Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:12-08-2015 Exécuté par POUZERGUES Albin (administrateur) sur POUZERGUESALBIN (13-08-2015 20:20:16) Exécuté depuis C:\Users\POUZERGUES Albin\Downloads Profils chargés: POUZERGUES Albin (Profils disponibles: POUZERGUES Albin) Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: IE) Mode d'amorçage: Safe Mode (with Networking) Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (McAfee, Inc.) C:\WINDOWS\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (Microsoft Corporation) C:\WINDOWS\HelpPane.exe (Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registre (Tous(tes)) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10920552 2010-06-23] (Realtek Semiconductor) HKLM\...\Run: [RunDLLEntry_THXCfg] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64 HKLM\...\Run: [RunDLLEntry_EptMon] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\EptMon64.dll,RunDLLEntry EptMon64 HKLM\...\Run: [Stage Remote] => C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe [2022976 2011-06-27] () HKLM\...\Run: [DellStage] => C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2195824 2012-02-01] () HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation) HKLM-x32\...\Run: [ShwiconXP9106] => C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe [237568 2010-03-10] (Alcor Micro Corp.) HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe [963584 2009-12-01] (Creative Technology Ltd) HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.) HKLM-x32\...\Run: [Microsoft Default Manager] => C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation) HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40336 2014-12-03] (Adobe Systems Incorporated) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions) HKLM-x32\...\Run: [Desktop Disc Tool] => C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] () HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [1658440 2011-03-12] (McAfee, Inc.) HKLM-x32\...\Run: [NeroLauncher] => C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [67496 2012-08-21] () HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-02] (AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation) HKLM\...\Policies\Explorer: [AllowLegacyWebView] 1 HKLM\...\Policies\Explorer: [AllowUnhashedWebView] 1 HKU\S-1-5-21-1927918280-243872776-2403438299-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [6265624 2014-07-23] (Piriform Ltd) HKU\S-1-5-21-1927918280-243872776-2403438299-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23308616 2014-12-22] (Google) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-07-17] (AVAST Software) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1410883805&from=cor&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1410883805&from=cor&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1410883805&from=cor&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1410883805&from=cor&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK&q={searchTerms} HKU\S-1-5-21-1927918280-243872776-2403438299-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?type=ds&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK&q={searchTerms} HKU\S-1-5-21-1927918280-243872776-2403438299-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK HKU\S-1-5-21-1927918280-243872776-2403438299-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK HKU\S-1-5-21-1927918280-243872776-2403438299-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK&q={searchTerms} SearchScopes: HKU\S-1-5-21-1927918280-243872776-2403438299-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1419333015&from=wpm12233&uid=ST32000641AS_9WM6TMKKXXXX9WM6TMKK&q={searchTerms} BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111024172956.dll [2011-03-13] (McAfee, Inc.) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-17] (AVAST Software) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-05-19] (Google Inc.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-24] (Sun Microsystems, Inc.) BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-07-27] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-24] (Oracle Corporation) BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111024172956.dll [2011-03-13] (McAfee, Inc.) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-17] (AVAST Software) BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-05-19] (Google Inc.) BHO-x32: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08] (Skype Technologies S.A.) BHO-x32: Bing Bar BHO -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-13] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-24] (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-05-19] (Google Inc.) Toolbar: HKLM-x32 - @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-13] (Microsoft Corporation) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-05-19] (Google Inc.) Toolbar: HKU\S-1-5-21-1927918280-243872776-2403438299-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-05-19] (Google Inc.) Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08] (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2011-03-12] (McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2011-03-12] (McAfee, Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{78D62F86-63FE-45D7-B1C9-78E273657284}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{907723DC-8CFF-4BC9-A524-27678626E691}: [DhcpNameServer] 10.72.0.68 10.72.0.69 StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-10-24] (Sun Microsystems, Inc.) FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2011-03-12] () FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-07-24] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-07-24] (Oracle Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\progra~2\mcafee\msc\npmcsn~1.dll [2011-03-12] () FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpWinExt,version=5.0 -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-13] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2011-04-03] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2011-04-03] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.7\npGoogleUpdate3.dll [2015-05-19] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.7\npGoogleUpdate3.dll [2015-05-19] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF HKLM-x32\...\Firefox\Extensions: [msntoolbar@msn.com] - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox FF Extension: Bing Bar - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox [2011-10-24] FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension FF Extension: Search Helper Extension - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2011-10-24] FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension FF Extension: Default Manager - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension [2011-10-24] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-17] Chrome: ======= CHR Profile: C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-17] CHR Extension: (Google Drive) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-17] CHR Extension: (YouTube) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-17] CHR Extension: (Google Search) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-17] CHR Extension: (Avast SafePrice) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-09-18] CHR Extension: (Avast Online Security) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-17] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-21] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-09] CHR Extension: (Chrome Web Store Payments) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17] CHR Extension: (Gmail) - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-17] CHR HKLM\...\Chrome\Extension: [noajmlkipclmeolfcnflkjhijkigpfjh] - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh.crx [2014-12-23] CHR HKU\S-1-5-21-1927918280-243872776-2403438299-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-17] CHR HKLM-x32\...\Chrome\Extension: [noajmlkipclmeolfcnflkjhijkigpfjh] - C:\Users\POUZERGUES Albin\AppData\Local\Google\Chrome\User Data\Default\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh.crx [2014-12-23] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-17] (AVAST Software) S2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-09-16] (Cherished Technololgy LIMITED) S3 McAWFwk; c:\Program Files\mcafee\msc\McAWFwk.exe [224704 2011-03-08] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [249936 2011-01-27] (McAfee, Inc.) R2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [249936 2011-01-27] (McAfee, Inc.) S2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [249936 2011-01-27] (McAfee, Inc.) S2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [249936 2011-01-27] (McAfee, Inc.) S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [501768 2011-03-17] (McAfee, Inc.) S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [249936 2011-01-27] (McAfee, Inc.) S2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [249936 2011-01-27] (McAfee, Inc.) S2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [197960 2011-03-13] (McAfee, Inc.) R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [208272 2011-03-13] (McAfee, Inc.) R2 mfevtp; C:\Windows\system32\mfevtps.exe [158832 2011-03-13] (McAfee, Inc.) S2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [249936 2011-01-27] (McAfee, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [470704 2014-12-17] (Taiwan Shui Mu Chih Ching Technology Limited.) <==== ATTENTION S2 Update BrowseStudio; "C:\Program Files (x86)\BrowseStudio\updateBrowseStudio.exe" [X] S2 Update ClearThink; "C:\Program Files (x86)\ClearThink\updateClearThink.exe" [X] S2 Util ClearThink; "C:\Program Files (x86)\ClearThink\bin\utilClearThink.exe" [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-17] () S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-17] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-17] (AVAST Software) S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-17] () S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-22] (AVAST Software) S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-17] (AVAST Software) S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-17] (AVAST Software) S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-17] () S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [65128 2011-03-13] (McAfee, Inc.) S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir3.sys [33792 2010-06-03] (Hauppauge Computer Works, Inc.) S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [156792 2011-03-13] (McAfee, Inc.) S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [227856 2011-03-13] (McAfee, Inc.) R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [481376 2011-03-13] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [639216 2011-03-13] (McAfee, Inc.) R1 mfenlfk; C:\Windows\System32\DRIVERS\mfenlfk.sys [75672 2011-03-13] (McAfee, Inc.) S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [98728 2011-03-13] (McAfee, Inc.) R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [281928 2011-03-13] (McAfee, Inc.) S3 SilvrLnk; C:\Windows\SysWOW64\DRIVERS\silvrlnk.sys [21456 2004-01-28] (Texas Instruments Incorporated) R1 {c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64; C:\Windows\System32\drivers\{c5e48979-bd7f-4cf7-9b73-2482a67a4f37}Gw64.sys [44688 2014-09-16] (StdLib) R1 {fa03420d-05ef-4826-9373-bf3c8734921f}Gw64; C:\Windows\System32\drivers\{fa03420d-05ef-4826-9373-bf3c8734921f}Gw64.sys [48784 2014-11-24] (StdLib) S3 mfeavfk01; \Device\mfeavfk01.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-08-13 20:20 - 2015-08-13 20:20 - 00022777 _____ C:\Users\POUZERGUES Albin\Downloads\FRST.txt 2015-08-13 20:16 - 2015-08-13 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2015-08-13 20:15 - 2015-08-13 20:19 - 02173952 _____ (Farbar) C:\Users\POUZERGUES Albin\Downloads\FRST64.exe 2015-08-09 18:55 - 2015-08-09 18:55 - 00097567 _____ C:\Users\POUZERGUES Albin\Downloads\export.geojson 2015-08-09 18:55 - 2015-08-09 18:55 - 00057098 _____ C:\Users\POUZERGUES Albin\Downloads\export.gpx 2015-08-09 18:54 - 2015-08-09 18:54 - 00102005 _____ C:\Users\POUZERGUES Albin\Downloads\export (1).json 2015-08-09 18:54 - 2015-08-09 18:54 - 00080669 _____ C:\Users\POUZERGUES Albin\Downloads\export.kml 2015-08-09 18:22 - 2015-08-09 18:22 - 00174433 _____ C:\Users\POUZERGUES Albin\Downloads\export_finess_20150809 (1).geocoded.csv 2015-08-09 18:15 - 2015-08-09 18:56 - 00180229 _____ C:\Users\POUZERGUES Albin\Downloads\export_finess_20150809 (1).csv 2015-08-09 17:08 - 2015-08-09 17:08 - 00301117 _____ C:\Users\POUZERGUES Albin\Downloads\export_finess_20150809.csv 2015-07-31 14:32 - 2015-07-31 14:32 - 04735780 _____ C:\Users\POUZERGUES Albin\Downloads\SysTraitementEauxUsees.csv 2015-07-31 14:30 - 2015-07-31 14:30 - 02694483 _____ C:\Users\POUZERGUES Albin\Downloads\pdv.csv 2015-07-31 13:30 - 2015-07-31 13:30 - 00014848 _____ C:\Users\POUZERGUES Albin\Downloads\liste_marches_2014.xls 2015-07-29 12:19 - 2015-07-29 12:19 - 00051567 _____ C:\Users\POUZERGUES Albin\Downloads\export.json 2015-07-28 15:00 - 2015-07-28 15:00 - 06852684 _____ C:\Users\POUZERGUES Albin\Downloads\download (1) 2015-07-28 14:59 - 2015-07-28 14:59 - 06852684 _____ C:\Users\POUZERGUES Albin\Downloads\download 2015-07-27 14:48 - 2015-07-27 14:48 - 00022151 _____ C:\Users\POUZERGUES Albin\Downloads\services_publics_Mahina.kml 2015-07-27 14:03 - 2015-07-27 14:03 - 00016323 _____ C:\Users\POUZERGUES Albin\Downloads\24440040400129_NM_NM_00003_LOC_AIRES_COV_NM_STBL (1).kml 2015-07-27 13:51 - 2015-07-27 13:51 - 00016323 _____ C:\Users\POUZERGUES Albin\Downloads\24440040400129_NM_NM_00003_LOC_AIRES_COV_NM_STBL.kml 2015-07-27 13:11 - 2015-07-27 13:11 - 00005961 _____ C:\Users\POUZERGUES Albin\Downloads\24440040400129_NM_NM_00003_LOC_AIRES_COV_NM_STBL.csv 2015-07-27 13:10 - 2015-07-27 13:10 - 01035121 _____ C:\Users\POUZERGUES Albin\Downloads\ba36ad95d457a6b132d707411bb798599405e343dd6a1657dd40eac51fec4a.csv 2015-07-27 12:32 - 2015-07-27 12:38 - 00005065 _____ C:\Users\POUZERGUES Albin\Downloads\distributeurspreservatifsmasculinsparis2012.csv 2015-07-27 12:30 - 2015-07-27 12:30 - 00014110 _____ C:\Users\POUZERGUES Albin\Downloads\ceb229c5ee5f774bb2a3b4ab8704dcfd78647e4e861a5688a2efdbbe55b98f.ods 2015-07-27 12:14 - 2015-07-27 12:14 - 00770545 _____ C:\Users\POUZERGUES Albin\Downloads\auto-ecole-resultats.geocoded.csv 2015-07-27 11:55 - 2015-07-27 12:07 - 00644104 _____ C:\Users\POUZERGUES Albin\Downloads\auto-ecole-resultats.csv 2015-07-27 11:54 - 2015-07-27 11:59 - 00000952 _____ C:\Users\POUZERGUES Albin\Downloads\CUS_CUS_DCOM_SPECT.csv 2015-07-27 11:54 - 2015-07-27 11:54 - 00029696 _____ C:\Users\POUZERGUES Albin\Downloads\CUS_CUS_DCOM_SPECT_DESC.xls 2015-07-27 11:53 - 2015-07-27 11:54 - 00800215 _____ C:\Users\POUZERGUES Albin\Downloads\earn_ses10_48.tsv.gz 2015-07-26 19:38 - 2015-07-26 19:38 - 00001068 _____ C:\Users\POUZERGUES Albin\Downloads\errors.gpx 2015-07-25 22:10 - 2015-07-25 22:10 - 00007604 _____ C:\Users\POUZERGUES Albin\AppData\Local\Resmon.ResmonCfg 2015-07-24 18:04 - 2015-07-24 18:04 - 00014075 _____ C:\Users\POUZERGUES Albin\Downloads\Geoportail_WMS_Preview_2-Bornes_enterrees.csv 2015-07-24 18:02 - 2015-07-24 18:02 - 00046233 _____ C:\Users\POUZERGUES Albin\Downloads\BornesRecharge2014_1.xlsx 2015-07-24 18:02 - 2015-07-24 18:02 - 00000513 _____ C:\Users\POUZERGUES Albin\Downloads\bornes-incendies.csv 2015-07-24 17:59 - 2015-07-24 17:59 - 00008603 _____ C:\Users\POUZERGUES Albin\Downloads\dataset.zip 2015-07-24 17:41 - 2015-07-24 17:41 - 00128953 _____ C:\Users\POUZERGUES Albin\Downloads\police_FR.csv.bz2 2015-07-23 13:44 - 2015-07-23 13:44 - 00006253 _____ C:\Users\POUZERGUES Albin\Downloads\dataset.csv 2015-07-21 13:39 - 2015-07-21 13:39 - 00000701 _____ C:\Users\POUZERGUES Albin\Downloads\mmm_reseau_mediatheques.csv 2015-07-21 13:38 - 2015-07-21 13:38 - 00014577 _____ C:\Users\POUZERGUES Albin\Downloads\SDESM-Stations-recharge-VE.xlsx 2015-07-21 13:38 - 2015-07-21 13:38 - 00007127 _____ C:\Users\POUZERGUES Albin\Downloads\SDESM-Stations-recharge-VE.csv 2015-07-21 13:32 - 2015-07-21 13:32 - 00051592 _____ C:\Users\POUZERGUES Albin\Downloads\35288-STMALO-INDEX-RUES.csv 2015-07-21 13:32 - 2015-07-21 13:32 - 00006251 _____ C:\Users\POUZERGUES Albin\Downloads\35288-STMALO-BOITES-LETTRES-RUE.csv 2015-07-20 20:17 - 2015-07-20 20:17 - 00064863 _____ C:\Users\POUZERGUES Albin\Downloads\rb-batiments_vn.json 2015-07-20 20:17 - 2015-07-20 20:17 - 00010748 _____ C:\Users\POUZERGUES Albin\Downloads\rb-batiments_vn.zip 2015-07-20 14:57 - 2015-07-20 14:57 - 00044247 _____ C:\Users\POUZERGUES Albin\Downloads\rb-peuplement_vn.csv 2015-07-20 14:56 - 2015-07-20 14:56 - 00576571 _____ C:\Users\POUZERGUES Albin\Downloads\rb-peuplement_vn.json 2015-07-20 14:56 - 2015-07-20 14:56 - 00108536 _____ C:\Users\POUZERGUES Albin\Downloads\rb-peuplement_vn.zip ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-08-13 20:20 - 2014-08-26 22:13 - 00000000 ____D C:\FRST 2015-08-12 22:44 - 2014-11-10 22:17 - 00000000 ____D C:\Users\POUZERGUES Albin\AppData\Roaming\JOSM 2015-08-11 19:09 - 2014-12-23 14:40 - 00000000 ____D C:\Users\POUZERGUES Albin\Downloads\Montchanin 2015-07-29 12:25 - 2015-02-15 21:09 - 00000000 ____D C:\Users\POUZERGUES Albin\AppData\Roaming\TP ==================== Fichiers à la racine de certains dossiers ======= 2014-07-30 21:14 - 2014-07-30 21:14 - 0000045 _____ () C:\Users\POUZERGUES Albin\AppData\Roaming\WB.CFG 2015-07-25 22:10 - 2015-07-25 22:10 - 0007604 _____ () C:\Users\POUZERGUES Albin\AppData\Local\Resmon.ResmonCfg Certains fichiers dans TEMP: ==================== C:\Users\POUZERGUES Albin\AppData\Local\Temp\{D8EF615C-EEE4-441B-BE11-EBF29B79C52A}-40.0.2214.111_chrome_installer.exe C:\Users\POUZERGUES Albin\AppData\Local\Temp\~dl6141.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2015-01-08 15:59 ==================== Fin de journal ============================