Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-10-2021 Exécuté par JessManleMeq (administrateur) sur INFOSERVEUR (Hewlett-Packard HP Compaq dc5800 Small Form Factor) (29-10-2021 09:21:15) Exécuté depuis C:\Users\JessManleMeq\Desktop Profils chargés: JessManleMeq Platform: Microsoft Windows 10 Entreprise LTSC Version 1809 17763.2029 (X64) Langue: Français (France) Navigateur par défaut: Opera Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Beijing Qihu Technology Co., Ltd. -> Qihu 360 Software Co., Ltd.) C:\Program Files (x86)\360\Total Security\safemon\chrome\360webshield.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12> (Greatis Software LLC -> Greatis Software, LLC) C:\Windows\Y891NREA60\SU10Guard.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\WINWORD.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe (Nero AG -> Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (Nitro PDF Software -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE (Nitro PDF Software -> Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe (Tonec Inc. -> Internet Download Manager, Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe (Tonec Inc. -> Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2> (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [Corel Update Helper] => c:\Program Files\Corel\Corel VideoStudio X9\pua.exe [2012104 2016-03-01] (Corel Corporation -> Corel Corporation) HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2261600 2021-05-12] (voidtools -> voidtools) HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1 HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\...\Policies\Explorer: [NoResolveSearch] 1 HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Windows Updates Service] => C:\Users\JessManleMeq\AppData\Roaming\Windows Updates Files\Windows Updates Service.vbe [1000 2021-06-15] () [Fichier non signé] <==== ATTENTION HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Cybera Client] => "C:\Program Files (x86)\Cybera Client\cybcli.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [Google Update] => C:\Users\JessManleMeq\AppData\Local\Google\Update\1.3.35.451\GoogleUpdateCore.exe [217544 2021-10-04] (Google LLC -> Google LLC) HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5451576 2021-10-29] (Tonec Inc. -> Tonec Inc.) [Fichier non signé] HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Policies\Explorer: [NoSecurityTab] 1 HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {011e28ce-f993-11eb-af1d-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {08bc5650-e4a5-11eb-af0b-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {0e15b68a-e4c8-11eb-af0b-0026553eb10a} - "G:\Startme.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {205934c6-37ac-11ec-af67-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {2163b9c4-0bd3-11ec-af31-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {31be21cf-b7e1-11eb-aee9-0026553eb10a} - "G:\AutoRun.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {3e29bddf-1aeb-11ec-af40-0026553eb10a} - "G:\Startme.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {47ae6d6a-0e9a-11ec-af33-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {51893252-101f-11ec-af33-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {51893272-101f-11ec-af33-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {580cfacd-162c-11ec-af39-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {8b18e380-cc3b-11eb-aefa-0026553eb10a} - "G:\Windows/AutoRun.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {8bce056a-1d95-11ec-af42-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {98761586-095a-11ec-af2d-0026553eb10a} - "I:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {a41920a0-ca6e-11eb-aef7-0026553eb10a} - "G:\AutoRun.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {bcb94acb-d4c0-11eb-af01-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c09971ee-e2e3-11eb-af0a-0026553eb10a} - "G:\startme.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c0cc89c4-141b-11ec-af37-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {c776e33e-34ef-11ec-af64-0026553eb10a} - "I:\Startme.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {d655041a-cdba-11eb-aefa-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {d88e384a-c9a6-11eb-aef4-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e1e9d524-c5d6-11eb-aef1-0026553eb10a} - "G:\.\Setup.exe" AUTORUN=1 HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e38f2d97-be1b-11eb-aeee-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e38f2dde-be1b-11eb-aeee-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e4c5c0f8-bd2a-11eb-aeee-0026553eb10a} - "G:\SETUP.EXE" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e4c5c271-bd2a-11eb-aeee-0026553eb10a} - "G:\STARTUP.EXE" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e75d63f3-1f92-11ec-af44-0026553eb10a} - "G:\Setup.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e8886e93-1ed8-11ec-af43-0026553eb10a} - "G:\OPPODriver.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {e8886e9f-1ed8-11ec-af43-0026553eb10a} - "G:\OPPODriver.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {eb7325bb-ead4-11eb-af0f-0026553eb10a} - "I:\startme.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {f87d3431-bc96-11eb-aeee-0026553eb10a} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\MountPoints2: {f8d149f9-c03b-11eb-aef1-0026553eb10a} - "G:\HTC_Sync_Manager_PC.exe" HKLM\...\Windows x64\Print Processors\Canon MG8200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAV.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG8200 series: C:\Windows\system32\CNMLMAV.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Fichier non signé] HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\Windows\system32\CNAS0MOK.DLL [1282048 2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\EPSON L380 Series 64MonitorBE: C:\Windows\system32\E_YLMBRQE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\system32\nitrolocalmon2.dll [29704 2012-03-25] (Nitro PDF Software -> Nitro PDF Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-07] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] -> HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\advpack.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation) AppInit_DLLs-x32: C:\PROGRA~1\COMMON~1\System\symsrv.dll => C:\Program Files\Common Files\system\symsrv.dll [73436 2021-10-28] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {05E750C4-F318-4C8C-89C0-47BCA3D5ADBC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002UA => C:\Users\JessManleMeq\AppData\Local\Google\Update\GoogleUpdate.exe Task: {0C0308D1-D25B-41F4-929F-25DE4B752EEB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002Core => C:\Users\JessManleMeq\AppData\Local\Google\Update\GoogleUpdate.exe Task: {0F4A4C0D-90F6-4DF5-9576-95F5D3235423} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {214CB9FB-7892-4302-B300-B3350EBDAFA3} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {318839F8-25DF-47A5-BE02-BFD97FD77426} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3B9AF75F-30D6-4AC6-BA04-96925D2F7DBF} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK Task: {44100A67-3423-4B99-8EA1-6CC41716E1AE} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {50D836AA-669C-4A70-98BB-E16D817D8609} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-07-07] (Adobe Inc. -> Adobe) Task: {5E2AF35A-6ACC-4EE8-8F9B-486FB7635C46} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {6571B773-6223-4724-B2BC-D238DBCEA186} - System32\Tasks\CCleanerSkipUAC - JessManleMeq => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd) Task: {7587860D-01C0-4B88-8BD0-FFD91A14CB56} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {86180294-B37A-4B7E-BFBD-97D9CED5B7D5} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe Task: {8AFC38FD-5295-4C4D-9FE1-44ABDED9411C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe Task: {94C5DBFD-D1F8-4D25-A65A-0EF6CD09288B} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe Task: {99959940-39A5-4B10-9EB3-53BC7DB645C8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {A57BFC7F-AF2E-492F-B6D2-10C218D4FAE7} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml" Task: {B3C49DAC-6507-414B-BF65-D343AB303627} - System32\Tasks\Uninstaller_SkipUac_JessManleMeq => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5276944 2018-11-27] (IObit Information Technology -> IObit) Task: {CEA7C566-5D8C-4FA6-801B-61F2E06D714E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe Task: {D0E1293C-DD28-433B-BDA9-4BC9B1D7F192} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {D6053C8B-7026-4107-8317-F45718EA2F7D} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe Task: {D774A178-031C-4E03-82D6-C06EBDACBD99} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-09] (Mozilla Corporation -> Mozilla Foundation) Task: {DE9C1265-8553-4CDF-82C2-448658C51095} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EA0A7FB3-9F0B-4380-81E6-E6F087037619} - System32\Tasks\Opera scheduled Autoupdate 1632481439 => C:\Users\JessManleMeq\AppData\Local\Programs\Opera\launcher.exe "C:\Windows\System32\Tasks\Microsoft\Windows\Google" n'a pas pu être déverrouillé. <==== ATTENTION "C:\Windows\System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIW" a été déverrouillé. <==== ATTENTION Task: {F1E3C439-AD68-4F6E-9279-1323735B24BB} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIW => C:\Windows\SysWOW64\MUI\dispspec\H-1-75-52\IS_1.3.85.13.exe (Accès refusé) <==== ATTENTION Task: {F20F792D-926A-4670-BC06-AC67B99D4266} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe Task: {FA448C76-724D-4700-BF97-0B65CF80D53B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe Task: {FA97F8B9-3C8F-4733-BBF2-F08BA28C110D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FF7897FA-0844-4C6C-BD82-D6D248E53809} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2021-07-07] (Adobe Inc. -> Adobe) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [176589 2006-02-28] (Apple Computer, Inc.) [Fichier non signé] Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 196.192.32.5 41.188.9.130 Tcpip\..\Interfaces\{3f1311cd-7629-4c3f-ae11-3ba00c7644d8}: [DhcpNameServer] 192.168.0.1 196.192.32.5 41.188.9.130 Tcpip\..\Interfaces\{b803e9c1-95a5-46ba-8bcd-224a617ac644}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{d6fa44ea-a082-405d-b924-0a63b242f2d4}: [DhcpNameServer] 192.168.42.129 Edge: ======= Edge Profile: C:\Users\JessManleMeq\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-12] Edge Extension: (IDM Integration Module) - C:\Users\JessManleMeq\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2021-07-19] Edge HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2021-07-17] Edge HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02] FireFox: ======== FF DefaultProfile: ds9jf3p5.default FF ProfilePath: C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default [2021-10-28] FF Notifications: Mozilla\Firefox\Profiles\ds9jf3p5.default -> hxxps//www.instagram.com; hxxps//www.hutgaming.com; hxxps//thehugejournal.com; hxxps//talkmill.com.ng; hxxps//txxx.com; hxxps//upornia.com; hxxps//fr.biguz.net FF Extension: (Social Video Downloader) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{00e68183-fc7d-4a91-b5cc-f7f8272386db}.xpi [2021-07-19] FF Extension: (Flash Player 2021) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{6cc0a66e-ae3d-4cd8-9a03-5cd93b392903}.xpi [2021-09-23] FF Extension: (Videos Downloader pour Facebook) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{814a14eb-b15c-49d7-ad8c-302875a54b45}.xpi [2021-07-22] FF Extension: (Video DownloadHelper) - C:\Users\JessManleMeq\AppData\Roaming\Mozilla\Firefox\Profiles\ds9jf3p5.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-19] FF Extension: (IDM CC) - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5 [2021-10-03] [] [non signé] FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5 FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\JessManleMeq\AppData\Roaming\IDM\idmmzcc5 FF HKU\S-1-5-21-1599086502-872597112-702781568-1002\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2021-07-07] (Adobe Inc. -> ) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) [Fichier non signé] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Pas de fichier] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2021-07-07] (Adobe Inc. -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-08-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Pas de fichier] FF Plugin HKU\S-1-5-21-1599086502-872597112-702781568-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\JessManleMeq\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies SF -> Unity Technologies ApS) StartMenuInternet: FIREFOX.EXE - d:\Program Files (x86)\Mozilla Firefox\firefox.exe FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-branding.js [2012-01-29] FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-l10n.js [2012-01-29] FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox.js [2012-01-29] FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\reporter.js [2012-01-29] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default [2021-10-29] CHR Notifications: Default -> hxxps//agetintopc.com; hxxps//en.y2mate.guru; hxxps//icrypto.media; hxxps//noirporno.com; hxxps//web.skype.com; hxxps//wholehugewords.com; hxxps//www.facebook.com; hxxps//www.femmeactuelle.fr; hxxps//www.iskysoft.com; hxxps//www.mp3juices.cc; hxxps//www.santemagazine.fr; hxxps//www.y2mate.com CHR Extension: (Slides) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-20] CHR Extension: (Docs) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-07-20] CHR Extension: (Google Drive) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-07-20] CHR Extension: (YouTube) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-07-20] CHR Extension: (Sheets) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-20] CHR Extension: (Google Docs hors connexion) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-13] CHR Extension: (360 Internet Protection) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2021-09-17] CHR Extension: (IDM Integration Module) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2021-10-29] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-20] CHR Extension: (Gmail) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-07-20] CHR Extension: (Chrome Media Router) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-20] CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-06] CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-10-06] CHR NewTab: Profile 1 -> "active": true, "entry": "chrome-extension://imhlianhlhdicjchlbmbfaefhhjencbe/newtab.html" CHR Extension: (Slides) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-05] CHR Extension: (Docs) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-05] CHR Extension: (Google Drive) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-05] CHR Extension: (OrangeMonkey) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ekmeppjgajofkpiofbebgcbohbmfldaf [2021-08-05] CHR Extension: (Sheets) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-05] CHR Extension: (Google Docs hors connexion) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-05] CHR Extension: (NewTab) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\imhlianhlhdicjchlbmbfaefhhjencbe [2021-08-05] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-05] CHR Extension: (Chrome Media Router) - C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-05] CHR Profile: C:\Users\JessManleMeq\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-06] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02] CHR HKU\S-1-5-21-1599086502-872597112-702781568-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ekmeppjgajofkpiofbebgcbohbmfldaf] CHR HKLM-x32\...\Chrome\Extension: [ekmeppjgajofkpiofbebgcbohbmfldaf] CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] CHR HKLM-x32\...\Chrome\Extension: [imhlianhlhdicjchlbmbfaefhhjencbe] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-05-02] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-07-07] (Adobe Inc. -> Adobe) R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2016-09-20] (Nero AG -> Nero AG) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé] S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [153360 2018-09-25] (IObit Information Technology -> IObit) R2 NitroDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe [204296 2012-03-25] (Nitro PDF Software -> Nitro PDF Software) R2 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [69640 2012-03-26] (Nitro PDF Software -> Nalpeiron Ltd.) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6486232 2021-07-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SU10Guard; C:\Windows\Y891NREA60\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-24] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare) R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-04-11] (Wondershare Technology Co.,Ltd -> Wondershare) S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [199888 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [95232 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [58200 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S0 360elam64; C:\Windows\System32\DRIVERS\360elam64.sys [17192 2021-08-25] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn) R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [494080 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S4 360Hvm; C:\Windows\System32\Drivers\360Hvm64.sys [334336 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360安全中心) R1 360netmon; C:\Windows\System32\DRIVERS\360netmon.sys [96424 2021-08-25] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [232688 2021-08-25] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) S1 deeuiznu; C:\Windows\system32\drivers\deeuiznu.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 e1express; C:\Windows\System32\drivers\e1e6032e.sys [300544 2018-09-15] (Microsoft Windows -> Intel Corporation) S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-02] (3am.com(Test) -> HTC, Corporation) S3 htcnprot; C:\Windows\system32\DRIVERS\htcnprot.sys [36928 2013-10-17] (HTC Corp. -> Windows (R) Win 7 DDK provider) S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (Sqa.com(Test) -> QUALCOMM Incorporated) S1 ifhckfof; C:\Windows\system32\drivers\ifhckfof.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37184 2018-10-16] (IObit Information Technology -> IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [43392 2018-10-16] (IObit Information Technology -> IObit) S1 pqkjqgmz; C:\Windows\system32\drivers\pqkjqgmz.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation) S3 qcusbnet; C:\Windows\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S1 sgliyhtq; C:\Windows\system32\drivers\sgliyhtq.sys [50400 2021-10-28] (Microsoft Windows -> Microsoft Corporation) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2021-10-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-10-24] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-24] (Microsoft Windows -> Microsoft Corporation) S1 wqqcvnek; C:\Windows\system32\drivers\wqqcvnek.sys [50400 2021-10-29] (Microsoft Windows -> Microsoft Corporation) S3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [282112 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S1 360Box64; system32\DRIVERS\360Box64.sys [X] S1 ahdmtgpr; \??\C:\Windows\system32\drivers\ahdmtgpr.sys [X] S1 amebuxne; \??\C:\Windows\system32\drivers\amebuxne.sys [X] S1 arnskfsi; \??\C:\Windows\system32\drivers\arnskfsi.sys [X] S1 aubgaryn; \??\C:\Windows\system32\drivers\aubgaryn.sys [X] S1 bdepluzh; \??\C:\Windows\system32\drivers\bdepluzh.sys [X] S1 cwbdyoqm; \??\C:\Windows\system32\drivers\cwbdyoqm.sys [X] S1 fxeblscf; \??\C:\Windows\system32\drivers\fxeblscf.sys [X] S1 fxgdceys; \??\C:\Windows\system32\drivers\fxgdceys.sys [X] S1 ghkbdcmx; \??\C:\Windows\system32\drivers\ghkbdcmx.sys [X] S1 hexasahd; \??\C:\Windows\system32\drivers\hexasahd.sys [X] S1 knkcihgh; \??\C:\Windows\system32\drivers\knkcihgh.sys [X] S1 naxgdefv; \??\C:\Windows\system32\drivers\naxgdefv.sys [X] S1 nuuewxsd; \??\C:\Windows\system32\drivers\nuuewxsd.sys [X] S1 ozseddjr; \??\C:\Windows\system32\drivers\ozseddjr.sys [X] S1 tjsdkjoi; \??\C:\Windows\system32\drivers\tjsdkjoi.sys [X] S1 vghojpxv; \??\C:\Windows\system32\drivers\vghojpxv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-10-29 09:23 - 2021-10-29 09:24 - 066236123 _____ C:\Users\JessManleMeq\Desktop\Les nouveautés dans Photoshop CC 2022 (mise à jour octobre 2021) - YouTube.mkv 2021-10-29 09:21 - 2021-10-29 09:23 - 000035648 _____ C:\Users\JessManleMeq\Desktop\FRST.txt 2021-10-29 09:20 - 2021-10-29 09:22 - 000000000 ____D C:\FRST 2021-10-29 09:19 - 2021-10-29 09:17 - 002310656 _____ (Farbar) C:\Users\JessManleMeq\Desktop\FRST64.exe 2021-10-29 09:05 - 2021-10-29 09:05 - 000001078 _____ C:\Users\JessManleMeq\Desktop\Internet Download Manager.lnk 2021-10-28 19:57 - 2021-10-28 20:23 - 000000000 ____D C:\Users\JessManleMeq\Desktop\image mariage 2021-10-28 18:06 - 2021-10-28 18:06 - 010130134 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - comment formater un pc windows 7 facilement et rapide_480p.mp4 2021-10-28 18:04 - 2021-10-28 18:04 - 003685113 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - TUTO 1 Comment supprimer un système dexploitation de son Ordinateur SANS LOGICIEL _480p (1).mp4 2021-10-28 18:02 - 2021-10-28 18:02 - 003685113 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - TUTO 1 Comment supprimer un système dexploitation de son Ordinateur SANS LOGICIEL _480p.mp4 2021-10-28 17:36 - 2021-10-28 17:36 - 006871078 _____ C:\Users\JessManleMeq\Downloads\y2mate.com - Désinstaller Windows 10 pour revenir sous Windows 7 8 ou 8 1_480p.mp4 2021-10-28 15:09 - 2021-10-28 15:09 - 000000000 ____D C:\Windows\SysWOW64\%LOCALAPPDATA% 2021-10-28 10:58 - 2021-10-28 10:58 - 000663764 _____ C:\Users\JessManleMeq\Downloads\CURRICULUM VITAE.pdf 2021-10-27 13:28 - 2021-10-27 13:28 - 003940184 _____ C:\Users\JessManleMeq\Downloads\Transposition Didactique.pdf 2021-10-27 13:28 - 2021-10-27 13:28 - 001347133 _____ C:\Users\JessManleMeq\Downloads\POWER Pratique d'Animations des Situations de formation.pptx 2021-10-27 13:28 - 2021-10-27 13:28 - 001144365 _____ C:\Users\JessManleMeq\Downloads\Gestion et Administration d'un Etablissement Scolaire ou de Formation L3 PDF.pdf 2021-10-27 13:28 - 2021-10-27 13:28 - 000980740 _____ C:\Users\JessManleMeq\Downloads\METHODOLOGIE DE RECHERCHE L3-converted.pdf 2021-10-27 13:28 - 2021-10-27 13:28 - 000854426 _____ C:\Users\JessManleMeq\Downloads\L3 ANGLAIS 2021.pdf 2021-10-27 13:28 - 2021-10-27 13:28 - 000622579 _____ C:\Users\JessManleMeq\Downloads\L3 methodologie-6-etapes-recherche-documentaire2.pdf 2021-10-27 13:28 - 2021-10-27 13:28 - 000339456 _____ C:\Users\JessManleMeq\Downloads\Méthodologie de recherche et de rédaction d’un mémoire.ppt 2021-10-27 13:28 - 2021-10-27 13:28 - 000051077 _____ C:\Users\JessManleMeq\Downloads\TRANSPOSITION_DIDACTIQUES.pdf 2021-10-27 13:27 - 2021-10-27 13:28 - 002812289 _____ C:\Users\JessManleMeq\Downloads\TRANSPOSITION_DIDACTIQUE INTERNE.pdf 2021-10-27 13:25 - 2021-10-27 13:25 - 000169491 _____ C:\Users\JessManleMeq\Downloads\COURS HISTOIRE EDUCATION NON FORMELLE .pdf 2021-10-27 13:25 - 2021-10-27 13:25 - 000169491 _____ C:\Users\JessManleMeq\Downloads\COURS HISTOIRE EDUCATION NON FORMELLE (1).pdf 2021-10-27 13:19 - 2021-10-27 13:19 - 001466096 _____ C:\Users\JessManleMeq\Downloads\Dr Tefy DIDACTIQUE AU PRESCOLAIRE L3SE presco.pdf 2021-10-27 13:19 - 2021-10-27 13:19 - 000395117 _____ C:\Users\JessManleMeq\Downloads\Cours de Relation éducative PDF L3.pdf 2021-10-24 22:20 - 2021-10-24 22:20 - 001326726 _____ C:\Users\JessManleMeq\Desktop\SCAN0006.PDF 2021-10-23 18:04 - 2021-10-23 18:04 - 000183280 _____ C:\Users\JessManleMeq\Desktop\FANEKENA.pdf 2021-10-23 08:19 - 2021-10-23 18:05 - 002713577 _____ C:\Users\JessManleMeq\Desktop\MyTravelHealthForm.pdf 2021-10-22 18:15 - 2021-10-22 18:15 - 000001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk 2021-10-22 18:15 - 2021-10-22 18:15 - 000000000 ____D C:\ProgramData\FLEXnet 2021-10-22 18:13 - 2021-10-24 20:28 - 000000000 ____D C:\Program Files (x86)\Bonjour 2021-10-22 18:13 - 2021-10-22 18:13 - 000001296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk 2021-10-22 18:11 - 2021-10-22 18:11 - 000001480 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk 2021-10-22 18:11 - 2021-10-22 18:11 - 000001265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk 2021-10-22 18:10 - 2021-10-22 18:10 - 000000000 ____D C:\Windows\SysWOW64\spool 2021-10-22 18:09 - 2021-10-22 18:09 - 000001172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk 2021-10-22 13:16 - 2021-10-22 13:16 - 000463509 _____ C:\Users\JessManleMeq\Desktop\CV call juillet modif.pdf 2021-10-22 10:01 - 2021-10-22 10:01 - 000376361 _____ C:\Users\JessManleMeq\Desktop\CV Douane.pdf 2021-10-21 20:27 - 2021-10-21 20:27 - 000218624 _____ C:\Users\JessManleMeq\Desktop\Composition1.pub 2021-10-21 18:43 - 2021-10-21 18:43 - 000000000 ____D C:\Users\JessManleMeq\Documents\Modèles Office personnalisés 2021-10-21 17:53 - 2021-10-22 09:46 - 000000000 ____D C:\Users\JessManleMeq\Documents\HTC 2021-10-21 16:45 - 2012-03-25 23:01 - 000029704 _____ (Nitro PDF Software) C:\Windows\system32\nitrolocalmon2.dll 2021-10-21 16:45 - 2012-03-25 23:01 - 000017928 _____ (Nitro PDF Software) C:\Windows\system32\nitrolocalui2.dll 2021-10-21 16:44 - 2021-10-21 16:44 - 000002573 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 7.lnk 2021-10-21 16:44 - 2021-10-21 16:44 - 000002132 _____ C:\Users\Public\Desktop\Nitro Pro 7.lnk 2021-10-21 16:44 - 2021-10-21 16:44 - 000000000 ____D C:\Program Files\Common Files\Nitro PDF 2021-10-21 16:31 - 2021-10-21 17:53 - 000000000 ____D C:\Program Files (x86)\Photoshop 2021-10-21 16:15 - 2021-10-21 16:15 - 000002990 _____ C:\Windows\system32\Tasks\Uninstaller_SkipUac_JessManleMeq 2021-10-21 16:15 - 2021-10-21 16:15 - 000001424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk 2021-10-21 16:15 - 2021-10-21 16:15 - 000001412 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk 2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\IObit 2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\ProductData 2021-10-21 16:15 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller 2021-10-21 16:13 - 2021-10-21 16:31 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\IObit 2021-10-21 16:13 - 2021-10-21 16:15 - 000000000 ____D C:\ProgramData\IObit 2021-10-21 16:13 - 2021-10-21 16:13 - 000000000 ____D C:\Program Files (x86)\IObit 2021-10-21 15:37 - 2021-10-21 15:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Debenu PDF Tools Pro 2021-10-21 15:37 - 2021-10-21 15:37 - 000000000 ____D C:\ProgramData\Debenu 2021-10-21 15:37 - 2021-10-21 15:37 - 000000000 ____D C:\Program Files (x86)\Debenu 2021-10-19 10:00 - 2021-10-27 13:21 - 000000000 ____D C:\Users\JessManleMeq\Downloads\Video 2021-10-09 20:21 - 2021-10-27 08:57 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2021-10-08 13:28 - 2021-10-26 13:55 - 000001136 _____ C:\Users\JessManleMeq\Desktop\Format Factory.lnk 2021-10-08 13:28 - 2021-10-08 13:28 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory 2021-10-07 13:18 - 2021-10-07 13:18 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\OfficeBSCache-MyComputer 2021-10-06 14:52 - 2021-10-29 09:13 - 000000000 ____D C:\Users\JessManleMeq\Desktop\DOCUMMENT MIKA 2021-10-04 03:15 - 2021-10-04 03:15 - 000002221 _____ C:\Users\Public\Desktop\Google Earth.lnk 2021-10-04 03:15 - 2021-10-04 03:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth 2021-10-04 02:24 - 2021-10-04 02:24 - 000003860 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002UA 2021-10-04 02:24 - 2021-10-04 02:24 - 000003592 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1599086502-872597112-702781568-1002Core 2021-10-04 02:24 - 2021-10-04 02:24 - 000002295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk 2021-10-04 02:12 - 2021-10-04 02:12 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Google 2021-10-03 14:07 - 2021-10-29 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2021-10-03 14:06 - 2021-10-03 15:18 - 000000000 ____D C:\Users\JessManleMeq\Downloads\idm.6.39.2+patch.1.2 2021-10-02 17:53 - 2021-10-02 17:53 - 000000000 ____D C:\ProgramData\360sd 2021-09-24 15:32 - 2019-06-04 22:35 - 000000000 ____D C:\ProgramData\Arobas Music 2021-09-24 14:04 - 2021-09-26 17:56 - 000004268 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1632481439 2021-09-24 14:04 - 2021-09-26 17:56 - 000001517 _____ C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2021-09-23 16:53 - 2021-09-23 16:53 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\IsolatedStorage 2021-09-23 03:59 - 2021-09-23 03:59 - 000000000 ____D C:\Users\JessManleMeq\Documents\Modèl invitation 2021-09-20 07:11 - 2021-09-20 07:11 - 000000000 ____D C:\Program Files (x86)\Canon 2021-09-20 02:56 - 2021-09-24 14:03 - 000000000 ____D C:\Users\JessManleMeq\Downloads\TS Recommended Apps 2021-09-17 12:28 - 2021-09-17 12:28 - 000000000 __SHD C:\Users\JessManleMeq\AppData\Roaming\360Quarant 2021-09-17 12:28 - 2021-09-17 12:28 - 000000000 ____D C:\Windows\Tasks\360Disabled 2021-09-17 04:15 - 2021-10-22 12:06 - 000000000 __SHD C:\$360Section 2021-09-17 04:14 - 2021-09-17 12:29 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360safe 2021-09-17 03:47 - 2021-10-29 09:20 - 000000000 ____D C:\ProgramData\360Quarant 2021-09-17 03:45 - 2021-10-28 15:09 - 000000000 _RSHD C:\360SANDBOX 2021-09-17 03:45 - 2021-10-28 08:02 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\360WD 2021-09-17 03:45 - 2021-10-21 01:47 - 000000000 ____D C:\ProgramData\360safe 2021-09-17 03:45 - 2021-09-17 03:45 - 000001222 _____ C:\Users\Public\Desktop\360 Total Security.lnk 2021-09-17 03:45 - 2021-09-17 03:45 - 000000001 _____ C:\Windows\system32\Drivers\360Hvm64.dat 2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Centre 360 Security 2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360DesktopLite 2021-09-17 03:45 - 2021-09-17 03:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre 360 Security 2021-09-17 03:45 - 2021-08-25 09:24 - 000494080 _____ (360.cn) C:\Windows\system32\Drivers\360FsFlt.sys 2021-09-17 03:45 - 2021-08-25 09:24 - 000334336 _____ (360安全中心) C:\Windows\system32\Drivers\360Hvm64.sys 2021-09-17 03:45 - 2021-08-25 09:24 - 000232688 _____ (360.cn) C:\Windows\system32\Drivers\BAPIDRV64.sys 2021-09-17 03:45 - 2021-08-25 09:24 - 000199888 _____ (360.cn) C:\Windows\system32\Drivers\360AntiHacker64.sys 2021-09-17 03:45 - 2021-08-25 09:24 - 000096424 _____ (360.cn) C:\Windows\system32\Drivers\360netmon.sys 2021-09-17 03:45 - 2021-08-25 09:24 - 000095232 _____ (360.cn) C:\Windows\system32\Drivers\360AvFlt.sys 2021-09-17 03:45 - 2021-08-25 09:24 - 000058200 _____ (360.cn) C:\Windows\system32\Drivers\360Camera64.sys 2021-09-17 03:45 - 2021-08-25 09:24 - 000017192 _____ (360.cn) C:\Windows\system32\Drivers\360elam64.sys 2021-09-17 03:44 - 2021-09-20 03:51 - 000000000 ____D C:\ProgramData\360TotalSecurity 2021-09-17 03:44 - 2021-09-17 12:27 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\360TotalSecurity 2021-09-17 03:44 - 2021-09-17 03:44 - 000000000 ____D C:\Program Files (x86)\360 2021-09-17 03:42 - 2021-10-29 08:58 - 000000000 ____D C:\Program Files (x86)\SMADAV 2021-09-17 03:42 - 2021-09-17 04:10 - 000000000 __SHD C:\[Smad-Cage] 2021-09-17 03:42 - 2021-09-17 03:42 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Smadav 2021-09-16 11:54 - 2021-09-16 11:54 - 000000000 ____D C:\Users\JessManleMeq\Documents\KONAMI 2021-09-16 11:50 - 2021-09-16 11:50 - 000000000 ____D C:\Program Files (x86)\KONAMI 2021-09-09 04:34 - 2021-10-21 15:40 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Mobisystems 2021-09-09 04:34 - 2021-09-10 03:36 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\MobiSystems Inc 2021-09-09 04:34 - 2021-09-09 04:34 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\CrashRpt 2021-09-09 02:27 - 2021-09-09 02:27 - 000000000 ____D C:\Program Files\MobiSystems 2021-09-08 12:27 - 2021-09-08 16:02 - 000000000 ____D C:\Program Files (x86)\AlterPDF Pro 2021-09-08 12:27 - 2021-09-08 12:27 - 000000000 ____D C:\Users\JessManleMeq\Documents\AlterPDF Pro 2021-09-01 13:43 - 2021-09-01 13:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign5ac61837f9546231 2021-09-01 13:43 - 2021-09-01 13:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign1a3164a1503f808b 2021-08-30 09:27 - 2021-08-30 09:27 - 000000769 _____ C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nouveau dossier (5).lnk 2021-08-30 09:16 - 2021-08-30 09:16 - 000003662 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask 2021-08-29 13:59 - 2021-08-29 13:59 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ 2021-08-29 13:54 - 2021-08-29 13:54 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\VirtualDJ 2021-08-28 17:37 - 2021-08-28 17:37 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Full 2021-08-28 13:15 - 2021-08-29 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico 2021-08-28 13:15 - 2021-08-29 16:55 - 000000000 ____D C:\Program Files\KMSpico 2021-08-28 13:15 - 2021-08-28 13:15 - 000003822 _____ C:\Windows\system32\Tasks\AutoPico Daily Restart 2021-08-25 09:16 - 2021-08-25 09:16 - 000000000 ____D C:\MSI 2021-08-24 10:16 - 2021-08-24 10:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsignf586efb624b54f5d 2021-08-24 10:16 - 2021-08-24 10:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign0ed5c78b4c215546 2021-08-22 17:29 - 2021-08-22 17:29 - 000001024 ____H C:\AMTAG.BIN 2021-08-19 07:43 - 2021-09-08 16:03 - 000002928 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - JessManleMeq 2021-08-14 08:36 - 2021-08-14 08:37 - 000000000 ____D C:\Windows\Y6SEPW 2021-08-13 12:59 - 2021-08-13 12:59 - 000000000 ____D C:\Windows\system32\appmgmt 2021-08-07 09:17 - 2021-08-07 09:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign84efd1a3276a422e 2021-08-07 09:16 - 2021-08-07 09:16 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Tempzxpsign59bb80d831ff5b0c 2021-08-06 16:44 - 2021-08-06 16:44 - 000002104 _____ C:\Users\Public\Desktop\HTC Sync Manager.lnk 2021-08-06 12:48 - 2021-09-02 06:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2021-08-05 17:29 - 2021-08-05 17:29 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\dvdcss 2021-08-05 10:18 - 2021-10-21 16:25 - 000000000 ____D C:\Program Files\Adobe 2021-08-05 10:18 - 2021-08-05 10:21 - 000000000 ____D C:\Program Files\Common Files\Adobe 2021-07-31 19:18 - 2021-07-31 19:18 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Temp ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-10-29 09:20 - 2018-09-15 10:31 - 000000000 ____D C:\Windows\INF 2021-10-29 09:16 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\IDM 2021-10-29 09:14 - 2021-07-17 11:43 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Everything 2021-10-29 09:14 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\DMCache 2021-10-29 09:14 - 2021-05-18 14:02 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager 2021-10-29 09:06 - 2018-09-15 10:33 - 000000000 ____D C:\Program Files\Common Files\system 2021-10-29 09:05 - 2021-05-18 14:02 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2021-10-29 09:01 - 2021-05-25 11:09 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-10-29 09:00 - 2021-05-26 06:53 - 000000000 ____D C:\Program Files (x86)\ Gsm4Crack Mega Tool V1.0 2021-10-29 08:59 - 2021-06-11 15:23 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\CrashDumps 2021-10-29 08:57 - 2018-09-15 10:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-10-29 07:45 - 2020-11-10 21:30 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-10-29 05:51 - 2021-05-18 10:23 - 000004188 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{2CA8E02F-B989-499B-BC58-DD5E55036FFE} 2021-10-29 02:57 - 2021-07-07 15:33 - 000000000 ____D C:\Users\JessManleMeq\AppData\LocalLow\Mozilla 2021-10-28 17:44 - 2021-07-12 11:21 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\vlc 2021-10-28 15:25 - 2021-05-18 10:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Packages 2021-10-28 15:18 - 2020-11-10 21:36 - 001771410 _____ C:\Windows\system32\PerfStringBackup.INI 2021-10-28 15:18 - 2018-09-15 19:38 - 000791936 _____ C:\Windows\system32\perfh00C.dat 2021-10-28 15:18 - 2018-09-15 19:38 - 000150004 _____ C:\Windows\system32\perfc00C.dat 2021-10-28 15:11 - 2021-07-14 16:56 - 000000000 ____D C:\Program Files\CCleaner 2021-10-28 15:10 - 2021-07-07 16:37 - 000000000 ____D C:\Windows\Y891NREA60 2021-10-28 15:10 - 2021-06-23 18:11 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\HTC MediaHub 2021-10-28 15:10 - 2020-11-10 21:30 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-10-28 15:09 - 2021-05-18 10:16 - 000000000 ____D C:\Users\JessManleMeq 2021-10-28 15:09 - 2018-09-15 09:09 - 000065536 _____ C:\Windows\system32\config\BBI 2021-10-28 13:47 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\system32\NDF 2021-10-28 08:31 - 2021-07-07 15:33 - 000000000 ____D C:\ProgramData\Mozilla 2021-10-26 13:55 - 2021-07-22 09:52 - 000001295 _____ C:\Users\JessManleMeq\Desktop\Wondershare EdrawMax.lnk 2021-10-26 13:55 - 2021-06-17 10:20 - 000001076 _____ C:\Users\JessManleMeq\Desktop\UltraISO.lnk 2021-10-24 08:54 - 2020-11-10 21:30 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-10-23 05:58 - 2020-11-10 21:30 - 002451832 _____ C:\Windows\system32\FNTCACHE.DAT 2021-10-23 05:57 - 2021-07-18 07:07 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Everything 2021-10-22 21:52 - 2021-05-19 16:35 - 000000000 ____D C:\ProgramData\Adobe 2021-10-22 21:52 - 2021-05-19 16:34 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Adobe 2021-10-22 18:16 - 2021-05-18 10:17 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Adobe 2021-10-22 18:14 - 2021-05-19 16:34 - 000000000 ____D C:\Program Files (x86)\Adobe 2021-10-21 16:43 - 2021-05-21 15:42 - 000000000 ____D C:\Users\JessManleMeq\AppData\Roaming\Downloaded Installations 2021-10-21 12:52 - 2021-07-14 16:56 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-10-19 08:57 - 2021-07-20 14:38 - 000000472 __RSH C:\ProgramData\ntuser.pol 2021-10-12 22:17 - 2021-06-25 22:39 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\ElevatedDiagnostics 2021-10-12 16:03 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\system32\spool 2021-10-09 23:57 - 2021-07-07 15:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-10-09 23:57 - 2021-07-07 14:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-10-09 20:21 - 2021-07-07 15:33 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-10-09 00:44 - 2021-05-19 23:17 - 000000000 ____D C:\Program Files (x86)\FormatFactory 2021-10-08 13:22 - 2021-05-20 17:40 - 000000000 ____D C:\Program Files (x86)\FreeTime 2021-10-07 03:43 - 2021-07-19 11:34 - 000002317 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-10-07 03:43 - 2021-07-19 11:34 - 000002276 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-10-07 03:42 - 2021-07-01 10:59 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-10-07 03:42 - 2021-07-01 10:59 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-10-07 03:42 - 2021-07-01 10:59 - 000000000 ____D C:\Program Files (x86)\Google 2021-10-06 13:15 - 2020-11-10 15:29 - 000000000 ____D C:\Windows\Panther 2021-10-06 13:15 - 2018-09-15 10:33 - 000000000 ____D C:\Windows\LiveKernelReports 2021-10-04 22:13 - 2021-05-18 14:03 - 000000000 ____D C:\Users\JessManleMeq\Downloads\Compressed 2021-10-04 02:24 - 2021-07-01 10:59 - 000000000 ____D C:\Users\JessManleMeq\AppData\Local\Google 2021-10-04 02:16 - 2021-07-19 11:34 - 000000000 ____D C:\Program Files\Google ==================== Fichiers à la racine de certains dossiers ======== 2021-05-20 08:16 - 2021-05-20 08:16 - 000000000 _____ () C:\Users\JessManleMeq\AppData\Roaming\.NANotifyHere 2021-07-10 12:47 - 2021-09-23 02:59 - 000000096 _____ () C:\Users\JessManleMeq\AppData\Roaming\Camdata.ini 2021-07-10 12:47 - 2021-09-23 02:59 - 000000408 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamLayout.ini 2021-07-10 12:47 - 2021-09-23 02:59 - 000000408 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamShapes.ini 2021-07-10 12:32 - 2021-09-23 02:59 - 000004534 _____ () C:\Users\JessManleMeq\AppData\Roaming\CamStudio.cfg 2021-05-20 08:26 - 2014-12-19 10:43 - 000000034 _____ () C:\Users\JessManleMeq\AppData\Roaming\pdfdrawcodec.dll 2021-05-19 14:26 - 2021-09-23 02:58 - 000000096 _____ () C:\Users\JessManleMeq\AppData\Roaming\version2.xml 2021-05-21 02:15 - 2021-05-21 02:15 - 000000000 _____ () C:\Users\JessManleMeq\AppData\Local\oobelibMkey.log 2021-05-18 15:54 - 2021-05-18 15:54 - 000000017 _____ () C:\Users\JessManleMeq\AppData\Local\resmon.resmoncfg ==================== SigCheckExt ========================= 2021-05-19 09:46 - 2012-06-14 18:18 - 000359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL 2021-05-19 09:46 - 2012-06-14 18:18 - 000039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL 2021-05-25 11:13 - 1998-11-13 12:16 - 000308224 _____ (InstallShield Software Corporation) C:\Windows\IsUn040c.exe 2021-05-19 09:46 - 2012-06-14 18:18 - 000366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL 2021-06-19 13:58 - 1998-09-02 11:28 - 001088272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\danim.dll 2006-05-11 01:15 - 2006-05-11 01:15 - 000561179 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dao360.dll 2006-02-28 12:41 - 2006-02-28 12:41 - 000061440 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dns-sd.exe 2006-02-28 12:41 - 2006-02-28 12:41 - 000053248 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dnssd.dll 2021-06-19 13:58 - 1998-08-27 07:51 - 000182032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft3.dll 2021-06-19 13:58 - 1998-09-02 11:28 - 000155408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LMRT.dll 2021-06-19 13:58 - 1998-09-02 11:28 - 000038160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LMRTREND.dll 2006-05-11 01:15 - 2006-05-11 01:15 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msbind.dll 2006-05-11 01:15 - 2006-05-11 01:15 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msderun.dll 2003-04-18 17:46 - 2003-04-18 17:46 - 001233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4.dll 2003-04-18 17:29 - 2003-04-18 17:29 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll 2021-06-19 13:58 - 1998-09-02 11:02 - 000194320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qcut.dll 2021-06-19 13:58 - 1998-08-20 13:38 - 000217984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\strmdll.dll 2007-03-21 20:54 - 2007-03-21 20:54 - 000077312 _____ (Twain Working Group) C:\Windows\SysWOW64\TWAIN_32.DLL 2007-03-21 20:54 - 2007-03-21 20:54 - 000048560 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_16.EXE 2007-03-21 20:54 - 2007-03-21 20:54 - 000069632 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_32.EXE 2021-06-19 13:58 - 1998-09-02 11:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unam4ie.exe 2021-06-19 13:58 - 1998-08-17 12:21 - 000010240 _____ C:\Windows\SysWOW64\vidx16.dll 2021-06-19 13:58 - 2021-06-19 13:58 - 000002272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll 2021-06-19 13:58 - 2021-06-19 13:58 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll 2021-10-29 09:19 - 2021-10-29 09:17 - 002310656 _____ (Farbar) C:\Users\JessManleMeq\Desktop\FRST64.exe 2021-05-20 08:26 - 2014-12-19 10:43 - 000000034 _____ C:\Users\JessManleMeq\AppData\Roaming\pdfdrawcodec.dll ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 description Windows Boot Manager locale fr-FR inherit {globalsettings} flightsigning Yes default {current} resumeobject {77a7ad1c-5440-11eb-b5c0-92dd239c83a2} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {77a7ad1a-5440-11eb-b5c0-92dd239c83a2} device ramdisk=[C:]\Recovery\77a7ad1a-5440-11eb-b5c0-92dd239c83a2\Winre.wim,{77a7ad1b-5440-11eb-b5c0-92dd239c83a2} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\77a7ad1a-5440-11eb-b5c0-92dd239c83a2\Winre.wim,{77a7ad1b-5440-11eb-b5c0-92dd239c83a2} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.exe description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {77a7ad1e-5440-11eb-b5c0-92dd239c83a2} displaymessageoverride Recovery recoveryenabled Yes flightsigning Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {77a7ad1c-5440-11eb-b5c0-92dd239c83a2} nx OptIn bootmenupolicy Legacy Chargeur de d‚marrage Windows ----------------------------- identificateur {77a7ad1e-5440-11eb-b5c0-92dd239c83a2} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{77a7ad1f-5440-11eb-b5c0-92dd239c83a2} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{77a7ad1f-5440-11eb-b5c0-92dd239c83a2} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {77a7ad1c-5440-11eb-b5c0-92dd239c83a2} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {77a7ad1e-5440-11eb-b5c0-92dd239c83a2} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {77a7ad1f-5440-11eb-b5c0-92dd239c83a2} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================