page de pub tout le tempsRésolu/Fermé

Question

Bonjour à tous, 
Depuis quelques jours j' ai un problème avec des pages de publicités qui s' ouvrent toute seule que je sois sur internet ou non, encore plus étrange elles s ouvrent même lorsque je ne reçois pas internet. 
J' ai déjà essayé de faire des recherches de malware avec Kaspersky PURE 3.0 , AdwCleaner et Malwarebytes Anti-Malware, mais rien n'y fait, le problème persiste. 
Quelqu'un pourait-il m'aider? 
Merci pour votre aide.
 Répondre

Utilisateur anonyme · Answer

Salut,

- Télécharge ZHPDiag sur ton bureau

- Laisse-toi guider lors de l'installation.

- Ouvre ZHPDiag (icône parchemin)

- Clique sur Complet.

Note: Pour les utilisateurs de Vista/Seven/8, cliquer droit sur l'icône et "Exécuter en tant qu'administrateur",

-  Héberge le rapport ZHPDiag.txt présent sur ton bureau sur Cjoint puis copie/colle le lien fourni dans ta prochaine réponse.

- Aide : Comment utiliser Cjoint ?

Tutoriel ZHPDiag

karidu21 · Answer

mon rappot j'arrive pas a faire un lien désoler

~ Rapport de ZHPDiag v2014.9.10.132 - Nicolas Coolman  (10/09/2014)
~ Lancé par karine (11/09/2014 14:47:30)
~ Adresse du Site Web https://nicolascoolman.eu
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17239

---\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\ Logiciels de protection du système
Windows Defender W7 (Activate)

---\ Logiciels d'optimisation du système

---\ Logiciels de partage PeerToPeer

---\ Surveillance de Logiciels
Adobe Flash Player 15 ActiveX

---\ Informations sur le système
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4090 MB (56% free)
System Restore: Activé (Enable)
System drive C: has 239 GB (53%) free of 450 GB

---\ Mode de connexion au système
~ Computer Name: KARINE-PC
~ User Name: karine
~ All Users Names: karine, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\karine\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\karine\AppData\Roaming\
~ %Desktop% : C:\Users\karine\Desktop\
~ %Favorites% : C:\Users\karine\Favorites\
~ %LocalAppData% : C:\Users\karine\AppData\Local\
~ %StartMenu% : C:\Users\karine\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 239 Go of 450 Go)
D: Hard drive, Flash drive, Thumb drive (Free 80 Go of 466 Go)
E: CD-ROM drive (Not Inserted)



---\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 41 Scanned in 00mn 00s



---\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.8E71A5CB5312B8392D4DA4CA37BB5868] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.25/07/2014 - 11:52:06.) -- C:\Windows\System32\wininet.dll [2266624]
[MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.04/03/2014 - 10:43:50.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers
etBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers
tfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers	dx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes:  Scanned in 00mn 00s



---\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/5217
~ Mes musiques (My Musics) : 28/5380
~ Mes Videos (My Videos) : 2/181
~ Mes Favoris (My Favorites) : 2/60
~ Mes Documents (My Documents) : 2/30628
~ Mon Bureau (My Desktop) : 2/12
~ Menu demarrer (Programs) : 1/41
~ Hidden Files:  Scanned in 01mn 15s



---\ Processus lancés
[MD5.112854FD524F472159E8F32548A7F62D] - (...) -- C:\Program Files (x86)\SupTab\HpUI.exe   [733576] [PID.1868]  =>PUP.SupTab
[MD5.D46415CD75DDA09F0A17D2FDA2235CB0] - (...) -- C:\Program Files (x86)\SupTab\Loader32.exe   [64000] [PID.2540]  =>PUP.SupTab
[MD5.D871310C2A69B411FA39C9F1164D173C] - (...) -- C:\Users\karine\AppData\Local\fst_fr_375\upfst_fr_375.exe   [3307000] [PID.3264]  =>Adware.FreeSoftToday
[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe   [186904] [PID.3916]
[MD5.EAEB34D06AC35097031B0F11595012D7] - (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe   [349480] [PID.3968]
[MD5.2F2DF068BED6E62E4C007DF7446B4F19] - (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe   [200704] [PID.4076]
[MD5.8CC2492339E6031235E5A15975FEDC80] - (.Microsoft Corp. - Microsoft Money Express.) -- C:\Program Files (x86)\Microsoft Money\System\mnyexpr.exe   [204800] [PID.2544]
[MD5.EAACAF3705D712771176BCAA3F63472C] - (.Smilebox, Inc. - Smilebox Tray.) -- C:\Users\karine\AppData\Roaming\Smilebox\SmileboxTray.exe   [305000] [PID.1320]
[MD5.4458989C34FA84B5A75DD3ABCFBE786A] - (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe   [3093624] [PID.3700]
[MD5.D2947FE5A1339F9EFE3853A8095A5E7B] - (.Probit Software LTD - EasySpeedCheck.) -- C:\Program Files (x86)\Easy Speed Check\easyspeedcheck.exe   [194200] [PID.3940]  =>PUP.ProbitSoftware
[MD5.131E6FE09470F057000B0CC01C14D8B7] - (.Acer Incorporated - Acer VCM.) -- C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe   [708608] [PID.3976]
[MD5.FE8BED8AEE02C337D4EEEDCDA4A50D32] - (.Probit Software LTD - Easy Speed PC Smart Scan.) -- C:\Program Files (x86)\Probit Software\Easy Speed PC\ESPCSmartScan.exe   [263472] [PID.2064]  =>PUP.ProbitSoftware
[MD5.4EDB929F6875F60B95FD475016FF2228] - (.NewTech Infosystems, Inc. - Acer Backup Manager.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe   [261888] [PID.3324]
[MD5.EF533F9D1E4F51C783D4349A7C3F518F] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe   [199464] [PID.1580]
[MD5.ED0D69E6FC4B2D8798335F20FD836D30] - (.Egis Technology Inc. - PdtWzd.exe.) -- C:\Program Files (x86)\Acer Bio Protection\PdtWzd.exe   [3564544] [PID.3668]
[MD5.8D1934B3065E4C7DF18556F22D8751B1] - (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe   [1200136] [PID.2480]
[MD5.00892B52634940C19ED46FC6CDA52FF1] - (.CyberLink Corp. - Acer Arcade Deluxe Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe   [128296] [PID.4112]
[MD5.96CA717D3295B88EEF14CFEE0636F1CD] - (.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Progr.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe   [181480] [PID.4128]
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe   [207424] [PID.4392]
[MD5.43221D88ADC872BED846B0B094EB293E] - (.SEIKO EPSON CORPORATION - EEventManager MFC Application.) -- C:\Program Files (x86)\epson\Creativity Suite\Event Manager\EEventManager.exe   [102400] [PID.4440]
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac   [309824] [PID.4552]
[MD5.26B558B2D31C7425B455B00E562EAD93] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastui.exe   [4085896] [PID.4604]
[MD5.049327975C9A1C09D5A7B84825939C95] - (.Boxore OU - Boxore Client.) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe   [965632] [PID.4632]  =>Adware.Boxore
[MD5.1DE859B82E381A645C44284A5044BC33] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [256896] [PID.4668]
[MD5.7FF3744DC538840C46162A421BF91214] - (...) -- C:\Program Files (x86)\fst_fr_375\fst_fr_375.exe   [3978696] [PID.3264]  =>Adware.FreeSoftToday
[MD5.C22109DF306064F8254217B76AB88998] - (.Oracle Corporation - Java(TM) Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe   [511872] [PID.3052]
[MD5.3A924B200D86590D2C83214CEBFA9742] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe   [859976] [PID.3588]
[MD5.80B582A109C0E361408409183D18FDEB] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [8102400] [PID.908]
[MD5.73F5C13B431915BAE35254B4E95DFB71] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe   [50344] [PID.1284]
[MD5.5E0C29FCD859AB8D5B1C859F034D8F2F] - (.Cherished Technololgy LIMITED - IePlugin Service.) -- C:\ProgramData\IePluginServices\PluginService.exe   [715656] [PID.1424]  =>PUP.IePluginService
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe   [113152] [PID.1704]
[MD5.F270C06F9FC1DD987C85CAD05BF455F1] - (.Egis Technology Inc. - Pas de description.) -- c:\Program Files (x86)\Acer Bio Protection\CompPtcVUI.exe   [3351552] [PID.1712]
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [135664] [PID.1536]
[MD5.A10A673B6FB8E65E202F5C6A453876F3] - (.HQPure - HQPureV1.8 exe.) -- C:\Program Files (x86)\HQPureV1.8\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-6.exe   [667032] [PID.1816]  =>PUP.CrossRider
[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe   [1150496] [PID.2348]
[MD5.8ADB361C0931DCA9A146698E628615FA] - (.Egis Technology Inc. - BASVC.exe.) -- c:\Program Files (x86)\Acer Bio Protection\BASVC.exe   [3450368] [PID.2412]
[MD5.0F5FAAC852DB4C340B7A2F187E3358B8] - (.Egis Technology Inc. - MyWinLocker Service.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe   [311592] [PID.2460]
[MD5.70E3EB0CEF795D348F05E5A9B115F491] - (.NewTech Infosystems, Inc. - Backup Manager Module.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe   [62720] [PID.2500]
[MD5.3F6268A2EC33CD38CF75C880AF8DED42] - (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe   [144640] [PID.2592]
[MD5.543A4EF0923BF70D126625B034EF25AF] - (.Protexis Inc. - PsiService PsiService.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe   [189728] [PID.2636]
[MD5.B5A4B7D779CF4070DF408DE18BD33B02] - (.Acer Incorporated - Raw Socket Service.) -- C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe   [253952] [PID.2668]
[MD5.30643E2C6D85155495478E53E7673DD2] - (...) -- C:\Users\karine\AppData\Roaming\VOPackage\VOsrv.exe   [71680] [PID.2772]  =>Adware.Downware
[MD5.70DDE3A86DBEB1D6C3C30AD687B1877A] - (.Acer - Acer Update Service.) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe   [240160] [PID.2868]
[MD5.7548066DF68A8A1A56B043359F915F37] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe   [354840] [PID.2336]
~ Processes Running:  Scanned in 00mn 01s



---\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\karine\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][StartupURLs] https://fr.yahoo.com/?fr=hp-avast&type=avastbcl
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] GoogleÃ'Â Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [blmchfpimpbbdmgpcieclabeafkljbhm] Groovorio New Tab v.0.3.3, (Désactivé)  =>PUP.Groovorio
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.7.13, (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2022.121, (Désactivé)
G2 - GCE: Preference [User Data\Default] [janmfndmohbaaoocpcgfbghioojoakjg] plugin v.0.2 (Désactivé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mnanplinmmnjhobaliikmelmmjpoogkb] HQPureV1.8 v.1.26.36, (Activé)  =>PUP.CrossRider
G2 - GCE: Preference [User Data\Default] [nchpfiddbhbdnagofhkjlaiaejmkdcla] Helper extension v.1.4 (Désactivé)  =>Adware.CouponBar
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [niapdbllcanepiiimjjndipklodoedlc] Yontoo v.1.0.4 (Désactivé)  =>Adware.Yontoo
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] GoogleÂ Wallet v.0.0.6.1 (Activé)

---\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [AdBlock]
G2 - EXT: C:\Users\karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnanplinmmnjhobaliikmelmmjpoogkb [HQPureV1.8]  =>PUP.CrossRider
G2 - EXT: C:\Users\karine\AppData\Local\Google\Chrome\User Data\Default\Extensions
mmhkkegccagdldgiimedpiccmgmieda [GoogleÂ Wallet]
~ Google Lines Browser: 21 Scanned in 00mn 02s



---\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30514.0
pctrl.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\karine\AppData\Local\Facebook\Video\Skype
pFacebookVideoCalling.dll
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster
pPandoWebPlugin.dll
~ Firefox Browser: 3 Scanned in 00mn 00s



---\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com  =>Hijacker.WebsSearches
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://fr.yahoo.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com  =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com  =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com  =>Hijacker.WebsSearches
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = https://search.safefinder.com/?q=  =>Hijacker.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://search.safefinder.com/?q=  =>Hijacker.SmartBar
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17239 (winblue_gdr.140724-2228)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: (no name) [64Bits] - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {9b53772a-8259-495d-a6b2-fa5966fe52e1} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 22 Scanned in 00mn 00s



---\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>  =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File:  Scanned in 00mn 00s



---\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) [64Bits] - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} Clé orpheline
O2 - BHO: CrossriderApp0061762 [64Bits] - {11111111-1111-1111-1111-110611171162} Clé orpheline  =>PUP.CrossRider
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper [64Bits] - {2EECD738-5844-4a99-B4B6-146BF802613B} Clé orpheline  =>PUP.Babylon
O2 - BHO: (no name) [64Bits] - {31ad400d-1b06-4e33-a59a-90c2c140cba0} Clé orpheline
O2 - BHO: (no name) [64Bits] - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Clé orpheline
O2 - BHO: (no name) [64Bits] - {549B5CA7-4A86-11D7-A4DF-000874180BB3} Clé orpheline
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion au compte Microsoft [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Video Clip Grab [64Bits] - {9b53772a-8259-495d-a6b2-fa5966fe52e1} Clé orpheline
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} Clé orpheline
~ BHO: 17 Scanned in 00mn 00s



---\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! Online Security - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (...) --  (.not file.)
O3 - Toolbar: Snap.Do - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.Microsoft Corporation
O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline
O3 - Toolbar: (no name) - [HKLM]{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
~ Toolbar:  Scanned in 00mn 00s



---\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [karine]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://istart.webssearches.com  =>Hijacker.WebsSearches
O4 - GS\Program [karine]: Aide.lnk . (...)  -- C:\Program Files (x86)\Probit Software\Easy Speed PC\EasySpeedPC.chm   =>PUP.ProbitSoftware
O4 - GS\Program [karine]: Easy Speed PC on the Web.lnk . (...)  -- C:\Program Files (x86)\Probit Software\Easy Speed PC\HomePage.url   =>PUP.ProbitSoftware
O4 - GS\Program [karine]: Easy Speed PC.lnk . (.Probit Software LTD - Fix PC problems and optimize performance.)  -- C:\Program Files (x86)\Probit Software\Easy Speed PC\EasySpeedPC.exe   =>PUP.ProbitSoftware
O4 - GS\Program [karine]: Uninstall.lnk . (.Probit Software LTD - Easy Speed PC.)  -- C:\Program Files (x86)\Probit Software\Easy Speed PC\uninstall.exe   =>PUP.ProbitSoftware
~ Global Startup: 5 Scanned in 00mn 02s



---\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe 
O4 - HKLM\..\Run: [mwlDaemon] . (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe 
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll   =>.NVIDIA Corporation
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe   =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [PLFSetI] . (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe 
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe 
O4 - HKLM\..\Run: [AmIcoSinglun64] . (.AlcorMicro Co., Ltd. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe 
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTrayLauncher.) -- C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe 
O4 - HKCU\..\Run: [MoneyAgent] . (.Microsoft Corp. - Microsoft Money Express.) -- C:\Program Files (x86)\Microsoft Money\System\mnyexpr.exe 
O4 - HKCU\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe 
O4 - HKCU\..\Run: [SmileboxTray] . (.Smilebox, Inc. - Smilebox Tray.) -- C:\Users\karine\AppData\Roaming\Smilebox\SmileboxTray.exe 
O4 - HKCU\..\Run: [Bubble Dock] C:\Users\karine\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)   =>PUP.BubbleDock
O4 - HKCU\..\Run: [Pando Media Booster] . (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe 
O4 - HKCU\..\Run: [Easy Speed PC] . (.Probit Software LTD - Fix PC problems and optimize performance.) -- C:\Program Files (x86)\Probit Software\Easy Speed PC\ESPCLauncher.exe   =>PUP.ProbitSoftware
O4 - HKCU\..\Run: [EasySpeedCheck] . (.Probit Software LTD - EasySpeedCheck.) -- C:\Program Files (x86)\Easy Speed Check\easyspeedcheck.exe   =>PUP.ProbitSoftware
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe 
O4 - HKLM\..\Wow6432Node\Run: [BackupManagerTray] . (.NewTech Infosystems, Inc. - Acer Backup Manager.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe 
O4 - HKLM\..\Wow6432Node\Run: [EgisTecLiveUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe 
O4 - HKLM\..\Wow6432Node\Run: [VitaKeyPdtWzd] . (.Egis Technology Inc. - PdtWzd.exe.) -- c:\Program Files (x86)\Acer Bio Protection\PdtWzd.exe 
O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe 
O4 - HKLM\..\Wow6432Node\Run: [ArcadeDeluxeAgent] . (.CyberLink Corp. - Acer Arcade Deluxe Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe 
O4 - HKLM\..\Wow6432Node\Run: [PlayMovie] . (.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Progr.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe   =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [NWEReboot] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe 
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager MFC Application.) -- C:\Program Files (x86)\EPSON\Creativity Suite\Event Manager\EEventManager.exe 
O4 - HKLM\..\Wow6432Node\Run: [Nikon Message Center 2] . (.Nikon Corporation - Nikon Message Center 2.) -- C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe 
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe 
O4 - HKLM\..\Wow6432Node\Run: [UVS12 Preload] . (.Corel TW Corp. - Corel VideoStudio.) -- C:\Program Files (x86)\Corel\Corel VideoStudio 12\uvPL.exe 
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe 
O4 - HKLM\..\Wow6432Node\Run: [Boxore Client] . (.Boxore OU - Boxore Client.) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe   =>Adware.Boxore
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [fst_fr_375] . (...) -- C:\Program Files (x86)\fst_fr_375\fst_fr_375.exe   =>Adware.FreeSoftToday
O4 - HKLM\..\Wow6432Node\RunOnce: [upfst_fr_375.exe] . (...) -- C:\Users\karine\AppData\Local\fst_fr_375\upfst_fr_375.exe   =>Adware.FreeSoftToday
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe   =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe   =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe   =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe   =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [MoneyAgent] . (.Microsoft Corp. - Microsoft Money Express.) -- C:\Program Files (x86)\Microsoft Money\System\mnyexpr.exe 
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe 
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [SmileboxTray] . (.Smilebox, Inc. - Smilebox Tray.) -- C:\Users\karine\AppData\Roaming\Smilebox\SmileboxTray.exe 
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [Bubble Dock] C:\Users\karine\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)   =>PUP.BubbleDock
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [Pando Media Booster] . (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe 
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [Easy Speed PC] . (.Probit Software LTD - Fix PC problems and optimize performance.) -- C:\Program Files (x86)\Probit Software\Easy Speed PC\ESPCLauncher.exe   =>PUP.ProbitSoftware
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [EasySpeedCheck] . (.Probit Software LTD - EasySpeedCheck.) -- C:\Program Files (x86)\Easy Speed Check\easyspeedcheck.exe   =>PUP.ProbitSoftware
~ Application:  Scanned in 00mn 00s



---\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32
apinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll  =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll  =>.Microsoft Corporation
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll  =>.Microsoft Corporation
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 9 Scanned in 00mn 00s



---\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{11859DEF-162F-43CC-BB73-C5A698345556}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{11859DEF-162F-43CC-BB73-C5A698345556}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{11859DEF-162F-43CC-BB73-C5A698345556}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain:  Scanned in 00mn 00s



---\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- 
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation - LSI Soft Modem Call Progress Service.) - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Acer ePower Service (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  =>.Google Inc
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: IePlugin Services (IePluginServices) . (.Cherished Technololgy LIMITED - IePlugin Service.) - C:\ProgramData\IePluginServices\PluginService.exe  =>PUP.IePluginService
O23 - Service: EgisTec Service (IGBASVC) . (.Egis Technology Inc. - BASVC.exe.) - c:\Program Files (x86)\Acer Bio Protection\BASVC.exe
O23 - Service: MyWinLocker Service (MWLService) . (.Egis Technology Inc. - MyWinLocker Service.) - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
O23 - Service: NTI IScheduleSvc (NTI IScheduleSvc) . (.NewTech Infosystems, Inc. - Backup Manager Module.) - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 186.5.) - C:\Windows\system32
vvsvc.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Raw Socket Service (RS_Service) . (.Acer Incorporated - Raw Socket Service.) - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: VO Service component (servervo) . (...) - C:\Users\karine\AppData\Roaming\VOPackage\VOsrv.exe  =>Adware.Downware
O23 - Service: Software Update Service (supdate) (supdate) . (.Boxore OU. - Programme d'installation de Software.) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe  =>Adware.Boxore
O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
~ Services: 20 Scanned in 00mn 07s



---\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\ Tâches planifiées en automatique (O39)
[MD5.4DA4CC5309DCE8944D1F23E5D0F002D8] [APT] [2477cc26-25b6-41a3-a442-9825c42437ff] (...) -- C:\Program Files (x86)\Information\2477cc26-25b6-41a3-a442-9825c42437ff.exe   [32152]
[MD5.00000000000000000000000000000000] [APT] [3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-1] (...) -- C:\Program Files (x86)\HQPureV1.8\HQPureV1.8-codedownloader.exe (.not file.)   [0]  =>PUP.CrossRider
[MD5.6185E369515DD8EDDB3354E72EAB9CAF] [APT] [3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-11] (.HQPure.) -- C:\Program Files (x86)\HQPureV1.8\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-11.exe   [1957784]  =>PUP.CrossRider
[MD5.6185E369515DD8EDDB3354E72EAB9CAF] [APT] [3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-3] (.HQPure.) -- C:\Program Files (x86)\HQPureV1.8\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-3.exe   [1957784]  =>PUP.CrossRider
[MD5.00000000000000000000000000000000] [APT] [3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-4] (...) -- C:\Program Files (x86)\HQPureV1.8\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-4.exe (.not file.)   [0]  =>PUP.CrossRider
[MD5.209F1460282213BE2DED8F0969612737] [APT] [3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5] (.HQPure.) -- C:\Program Files (x86)\HQPureV1.8\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5.exe   [490904]  =>PUP.CrossRider
[MD5.209F1460282213BE2DED8F0969612737] [APT] [3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5_user] (.HQPure.) -- C:\Program Files (x86)\HQPureV1.8\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5.exe   [490904]  =>PUP.CrossRider
[MD5.A10A673B6FB8E65E202F5C6A453876F3] [APT] [3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-6] (.HQPure.) -- C:\Program Files (x86)\HQPureV1.8\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-6.exe   [667032]  =>PUP.CrossRider
[MD5.0BA7B780DEFC08A874A55391352BF3DA] [APT] [3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-7] (.HQPure.) -- C:\Program Files (x86)\HQPureV1.8\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-7.exe   [565144]  =>PUP.CrossRider
[MD5.FBB312C9DA3863673EC18F4AE4101778] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [267440]
[MD5.1AD8512A5C40AD1A0558498D8E0AC2AA] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe   [808448]
[MD5.00000000000000000000000000000000] [APT] [DealPly] (...) -- C:\Users\karine\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.exe (.not file.)   [0]  =>PUP.DealPly
[MD5.9EB925EDC8CF1C3D06E50E9348B54A0A] [APT] [FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000Core] (.Facebook Inc..) -- C:\Users\karine\AppData\Local\Facebook\Update\FacebookUpdate.exe   [138096]
[MD5.9EB925EDC8CF1C3D06E50E9348B54A0A] [APT] [FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000UA] (.Facebook Inc..) -- C:\Users\karine\AppData\Local\Facebook\Update\FacebookUpdate.exe   [138096]
[MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe   [68608]
[MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe   [68608]
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [135664]
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [135664]
[MD5.00000000000000000000000000000000] [APT] [LaunchSignup] (...) -- C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe (.not file.)   [0]  =>PUP.JDIBackup
[MD5.00000000000000000000000000000000] [APT] [RegClean Pro] (...) -- C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe (.not file.)   [0]  =>Rogue.RegistryPowerCleaner
[MD5.00000000000000000000000000000000] [APT] [RegClean Pro_DEFAULT] (...) -- C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe (.not file.)   [0]  =>Rogue.RegistryPowerCleaner
[MD5.00000000000000000000000000000000] [APT] [RegClean Pro_UPDATES] (...) -- C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe (.not file.)   [0]  =>Rogue.RegistryPowerCleaner
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Users\karine\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\RunIE.exe (.not file.)   [0]
[MD5.176D58223D0D1F8C83C517D15CAB900C] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe   [96136]  =>Toolbar.Ask
[MD5.251A1AED2D4A26A47C0A4A3058AAE4A8] [APT] [SoftwareUpdateTaskMachineCore] (.Boxore OU..) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe   [139576]  =>Adware.Boxore
[MD5.251A1AED2D4A26A47C0A4A3058AAE4A8] [APT] [SoftwareUpdateTaskMachineUA] (.Boxore OU..) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe   [139576]  =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [{18FAF09C-393F-45ED-951B-35CBAA35C420}] (...) -- C:\Users\karine\Desktop\wlsetup-all.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{26CA6757-602F-49CD-BF47-336E358398BD}] (...) -- C:\Users\karine\Downloads\Webplayer (1).exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{7EF7877C-F079-44D1-9C34-7F91679A7DFB}] (...) -- C:\Users\karine\Downloads\wlsetup-web.exe (.not file.)   [0]
[MD5.6D28EAF6D20E851FCA5F90AD3C7B4B2E] [APT] [{ACFC08B8-B3D7-4A6D-AD7E-2753DFF1060D}] (.Pinnacle Systems.) -- C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe   [6034704]
[MD5.6FAA2FE4C7B815AB932E15EF1016691B] [APT] [{B23B42C4-8553-4316-89EC-666EC5E4D084}] (...) -- c:\users\karine\appdata\local\lollipop\lolipop.bat   [332]  =>Adware.Lollipop
[MD5.9B91238821B483663BEFF72D5603AA33] [APT] [{D044FA6B-6E3E-4B79-8A7C-021FF9A8EE66}] (.MindVision.) -- C:\Windows\unvise32qt.exe   [86016]
[MD5.00000000000000000000000000000000] [APT] [{E753097F-BB6B-4FF2-8A29-9B0D3E50CAE9}] (...) -- E:\setup.exe (.not file.)   [0]
[MD5.6D28EAF6D20E851FCA5F90AD3C7B4B2E] [APT] [{FFBD364F-8939-46BD-A89D-0EFCEB3BD221}] (.Pinnacle Systems.) -- C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe   [6034704]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe   [561984]
[MD5.00000000000000000000000000000000] [APT] [Startup Dialog] (...) -- C:\Program Files (x86)\Pointstone\System Cleaner 7\Helper.exe (.not file.)   [0]
O39 - APT: 2477cc26-25b6-41a3-a442-9825c42437ff - (...) -- C:\Windows\Tasks\2477cc26-25b6-41a3-a442-9825c42437ff.job   [608]
O39 - APT: 2477cc26-25b6-41a3-a442-9825c42437ff - (...) -- C:\Windows\System32\Tasks\2477cc26-25b6-41a3-a442-9825c42437ff   [608]
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-1 - (...) -- C:\Windows\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-1.job   [1846]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-1 - (...) -- C:\Windows\System32\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-1   [1846]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-11 - (.HQPure.) -- C:\Windows\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-11.job   [4476]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-11 - (.HQPure.) -- C:\Windows\System32\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-11   [4476]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-3 - (.HQPure.) -- C:\Windows\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-3.job   [3794]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-3 - (.HQPure.) -- C:\Windows\System32\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-3   [3794]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-4 - (...) -- C:\Windows\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-4.job   [2660]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-4 - (...) -- C:\Windows\System32\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-4   [2660]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5 - (.HQPure.) -- C:\Windows\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5.job   [1730]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5 - (.HQPure.) -- C:\Windows\System32\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5   [1730]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5_user - (.HQPure.) -- C:\Windows\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5_user.job   [1750]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5_user - (.HQPure.) -- C:\Windows\System32\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-5_user   [1750]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-6 - (.HQPure.) -- C:\Windows\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-6.job   [2412]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-6 - (.HQPure.) -- C:\Windows\System32\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-6   [2412]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-7 - (.HQPure.) -- C:\Windows\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-7.job   [2284]  =>PUP.CrossRider
O39 - APT: 3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-7 - (.HQPure.) -- C:\Windows\System32\Tasks\3e601ebf-8f13-4c7b-8b9c-8971ed5fa75b-7   [2284]  =>PUP.CrossRider
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater   [1002]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000Core - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000Core.job   [1078]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000Core - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000Core   [1078]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000UA - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000UA.job   [1100]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000UA - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3861077537-740542216-2722486563-1000UA   [1100]
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job   [906]
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore   [906]
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job   [910]
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA   [910]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1066]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore   [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA   [1070]
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\Tasks\RegClean Pro_DEFAULT.job   [278]  =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\System32\Tasks\RegClean Pro_DEFAULT   [278]  =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\Tasks\RegClean Pro_UPDATES.job   [286]  =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\System32\Tasks\RegClean Pro_UPDATES   [286]  =>Rogue.RegistryPowerCleaner
O39 - APT: SoftwareUpdateTaskMachineCore - (.Boxore OU..) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job   [1082]  =>Adware.Boxore
O39 - APT: SoftwareUpdateTaskMachineCore - (.Boxore OU..) -- C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineCore   [1082]  =>Adware.Boxore
O39 - APT: SoftwareUpdateTaskMachineUA - (.Boxore OU..) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job   [1086]  =>Adware.Boxore
O39 - APT: SoftwareUpdateTaskMachineUA - (.Boxore OU..) -- C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA   [1086]  =>Adware.Boxore
~ Scheduled Task: 70 Scanned in 00mn 06s



---\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll  =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32	hemeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe  =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s



---\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver:  (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver:  (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (mwlPSDFilter) . (.Egis Technology Inc. - PSD Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys
O41 - Driver:  (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys
O41 - Driver:  (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS
etbios.sys
O41 - Driver:  (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS
etbt.sys
O41 - Driver: C:\Windows\System32\drivers
siproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers
siproxy.sys
O41 - Driver:  (PCLEPCI) . (. - .) - C:\Windows\system32\drivers\pclepci.sys (.not file.)
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERSdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\driversdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\driversdprefmp.sys
O41 - Driver: C:\Windows\System32	cpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS	dx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers	ermdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32ascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 81 Scanned in 00mn 00s



---\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 15 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: DealPly - (...) [HKCU][64Bits] -- DealPly  =>PUP.DealPly
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: Extension Système de Microsoft Money - (.Microsoft.) [HKLM][64Bits] -- {8C64E149-54BA-11D6-91B1-00500462BE80}
O42 - Logiciel: Les Sims(TM) 2 Animaux & Cie - (...) [HKLM][64Bits] -- {4817189D-1785-4627-A33C-39FD90919300}
O42 - Logiciel: Lollipop - (...) [HKCU][64Bits] -- lolipop  =>Adware.Lollipop
O42 - Logiciel: Microsoft Money - (.Microsoft.) [HKLM][64Bits] -- {1D643CD2-4DD6-11D7-A4E0-000874180BB3}
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Picture It! Photo Premium 9 - (.Microsoft Corporation.) [HKLM][64Bits] -- PictureIt_v9
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}
O42 - Logiciel: Smilebox - (.Smilebox, Inc..) [HKCU][64Bits] -- Smilebox
O42 - Logiciel: Snap.Do Engine - (.ReSoft Ltd..) [HKCU][64Bits] -- {b3cb2e84-52b6-486e-b867-792a12340123}  =>Hijacker.SmartBar
O42 - Logiciel: Windows Media Encoder 9 Series - (...) [HKLM][64Bits] -- Windows Media Encoder 9
O42 - Logiciel: Windows Media Encoder 9 Series - (.Microsoft Corporation.) [HKLM][64Bits] -- {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
~ Logic: 41 Scanned in 00mn 00s



---\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\ALWIL Software]
[HKCU\Software\APN PIP]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Acer]
[HKCU\Software\Adobe Lightroom]
[HKCU\Software\Adobe]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow\AskToolbarInfo]
[HKCU\Software\AppDataLow\Aurigma]
[HKCU\Software\AppDat

Utilisateur anonyme · Answer

Re,

Lit ce tutoriel : https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers 
 
Pour savoir utiliser Cjoint, il n'y a rien de compliqué.

Le rapport ne passera pas en complet et il me faut le rapport complet.
Ce ne sont pas les mauvaises herbes qui étouffent le bon grain, c'est la négligence du cultivateur.

karidu21 · Answer

https://www.cjoint.com/?0IlqpYpoM6d

voila je crois avoir réusie pas sur mais bon pas facile merci a vous de me suivre et m aider

Utilisateur anonyme · Answer

Re,

Tu peux laisser en format texte ...

 /!\ Désactive ton antivirus sinon l'outil ne pourra pas travailler convenablement /!\

- Télécharge ZHPCleaner de (nicolas Coolman)  sur ton bureau

- Fais un double clic sur l'icône pour le lancer

Note: Exécuter en tant qu'administrateur sous Windows Vista, Seven et Windows 8

- Accepte "les conditions d'utilisation"

- Clique sur Reparer

Note: Durant le nettoyage, si l'outil te demande "Avez-vous installé ce proxy ?" et que tu n'en as pas installé, clique sur "Non"

- Héberge le rapport ZHPCleaner.txt présent sur ton bureau sur Cjoint puis copie/colle le lien fourni dans ta prochaine réponse.

Aide : Comment utiliser Cjoint ?

karidu21 · Answer

https://www.cjoint.com/?3IlrLALLGjB

Utilisateur anonyme · Answer

Re,

&#x25B6; Télécharge AdwCleaner (d'Xplode) sur ton bureau.

&#x25B6;  Lance-le en cliquant sur l'icône "adwcleaner_3.309.exe" présent sur ton  bureau,

Note: Pour les utilisateurs de Vista/Seven/8, clique droit sur l'icône et "Exécuter en tant qu'administrateur",

&#x25B6; Clique sur le bouton "Scanner"

&#x25B6; Une fois le scan fini, choisis l'option "Nettoyer".

&#x25B6; Héberge le rapport AdwCleaner[S0].txt présent sur ton bureau au redémarrage de ton PC sur Cjoint puis copie/colle le lien fourni dans ta prochaine réponse.

Note: Un double du rapport ce trouve => C:\AdwCleaner\AdwCleaner[S0].txt

Aide : Comment utiliser Cjoint ?

Tutoriel ADWCleaner

karidu21 · Answer

https://www.cjoint.com/?3Iltuy41g8Q

Utilisateur anonyme · Answer

Re,

C'est pas fini.

- Télécharge Malwarebytes Anti-malware en cliquant sur "Version gratuite à télécharger".

- Enregistre-le sur ton bureau.

- Double-clique sur le fichier téléchargé pour lancer le processus d'installation (Si le pare-feu demande l'autorisation de se connecter pour Malwarebytes, accepte)

- Une fois le logiciel installé et lancé, 

Lance "malwarebytes" 

- Va dans l'onglet "Setting", puis choisis ta langue "Français" puis dans le menu de gauche clique sur "Détection et protection", dans la partie "Options de détections" coche la case "Recherche de Rootkits"

- Puis va dans l'onglet "Examen".

- Sélectionne "Examen Menaces" puis clique sur "Examinez maintenant".

- Si une mise à jour est signalée clique sur Mettre à jour maintenant puis patiente durant l'examen

- Une fois l'examen terminé, veille à ce que l'action Quarantaine soit sélectionnée pour tous les éléments détectés.

- Clique sur "Appliquer les actions". S'il est demandé de redémarrer le PC, fais-le.

- Dans l'onglet Examen, clique sur Exporter le journal => Fichier texte (txt). Sinon, va dans l'onglet Historique puis Journaux de l'application.

- Héberge le rapport sur Cjoint puis copie/colle le lien fourni dans ta prochaine réponse.

Aide : 

- Comment utiliser Cjoint ?

- Tutoriel Malwarebyte

karidu21 · Answer

bonjours v - x

https://www.cjoint.com/?0InqHSnyNUk

Utilisateur anonyme · Answer

Re,

Refais un rapport avec zhpdiag.

++

karidu21 · Answer

https://www.cjoint.com/?0InrtzOO1oD


tout a l'heure j'ai eu une pub en bas a droite une seule fois ça va s est pas tout le temps et une page internet de searches qui s'est ouverte toute seule, internet ne s'ouvre plus tout seul j'ai plus de pub génante

Utilisateur anonyme · Answer

Re,

 - Copie les lignes qui sont ci-dessous en gras:


Script ZHPFix
ShortcutFix
[MD5.D2947FE5A1339F9EFE3853A8095A5E7B] - (.Probit Software LTD - EasySpeedCheck.) -- C:\Program Files (x86)\Easy Speed Check\easyspeedcheck.exe   [194200] [PID.3796]
O4 - GS\Program [karine]: Aide.lnk . (...)  -- C:\Program Files (x86)\Probit Software\Easy Speed PC\EasySpeedPC.chm  (.not file.)
O4 - GS\Program [karine]: Easy Speed PC on the Web.lnk . (...)  -- C:\Program Files (x86)\Probit Software\Easy Speed PC\HomePage.url  (.not file.)
O4 - GS\Program [karine]: Easy Speed PC.lnk . (...)  -- C:\Program Files (x86)\Probit Software\Easy Speed PC\EasySpeedPC.exe (.not file.)
O4 - GS\Program [karine]: Uninstall.lnk . (...)  -- C:\Program Files (x86)\Probit Software\Easy Speed PC\uninstall.exe (.not file.)
O4 - HKCU\..\Run: [Easy Speed PC] C:\Program Files (x86)\Probit Software\Easy Speed PC\ESPCLauncher.exe (.not file.)
O4 - HKCU\..\Run: [EasySpeedCheck] . (.Probit Software LTD - EasySpeedCheck.) -- C:\Program Files (x86)\Easy Speed Check\easyspeedcheck.exe
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [Easy Speed PC] C:\Program Files (x86)\Probit Software\Easy Speed PC\ESPCLauncher.exe (.not file.)
O4 - HKUS\S-1-5-21-3861077537-740542216-2722486563-1000\..\Run: [EasySpeedCheck] . (.Probit Software LTD - EasySpeedCheck.) -- C:\Program Files (x86)\Easy Speed Check\easyspeedcheck.exe
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Users\karine\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\RunIE.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{B23B42C4-8553-4316-89EC-666EC5E4D084}] (...) -- c:\users\karine\appdata\local\lollipop\lolipop.bat (.not file.)   [0]
O42 - Logiciel: Lollipop - (...) [HKCU][64Bits] -- lolipop
O42 - Logiciel: Snap.Do Engine - (.ReSoft Ltd..) [HKCU][64Bits] -- {b3cb2e84-52b6-486e-b867-792a12340123}
[HKCU\Software\Probit Software]
[HKLM\Software\Wow6432Node\globalUpdate]
[HKLM\Software\Wow6432Node\iWin.com Games]
[HKLM\Software\Wow6432Node\iWinArcade]
C:\Users\karine\AppData\Roaming\0T1P1I1P0C1M1T1C1N1P1C
O45 - LFCP:[MD5.D139DF11C874688DAB24598BE0671025] - 10/09/2014 - 08:45:37 ---A- - C:\Windows\Prefetch\BOXORE.EXE-666CD123.pf
O45 - LFCP:[MD5.91F0C22F9F0F8905254D4F5F35744E2D] - 11/09/2014 - 16:28:15 ---A- - C:\Windows\Prefetch\FST_FR_375.EXE-3638E497.pf
O45 - LFCP:[MD5.FCAB0F2FA9D9FBB3277FBFAC6D95D9FD] - 11/09/2014 - 16:09:51 ---A- - C:\Windows\Prefetch\UPFST_FR_375.EXE-63BA8534.pf
O90 - PUC: "A07B748F92CF28B478E2852FECD9EE90" . (.Boxore Client.) -- C:\Windows\Installer\{F847B70A-FC29-4B82-872E-58F2CE9DEE09}\boxore.ico
O90 - PUC: "B20554F625C43EC4099B4B8BBB70605F" . (.Dealio Toolbar v9.7.) -- C:\Windows\Installer\{6F45502B-4C52-4CE3-90B9-B4B8BB0706F5}\ARPPRODUCTICON.exe
[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][03/10/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\b5b6b.msi   [45056]
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\20120702IminentSetup_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\20120702IminentSetup_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\dealio_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\dealio_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LollipopInstaller_kreapixel_14650_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LollipopInstaller_kreapixel_14650_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Services x86-InternalInstaller_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Services x86-InternalInstaller_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Services x86_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Services x86_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\yontoo-C4-027C_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\yontoo-C4-027C_RASMANCS
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\lolipop]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{b3cb2e84-52b6-486e-b867-792a12340123}]
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Easy Speed PC
C:\Program Files (x86)\Easy Speed Check\easyspeedcheck.exe
C:\Windows\Installer\b5b6b.msi
C:\Users\karine\AppData\Local\Temp\uninst1.exe
C:\Users\karine\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\karine\AppData\Local\Temp\GoogleToolbarInstaller1.log
R3 - URLSearchHook: (no name) [64Bits] - {9b53772a-8259-495d-a6b2-fa5966fe52e1} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)    
O2 - BHO: Video Clip Grab [64Bits] - {9b53772a-8259-495d-a6b2-fa5966fe52e1} Clé orpheline    
O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline    
O4 - HKLM\..\Wow6432Node\Run: [NWEReboot] Clé orpheline    
O41 - Driver:  (PCLEPCI) . (. - .) - C:\Windows\system32\drivers\pclepci.sys (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{18FAF09C-393F-45ED-951B-35CBAA35C420}] (...) -- C:\Users\karine\Desktop\wlsetup-all.exe (.not file.)   [0]    
[MD5.00000000000000000000000000000000] [APT] [{26CA6757-602F-49CD-BF47-336E358398BD}] (...) -- C:\Users\karine\Downloads\Webplayer (1).exe (.not file.)   [0]   
[MD5.00000000000000000000000000000000] [APT] [{7EF7877C-F079-44D1-9C34-7F91679A7DFB}] (...) -- C:\Users\karine\Downloads\wlsetup-web.exe (.not file.)   [0]   
O3 - Toolbar: avast! Online Security - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (...) --  (.not file.)
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O43 - CFD: 28/01/2010 - 14:13:15 - [] ----D C:\ProgramData\McAfee
EmptyPrefetch
EmptyFlash
FirewallRAZ
EmptyTemp 

- Ouvre ZHPfix, (icône seringue)

Note: Pour les utilisateurs de Vista/Seven/8, cliquer droit sur l'icône et "Exécuter en tant qu'administrateur",

- Clique sur Importer, puis colle les lignes dans la partie prévue pour,

- Clique sur Go.

- Clique sur Oui pour confirmer le nettoyage des données et celui de la corbeille.

- Héberge le rapport ZHPFix.txt présent sur ton bureau sur Cjoint puis copie/colle le lien fourni dans ta prochaine réponse.

Aide : Comment utiliser Cjoint ?


P.S. Si le bureau disparaît, fais Ctrl + Alt + Suppr afin d'ouvrir le gestionnaire des tâches puis dans Applications, clique sur Nouvelle tâche puis tape explorer.exe. Le bureau devrait normalement réapparaître.

/!\ Attention, ta corbeille va être vidée. Vérifie qu'il n'y ait aucun fichier supprimé par mégarde à l'intérieur. /!\ 
 
Ce ne sont pas les mauvaises herbes qui étouffent le bon grain, c'est la négligence du cultivateur.

Page de pub tout le temps

13 réponses

Discussions similaires

Newsletters