Compatibilitychech.exe rapport FRST

Résolu/Fermé
melip - 6 févr. 2015 à 12:04
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 6 févr. 2015 à 14:51
Bonjour, pouvez vous me donner la procédure des rapport avec FRST merci
http://pjjoint.malekal.com/files.php?id=20150206_s12v9g9d14n11
http://pjjoint.malekal.com/files.php?id=20150206_v8l15q12j14d10
http://pjjoint.malekal.com/files.php?id=20150206_n15n9d15q9u13


3 réponses

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 660
6 févr. 2015 à 12:12
Salut,


Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix

Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/webhp{searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.safefinder.com/?q=
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Bar = https://search.safefinder.com/?st=ds&q={searchTerms}
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = https://search.safefinder.com/?st=ds&q={searchTerms}
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.safefinder.com/?q=
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Bar = https://search.safefinder.com/?st=ds&q={searchTerms}
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = https://search.safefinder.com/?st=ds&q={searchTerms}
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/webhp{searchTerms}
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.webpageing.com/?type=sc&ts=1398167238&from=tugs&uid=ST3250820AS_5QE18GYGXXXX5QE18GYG
FF Homepage: hxxp://istart.webssearches.com/?type=hppp&ts=1398974332&from=tugs&uid=ST3250820AS_5QE18GYGXXXX5QE18GYG
FF Keyword.URL: hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cI6z3QDC0OwM-IQMXngrs4nTWYV4AdzUT8Pt6Qt6onKMZqQIdrQxlvoKjFe6ne5VssGhRyB-5gdtgeCG4nv_iTx1RZSYf2WWWB2LCV4QCwM2xrYfK31KcbpR-sDnjGKQ,,&q=
R2 Verifies and fixes application compatibility issues; C:\Documents and Settings\Meli\Application Data\Compatibility Verifier\compatibilitychecksvc.exe [99496 2015-01-30] () [File not signed]
R2 WindowsMangerProtect; C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe [463872 2015-01-19] (SysTool PasSame LIMITED) [File not signed]
R2 LPTSystemUpdater; C:\Program Files\LPT\srpts.exe [32288 2014-02-09] () <==== ATTENTION
R2 buuoujqmrk32; C:\Program Files\003\buuoujqmrk32.exe [541696 2014-04-22] () [File not signed]
2015-02-01 00:04 - 2015-02-06 11:16 - 00000112 _____ () C:\Documents and Settings\All Users\Application Data\48LE7634n.dat
2015-02-01 00:01 - 2015-02-05 10:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Package Cache
2015-02-01 00:00 - 2015-02-05 16:18 - 00000000 ____D () C:\Documents and Settings\Meli\Application Data\WinZipper
2015-02-01 00:00 - 2015-02-01 00:00 - 00000000 ____D () C:\Program Files\WinZipper
2015-02-01 00:00 - 2015-02-01 00:00 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinZipper
2015-01-31 23:59 - 2015-02-06 09:38 - 00000000 ____D () C:\Documents and Settings\Meli\Application Data\Compatibility Verifier
2015-02-06 09:34 - 2014-04-22 12:49 - 00001472 _____ () C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-5.job
2015-02-06 09:34 - 2014-04-22 12:49 - 00001382 _____ () C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-1.job
2015-02-06 09:34 - 2014-04-22 12:48 - 00002102 _____ () C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-4.job
2015-02-05 20:43 - 2014-04-22 12:52 - 00000000 ____D () C:\Program Files\MediaPlayerplus
2015-02-05 20:43 - 2014-04-22 12:49 - 00000000 ____D () C:\Documents and Settings\Meli\Application Data\SupTab
2015-02-05 20:43 - 2014-04-22 12:49 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IePluginService
Task: C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-1.job => C:\Program Files\Freeven pro 1.2\Freeven pro 1.2-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-4.job => C:\Program Files\Freeven pro 1.2\01e067cc-2f54-421a-81c3-976bbab00f16-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-5.job => C:\Program Files\Freeven pro 1.2\01e067cc-2f54-421a-81c3-976bbab00f16-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\PCHelpers1st.job => C:\Program Files\Optimizer Elite Max\Optimizer Elite Max.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\PCHelpers_period.job => C:\Program Files\Optimizer Elite Max\Optimizer Elite Max.exe <==== ATTENTION


Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.

Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur

Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
* Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
* Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=
* Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=


Faudrait faire du ménage dans les antivirus installés :

AV: Norton AntiVirus 2006 (Disabled - Up to date) {E10A9785-9598-4754-B552-92431C1C35F8}
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Norton Internet Worm Protection (Disabled) {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}


0
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 05-02-2015
Ran by Meli at 2015-02-06 13:56:41 Run:1
Running from C:\Documents and Settings\Meli\Bureau
Loaded Profiles: Meli (Available profiles: Meli & Administrateur)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = http://feed.snapdo.com/...
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/...{searchTerms}
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/...{searchTerms}
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = http://feed.snapdo.com/...
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/...{searchTerms}
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/...{searchTerms}
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc&ts=1398167238&from=tugs&uid=ST3250820AS_5QE18GYGXXXX5QE18GYG
FF Homepage: hxxp://istart.webssearches.com/?type=hppp&ts=1398974332&from=tugs&uid=ST3250820AS_5QE18GYGXXXX5QE18GYG
FF Keyword.URL: hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cI6z3QDC0OwM-IQMXngrs4nTWYV4AdzUT8Pt6Qt6onKMZqQIdrQxlvoKjFe6ne5VssGhRyB-5gdtgeCG4nv_iTx1RZSYf2WWWB2LCV4QCwM2xrYfK31KcbpR-sDnjGKQ,,&q=
R2 Verifies and fixes application compatibility issues; C:\Documents and Settings\Meli\Application Data\Compatibility Verifier\compatibilitychecksvc.exe [99496 2015-01-30] () [File not signed]
R2 WindowsMangerProtect; C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe [463872 2015-01-19] (SysTool PasSame LIMITED) [File not signed]
R2 LPTSystemUpdater; C:\Program Files\LPT\srpts.exe [32288 2014-02-09] () <==== ATTENTION
R2 buuoujqmrk32; C:\Program Files\003\buuoujqmrk32.exe [541696 2014-04-22] () [File not signed]
2015-02-01 00:04 - 2015-02-06 11:16 - 00000112 _____ () C:\Documents and Settings\All Users\Application Data\48LE7634n.dat
2015-02-01 00:01 - 2015-02-05 10:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Package Cache
2015-02-01 00:00 - 2015-02-05 16:18 - 00000000 ____D () C:\Documents and Settings\Meli\Application Data\WinZipper
2015-02-01 00:00 - 2015-02-01 00:00 - 00000000 ____D () C:\Program Files\WinZipper
2015-02-01 00:00 - 2015-02-01 00:00 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinZipper
2015-01-31 23:59 - 2015-02-06 09:38 - 00000000 ____D () C:\Documents and Settings\Meli\Application Data\Compatibility Verifier
2015-02-06 09:34 - 2014-04-22 12:49 - 00001472 _____ () C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-5.job
2015-02-06 09:34 - 2014-04-22 12:49 - 00001382 _____ () C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-1.job
2015-02-06 09:34 - 2014-04-22 12:48 - 00002102 _____ () C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-4.job
2015-02-05 20:43 - 2014-04-22 12:52 - 00000000 ____D () C:\Program Files\MediaPlayerplus
2015-02-05 20:43 - 2014-04-22 12:49 - 00000000 ____D () C:\Documents and Settings\Meli\Application Data\SupTab
2015-02-05 20:43 - 2014-04-22 12:49 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IePluginService
Task: C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-1.job => C:\Program Files\Freeven pro 1.2\Freeven pro 1.2-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-4.job => C:\Program Files\Freeven pro 1.2\01e067cc-2f54-421a-81c3-976bbab00f16-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-5.job => C:\Program Files\Freeven pro 1.2\01e067cc-2f54-421a-81c3-976bbab00f16-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\PCHelpers1st.job => C:\Program Files\Optimizer Elite Max\Optimizer Elite Max.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\PCHelpers_period.job => C:\Program Files\Optimizer Elite Max\Optimizer Elite Max.exe <==== ATTENTION
*****************

HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page => value deleted successfully.
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Search Page => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Search Page => value deleted successfully.
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKU\S-1-5-21-3791729042-2004088247-1015059857-1005\Software\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
Firefox homepage deleted successfully.
Firefox Keyword.URL deleted successfully.
Verifies and fixes application compatibility issues => Service deleted successfully.
WindowsMangerProtect => Service not found.
LPTSystemUpdater => Service not found.
buuoujqmrk32 => Service not found.
C:\Documents and Settings\All Users\Application Data\48LE7634n.dat => Moved successfully.
C:\Documents and Settings\All Users\Application Data\Package Cache => Moved successfully.
"C:\Documents and Settings\Meli\Application Data\WinZipper" => File/Directory not found.
"C:\Program Files\WinZipper" => File/Directory not found.
"C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinZipper" => File/Directory not found.
"C:\Documents and Settings\Meli\Application Data\Compatibility Verifier" => File/Directory not found.
"C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-5.job" => File/Directory not found.
"C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-1.job" => File/Directory not found.
"C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-4.job" => File/Directory not found.
"C:\Program Files\MediaPlayerplus" => File/Directory not found.
"C:\Documents and Settings\Meli\Application Data\SupTab" => File/Directory not found.
"C:\Documents and Settings\All Users\Application Data\IePluginService" => File/Directory not found.
C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-1.job not found.
C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-4.job not found.
C:\WINDOWS\Tasks\01e067cc-2f54-421a-81c3-976bbab00f16-5.job not found.
C:\WINDOWS\Tasks\PCHelpers1st.job not found.
C:\WINDOWS\Tasks\PCHelpers_period.job not found.

==== End of Fixlog 13:56:42 ====
0
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 660
6 févr. 2015 à 14:12
ok fais le reste de la procédure et vois ce que cela donne.
0
pour l'instant ca va, merci
0
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 660
6 févr. 2015 à 14:51
=)


Voila, c'est terminé, tu peux supprimer les programmes utilisés.

Quelques conseils :



Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=


Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/


Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html



0