Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x86) Version: 02.08.2018
Exécuté par Léa (administrateur) sur LÉA-PC (12-08-2018 23:29:35)
Exécuté depuis C:\Users\Léa\Desktop
Profils chargés: Léa (Profils disponibles: Léa)
Platform: Microsoft Windows 7 Édition Familiale Premium  Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\ProgramData\NetEngine\bin\D8\netengine.exe
(Abengine) C:\Program Files\HighlightSearches\abengine.exe
() C:\Program Files\908C8F9D-D24A-4837-8EC1-08BF193F6091\etmajyzoqm.exe
(Just Develop It) C:\Program Files\MyPC Backup\BackupStack.exe
() C:\Program Files\FastPlayer\FPUpdaterService.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
() C:\Program Files\005\mtgaotushb32.exe
() C:\Users\Léa\AppData\Roaming\006A7466-1430321503-E011-95AF-F2B0CA726541\nsdA822.tmp
() C:\Program Files\PenWes\DNSService.exe
() C:\Windows\rcore.exe
() C:\Users\Léa\AppData\Roaming\006A7466-1430321503-E011-95AF-F2B0CA726541\jnsj6382.tmp
() C:\Users\Léa\AppData\Local\ConvertAd\CASrv.exe
() C:\Users\Léa\AppData\Roaming\SoftwareUpdater\SUsrv.exe
() C:\Users\Léa\AppData\Roaming\VOPackage\VOsrv.exe
(Aztec Media Inc) C:\Program Files\Assets Manager\smdmf\SmdmFService.exe
(ShopperPro) C:\Program Files\Common Files\ShopperPro\spbiu.exe
() C:\Users\Léa\AppData\Local\006A7466-1430328938-E011-95AF-F2B0CA726541\cnsfB3E7.tmp
() C:\Program Files\Uoda4yzvhmjrlntf\ogm4zjuzmmvlmde.exe
() C:\Users\Léa\AppData\Roaming\Compatibility Verifier\compatibilitychecksvc.exe
(Word Proser) C:\Program Files\WordProser_1.10.0.6\Service\wpsvc.exe
(Time Lapse Solutions) C:\ProgramData\JUCuYG\GXyCRFA.exe
(Cinema PlusV29.04) C:\Program Files\CinemaPlus-3.2cV29.04\576986dd-7894-4fea-8f2c-a74ec4862c94-1-6.exe
(Cinema PlusV29.04) C:\Program Files\CinemaPlus-3.2cV29.04\576986dd-7894-4fea-8f2c-a74ec4862c94-6.exe
(InstallMoon) C:\Program Files\GoHD\e29da3ee-f709-4bd1-9e68-f6aed42bdb9f-6.exe
(globalUpdate) C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
() C:\Program Files\Godzilla Shopper\godzilla_shopper_helper_service.exe
() C:\Program Files\version86BlockAndSurf\o8BlockAndSurft89.exe
() C:\Program Files\ASP\AdvancedSystemProtector.exe
() C:\Program Files\PenWes\dnshelper.exe
(V-9.1HQV21.09) C:\Program Files\V-9.1HQV21.09\f3598b56-d163-42e8-82dc-b238237a5d3a.exe
() C:\Program Files\MaxComputerCleaner_v17.337\MaxComputerCleaner_Maintenance.exe
(SUPER PC TOOLS LIMITED) C:\Program Files\Super Optimizer\SupOptSmartScan.exe
() C:\Users\Léa\AppData\Local\fst_fr_332\upfst_fr_332.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files\fst_fr_332\fst_fr_332.exe
() C:\Program Files\Uoda4yzvhmjrlntf\odu4ntu5mjzlyje.exe
() C:\Program Files\gmsd_fr_148\gmsd_fr_148.exe
(SoftBrain Technologies Ltd.) C:\Users\Léa\AppData\Local\SmartWeb\SmartWebHelper.exe
() C:\Program Files\gmsd_fr_472\gmsd_fr_472.exe
(Windesk Winsearch) C:\Program Files\WindeskWinsearch\Windesk Winsearch.exe
() C:\Program Files\gmsd_fr_486\gmsd_fr_486.exe
() C:\Program Files\gmsd_fr_596\gmsd_fr_596.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
() C:\Program Files\Sogy4ntu1mjjlzdf\ogi4mzv2mnnlbdf.exe
(Facebook Inc.) C:\Users\Léa\AppData\Local\Facebook\Update\FacebookUpdate.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\AppleIEDAV.exe
() C:\Users\Léa\AppData\Roaming\cacaoweb\cacaoweb.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\Program Files\Groovorio\BRS\brs.exe
(SoftBrain Technologies Ltd.) C:\Users\Léa\AppData\Local\SmartWeb\SmartWebApp.exe
(Crossbrowse) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
(Nosibay) C:\Users\Léa\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe
(Nosibay) C:\Users\Léa\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe
() C:\Program Files\FastPlayer\WebBrowser.exe
(Super PC Tools Ltd) C:\ProgramData\{737ded0b-5f8b-d84e-737d-ded0b5f8b42d}\hqghumeaylnlf.exe
(MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe
() C:\Program Files\RapidMediaConverter\RapidMediaConverterApp.exe
( ) C:\Program Files\version86BlockAndSurf\HVujmAT2y.exe
(Crossbrowse) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
() C:\ProgramData\NetEngine\bin\D8\netengine.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe
() C:\Users\Léa\AppData\Local\ConvertAd\ConvertAd.exe
(Web Bar Media) C:\Program Files\WebBar\2.0.5574.22315\wb.exe
() C:\Users\Léa\AppData\Local\Temp\isdka5gDYdfn\ISightHost.exe
() C:\Users\Léa\AppData\Local\006A7466-1430328938-E011-95AF-F2B0CA726541\ansfAFA2.exe
(Nosibay) C:\Users\Léa\AppData\Roaming\Nosibay\Bubble Dock\Bubble Dock.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Pay By Ads LTD) C:\Program Files\Pay-By-Ads\Yahoo! Search\1.3.24.4\dsrlte.exe
(Pay By Ads LTD) C:\Program Files\Pay-By-Ads\Yahoo! Search\1.3.24.4\dsrsetup.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
() C:\Users\Léa\AppData\Roaming\Compatibility Verifier\compatibilitycheck.exe
() C:\Users\Léa\AppData\Roaming\Compatibility Verifier\compatibilitycheck.exe
() C:\Users\Léa\AppData\Roaming\Compatibility Verifier\compatibilitycheck.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [fst_fr_332] => C:\Program Files\fst_fr_332\fst_fr_332.exe [3975648 2014-08-05] ()
HKLM\...\Run: [AnyProtect Scanner] => C:\Program Files\AnyProtectEx\AnyProtect.exe [6434816 2015-04-29] (AnyProtect.com)
HKLM\...\Run: [WinCheck] => C:\Users\Léa\AppData\Local\006A7466-1430328786-E011-95AF-F2B0CA726541\bnsz46D2.exe [326144 2015-04-29] ()
HKLM\...\Run: [CrashMon] => "C:\Program Files\Uoda4yzvhmjrlntf\odu4ntu5mjzlyje.exe" "UniversalUpdater" "hxxp://log.data-url.com/crash/"
HKLM\...\Run: [gmsd_fr_148] => C:\Program Files\gmsd_fr_148\gmsd_fr_148.exe [3977360 2015-01-27] ()
HKLM\...\Run: [SmartWeb] => C:\Users\Léa\AppData\Local\SmartWeb\SmartWebHelper.exe [270696 2014-12-31] (SoftBrain Technologies Ltd.)
HKLM\...\Run: [SPDriver] => .\JSDriver\1.42.0.1802\jsdrv.exe
HKLM\...\Run: [gmsd_fr_209] => [X]
HKLM\...\Run: [gmsd_fr_472] => C:\Program Files\gmsd_fr_472\gmsd_fr_472.exe [3983816 2015-04-24] ()
HKLM\...\Run: [Windesk Winsearch] => C:\Program Files\WindeskWinsearch\Windesk Winsearch.exe [1061256 2015-04-08] (Windesk Winsearch)
HKLM\...\Run: [gmsd_fr_486] => C:\Program Files\gmsd_fr_486\gmsd_fr_486.exe [3983304 2015-04-29] ()
HKLM\...\Run: [gmsd_fr_596] => C:\Program Files\gmsd_fr_596\gmsd_fr_596.exe [3983528 2015-05-31] ()
HKLM\...\Run: [ogy4ntu1mjjlzdf] => C:\Program Files\Sogy4ntu1mjjlzdf\ogi4mzv2mnnlbdf.exe [2422784 2015-07-28] ()
HKLM\...\RunOnce: [MaxComputerCleaner_v17.337] => C:\Program Files\MaxComputerCleaner_v17.337\MaxComputerCleaner_Maintenance.exe [30920 2015-04-28] ()
HKLM\...\RunOnce: [upfst_fr_332.exe] => C:\Users\Léa\AppData\Local\fst_fr_332\upfst_fr_332.exe [3306464 2014-08-04] ()
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [Facebook Update] => C:\Users\Léa\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-01-03] (Facebook Inc.)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-09-15] (Apple Inc.)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [AppleIEDAV] => C:\Program Files\Common Files\Apple\Internet Services\AppleIEDAV.exe [1315144 2013-09-04] (Apple Inc.)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [cacaoweb] => C:\Users\Léa\AppData\Roaming\cacaoweb\cacaoweb.exe [568624 2017-06-29] ()
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [BRS] => C:\Program Files\Groovorio\BRS\brs.exe [1043968 2014-10-15] ()
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [SPDriver] => .\JSDriver\1.42.0.1802\jsdrv.exe
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [Super Optimizer] => C:\Program Files\Super Optimizer\SupOptLauncher.exe [676912 2015-04-27] (SUPER PC TOOLS LIMITED)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [GoogleChromeAutoLaunch_57A51ED2A17F99D753FF11A7F6568725] => C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440 2015-03-16] (Crossbrowse)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [Bubble Dock] => C:\Users\Léa\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe [666384 2015-05-13] (Nosibay)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [WindApp] => "C:\Users\Léa\AppData\Roaming\Store\WindApp\WindApp.exe" /winstartup
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Run: [Selection Tools] => C:\Users\Léa\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe [1530640 2015-04-09] (Nosibay)
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\RunOnce: [Groovorio] => wscript /E:vbscript /B "C:\Users\LAB9CF~1\AppData\Roaming\Groovorio\UpdateProc\bkup.dat"
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
AppInit_DLLs: __C:\PROGRA~1\SEARCH~1\SEARCH~1\bin\VC32LO~1.DLL => C:\Program Files\SearchProtect\SearchProtect\bin\VC32Loader.dll [213776 2015-07-02] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WebBrowserFastPlayer.lnk [2015-01-27]
ShortcutTarget: WebBrowserFastPlayer.lnk -> C:\Program Files\FastPlayer\WebBrowser.exe ()
Startup: C:\Users\Léa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk [2015-04-29]
ShortcutTarget: crossbrowse.lnk -> C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (Crossbrowse)
Startup: C:\Users\Léa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk [2015-04-29]
ShortcutTarget: hqghumeaylnlf.lnk -> C:\ProgramData\{737ded0b-5f8b-d84e-737d-ded0b5f8b42d}\hqghumeaylnlf.exe (Super PC Tools Ltd)
Startup: C:\Users\Léa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk [2015-01-27]
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
Startup: C:\Users\Léa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RapidMediaConverterApp.lnk [2015-07-28]
ShortcutTarget: RapidMediaConverterApp.lnk -> C:\Program Files\RapidMediaConverter\RapidMediaConverterApp.exe ()
Startup: C:\Users\Léa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-01-27]
ShortcutTarget: SmartWeb.lnk -> C:\Users\Léa\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyServer: [HKLM] => 127.0.0.1:8080
ProxyEnable: [.DEFAULT] => Proxy est activé.
ProxyServer: [.DEFAULT] => http=127.0.0.1:49446;https=127.0.0.1:49446
AutoConfigURL: [.DEFAULT] => http=127.0.0.1:49446;https=127.0.0.1:49446
Winsock: Catalog9 01 C:\Windows\system32\abengine.dll [341952 2015-04-22] (Abengine)
Winsock: Catalog9 02 C:\Windows\system32\abengine.dll [341952 2015-04-22] (Abengine)
Winsock: Catalog9 03 C:\Windows\system32\abengine.dll [341952 2015-04-22] (Abengine)
Winsock: Catalog9 04 C:\Windows\system32\abengine.dll [341952 2015-04-22] (Abengine)
Winsock: Catalog9 29 C:\Windows\system32\abengine.dll [341952 2015-04-22] (Abengine)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{67A49CAB-C113-4F72-94A6-903D46DB3BBF}: [NameServer] 127.0.0.1
Tcpip\..\Interfaces\{67A49CAB-C113-4F72-94A6-903D46DB3BBF}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{CFC02255-4317-4C60-9908-B544BB127F8C}: [NameServer] 127.0.0.1
Tcpip\..\Interfaces\{CFC02255-4317-4C60-9908-B544BB127F8C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.oursurfing.com/?type=hppp&ts=1430321569&z=2942f36c7e2cac516cb09d1g0z8c9e4c4oag4w0qcb&from=cmi&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1433262551&z=e1748f57934b6c5b8546266g6z9cecaoaq9o7w3w2e&from=cmi&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.oursurfing.com/?type=hppp&ts=1430321569&z=2942f36c7e2cac516cb09d1g0z8c9e4c4oag4w0qcb&from=cmi&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1433262551&z=e1748f57934b6c5b8546266g6z9cecaoaq9o7w3w2e&from=cmi&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&q={searchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=hxxp://feed.safefinder.com/?p=mKO_AwFzXIpYRak5VLd2-qQdkN5729vVFWx88tMoPUZRa_QMtWJ6VN2GOe2nhw36NnWkCAcpWLrmoOo7IKQxzxUdD7ZIEvn_7DF_5c6AfmK4BOESzuppKDZXuui-gsZzLx-7nMznKSYXOIMByVuFLxeDLl6GZWU7GQzyTdDUauBZNbqQAAGkcutHLdEQa_KXZHJ1CRx5UJ6_5A,,
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.safefinder.com/?p=mKO_AwFzXIpYRak5VLd2-qQdkN5729vVFWx88tMoPUZRa_QMtWJ6VN2GOe2nhw36NnWkCAcpWLrmoOo7IKQxzxUdD7ZIEvn_7DF_5c6AfmK4BOESzuppKDZXuuRYI455FZcquuwBUyEb9Jgjth1fRunFyFEe0KVjHapbfn_7RJChJl_jJl9sTmrS0dRpPAKWtbTVISZuqDmKAw,,&q={searchTerms}
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.safefinder.com/?p=mKO_AwFzXIpYRak5VLd2-qQdkN5729vVFWx88tMoPUZRa_QMtWJ6VN2GOe2nhw36NnWkCAcpWLrmoOo7IKQxzxUdD7ZIEvn_7DF_5c6AfmK4BOESzuppKDZXuuRYI455FZcquuwBUyEb9Jgjth1fRunFyFEe0KVjHapbfn_7RJChJl_jJl9sTmrVTozdZaWUiguF6rraiwKTqw,,&q={searchTerms}
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-f936fe4d
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.oursurfing.com/?type=hppp&ts=1430321569&z=2942f36c7e2cac516cb09d1g0z8c9e4c4oag4w0qcb&from=cmi&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T
HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=84993&tid=29458&ver=6.7&ts=1408639783749&tguid=84993-29458-1408639783749-A58EEABE333EA19336741458E876E072&st=chrome&q=
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-3c061e93bf9083c1&q={searchTerms}
SearchScopes: HKLM -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://groovorio.com/results.php?f=4&q={searchTerms}&a=grv_tuto24_14_41&cd=2XzuyEtN2Y1L1Qzuzy0EtAzy0EyDtAyEyC0A0C0AyE0F0FyBtN0D0Tzu0StCtDtCzytN1L2XzutAtFyDtFtCtFtCtN1L1Czu1N1C2X1V2Z2Y2Z1FtByE1VtCyE1VyEtCtN1L1G1B1V1N2Y1L1Qzu2SyCtBtB0Ezy0E0BzztGyCyDtCtDtGyC0C0ByCtGzzzztAzztGyE0FyC0E0F0D0FyCzzyBtDtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0DyByByC0E0EyEtGtAyC0CtAtGyE0FtBtAtGzytCtDyDtGtA0E0B0AtB0AtC0EzzyBtDtB2Q&cr=1062469450&ir=
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-3c061e93bf9083c1&q={searchTerms}
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = hxxp://www.default-search.net/search?sid=498&aid=157&itype=n&ver=16064&tm=697&src=ds&p={searchTerms}
SearchScopes: HKLM -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=84993&st=bs&tid=29458&ver=6.7&ts=1408639783749&tguid=84993-29458-1408639783749-A58EEABE333EA19336741458E876E072&q={searchTerms}
SearchScopes: HKLM -> {CC865B26-C31D-4D23-B17B-96548EEF03F6} URL = hxxp://feed.safefinder.com/?p=mKO_AwFzXIpYRak5VLd2-qQdkN5729vVFWx88tMoPUZRa_QMtWJ6VN2GOe2nhw36NnWkCAcpWLrmoOo7IKQxzxUdD7ZIEvn_7DF_5c6AfmK4BOESzuppKDZXuuRYI455FZcquuwBUyEb9Jgjth1fRunFyFEe0KVjHapbfn_7RJChJl_jJl9sTmrS0dRpPAKWtbTVISZuqDmKAw,,&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.safefinder.com/?p=mKO_AwFzXIpYRak5VLd2-qQdkN5729vVFWx88tMoPUZRa_QMtWJ6VN2GOe2nhw36NnWkCAcpWLrmoOo7IKQxzxUdD7ZIEvn_7DF_5c6AfmK4BOESzuppKDZXuuRYI455FZcquuwBUyEb9Jgjth1fRunFyFEe0KVjHapbfn_7RJChJl_jJl9sTmrS0dRpPAKWtbTVISZuqDmKAw,,&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.safefinder.com/?p=mKO_AwFzXIpYRak5VLd2-qQdkN5729vVFWx88tMoPUZRa_QMtWJ6VN2GOe2nhw36NnWkCAcpWLrmoOo7IKQxzxUdD7ZIEvn_7DF_5c6AfmK4BOESzuppKDZXuuRYI455FZcquuwBUyEb9Jgjth1fRunFyFEe0KVjHapbfn_7RJChJl_jJl9sTmrS0dRpPAKWtbTVISZuqDmKAw,,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> OldSearch URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {0C4C07CA-33F6-4A2B-AFC9-D6E40AA7A27E} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-3c061e93bf9083c1&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {CC865B26-C31D-4D23-B17B-96548EEF03F6} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {ec420602-2361-4f2b-bc18-18c10aa6bf0c} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3772508499-2989987850-3463864971-1000 -> {f7bb050c-e116-44da-89c2-6f2b68c54836} URL = hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=face&utm_campaign=install_ie&utm_content=ds&from=face&uid=TOSHIBAXMQ01ABD050_62N6P249TXX62N6P249T&ts=1430325188&type=default&q={searchTerms}
BHO: V-9.1HQV21.09 -> {11111111-1111-1111-1111-110611171176} -> C:\Program Files\V-9.1HQV21.09\V-9.1HQV21.09-bho.dll [2014-09-21] (V-9.1HQV21.09)
BHO: GoHD -> {11111111-1111-1111-1111-110611211180} -> C:\Program Files\GoHD\GoHD-bho.dll [2015-01-27] (InstallMoon)
BHO: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files\XTab\SupTab.dll [2015-04-20] ()
BHO: HomeTab -> {87911f21-722c-410a-9b81-c206d953eacb} -> C:\Program Files\HomeTab\IE\HomeTab.dll [2014-08-20] (Simply Tech LTD.)
BHO: Shopper Pro -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> C:\ProgramData\ShopperPro\ShopperPro.dll [2015-04-28] (Goobzo Ltd.)
BHO: BlockAndSurf -> {E42937DC-BFBB-CF5C-9581-71A1C3B19053} -> C:\Program Files\version86BlockAndSurf\192.dll [2015-06-02] ()
BHO: AllDaySavings -> {fbdff406-2c4c-5d35-8469-34bb67ea3353} -> C:\Program Files\908C8F9D-D24A-4837-8EC1-08BF193F6091\kzhxnitccw.dll [2014-07-28] ()
Toolbar: HKLM - HomeTab - {87911f21-722c-410a-9b81-c206d953eacb} - C:\Program Files\HomeTab\IE\HomeTab.dll [2014-08-20] (Simply Tech LTD.)
Toolbar: HKLM - Pas de nom - {ae07101b-46d4-4a98-af68-0333ea26e113} -  Pas de fichier
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Firefox\Extensions: [{5932BCAD-47CC-DE58-D9CC-57BBB4D71873}] - C:\Program Files\di4BlockAndSurf\175.xpi => non trouvé(e)
FF HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\...\Firefox\Extensions: [{870C5221-A135-E619-4A83-37A96857FDD2}] - C:\Program Files\ver2BlockAndSurf\186.xpi => non trouvé(e)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2015-04-29] (globalUpdate)
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2015-04-29] (globalUpdate)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll [2014-07-10] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll [2014-07-10] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @www.dlmanager.net/omaha/tools//Software Update;version=8 -> C:\Program Files\Software\Update\1.2.201.0\npSoftwareOneClick8.dll [2014-08-22] (Boxore OU.)
FF Plugin HKU\S-1-5-21-3772508499-2989987850-3463864971-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Léa\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HKLM\...\Chrome\Extension: [blmchfpimpbbdmgpcieclabeafkljbhm] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [coljhboelhlkbgaaolcngflenaggpeao] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fcljdicbcnmfhekdcaobgbpjjifniemh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fpmeembnagmagppkgghhfjfdfajdfcah] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iomphmdalfmaifjccmagmllnicjoghhk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [kmedakdfngfmagjlndeckcbfcmidlbio] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmchfpimpbbdmgpcieclabeafkljbhm] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3772508499-2989987850-3463864971-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - chrome.exe
CHR crx: C:\Program Files\Google\Chrome\Application\36.0.1985.143\default_apps\search.crx [2014-08-07]
CHR crx: C:\Program Files\Google\Chrome\Application\36.0.1985.125\default_apps\search.crx [2014-07-15]

Opera: 
=======
OPR Extension: (Pas de nom) - C:\Users\Léa\AppData\Roaming\Opera Software\Opera Stable\Extensions\bokijhalndhhhikpnaniimagniglonke [2015-01-27]
OPR Extension: (Pas de nom) - C:\Users\Léa\AppData\Roaming\Opera Software\Opera Stable\Extensions\egnjhciaieeiiohknchakcodbpgjnchh [2015-06-01]
OPR Extension: (Pas de nom) - C:\Users\Léa\AppData\Roaming\Opera Software\Opera Stable\Extensions\gieanldgaaaifgdkimlkfakbpofihpdf [2015-02-15]
OPR Extension: (Pas de nom) - C:\Users\Léa\AppData\Roaming\Opera Software\Opera Stable\Extensions\jgddaapiamkjnpaoeaebnlbofhceppik [2015-06-01]
OPR Extension: (Pas de nom) - C:\Users\Léa\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-04-29]
OPR Extension: (Pas de nom) - C:\Users\Léa\AppData\Roaming\Opera Software\Opera Stable\Extensions\mglbljebahdpopiophhdhciclgdopdkj [2015-04-29]

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 22134214; c:\Program Files\Super Optimizer\SupOptStats.dll [1747504 2015-04-29] ()
R2 abengine; C:\Program Files\HighlightSearches\abengine.exe [2329600 2015-04-22] (Abengine) [Fichier non signé]
R2 AllDaySavingsService; C:\Program Files\908C8F9D-D24A-4837-8EC1-08BF193F6091\etmajyzoqm.exe [150528 2014-07-31] () [Fichier non signé]
R2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [53832 2014-11-25] (Just Develop It) [Fichier non signé] <==== ATTENTION
S2 CltMngSvc; C:\Program Files\SearchProtect\Main\bin\CltMngSvc.exe [3251472 2015-04-12] ()
R2 FastPlayerUpdaterService; C:\Program Files\FastPlayer\FPUpdaterService.exe [382464 2015-01-22] () [Fichier non signé]
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2015-04-29] (globalUpdate) [Fichier non signé] <==== ATTENTION
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2015-04-29] (globalUpdate) [Fichier non signé] <==== ATTENTION
R2 GXyCRFA; C:\ProgramData\JUCuYG\GXyCRFA.exe [2733544 2015-02-15] (Time Lapse Solutions)
S4 IHProtect Service; C:\Program Files\XTab\ProtectService.exe [158816 2015-04-20] ()
S4 LPTSystemUpdater; C:\Program Files\LPT\srpts.exe [32768 2014-08-27] () <==== ATTENTION
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2077008 2013-10-25] (CybelSoft)
R2 mtgaotushb32; C:\Program Files\005\mtgaotushb32.exe [543232 2014-08-22] () [Fichier non signé]
R2 nefeqyqy; C:\Users\Léa\AppData\Roaming\006A7466-1430321503-E011-95AF-F2B0CA726541\nsdA822.tmp [188416 2015-06-01] () [Fichier non signé]
R2 PenWesController; C:\Program Files\PenWes\DNSService.exe [1655808 2014-09-17] () [Fichier non signé]
R2 rcores; C:\Windows\rcore.exe [4686848 2015-01-26] () [Fichier non signé]
R2 rorikewu; C:\Users\Léa\AppData\Roaming\006A7466-1430321503-E011-95AF-F2B0CA726541\jnsj6382.tmp [114176 2015-04-29] () [Fichier non signé]
R2 serverca; C:\Users\Léa\AppData\Local\ConvertAd\CASrv.exe [93696 2015-01-27] () [Fichier non signé]
R2 serversu; C:\Users\Léa\AppData\Roaming\SoftwareUpdater\SUsrv.exe [121344 2015-01-27] () [Fichier non signé]
R2 servervo; C:\Users\Léa\AppData\Roaming\VOPackage\VOsrv.exe [153600 2015-01-27] () [Fichier non signé] <==== ATTENTION
R2 SmdmFService; C:\Program Files\Assets Manager\smdmf\SmdmFService.exe [3203840 2015-04-15] (Aztec Media Inc)
R2 SPBIUpd; C:\Program Files\Common Files\ShopperPro\spbiu.exe [1813504 2015-04-28] (ShopperPro) [Fichier non signé] <==== ATTENTION
R2 tovesyhu; C:\Users\Léa\AppData\Local\006A7466-1430328938-E011-95AF-F2B0CA726541\cnsfB3E7.tmp [93696 2015-04-29] () [Fichier non signé]
R2 UniversalUpdater; C:\Program Files\Uoda4yzvhmjrlntf\ogm4zjuzmmvlmde.exe [702976 2015-01-27] () [Fichier non signé] <==== ATTENTION
R2 Verifies and fixes application compatibility issues; C:\Users\Léa\AppData\Roaming\Compatibility Verifier\compatibilitychecksvc.exe [99496 2015-02-01] () [Fichier non signé]
S2 wbsvc; C:\Program Files\WebBar\wbsvc.exe [37144 2015-04-06] (Web Bar Media) [Fichier non signé]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 wpsvc_1.10.0.6; C:\Program Files\WordProser_1.10.0.6\Service\wpsvc.exe [277584 2015-01-08] (Word Proser)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 F06DEFF2-5B9C-490D-910F-35D3A9119622; C:\Program Files\Assets Manager\smdmf\smdmfmgrc3.cfg [39072 2015-04-15] (Aztec Media Inc)
S3 hxctlflt; C:\Windows\System32\Drivers\hxctlflt.sys [99968 2009-02-08] (Guillemot Corporation)
S3 ma-config_x86; C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys [16160 2013-10-23] (CybelSoft)
R1 netfilter; C:\Windows\System32\drivers\netfilter.sys [31744 2014-07-31] (NetFilterSDK.com) [Fichier non signé]
R1 ogi4mzv2mnnlbdf; C:\Windows\System32\drivers\ogi4mzv2mnnlbdf.sys [42840 2015-07-28] (Windows (R) Win 7 DDK provider)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3482112 2009-04-22] ()
R3 SPBIUpdd; C:\Program Files\Common Files\ShopperPro\spbiw.sys [26112 2015-04-28] () [Fichier non signé]
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2012-12-13] (Apple, Inc.) [Fichier non signé]
R2 webTinstMKTN84; C:\Windows\system32\Drivers\webTinstMKTN84.sys [43512 2015-06-02] () <==== ATTENTION
R1 wpnfd_1_10_0_6; C:\Windows\System32\drivers\wpnfd_1_10_0_6.sys [52736 2015-01-08] (Word Proser)
R1 {00aec75d-051f-41a9-9837-e94ac4f56303}w; C:\Windows\System32\drivers\{00aec75d-051f-41a9-9837-e94ac4f56303}w.sys [43152 2014-10-15] (StdLib)
R1 {0c842d6c-0c6d-4dca-a85e-83fab867dad6}w; C:\Windows\System32\drivers\{0c842d6c-0c6d-4dca-a85e-83fab867dad6}w.sys [43152 2015-02-21] (StdLib)
R1 {16d667ee-6782-4b21-81df-8ded8ebc3868}w; C:\Windows\System32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w.sys [52920 2014-07-03] (StdLib)
R1 {1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}w; C:\Windows\System32\drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}w.sys [43152 2014-10-13] (StdLib)
R1 {21abe523-36e2-4dad-9e0e-8fe9f0be1916}w; C:\Windows\System32\drivers\{21abe523-36e2-4dad-9e0e-8fe9f0be1916}w.sys [43152 2014-10-11] (StdLib)
R1 {22b230b8-6e08-4687-afa6-31e3b13fe333}w; C:\Windows\System32\drivers\{22b230b8-6e08-4687-afa6-31e3b13fe333}w.sys [43152 2015-01-20] (StdLib)
R1 {2e3800a8-eab3-4063-a79b-900fe3f11c5e}w; C:\Windows\System32\drivers\{2e3800a8-eab3-4063-a79b-900fe3f11c5e}w.sys [43152 2015-04-28] (StdLib)
R1 {336e37ae-3235-4f16-98ec-8cdf679be7d2}w; C:\Windows\System32\drivers\{336e37ae-3235-4f16-98ec-8cdf679be7d2}w.sys [43152 2014-10-11] (StdLib)
R1 {3b808196-ff63-49ee-b33b-efdf51723eca}w; C:\Windows\System32\drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}w.sys [43152 2014-10-13] (StdLib)
R1 {4096aedf-3f28-4c8e-aebe-00255138fa8a}w; C:\Windows\System32\drivers\{4096aedf-3f28-4c8e-aebe-00255138fa8a}w.sys [43152 2014-10-14] (StdLib)
R1 {5eeb83d0-96ea-4249-942c-beead6847053}Gw; C:\Windows\System32\drivers\{5eeb83d0-96ea-4249-942c-beead6847053}Gw.sys [39064 2014-09-18] (StdLib)
R1 {6c5e4f16-dc67-4cab-bc96-83d77ccc9c15}w; C:\Windows\System32\drivers\{6c5e4f16-dc67-4cab-bc96-83d77ccc9c15}w.sys [43152 2015-01-26] (StdLib)
R1 {84e24724-32a5-4ef8-b981-cc669543b4a4}w; C:\Windows\System32\drivers\{84e24724-32a5-4ef8-b981-cc669543b4a4}w.sys [43152 2014-10-11] (StdLib)
R1 {8ac13c32-b1f4-495e-8b0b-4bd4fd38c6b5}w; C:\Windows\System32\drivers\{8ac13c32-b1f4-495e-8b0b-4bd4fd38c6b5}w.sys [43152 2014-10-12] (StdLib)
R1 {94c4b27a-8cb1-4214-9d76-87c59a8cf657}w; C:\Windows\System32\drivers\{94c4b27a-8cb1-4214-9d76-87c59a8cf657}w.sys [43152 2014-10-10] (StdLib)
R1 {bb7b7a60-f574-47c2-8a0b-4c56f2da9802}w; C:\Windows\System32\drivers\{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}w.sys [43152 2014-09-25] (StdLib)
R1 {c61f6471-95aa-405a-be3a-f3b2dc07fdfa}w; C:\Windows\System32\drivers\{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}w.sys [43152 2014-10-10] (StdLib)
R1 {d1c4c3bc-6b77-4033-9c86-e72fcf769bbe}w; C:\Windows\System32\drivers\{d1c4c3bc-6b77-4033-9c86-e72fcf769bbe}w.sys [43152 2014-10-14] (StdLib)
R1 {e8ac6704-7523-4c3f-bcd6-f7e44030d95f}w; C:\Windows\System32\drivers\{e8ac6704-7523-4c3f-bcd6-f7e44030d95f}w.sys [43152 2015-02-14] (StdLib)
R1 {e9629596-2cbd-4eea-9329-7470e8b0fdae}w; C:\Windows\System32\drivers\{e9629596-2cbd-4eea-9329-7470e8b0fdae}w.sys [43152 2014-10-12] (StdLib)
R1 {eb6029be-fad9-464d-8c4f-b9f38b914bf3}w; C:\Windows\System32\drivers\{eb6029be-fad9-464d-8c4f-b9f38b914bf3}w.sys [43152 2015-01-27] (StdLib)
R1 {fd600559-a688-4110-b9b9-0f1a9beae8ae}w; C:\Windows\System32\drivers\{fd600559-a688-4110-b9b9-0f1a9beae8ae}w.sys [43152 2014-10-12] (StdLib)
S3 cpuz134; \??\C:\Users\LAB9CF~1\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X] <==== ATTENTION
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S1 ogi4nzu4mjzlyjf; system32\drivers\ogi4nzu4mjzlyjf.sys [X]
S2 SPDRIVER_1.42.0.1802; .\JSDriver\1.42.0.1802\jsdrv.sys [X]
S3 SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-08-12 23:29 - 2018-08-12 23:30 - 000037491 _____ C:\Users\Léa\Desktop\FRST.txt
2018-08-12 23:28 - 2018-08-12 23:29 - 000000000 ____D C:\FRST
2018-08-12 23:27 - 2018-08-12 23:13 - 000001369 _____ C:\Users\Léa\Desktop\forum W7 W8.1.txt
2018-08-12 23:26 - 2018-08-12 20:11 - 001773056 _____ (Farbar) C:\Users\Léa\Desktop\FRST.exe
2018-08-12 18:31 - 2018-08-12 18:31 - 000000000 ____D C:\Users\LÃ©a\AppData\Local\Google
2018-08-12 18:31 - 2018-08-12 18:31 - 000000000 ____D C:\Users\LÃ©a
2018-08-12 18:28 - 2018-08-12 18:38 - 000000000 ____D C:\Users\Léa\AppData\Local\Midugeb
2018-08-12 18:25 - 2018-08-12 18:25 - 000000013 _____ C:\Users\Léa\Desktop\mot de passe forum w7 w8.txt

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-08-12 23:29 - 2015-01-21 13:18 - 000000000 ____D C:\Users\Léa\AppData\Roaming\Compatibility Verifier
2018-08-12 23:29 - 2014-08-07 02:29 - 000000294 _____ C:\Windows\Tasks\Groovorio Updater.job
2018-08-12 23:29 - 2009-07-14 06:34 - 000024080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-08-12 23:29 - 2009-07-14 06:34 - 000024080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-08-12 23:28 - 2014-10-15 20:28 - 000000294 _____ C:\Windows\Tasks\Groovorio.job
2018-08-12 23:27 - 2013-12-01 10:54 - 001736378 _____ C:\Windows\system32\PerfStringBackup.INI
2018-08-12 23:27 - 2009-07-14 10:39 - 000780368 _____ C:\Windows\system32\perfh00C.dat
2018-08-12 23:27 - 2009-07-14 10:39 - 000161344 _____ C:\Windows\system32\perfc00C.dat
2018-08-12 23:27 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2018-08-12 23:24 - 2015-04-29 17:38 - 000000000 ____D C:\Users\Léa\Documents\MaxComputerCleaner
2018-08-12 23:24 - 2015-01-27 20:47 - 000000000 ____D C:\Users\Léa\Documents\ProPCCleaner
2018-08-12 23:24 - 2014-09-21 22:41 - 000003438 _____ C:\Windows\Tasks\85ba07db-1f6e-4b85-8592-ad1c7b33f03d-6.job
2018-08-12 23:22 - 2014-08-06 00:42 - 000000000 ____D C:\Users\Léa\AppData\Local\fst_fr_332
2018-08-12 23:21 - 2014-08-22 19:04 - 000000256 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2018-08-12 23:20 - 2015-04-29 17:43 - 000001040 _____ C:\Windows\Tasks\Crossbrowse.job
2018-08-12 23:20 - 2014-08-06 17:18 - 000000000 ____D C:\Users\Léa\AppData\Local\CrashDumps
2018-08-12 23:20 - 2013-12-01 17:52 - 000000000 ____D C:\Users\Léa\AppData\Roaming\Skype
2018-08-12 23:19 - 2015-06-02 18:28 - 000000416 _____ C:\Windows\Tasks\BlockAndSurf Update.job
2018-08-12 23:19 - 2015-06-01 20:30 - 000000522 _____ C:\Windows\Tasks\godzilla_shopper_helper_service.job
2018-08-12 23:19 - 2015-06-01 19:50 - 000000000 ____D C:\Program Files\HighlightSearches
2018-08-12 23:19 - 2015-04-29 18:49 - 000002430 _____ C:\Windows\Tasks\576986dd-7894-4fea-8f2c-a74ec4862c94-5.job
2018-08-12 23:19 - 2015-04-29 18:46 - 000003458 _____ C:\Windows\Tasks\576986dd-7894-4fea-8f2c-a74ec4862c94-1-7.job
2018-08-12 23:19 - 2015-04-29 18:46 - 000003122 _____ C:\Windows\Tasks\576986dd-7894-4fea-8f2c-a74ec4862c94-1-6.job
2018-08-12 23:19 - 2015-04-29 18:44 - 000005502 _____ C:\Windows\Tasks\576986dd-7894-4fea-8f2c-a74ec4862c94-6.job
2018-08-12 23:19 - 2015-04-29 18:43 - 000005502 _____ C:\Windows\Tasks\576986dd-7894-4fea-8f2c-a74ec4862c94-7.job
2018-08-12 23:19 - 2015-04-29 18:41 - 000004478 _____ C:\Windows\Tasks\576986dd-7894-4fea-8f2c-a74ec4862c94-3.job
2018-08-12 23:19 - 2015-04-29 17:48 - 000005168 _____ C:\Windows\Tasks\92ee1543-1ec3-499e-b534-94adce27d8da-11.job
2018-08-12 23:19 - 2015-04-29 17:48 - 000004478 _____ C:\Windows\Tasks\92ee1543-1ec3-499e-b534-94adce27d8da-3.job
2018-08-12 23:19 - 2015-01-27 21:18 - 000002396 _____ C:\Windows\Tasks\e29da3ee-f709-4bd1-9e68-f6aed42bdb9f-5.job
2018-08-12 23:19 - 2015-01-27 21:17 - 000005812 _____ C:\Windows\Tasks\e29da3ee-f709-4bd1-9e68-f6aed42bdb9f-6.job
2018-08-12 23:19 - 2015-01-27 21:17 - 000003382 _____ C:\Windows\Tasks\e29da3ee-f709-4bd1-9e68-f6aed42bdb9f-1.job
2018-08-12 23:19 - 2015-01-27 21:17 - 000002060 _____ C:\Windows\Tasks\e29da3ee-f709-4bd1-9e68-f6aed42bdb9f-2.job
2018-08-12 23:19 - 2015-01-27 21:16 - 000005468 _____ C:\Windows\Tasks\e29da3ee-f709-4bd1-9e68-f6aed42bdb9f-7.job
2018-08-12 23:19 - 2015-01-27 21:16 - 000004790 _____ C:\Windows\Tasks\e29da3ee-f709-4bd1-9e68-f6aed42bdb9f-11.job
2018-08-12 23:19 - 2015-01-27 21:03 - 000001794 _____ C:\Windows\patsearch.bin
2018-08-12 23:19 - 2015-01-27 21:00 - 000000000 ____D C:\Users\Léa\AppData\LocalLow\SmartWeb
2018-08-12 23:19 - 2014-09-21 22:42 - 000002738 _____ C:\Windows\Tasks\85ba07db-1f6e-4b85-8592-ad1c7b33f03d-1.job
2018-08-12 23:19 - 2014-09-21 22:42 - 000002414 _____ C:\Windows\Tasks\85ba07db-1f6e-4b85-8592-ad1c7b33f03d-5.job
2018-08-12 23:19 - 2014-09-21 22:42 - 000001434 _____ C:\Windows\Tasks\f3598b56-d163-42e8-82dc-b238237a5d3a.job
2018-08-12 23:19 - 2014-09-21 22:41 - 000004464 _____ C:\Windows\Tasks\85ba07db-1f6e-4b85-8592-ad1c7b33f03d-11.job
2018-08-12 23:19 - 2014-09-21 22:41 - 000003782 _____ C:\Windows\Tasks\85ba07db-1f6e-4b85-8592-ad1c7b33f03d-4.job
2018-08-12 23:19 - 2014-09-21 22:41 - 000003782 _____ C:\Windows\Tasks\85ba07db-1f6e-4b85-8592-ad1c7b33f03d-3.job
2018-08-12 23:19 - 2014-09-21 22:41 - 000003102 _____ C:\Windows\Tasks\85ba07db-1f6e-4b85-8592-ad1c7b33f03d-7.job
2018-08-12 23:19 - 2014-09-21 22:41 - 000000954 _____ C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2018-08-12 23:19 - 2013-12-01 11:10 - 000001046 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2018-08-12 23:18 - 2015-04-29 17:45 - 000000000 ____D C:\ProgramData\smdmf
2018-08-12 23:18 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-08-12 18:48 - 2015-01-27 21:16 - 000000958 _____ C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2018-08-12 18:42 - 2013-12-01 11:10 - 000001050 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2018-08-12 18:40 - 2017-02-14 15:40 - 000000270 _____ C:\Windows\Tasks\{6D4CD0EA-3B22-73C0-1621-33222A086B3E}.job
2018-08-12 18:34 - 2015-02-15 01:21 - 000000000 ____D C:\Users\Léa\AppData\LocalLow\GoHD
2018-08-12 18:29 - 2014-08-22 19:06 - 000000000 ____D C:\Program Files\AllDaySavings
2018-08-12 18:28 - 2014-08-07 03:29 - 000000372 _____ C:\Users\Léa\AppData\Roaming\WB.CFG
2018-08-12 18:27 - 2015-01-21 23:00 - 000000000 __SHD C:\Users\Léa\AppData\Local\EmieBrowserModeList
2018-08-12 18:27 - 2014-05-08 04:57 - 000000000 __SHD C:\Users\Léa\AppData\Local\EmieUserList
2018-08-12 18:27 - 2014-05-08 04:57 - 000000000 __SHD C:\Users\Léa\AppData\Local\EmieSiteList
2018-08-12 18:08 - 2018-01-12 11:08 - 000000000 ____D C:\Users\Léa\AppData\Roaming\Maben
2018-08-12 18:08 - 2017-06-29 12:22 - 000000266 _____ C:\Windows\Tasks\{3A2C0ADA-0691-9C6F-B0CB-5020B3BF1EAD}.job
2018-08-12 18:08 - 2015-01-27 20:48 - 000000000 ____D C:\Users\Léa\AppData\Roaming\SoftwareUpdater
2018-08-12 18:04 - 2014-08-22 19:04 - 000000262 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2018-08-12 17:56 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\NDF
2018-08-12 16:28 - 2015-01-21 13:58 - 000000112 _____ C:\ProgramData\n4fviI8Kn.dat
2018-08-12 16:23 - 2009-07-14 06:53 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Fichiers à la racine de certains dossiers =======

2015-01-21 13:58 - 2018-08-12 16:28 - 000000112 _____ () C:\ProgramData\n4fviI8Kn.dat
2015-04-19 14:20 - 2015-04-19 14:20 - 000005872 _____ () C:\Users\Léa\AppData\Roaming\4AXJfpONJAf9
2015-04-20 16:05 - 2015-04-20 16:05 - 001579520 _____ () C:\Users\Léa\AppData\Roaming\4AXJfpONJAf9.exe
2014-08-06 02:15 - 2014-08-06 02:16 - 000000320 _____ () C:\Users\Léa\AppData\Roaming\aps.uninstall.scan.results
2015-01-27 20:52 - 2015-06-01 20:57 - 000001354 _____ () C:\Users\Léa\AppData\Roaming\Bubble Dock.boostrap.log
2015-06-01 20:45 - 2015-06-01 20:48 - 000005704 _____ () C:\Users\Léa\AppData\Roaming\Bubble Dock.installation.log
2014-02-06 16:42 - 2014-10-23 22:38 - 000000113 _____ () C:\Users\Léa\AppData\Roaming\D2Info0
2014-02-06 16:42 - 2014-11-02 16:24 - 000000008 _____ () C:\Users\Léa\AppData\Roaming\DofusAppId0_1
2014-02-06 17:16 - 2014-10-19 20:32 - 000000000 _____ () C:\Users\Léa\AppData\Roaming\DofusAppId0_2
2014-03-06 19:00 - 2014-10-23 02:07 - 000000008 _____ () C:\Users\Léa\AppData\Roaming\DofusAppId0_3
2014-09-01 10:18 - 2014-09-01 10:18 - 000002086 _____ () C:\Users\Léa\AppData\Roaming\KMWAWKW
2014-09-21 22:42 - 2014-09-21 22:42 - 001518488 _____ (V-9.1HQV21.09) C:\Users\Léa\AppData\Roaming\KMWAWKW.exe
2017-06-29 11:19 - 2017-06-29 11:19 - 000525824 _____ () C:\Users\Léa\AppData\Roaming\Mataku.exe
2015-06-01 20:57 - 2015-06-01 20:57 - 000000078 _____ () C:\Users\Léa\AppData\Roaming\Selection Tools.installation.log
2014-08-07 03:29 - 2018-08-12 18:28 - 000000372 _____ () C:\Users\Léa\AppData\Roaming\WB.CFG
2015-06-01 20:43 - 2015-06-01 20:43 - 000000097 _____ () C:\Users\Léa\AppData\Roaming\WindApp.boostrap.log
2015-06-01 20:49 - 2015-06-01 20:57 - 000000078 _____ () C:\Users\Léa\AppData\Roaming\WindApp.installation.log
2014-09-01 10:18 - 2014-09-01 10:18 - 000001248 _____ () C:\Users\Léa\AppData\Roaming\YIXQCID
2014-09-21 22:41 - 2014-09-21 22:41 - 001965464 _____ (V-9.1HQV21.09) C:\Users\Léa\AppData\Roaming\YIXQCID.exe
2018-01-12 11:04 - 2018-01-12 11:04 - 000000052 _____ () C:\Users\Léa\AppData\Local\5qe2nbznbz
2015-01-21 13:29 - 2015-06-02 18:28 - 000000001 _____ () C:\Users\Léa\AppData\Local\DSI.DAT
2015-01-21 13:28 - 2015-01-21 13:28 - 000022528 _____ () C:\Users\Léa\AppData\Local\dsisetup17344972.exe
2015-01-27 21:18 - 2015-01-27 21:18 - 000613057 _____ (CMI Limited) C:\Users\Léa\AppData\Local\nscA291.tmp
2015-04-29 18:33 - 2015-04-29 18:33 - 000613255 _____ (CMI Limited) C:\Users\Léa\AppData\Local\nsjD206.tmp
2015-04-29 18:38 - 2015-04-29 18:37 - 000613255 _____ (CMI Limited) C:\Users\Léa\AppData\Local\nsl2BEF.tmp
2015-04-29 17:50 - 2015-04-29 17:49 - 000613255 _____ (CMI Limited) C:\Users\Léa\AppData\Local\nsl80AC.tmp
2014-08-06 00:48 - 2014-08-06 00:48 - 000575544 _____ (ClickMeIn Limited) C:\Users\Léa\AppData\Local\nsv58C4.tmp
2014-04-21 21:34 - 2014-04-21 21:34 - 001097384 _____ (AnyProtect.com) C:\Users\Léa\AppData\Local\nsvDB3E.tmp
2014-08-06 00:26 - 2014-08-06 00:26 - 000591056 _____ (ClickMeIn Limited) C:\Users\Léa\AppData\Local\nsxC70B.tmp
2015-04-29 18:33 - 2015-04-29 18:33 - 000613255 _____ (CMI Limited) C:\Users\Léa\AppData\Local\nszD126.tmp

Fichiers à déplacer ou supprimer:
====================
C:\Windows\Tasks\{3A2C0ADA-0691-9C6F-B0CB-5020B3BF1EAD}.job
C:\Windows\Tasks\{6D4CD0EA-3B22-73C0-1621-33222A086B3E}.job


Certains fichiers dans TEMP:
====================
2015-04-29 17:29 - 2015-04-29 17:29 - 001818200 _____ () C:\Users\Léa\AppData\Local\Temp\1515.exe
2015-04-29 17:46 - 2015-04-29 17:46 - 011083312 _____ (CrossBrowse-1.4V29.04) C:\Users\Léa\AppData\Local\Temp\1934.exe
2015-01-27 21:03 - 2015-01-27 21:03 - 000089088 _____ () C:\Users\Léa\AppData\Local\Temp\2F165B7F-D309-7398-7375-F67F536F4F74.dll
2015-01-27 21:03 - 2015-01-27 21:03 - 000265728 _____ () C:\Users\Léa\AppData\Local\Temp\2F165B7F-D309-7398-7375-F67F536F4F74.exe
2015-04-29 18:31 - 2015-04-29 18:31 - 001818200 _____ () C:\Users\Léa\AppData\Local\Temp\3637.exe
2015-06-02 18:27 - 2015-06-02 18:27 - 001014784 _____ () C:\Users\Léa\AppData\Local\Temp\372156BE-84EF-A4CB-6A6D-58A6434905F4.exe
2015-04-29 17:46 - 2015-04-29 17:46 - 001818200 _____ () C:\Users\Léa\AppData\Local\Temp\4911.exe
2015-04-29 18:40 - 2015-04-29 18:40 - 014337904 _____ (Cinema PlusV29.04) C:\Users\Léa\AppData\Local\Temp\7342.exe
2015-01-27 21:03 - 2015-01-27 21:03 - 000642048 _____ () C:\Users\Léa\AppData\Local\Temp\B32317D3-698E-20A1-A383-F296413DE60F.exe
2015-01-27 20:42 - 2015-01-27 20:42 - 000297672 _____ () C:\Users\Léa\AppData\Local\Temp\BackupSetup.exe
2014-08-22 19:02 - 2014-08-22 19:02 - 000569768 _____ (Boxore OU.) C:\Users\Léa\AppData\Local\Temp\Boxore.exe
2014-08-21 18:52 - 2014-08-21 18:53 - 005556040 _____ () C:\Users\Léa\AppData\Local\Temp\CloudBackup4152.exe
2015-06-02 18:27 - 2015-06-02 18:27 - 000089088 _____ () C:\Users\Léa\AppData\Local\Temp\D3EC04B1-8242-1B80-5747-78E02531834F.dll
2015-06-02 18:27 - 2015-06-02 18:27 - 000849920 _____ () C:\Users\Léa\AppData\Local\Temp\D3EC04B1-8242-1B80-5747-78E02531834F.exe
2015-04-29 17:45 - 2015-04-15 14:14 - 001793280 _____ () C:\Users\Léa\AppData\Local\Temp\default-search.DLL
2015-01-27 21:09 - 2015-01-21 13:18 - 000440528 _____ (Pay By Ads LTD) C:\Users\Léa\AppData\Local\Temp\dsrsetup.exe
2014-10-05 20:04 - 2014-10-05 20:04 - 000718848 _____ (                                                            ) C:\Users\Léa\AppData\Local\Temp\ICReinstall_IDM2-Win-EN.exe
2015-05-06 03:51 - 2015-06-01 19:47 - 000905728 _____ () C:\Users\Léa\AppData\Local\Temp\Launcher__10272.exe
2014-08-05 23:12 - 2014-08-05 23:12 - 005693496 _____ (                                                            ) C:\Users\Léa\AppData\Local\Temp\optprosetup.exe
2014-08-05 23:10 - 2014-08-05 23:10 - 005619144 _____ (Speedchecker Limited                                        ) C:\Users\Léa\AppData\Local\Temp\pcspeedup.exe
2015-01-27 21:09 - 2015-01-21 13:18 - 000198144 _____ (Pay By Ads LTD) C:\Users\Léa\AppData\Local\Temp\res.dll
2015-05-05 21:32 - 2015-07-28 21:18 - 000114720 _____ () C:\Users\Léa\AppData\Local\Temp\ShopperProDBUpd.exe
2015-02-15 00:47 - 2015-04-29 18:05 - 004737564 _____ () C:\Users\Léa\AppData\Local\Temp\ShopperProJSINJFull.exe
2015-04-29 17:43 - 2015-04-29 17:43 - 005798424 _____ (Super PC Tools ltd                                          ) C:\Users\Léa\AppData\Local\Temp\supoptsetup.exe
2015-01-27 20:58 - 2017-02-14 16:02 - 000061981 _____ () C:\Users\Léa\AppData\Local\Temp\Uninstall.exe
2015-01-27 05:05 - 2015-01-27 05:05 - 001060800 _____ () C:\Users\Léa\AppData\Local\Temp\uobnyv04ydl6.exe
2014-08-05 23:12 - 2014-08-05 23:12 - 000145928 _____ (ClientConnect) C:\Users\Léa\AppData\Local\Temp\uttDDC4.tmp.exe
2015-06-02 18:27 - 2015-06-02 18:27 - 007057867 _____ () C:\Users\Léa\AppData\Local\Temp\_J6BlockAndSurfR79.exe

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2017-02-07 13:43

==================== Fin de FRST.txt ============================