06-19 13:58 - 1998-09-02 11:28 - 000038160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LMRTREND.dll
2006-05-11 01:15 - 2006-05-11 01:15 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msbind.dll
2006-05-11 01:15 - 2006-05-11 01:15 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msderun.dll
2003-04-18 17:46 - 2003-04-18 17:46 - 001233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4.dll
2003-04-18 17:29 - 2003-04-18 17:29 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll
2021-06-19 13:58 - 1998-09-02 11:02 - 000194320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qcut.dll
2021-06-19 13:58 - 1998-08-20 13:38 - 000217984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\strmdll.dll
2007-03-21 20:54 - 2007-03-21 20:54 - 000077312 _____ (Twain Working Group) C:\Windows\SysWOW64\TWAIN_32.DLL
2007-03-21 20:54 - 2007-03-21 20:54 - 000048560 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_16.EXE
2007-03-21 20:54 - 2007-03-21 20:54 - 000069632 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_32.EXE
2021-06-19 13:58 - 1998-09-02 11:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unam4ie.exe
2021-06-19 13:58 - 1998-08-17 12:21 - 000010240 _____ C:\Windows\SysWOW64\vidx16.dll
2021-06-19 13:58 - 2021-06-19 13:58 - 000002272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2021-06-19 13:58 - 2021-06-19 13:58 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2021-10-29 09:19 - 2021-10-29 09:17 - 002310656 _____ (Farbar) C:\Users\JessManleMeq\Desktop\FRST64.exe
2021-05-20 08:26 - 2014-12-19 10:43 - 000000034 _____ C:\Users\JessManleMeq\AppData\Roaming\pdfdrawcodec.dll
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
flightsigning Yes
default {current}
resumeobject {77a7ad1c-5440-11eb-b5c0-92dd239c83a2}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {77a7ad1a-5440-11eb-b5c0-92dd239c83a2}
device ramdisk=[C:]\Recovery\77a7ad1a-5440-11eb-b5c0-92dd239c83a2\Winre.wim,{77a7ad1b-5440-11eb-b5c0-92dd239c83a2}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\77a7ad1a-5440-11eb-b5c0-92dd239c83a2\Winre.wim,{77a7ad1b-5440-11eb-b5c0-92dd239c83a2}
systemroot \windows
nx OptIn
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {77a7ad1e-5440-11eb-b5c0-92dd239c83a2}
displaymessageoverride Recovery
recoveryenabled Yes
flightsigning Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {77a7ad1c-5440-11eb-b5c0-92dd239c83a2}
nx OptIn
bootmenupolicy Legacy
Chargeur de d‚marrage Windows
-----------------------------
identificateur {77a7ad1e-5440-11eb-b5c0-92dd239c83a2}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{77a7ad1f-5440-11eb-b5c0-92dd239c83a2}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{77a7ad1f-5440-11eb-b5c0-92dd239c83a2}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {77a7ad1c-5440-11eb-b5c0-92dd239c83a2}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {77a7ad1e-5440-11eb-b5c0-92dd239c83a2}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {77a7ad1f-5440-11eb-b5c0-92dd239c83a2}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par JessManleMeq (administrateur) sur INFOSERVEUR (Hewlett-Packard HP Compaq dc5800 Small Form Factor) (29-10-2021 09:21:15)
Exécuté depuis C:\Users\JessManleMeq\Desktop
Profils chargés: JessManleMeq
Platform: Microsoft Windows 10 Entreprise LTSC Version 1809 17763.2029 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Beijing Qihu Technology Co., Ltd. -> Qihu 360 Software Co., Ltd.) C:\Program Files (x86)\360\Total Security\safemon\chrome\360webshield.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(Greatis Software LLC -> Greatis Software, LLC) C:\Windows\Y891NREA60\SU10Guard.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\WINWORD.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Nitro PDF Software -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro PDF Software -> Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
(Tonec Inc. -> Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe
(Tonec Inc. -> Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2>
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Corel Update Helper] => c:\Program Files\Corel\Corel VideoStudio X9\pua.exe [2012104 2016-03-01] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2261600 2021-05-12] (voidtools -> voidtools)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Windows Updates Service] => C:\Users\JessManleMeq\AppData\Roaming\Windows Updates Files\Windows Updates Service.vbe [1000 2021-06-15] () [Fichier non signé] <==== ATTENTION
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Cybera Client] => "C:\Program Files (x86)\Cybera Client\cybcli.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Google Update] => C:\Users\JessManleMeq\AppData\Local\Google\Update\1.3.35.451\GoogleUpdateCore.exe [217544 2021-10-04] (Google LLC -> Google LLC)
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5451576 2021-10-29] (Tonec Inc. -> Tonec Inc.) [Fichier non signé]
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {011e28ce-f993-11eb-af1d-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {08bc5650-e4a5-11eb-af0b-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {0e15b68a-e4c8-11eb-af0b-0026553eb10a} - "G:\Startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {205934c6-37ac-11ec-af67-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {2163b9c4-0bd3-11ec-af31-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {31be21cf-b7e1-11eb-aee9-0026553eb10a} - "G:\AutoRun.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {3e29bddf-1aeb-11ec-af40-0026553eb10a} - "G:\Startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {47ae6d6a-0e9a-11ec-af33-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {51893252-101f-11ec-af33-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {51893272-101f-11ec-af33-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {580cfacd-162c-11ec-af39-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {8b18e380-cc3b-11eb-aefa-0026553eb10a} - "G:\Windows/AutoRun.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {8bce056a-1d95-11ec-af42-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {98761586-095a-11ec-af2d-0026553eb10a} - "I:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {a41920a0-ca6e-11eb-aef7-0026553eb10a} - "G:\AutoRun.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {bcb94acb-d4c0-11eb-af01-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c09971ee-e2e3-11eb-af0a-0026553eb10a} - "G:\startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c0cc89c4-141b-11ec-af37-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c776e33e-34ef-11ec-af64-0026553eb10a} - "I:\Startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {d655041a-cdba-11eb-aefa-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {d88e384a-c9a6-11eb-aef4-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e1e9d524-c5d6-11eb-aef1-0026553eb10a} - "G:\.\Setup.exe" AUTORUN=1
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e38f2d97-be1b-11eb-aeee-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e38f2dde-be1b-11eb-aeee-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e4c5c0f8-bd2a-11eb-aeee-0026553eb10a} - "G:\SETUP.EXE"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e4c5c271-bd2a-11eb-aeee-0026553eb10a} - "G:\STARTUP.EXE"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e75d63f3-1f92-11ec-af44-0026553eb10a} - "G:\Setup.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e8886e93-1ed8-11ec-af43-0026553eb10a} - "G:\OPPODriver.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e8886e9f-1ed8-11ec-af43-0026553eb10a} - "G:\OPPODriver.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {eb7325bb-ead4-11eb-af0f-0026553eb10a} - "I:\startme.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {f87d3431-bc96-11eb-aeee-0026553eb10a} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {f8d149f9-c03b-11eb-aef1-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe"
HKLM\...\Windows x64\Print Processors\Canon MG8200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAV.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG8200 series: C:\Windows\system32\CNMLMAV.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\Windows\system32\CNAS0MOK.DLL [1282048 2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\EPSON L380 Series 64MonitorBE: C:\Windows\system32\E_YLMBRQE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\system32\nitrolocalmon2.dll [29704 2012-03-25] (Nitro PDF Software -> Nitro PDF Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-07] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\advpack.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
AppInit_DLLs-x32: C:\PROGRA~1\COMMON~1\System\symsrv.dll => C:\Program Files\Common Files\system\symsrv.dll [73436 2021-10-28] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05E750C4-F318-4C8C-89C0-47BCA3D5ADBC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002UA => C:\Users\JessManleMeq\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {0C0308D1-D25B-41F4-929F-25DE4B752EEB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002Core => C:\Users\JessManleMeq\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {0F4A4C0D-90F6-4DF5-9576-95F5D3235423} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {214CB9FB-7892-4302-B300-B3350EBDAFA3} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {318839F8-25DF-47A5-BE02-BFD97FD77426} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3B9AF75F-30D6-4AC6-BA04-96925D2F7DBF} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {44100A67-3423-4B99-8EA1-6CC41716E1AE} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {50D836AA-669C-4A70-98BB-E16D817D8609} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-07-07] (Adobe Inc. -> Adobe)
Task: {5E2AF35A-6ACC-4EE8-8F9B-486FB7635C46} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {6571B773-6223-4724-B2BC-D238DBCEA186} - System32\Tasks\CCleanerSkipUAC - JessManleMeq => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7587860D-01C0-4B88-8BD0-FFD91A14CB56} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {86180294-B37A-4B7E-BFBD-97D9CED5B7D5} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
Task: {8AFC38FD-5295-4C4D-9FE1-44ABDED9411C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {94C5DBFD-D1F8-4D25-A65A-0EF6CD09288B} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
Task: {99959940-39A5-4B10-9EB3-53BC7DB645C8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {A57BFC7F-AF2E-492F-B6D2-10C218D4FAE7} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml"
Task: {B3C49DAC-6507-414B-BF65-D343AB303627} - System32\Tasks\Uninstaller_SkipUac_JessManleMeq => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5276944 2018-11-27] (IObit Information Technology -> IObit)
Task: {CEA7C566-5D8C-4FA6-801B-61F2E06D714E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe
Task: {D0E1293C-DD28-433B-BDA9-4BC9B1D7F192} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {D6053C8B-7026-4107-8317-F45718EA2F7D} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
Task: {D774A178-031C-4E03-82D6-C06EBDACBD99} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {DE9C1265-8553-4CDF-82C2-448658C51095} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EA0A7FB3-9F0B-4380-81E6-E6F087037619} - System32\Tasks\Opera scheduled Autoupdate 1632481439 => C:\Users\JessManleMeq\AppData\Local\Programs\Opera\launcher.exe
"C:\Windows\System32\Tasks\Microsoft\Windows\Google" n'a pas pu être déverrouillé. <==== ATTENTION
"C:\Windows\System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIW" a été déverrouillé. <==== ATTENTION
Task: {F1E3C439-AD68-4F6E-9279-1323735B24BB} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIW => C:\Windows\SysWOW64\MUI\dispspec\H-1-75-52\IS_1.3.85.13.exe (Accès refusé) <==== ATTENTION
Task: {F20F792D-926A-4670-BC06-AC67B99D4266} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {FA448C76-724D-4700-BF97-0B65CF80D53B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
Task: {FA97F8B9-3C8F-4733-BBF2-F08BA28C110D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF7897FA-0844-4C6C-BD82-D6D248E53809} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2021-07-07] (Adobe Inc. -> Adobe)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [176589 2006-02-28] (Apple Computer, Inc.) [Fichier non signé]
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 196.192.32.5 41.188.9.130
Tcpip\..\Interfaces\{3f1311cd-7629-4c3f-ae11-3ba00c7644d8}: [DhcpNameServer] 192.168.0.1 196.192.32.5 41.188.9.130
Tcpip\..\Interfaces\{b803e9c1-95a5-46ba-8bcd-224a617ac644}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d6fa44ea-a082-405d-b924-0a63b242f2d4}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Profile: C:\Users\JessManleMeq\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-12]
Edge Extension: (IDM Integration Module) - C:\Users\JessManleMeq\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2021-07-19]
Edge HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2021-07-17]
Edge HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
FireFox:
========
FF DefaultProfile: ds9jf3p5.default
FF ProfilePath: C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default [2021-10-28]
FF Notifications: Mozilla\Firefox\Profiles\ds9jf3p5.default -> hxxps//www.instagram.com; hxxps//www.hutgaming.com; hxxps//thehugejournal.com; hxxps//talkmill.com.ng; hxxps//txxx.com; hxxps//upornia.com; hxxps//fr.biguz.net
FF Extension: (Social Video Downloader) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{00e68183-fc7d-4a91-b5cc-f7f8272386db}.xpi [2021-07-19]
FF Extension: (Flash Player 2021) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{6cc0a66e-ae3d-4cd8-9a03-5cd93b392903}.xpi [2021-09-23]
FF Extension: (Videos Downloader pour Facebook) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{814a14eb-b15c-49d7-ad8c-302875a54b45}.xpi [2021-07-22]
FF Extension: (Video DownloadHelper) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-19]
FF Extension: (IDM CC) - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5 [2021-10-03] [] [non signé]
FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] []
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2021-07-07] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) [Fichier non signé]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2021-07-07] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-08-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-1599086502-872597112-702781568-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\JessManleMeq\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies SF -> Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - d:\Program Files (x86)\Mozilla Firefox\firefox.exe
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-branding.js [2012-01-29]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-l10n.js [2012-01-29]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox.js [2012-01-29]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\reporter.js [2012-01-29]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default [2021-10-29]
CHR Notifications: Default -> hxxps//agetintopc.com; hxxps//en.y2mate.guru; hxxps//icrypto.media; hxxps//noirporno.com; hxxps//web.skype.com; hxxps//wholehugewords.com; hxxps//www.facebook.com; hxxps//www.femmeactuelle.fr; hxxps//www.iskysoft.com; hxxps//www.mp3juices.cc; hxxps//www.santemagazine.fr; hxxps//www.y2mate.com
CHR Extension: (Slides) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-20]
CHR Extension: (Docs) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-07-20]
CHR Extension: (Google Drive) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-07-20]
CHR Extension: (YouTube) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-07-20]
CHR Extension: (Sheets) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-13]
CHR Extension: (360 Internet Protection) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2021-09-17]
CHR Extension: (IDM Integration Module) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2021-10-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-20]
CHR Extension: (Gmail) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-07-20]
CHR Extension: (Chrome Media Router) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-20]
CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-06]
CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-10-06]
CHR NewTab: Profile 1 -> "active": true,
"entry": "chrome-extension://imhlianhlhdicjchlbmbfaefhhjencbe/newtab.html"
CHR Extension: (Slides) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-05]
CHR Extension: (Docs) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-05]
CHR Extension: (Google Drive) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-05]
CHR Extension: (OrangeMonkey) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ekmeppjgajofkpiofbebgcbohbmfldaf [2021-08-05]
CHR Extension: (Sheets) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-05]
CHR Extension: (NewTab) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\imhlianhlhdicjchlbmbfaefhhjencbe [2021-08-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-05]
CHR Extension: (Chrome Media Router) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-05]
CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-06]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
CHR HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ekmeppjgajofkpiofbebgcbohbmfldaf]
CHR HKLM-x32\...\Chrome\Extension: [ekmeppjgajofkpiofbebgcbohbmfldaf]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh]
CHR HKLM-x32\...\Chrome\Extension: [imhlianhlhdicjchlbmbfaefhhjencbe]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-07-07] (Adobe Inc. -> Adobe)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2016-09-20] (Nero AG -> Nero AG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [153360 2018-09-25] (IObit Information Technology -> IObit)
R2 NitroDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe [204296 2012-03-25] (Nitro PDF Software -> Nitro PDF Software)
R2 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [69640 2012-03-26] (Nitro PDF Software -> Nalpeiron Ltd.)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6486232 2021-07-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SU10Guard; C:\Windows\Y891NREA60\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-04-11] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [199888 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [95232 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [58200 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S0 360elam64; C:\Windows\System32\DRIVERS\360elam64.sys [17192 2021-08-25] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn)
R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [494080 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S4 360Hvm; C:\Windows\System32\Drivers\360Hvm64.sys [334336 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360安全中心)
R1 360netmon; C:\Windows\System32\DRIVERS\360netmon.sys [96424 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [232688 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S1 deeuiznu; C:\Windows\system32\drivers\deeuiznu.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 e1express; C:\Windows\System32\drivers\e1e6032e.sys [300544 2018-09-15] (Microsoft Windows -> Intel Corporation)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-02] (3am.com(Test) -> HTC, Corporation)
S3 htcnprot; C:\Windows\system32\DRIVERS\htcnprot.sys [36928 2013-10-17] (HTC Corp. -> Windows (R) Win 7 DDK provider)
S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (Sqa.com(Test) -> QUALCOMM Incorporated)
S1 ifhckfof; C:\Windows\system32\drivers\ifhckfof.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37184 2018-10-16] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [43392 2018-10-16] (IObit Information Technology -> IObit)
S1 pqkjqgmz; C:\Windows\system32\drivers\pqkjqgmz.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 qcusbnet; C:\Windows\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S1 sgliyhtq; C:\Windows\system32\drivers\sgliyhtq.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2021-10-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-10-24] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-24] (Microsoft Windows -> Microsoft Corporation)
S1 wqqcvnek; C:\Windows\system32\drivers\wqqcvnek.sys [50400 2021-10-29] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [282112 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S1 360Box64; system32\DRIVERS\360Box64.sys [X]
S1 ahdmtgpr; \??\C:\Windows\system32\drivers\ahdmtgpr.sys [X]
S1 amebuxne; \??\C:\Windows\system32\drivers\amebuxne.sys [X]
S1 arnskfsi; \??\C:\Windows\system32\drivers\arnskfsi.sys [X]
S1 aubgaryn; \??\C:\Windows\system32\drivers\aubgaryn.sys [X]
S1 bdepluzh; \??\C:\Windows\system32\drivers\bdepluzh.sys [X]
S1 cwbdyoqm; \??\C:\Windows\system32\drivers\cwbdyoqm.sys [X]
S1 fxeblscf; \??\C:\Windows\system32\drivers\fxeblscf.sys [X]
S1 fxgdceys; \??\C:\Windows\system32\drivers\fxgdceys.sys [X]
S1 ghkbdcmx; \??\C:\Windows\system32\drivers\ghkbdcmx.sys [X]
S1 hexasahd; \??\C:\Windows\system32\drivers\hexasahd.sys [X]
S1 knkcihgh; \??\C:\Windows\system32\drivers\knkcihgh.sys [X]
S1 naxgdefv; \??\C:\Windows\system32\drivers\naxgdefv.sys [X]
S1 nuuewxsd; \??\C:\Windows\system32\drivers\nuuewxsd.sys [X]
S1 ozseddjr; \??\C:\Windows\system32\drivers\ozseddjr.sys [X]
S1 tjsdkjoi; \??\C:\Windows\system32\drivers\tjsdkjoi.sys [X]
S1 vghojpxv; \??\C:\Windows\system32\drivers\vghojpxv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-29 09:23 - 2021-10-29 09:24 - 066236123 _____ C:\Users\JessManleMeq\Desktop\Les nouveautés dans Photoshop CC 2022 (mise à jour octobre 2021) - YouTube.mkv
2021-10-29 09:21 - 2021-10-29 09:23 - 000035648 _____ C:\Users\JessManleMeq\Desktop\FRST.txt
2021-10-29 09:20 - 2021-10-29 09:22 - 000000000 ____D C:\FRST
2021-10-29 09:19 - 2021-10-29 09:17 - 002310656 _____ (Farbar) C:\Users\JessManleMeq\Desktop\FRST64.exe
2021-10-29 09:05 - 2021-10-29 09:05 - 000001078 _____ C:\Users\JessManleMeq\Desktop\Internet Download Manager.lnk
2021-10-28 19:57 - 2021-10-28 20:23 - 000000000 ____D C:\Users\JessManleMeq\Desktop\image mariage
2021-10-28 18:06 - 2021-10-28 18:06 - 010130134 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - comment formater un pc windows 7 facilement et rapide_480p.mp4
2021-10-28 18:04 - 2021-10-28 18:04 - 003685113 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - TUTO 1 Comment supprimer un système dexploitation de son Ordinateur SANS LOGICIEL _480p (1).mp4
2021-10-28 18:02 - 2021-10-28 18:02 - 003685113 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - TUTO 1 Comment supprimer un système dexploitation de son Ordinateur SANS LOGICIEL _480p.mp4
2021-10-28 17:36 - 2021-10-28 17:36 - 006871078 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - Désinstaller Windows 10 pour revenir sous Windows 7 8 ou 8 1_480p.mp4
2021-10-28 15:09 - 2021-10-28 15:09 - 000000000 ____D C:\Windows\SysWOW64\%LOCALAPPDATA%
2021-10-28 10:58 - 2021-10-28 10:58 - 000663764 _____ C:\Users\JessManleMeq\Downloads\CURRICULUM VITAE.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 003940184 _____ C:\Users\JessManleMeq\Downloads\Transposition Didactique.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 001347133 _____ C:\Users\JessManleMeq\Downloads\POWER Pratique d'Animations des Situations de formation.pptx
2021-10-27 13:28 - 2021-10-27 13:28 - 001144365 _____ C:\Users\JessManleMeq\Downloads\Gestion et Administration d'un Etablissement Scolaire ou de Formation L3 PDF.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 000980740 _____ C:\Users\JessManleMeq\Downloads\METHODOLOGIE DE RECHERCHE L3-converted.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 000854426 _____ C:\Users\JessManleMeq\Downloads\L3 ANGLAIS 2021.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 000622579 _____ C:\Users\JessManleMeq\Downloads\L3 methodologie-6-etapes-recherche-documentaire2.pdf
2021-10-27 13:28 - 2021-10-27 13:28 - 000339456 _____ C:\Users\JessManleMeq\Downloads\Méthodologie de recherche et de rédaction d’un mémoire.ppt
2021-10-27 13:28 - 2021-10-27 13:28 - 000051077 _____ C:\Users\JessManleMeq\Downloads\TRANSPOSITION_DIDACTIQUES.pdf
2021-10-27 13:27 - 2021-10-27 13:28 - 002812289 _____ C:\Users\JessManleMeq\Downloads\TRANSPOSITION_DIDACTIQUE INTERNE.pdf
2021-10-27 13:25 - 2021-10-27 13:25 - 000169491 _____ C:\Users\JessManleMeq\Downloads\COURS HISTOIRE EDUCATION NON FORMELLE .pdf
2021-10-27 13:25 - 2021-10-27 13:25 - 000169491 _____ C:\Users\JessManleMeq\Downloads\COURS HISTOIRE EDUCATION NON FORMELLE (1).pdf
2021-10-27 13:19 - 2021-10-27 13:19 - 001466096 _____ C:\Users\JessManleMeq\Downloads\Dr Tefy DIDACTIQUE AU PRESCOLAIRE L3SE presco.pdf
2021-10-27 13:19 - 2021-10-27 13:19 - 000395117 _____ C:\Users\JessManleMeq\Downloads\Cours de Relation éducative PDF L3.pdf
2021-10-24 22:20 - 2021-10-24 22:20 - 001326726 _____ C:\Users\JessManleMeq\Desktop\SCAN0006.PDF
2021-10-23 18:04 - 2021-10-23 18:04 - 000183280 _____ C:\Users\JessManleMeq\Desktop\FANEKENA.pdf
2021-10-23 08:19 - 2021-10-23 18:05 - 002713577 _____ C:\Users\JessManleMeq\Desktop\MyTravelHealthForm.pdf
2021-10-22 18:15 - 2021-10-22 18:15 - 000001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk
2021-10-22 18:15 - 2021-10-22 18:15 - 000000000 ____D C:\ProgramData\FLEXnet
2021-10-22 18:13 - 2021-10-24 20:28 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-10-22 18:13 - 2021-10-22 18:13 - 000001296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk
2021-10-22 18:11 - 2021-10-22 18:11 - 000001480 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk
2021-10-22 18:11 - 2021-10-22 18:11 - 000001265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk
2021-10-22 18:10 - 2021-10-22 18:10 - 000000000 ____D C:\Windows\SysWOW64\spool
2021-10-22 18:09 - 2021-10-22 18:09 - 000001172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk
2021-10-22 13:16 - 2021-10-22 13:16 - 000463509 _____ C:\Users\JessManleMeq\Desktop\CV call juillet modif.pdf
2021-10-22 10:01 - 2021-10-22 10:01 - 000376361 _____ C:\Users\JessManleMeq\Desktop\CV Douane.pdf
2021-10-21 20:27 - 2021-10-21 20:27 - 000218624 _____ C:\Users\JessManleMeq\Desktop\Composition1.pub
2021-10-21 18:43 - 2021-10-21 18:43 - 000000000 ____D C:\Users\JessManleMeq\Documents\Modèles Office personnalisés
2021-10-21 17:53 - 2021-10-22 09:46 - 000000000 ____D C:\Users\JessManleMeq\Documents\HTC
2021-10-21 16:45 - 2012-03-25 23:01 - 000029704 _____ (Nitro PDF Software) C:\Windows\system32\nitrolocalmon2.dll
2021-10-21 16:45 - 2012-03-25 23:01 - 000017928 _____ (Nitro PDF Software) C:\Windows\system32\nitrolocalui2.dll
2021-10-21 16:44 - 2021-10-21 16:44 - 000002573 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 7.lnk
2021-10-21 16:44 - 2021-10-21 16:44 - 000002132 _____ C:\Users\Public\Desktop\Nitro Pro 7.lnk
2021-10-21 16:44 - 2021-10-21 16:44 - 000000000 ____D C:\Program Files\Common Files\Nitro PDF
2021-10-21 16:31 - 2021-10-21 17:53 - 000000000 ____D C:\Program Files (x86)\Photoshop
2021-10-21 16:15 - 2021-10-21 16:15 - 000002990 _____ C:\Windows\system32\Tasks\Uninstaller_SkipUac_JessManleMeq
2021-10-21 16:15 - 2021-10-21 16:15 - 000001424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2021-10-21 16:15 - 2021-10-21 16:15 - 000001412 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\IObit
2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\ProductData
2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2021-10-21 16:13 - 2021-10-21 16:31 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\IObit
2021-10-21 16:13 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\IObit
2021-10-21 16:13 - 2021-10-21 16:13 - 000000000 ____D C:\Program Files (x86)\IObit
2021-10-21 15:37 - 2021-10-21 15:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Debenu PDF Tools Pro
2021-10-21 15:37 - 2021-10-21 15:37 - 000000000 ____D C:\ProgramData\Debenu
2021-10-21 15:37 - 2021-10-21 15:37 - 000000000 ____D C:\Program Files (x86)\Debenu
2021-10-19 10:00 - 2021-10-27 13:21 - 000000000 ____D C:\Users\JessManleMeq\Downloads\Video
2021-10-09 20:21 - 2021-10-27 08:57 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-10-08 13:28 - 2021-10-26 13:55 - 000001136 _____ C:\Users\JessManleMeq\Desktop\Format Factory.lnk
2021-10-08 13:28 - 2021-10-08 13:28 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2021-10-07 13:18 - 2021-10-07 13:18 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\OfficeBSCache-MyComputer
2021-10-06 14:52 - 2021-10-29 09:13 - 000000000 ____D C:\Users\JessManleMeq\Desktop\DOCUMMENT MIKA
2021-10-04 03:15 - 2021-10-04 03:15 - 000002221 _____ C:\Users\Public\Desktop\Google Earth.lnk
2021-10-04 03:15 - 2021-10-04 03:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2021-10-04 02:24 - 2021-10-04 02:24 - 000003860 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002UA
2021-10-04 02:24 - 2021-10-04 02:24 - 000003592 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002Core
2021-10-04 02:24 - 2021-10-04 02:24 - 000002295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2021-10-04 02:12 - 2021-10-04 02:12 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Google
2021-10-03 14:07 - 2021-10-29 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2021-10-03 14:06 - 2021-10-03 15:18 - 000000000 ____D C:\Users\JessManleMeq\Downloads\idm.6.39.2+patch.1.2
2021-10-02 17:53 - 2021-10-02 17:53 - 000000000 ____D C:\ProgramData\360sd
2021-09-24 15:32 - 2019-06-04 22:35 - 000000000 ____D C:\ProgramData\Arobas Music
2021-09-24 14:04 - 2021-09-26 17:56 - 000004268 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1632481439
2021-09-24 14:04 - 2021-09-26 17:56 - 000001517 _____ C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-09-23 16:53 - 2021-09-23 16:53 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\IsolatedStorage
2021-09-23 03:59 - 2021-09-23 03:59 - 000000000 ____D C:\Users\JessManleMeq\Documents\Modèl invitation
2021-09-20 07:11 - 2021-09-20 07:11 - 000000000 ____D C:\Program Files (x86)\Canon
2021-09-20 02:56 - 2021-09-24 14:03 - 000000000 ____D C:\Users\JessManleMeq\Downloads\TS Recommended Apps
2021-09-17 12:28 - 2021-09-17 12:28 - 000000000 __SHD C:\Users\JessManleMeq\AppData\Roaming\360Quarant
2021-09-17 12:28 - 2021-09-17 12:28 - 000000000 ____D C:\Windows\Tasks\360Disabled
2021-09-17 04:15 - 2021-10-22 12:06 - 000000000 __SHD C:\$360Section
2021-09-17 04:14 - 2021-09-17 12:29 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360safe
2021-09-17 03:47 - 2021-10-29 09:20 - 000000000 ____D C:\ProgramData\360Quarant
2021-09-17 03:45 - 2021-10-28 15:09 - 000000000 _RSHD C:\360SANDBOX
2021-09-17 03:45 - 2021-10-28 08:02 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\360WD
2021-09-17 03:45 - 2021-10-21 01:47 - 000000000 ____D C:\ProgramData\360safe
2021-09-17 03:45 - 2021-09-17 03:45 - 000001222 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2021-09-17 03:45 - 2021-09-17 03:45 - 000000001 _____ C:\Windows\system32\Drivers\360Hvm64.dat
2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Centre 360 Security
2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360DesktopLite
2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre 360 Security
2021-09-17 03:45 - 2021-08-25 09:24 - 000494080 _____ (360.cn) C:\Windows\system32\Drivers\360FsFlt.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000334336 _____ (360安全中心) C:\Windows\system32\Drivers\360Hvm64.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000232688 _____ (360.cn) C:\Windows\system32\Drivers\BAPIDRV64.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000199888 _____ (360.cn) C:\Windows\system32\Drivers\360AntiHacker64.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000096424 _____ (360.cn) C:\Windows\system32\Drivers\360netmon.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000095232 _____ (360.cn) C:\Windows\system32\Drivers\360AvFlt.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000058200 _____ (360.cn) C:\Windows\system32\Drivers\360Camera64.sys
2021-09-17 03:45 - 2021-08-25 09:24 - 000017192 _____ (360.cn) C:\Windows\system32\Drivers\360elam64.sys
2021-09-17 03:44 - 2021-09-20 03:51 - 000000000 ____D C:\ProgramData\360TotalSecurity
2021-09-17 03:44 - 2021-09-17 12:27 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360TotalSecurity
2021-09-17 03:44 - 2021-09-17 03:44 - 000000000 ____D C:\Program Files (x86)\360
2021-09-17 03:42 - 2021-10-29 08:58 - 000000000 ____D C:\Program Files (x86)\SMADAV
2021-09-17 03:42 - 2021-09-17 04:10 - 000000000 __SHD C:\[Smad-Cage]
2021-09-17 03:42 - 2021-09-17 03:42 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Smadav
2021-09-16 11:54 - 2021-09-16 11:54 - 000000000 ____D C:\Users\JessManleMeq\Documents\KONAMI
2021-09-16 11:50 - 2021-09-16 11:50 - 000000000 ____D C:\Program Files (x86)\KONAMI
2021-09-09 04:34 - 2021-10-21 15:40 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Mobisystems
2021-09-09 04:34 - 2021-09-10 03:36 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\MobiSystems Inc
2021-09-09 04:34 - 2021-09-09 04:34 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\CrashRpt
2021-09-09 02:27 - 2021-09-09 02:27 - 000000000 ____D C:\Program Files\MobiSystems
2021-09-08 12:27 - 2021-09-08 16:02 - 000000000 ____D C:\Program Files (x86)\AlterPDF Pro
2021-09-08 12:27 - 2021-09-08 12:27 - 000000000 ____D C:\Users\JessManleMeq\Documents\AlterPDF Pro
2021-09-01 13:43 - 2021-09-01 13:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign5ac61837f9546231
2021-09-01 13:43 - 2021-09-01 13:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign1a3164a1503f808b
2021-08-30 09:27 - 2021-08-30 09:27 - 000000769 _____ C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nouveau dossier (5).lnk
2021-08-30 09:16 - 2021-08-30 09:16 - 000003662 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2021-08-29 13:59 - 2021-08-29 13:59 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2021-08-29 13:54 - 2021-08-29 13:54 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\VirtualDJ
2021-08-28 17:37 - 2021-08-28 17:37 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Full
2021-08-28 13:15 - 2021-08-29 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2021-08-28 13:15 - 2021-08-29 16:55 - 000000000 ____D C:\Program Files\KMSpico
2021-08-28 13:15 - 2021-08-28 13:15 - 000003822 _____ C:\Windows\system32\Tasks\AutoPico Daily Restart
2021-08-25 09:16 - 2021-08-25 09:16 - 000000000 ____D C:\MSI
2021-08-24 10:16 - 2021-08-24 10:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsignf586efb624b54f5d
2021-08-24 10:16 - 2021-08-24 10:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign0ed5c78b4c215546
2021-08-22 17:29 - 2021-08-22 17:29 - 000001024 ____H C:\AMTAG.BIN
2021-08-19 07:43 - 2021-09-08 16:03 - 000002928 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - JessManleMeq
2021-08-14 08:36 - 2021-08-14 08:37 - 000000000 ____D C:\Windows\Y6SEPW
2021-08-13 12:59 - 2021-08-13 12:59 - 000000000 ____D C:\Windows\system32\appmgmt
2021-08-07 09:17 - 2021-08-07 09:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign84efd1a3276a422e
2021-08-07 09:16 - 2021-08-07 09:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign59bb80d831ff5b0c
2021-08-06 16:44 - 2021-08-06 16:44 - 000002104 _____ C:\Users\Public\Desktop\HTC Sync Manager.lnk
2021-08-06 12:48 - 2021-09-02 06:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-08-05 17:29 - 2021-08-05 17:29 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\dvdcss
2021-08-05 10:18 - 2021-10-21 16:25 - 000000000 ____D C:\Program Files\Adobe
2021-08-05 10:18 - 2021-08-05 10:21 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-07-31 19:18 - 2021-07-31 19:18 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Temp
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-29 09:20 - 2018-09-15 10:31 - 000000000 ____D C:\Windows\INF
2021-10-29 09:16 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\IDM
2021-10-29 09:14 - 2021-07-17 11:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Everything
2021-10-29 09:14 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\DMCache
2021-10-29 09:14 - 2021-05-18 14:02 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2021-10-29 09:06 - 2018-09-15 10:33 - 000000000 ____D C:\Program Files\Common Files\system
2021-10-29 09:05 - 2021-05-18 14:02 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2021-10-29 09:01 - 2021-05-25 11:09 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-10-29 09:00 - 2021-05-26 06:53 - 000000000 ____D C:\Program Files (x86)\ Gsm4Crack Mega Tool V1.0
2021-10-29 08:59 - 2021-06-11 15:23 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\CrashDumps
2021-10-29 08:57 - 2018-09-15 10:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-29 07:45 - 2020-11-10 21:30 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-10-29 05:51 - 2021-05-18 10:23 - 000004188 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{2CA8E02F-B989-499B-BC58-DD5E55036FFE}
2021-10-29 02:57 - 2021-07-07 15:33 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Mozilla
2021-10-28 17:44 - 2021-07-12 11:21 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\vlc
2021-10-28 15:25 - 2021-05-18 10:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Packages
2021-10-28 15:18 - 2020-11-10 21:36 - 001771410 _____ C:\Windows\system32\PerfStringBackup.INI
2021-10-28 15:18 - 2018-09-15 19:38 - 000791936 _____ C:\Windows\system32\perfh00C.dat
2021-10-28 15:18 - 2018-09-15 19:38 - 000150004 _____ C:\Windows\system32\perfc00C.dat
2021-10-28 15:11 - 2021-07-14 16:56 - 000000000 ____D C:\Program Files\CCleaner
2021-10-28 15:10 - 2021-07-07 16:37 - 000000000 ____D C:\Windows\Y891NREA60
2021-10-28 15:10 - 2021-06-23 18:11 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\HTC MediaHub
2021-10-28 15:10 - 2020-11-10 21:30 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-10-28 15:09 - 2021-05-18 10:16 - 000000000 ____D C:\Users\JessManleMeq
2021-10-28 15:09 - 2018-09-15 09:09 - 000065536 _____ C:\Windows\system32\config\BBI
2021-10-28 13:47 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\system32\NDF
2021-10-28 08:31 - 2021-07-07 15:33 - 000000000 ____D C:\ProgramData\Mozilla
2021-10-26 13:55 - 2021-07-22 09:52 - 000001295 _____ C:\Users\JessManleMeq\Desktop\Wondershare EdrawMax.lnk
2021-10-26 13:55 - 2021-06-17 10:20 - 000001076 _____ C:\Users\JessManleMeq\Desktop\UltraISO.lnk
2021-10-24 08:54 - 2020-11-10 21:30 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-10-23 05:58 - 2020-11-10 21:30 - 002451832 _____ C:\Windows\system32\FNTCACHE.DAT
2021-10-23 05:57 - 2021-07-18 07:07 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Everything
2021-10-22 21:52 - 2021-05-19 16:35 - 000000000 ____D C:\ProgramData\Adobe
2021-10-22 21:52 - 2021-05-19 16:34 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Adobe
2021-10-22 18:16 - 2021-05-18 10:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Adobe
2021-10-22 18:14 - 2021-05-19 16:34 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-21 16:43 - 2021-05-21 15:42 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Downloaded Installations
2021-10-21 12:52 - 2021-07-14 16:56 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-10-19 08:57 - 2021-07-20 14:38 - 000000472 __RSH C:\ProgramData\ntuser.pol
2021-10-12 22:17 - 2021-06-25 22:39 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\ElevatedDiagnostics
2021-10-12 16:03 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\system32\spool
2021-10-09 23:57 - 2021-07-07 15:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-10-09 23:57 - 2021-07-07 14:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-10-09 20:21 - 2021-07-07 15:33 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-09 00:44 - 2021-05-19 23:17 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2021-10-08 13:22 - 2021-05-20 17:40 - 000000000 ____D C:\Program Files (x86)\FreeTime
2021-10-07 03:43 - 2021-07-19 11:34 - 000002317 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-07 03:43 - 2021-07-19 11:34 - 000002276 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-07 03:42 - 2021-07-01 10:59 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-07 03:42 - 2021-07-01 10:59 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-07 03:42 - 2021-07-01 10:59 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-06 13:15 - 2020-11-10 15:29 - 000000000 ____D C:\Windows\Panther
2021-10-06 13:15 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\LiveKernelReports
2021-10-04 22:13 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\Downloads\Compressed
2021-10-04 02:24 - 2021-07-01 10:59 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Google
2021-10-04 02:16 - 2021-07-19 11:34 - 000000000 ____D C:\Program Files\Google
==================== Fichiers à la racine de certains dossiers ========
2021-05-20 08:16 - 2021-05-20 08:16 - 000000000 _____ () C:\Users\JessManleMeq\AppData\Roaming\.NANotifyHere
2021-07-10 12:47 - 2021-09-23 02:59 - 000000096 _____ () C:\Users\JessManleMeq\AppData\Roaming\Camdata.ini
2021-07-10 12:47 - 2021-09-23 02:59 - 000000408 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamLayout.ini
2021-07-10 12:47 - 2021-09-23 02:59 - 000000408 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamShapes.ini
2021-07-10 12:32 - 2021-09-23 02:59 - 000004534 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamStudio.cfg
2021-05-20 08:26 - 2014-12-19 10:43 - 000000034 _____ () C:\Users\JessManleMeq\AppData\Roaming\pdfdrawcodec.dll
2021-05-19 14:26 - 2021-09-23 02:58 - 000000096 _____ () C:\Users\JessManleMeq\AppData\Roaming\version2.xml
2021-05-21 02:15 - 2021-05-21 02:15 - 000000000 _____ () C:\Users\JessManleMeq\AppData\Local\oobelibMkey.log
2021-05-18 15:54 - 2021-05-18 15:54 - 000000017 _____ () C:\Users\JessManleMeq\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2021-05-19 09:46 - 2012-06-14 18:18 - 000359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
2021-05-19 09:46 - 2012-06-14 18:18 - 000039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
2021-05-25 11:13 - 1998-11-13 12:16 - 000308224 _____ (InstallShield Software Corporation) C:\Windows\IsUn040c.exe
2021-05-19 09:46 - 2012-06-14 18:18 - 000366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
2021-06-19 13:58 - 1998-09-02 11:28 - 001088272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\danim.dll
2006-05-11 01:15 - 2006-05-11 01:15 - 000561179 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dao360.dll
2006-02-28 12:41 - 2006-02-28 12:41 - 000061440 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dns-sd.exe
2006-02-28 12:41 - 2006-02-28 12:41 - 000053248 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dnssd.dll
2021-06-19 13:58 - 1998-08-27 07:51 - 000182032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft3.dll
2021-06-19 13:58 - 1998-09-02 11:28 - 000155408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LMRT.dll
2021-06-19 13:58 - 1998-09-02 11:28 - 000038160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LMRTREND.dll
2006-05-11 01:15 - 2006-05-11 01:15 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msbind.dll
2006-05-11 01:15 - 2006-05-11 01:15 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msderun.dll
2003-04-18 17:46 - 2003-04-18 17:46 - 001233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4.dll
2003-04-18 17:29 - 2003-04-18 17:29 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll
2021-06-19 13:58 - 1998-09-02 11:02 - 000194320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qcut.dll
2021-06-19 13:58 - 1998-08-20 13:38 - 000217984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\strmdll.dll
2007-03-21 20:54 - 2007-03-21 20:54 - 000077312 _____ (Twain Working Group) C:\Windows\SysWOW64\TWAIN_32.DLL
2007-03-21 20:54 - 2007-03-21 20:54 - 000048560 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_16.EXE
2007-03-21 20:54 - 2007-03-21 20:54 - 000069632 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_32.EXE
2021-06-19 13:58 - 1998-09-02 11:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unam4ie.exe
2021-06-19 13:58 - 1998-08-17 12:21 - 000010240 _____ C:\Windows\SysWOW64\vidx16.dll
2021-06-19 13:58 - 2021-06-19 13:58 - 000002272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2021-06-19 13:58 - 2021-06-19 13:58 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2021-10-29 09:19 - 2021-10-29 09:17 - 002310656 _____ (Farbar) C:\Users\JessManleMeq\Desktop\FRST64.exe
2021-05-20 08:26 - 2014-12-19 10:43 - 000000034 _____ C:\Users\JessManleMeq\AppData\Roaming\pdfdrawcodec.dll
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
flightsigning Yes
default {current}
resumeobject {77a7ad1c-5440-11eb-b5c0-92dd239c83a2}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {77a7ad1a-5440-11eb-b5c0-92dd239c83a2}
device ramdisk=[C:]\Recovery\77a7ad1a-5440-11eb-b5c0-92dd239c83a2\Winre.wim,{77a7ad1b-5440-11eb-b5c0-92dd239c83a2}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\77a7ad1a-5440-11eb-b5c0-92dd239c83a2\Winre.wim,{77a7ad1b-5440-11eb-b5c0-92dd239c83a2}
systemroot \windows
nx OptIn
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {77a7ad1e-5440-11eb-b5c0-92dd239c83a2}
displaymessageoverride Recovery
recoveryenabled Yes
flightsigning Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {77a7ad1c-5440-11eb-b5c0-92dd239c83a2}
nx OptIn
bootmenupolicy Legacy
Chargeur de d‚marrage Windows
-----------------------------
identificateur {77a7ad1e-5440-11eb-b5c0-92dd239c83a2}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{77a7ad1f-5440-11eb-b5c0-92dd239c83a2}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{77a7ad1f-5440-11eb-b5c0-92dd239c83a2}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {77a7ad1c-5440-11eb-b5c0-92dd239c83a2}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {77a7ad1e-5440-11eb-b5c0-92dd239c83a2}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {77a7ad1f-5440-11eb-b5c0-92dd239c83a2}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================