Istartsurf
Résolu/Fermé
sayane6
Messages postés
12
Date d'inscription
mardi 3 mars 2015
Statut
Membre
Dernière intervention
3 mars 2016
-
3 mars 2015 à 21:30
sayane6 Messages postés 12 Date d'inscription mardi 3 mars 2015 Statut Membre Dernière intervention 3 mars 2016 - 4 mars 2015 à 13:23
sayane6 Messages postés 12 Date d'inscription mardi 3 mars 2015 Statut Membre Dernière intervention 3 mars 2016 - 4 mars 2015 à 13:23
11 réponses
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 666
3 mars 2015 à 21:31
3 mars 2015 à 21:31
Salut,
Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :
Envoie comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et donne les trois liens pjjoint de ces rapports afin qu'ils puissent être consultés.
Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :
- FRST.txt
- Shortcut.txt
- Additionnal.txt
Envoie comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et donne les trois liens pjjoint de ces rapports afin qu'ils puissent être consultés.
sayane6
Messages postés
12
Date d'inscription
mardi 3 mars 2015
Statut
Membre
Dernière intervention
3 mars 2016
3 mars 2015 à 21:49
3 mars 2015 à 21:49
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 666
3 mars 2015 à 22:08
3 mars 2015 à 22:08
Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix
Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dans le bloc ce qui suit :
HKU\S-1-5-21-4099818321-3234377780-4292726065-1000\...\Run: [WindApp] => C:\Users\FANNY\AppData\Roaming\Store\WindApp\WindApp.exe /winstartup
R2 cehufofi; C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F\jnsiAD7D.tmp [103424 2015-03-02] () [File not signed]
R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)
R2 qiduvoko; C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F\inst65B8.tmp [99840 2015-03-02] () [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [493712 2015-03-03] (SysTool PasSame LIMITED)
S2 BasementDuster; C:\Program Files (x86)\IGS\BasementDuster.exe [X]
S2 cae99edb; C:\Windows\system32\rundll32.exe c:\Program Files (x86)\Super Optimizer\SupOptStats.dll,ENT
R2 xeqomesu; C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F\nsc7A27.tmpfs [X]
2015-03-03 21:41 - 2015-03-03 21:41 - 00001093 _____ () C:\Users\FANNY\Desktop\Continue Live Installation.lnk
2015-03-03 21:30 - 2015-03-03 21:30 - 00003748 _____ () C:\Windows\System32\Tasks\Selection Tools Update
2015-03-03 21:30 - 2015-03-03 21:30 - 00000078 _____ () C:\Users\FANNY\AppData\Roaming\Selection Tools.installation.log
2015-03-03 21:30 - 2015-03-03 21:30 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\WTools
2015-03-03 21:29 - 2015-03-03 21:29 - 00005712 _____ () C:\Users\FANNY\AppData\Roaming\Bubble Dock.installation.log
2015-03-03 21:29 - 2015-03-03 21:29 - 00003714 _____ () C:\Windows\System32\Tasks\WindApp Update
2015-03-03 21:29 - 2015-03-03 21:29 - 00000078 _____ () C:\Users\FANNY\AppData\Roaming\WindApp.installation.log
2015-03-03 21:29 - 2015-03-03 21:29 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Store
2015-03-03 21:29 - 2015-03-03 21:29 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock
2015-03-03 21:28 - 2015-03-03 21:30 - 00001305 _____ () C:\Users\FANNY\AppData\Roaming\Bubble Dock.boostrap.log
2015-03-03 21:28 - 2015-03-03 21:28 - 00000097 _____ () C:\Users\FANNY\AppData\Roaming\WindApp.boostrap.log
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\VOPackage
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425418128-3631-4238-28924A3C0F5F
2015-03-03 21:25 - 2015-03-03 21:25 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-03-03 21:25 - 2015-03-03 21:25 - 00000000 ____D () C:\Program Files (x86)\XTab
2015-03-03 21:24 - 2015-03-03 21:24 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\istartsurf
2015-03-03 21:24 - 2015-03-03 21:24 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-03-03 21:21 - 2015-03-03 21:21 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2015-03-03 21:06 - 2015-03-03 21:08 - 00004092 _____ () C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job
2015-03-03 21:06 - 2015-03-03 21:07 - 00002094 _____ () C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job
2015-03-03 21:06 - 2015-03-03 21:06 - 00007122 _____ () C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12
2015-03-03 21:06 - 2015-03-03 21:06 - 00000000 ____D () C:\Program Files (x86)\winservice86
2015-03-03 21:04 - 2015-03-03 21:04 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425416672-3631-4238-28924A3C0F5F
2015-03-03 21:02 - 2015-03-03 21:02 - 00003150 _____ () C:\Windows\System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C}
2015-03-03 19:29 - 2015-03-03 19:30 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425410986-3631-4238-28924A3C0F5F
2015-03-03 13:26 - 2015-03-03 18:54 - 00005068 _____ () C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job
2015-03-03 13:26 - 2015-03-03 13:26 - 00007200 _____ () C:\Windows\System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6
2015-03-03 13:25 - 2015-03-03 13:25 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425389150-3631-4238-28924A3C0F5F
2015-03-03 12:55 - 2015-03-03 12:56 - 00000000 ____D () C:\Program Files (x86)\195f3c84-1312-405e-84e7-b3ebdaf2411a
2015-03-03 12:54 - 2015-03-03 12:54 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425387298-3631-4238-28924A3C0F5F
2015-03-02 21:46 - 2015-03-02 23:52 - 00000000 ____D () C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}
2015-03-02 21:37 - 2015-03-02 21:39 - 00010648 _____ () C:\Windows\SysWOW64\BasementDuster.ini
2015-03-02 21:36 - 2015-03-02 21:36 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F
2015-03-02 21:24 - 2015-03-02 21:24 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425331470-3631-4238-28924A3C0F5F
2015-03-02 21:07 - 2015-03-02 21:07 - 00029611 _____ () C:\Users\FANNY\Downloads\scandal-s02e05-vostfr-hdtv.torrent
2015-03-02 20:44 - 2015-03-03 21:41 - 00001336 _____ () C:\Windows\Tasks\JJILD.job
2015-03-02 20:44 - 2015-03-02 21:41 - 01997784 _____ (HD PlusV02.03) C:\Users\FANNY\AppData\Roaming\JJILD.exe
2015-03-02 20:44 - 2015-03-02 21:41 - 00004366 _____ () C:\Windows\System32\Tasks\JJILD
2015-03-02 20:41 - 2015-03-02 20:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf
2015-03-02 20:39 - 2015-03-02 21:39 - 00008552 _____ () C:\Windows\SysWOW64\BasementDusterOff.ini
2015-03-02 20:39 - 2015-03-02 21:39 - 00008552 _____ () C:\Windows\system32\BasementDusterOff.ini
2015-03-02 20:38 - 2015-02-24 14:51 - 00318808 _____ (OM Inc.) C:\Windows\SysWOW64\BDL.dll
2015-03-02 20:27 - 2015-03-02 20:32 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425328020-3631-4238-28924A3C0F5F
2015-03-02 20:20 - 2015-03-02 20:21 - 00029931 _____ () C:\Users\FANNY\Downloads\scandal-s02e04-french-hdtv.torrent
2015-03-02 20:20 - 2015-03-02 20:20 - 00000000 ____D () C:\Program Files (x86)\30215a2f-25e0-405c-b5a6-cabd1843ece0
2015-03-02 20:18 - 2015-03-02 20:42 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F
2015-03-01 23:32 - 2015-03-03 21:08 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-02-20 22:29 - 2015-03-03 12:56 - 00000000 ____D () C:\Program Files (x86)\93dabc92-2c3c-49f6-b30b-6fb9e1094381
2015-02-20 09:05 - 2015-02-20 09:05 - 00003280 _____ () C:\Windows\System32\Tasks\uVQSKGkp2zrEvUD
2015-02-20 09:05 - 2015-02-20 09:05 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\cY2huiV
2015-02-20 09:04 - 2015-02-20 09:05 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\HDFkDec
2015-02-20 09:04 - 2015-02-20 09:04 - 00003240 _____ () C:\Windows\System32\Tasks\bzZnmqClCADn6RJ
2015-02-20 09:05 - 2014-11-22 01:41 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\isjVa4J
Task: {0361176D-6ED6-48DF-B741-5E2BD7BB5BEB} - \Pricora 1.1-chromeinstaller No Task File <==== ATTENTION
Task: {0E325F56-2514-46A6-AB59-44D8D51F0D0B} - System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-10.exe [2015-03-03] (Corporate Inc) <==== ATTENTION
Task: {1325F27F-F842-4E15-905C-E4E1A6AAEDD6} - System32\Tasks\uVQSKGkp2zrEvUD => C:\Users\FANNY\AppData\Roaming\cY2huiV\zZxJpPe.exe [2015-02-20] ( )
Task: {1A8EE32B-F35E-455C-BC48-11C68F1FE8F2} - System32\Tasks\WIN-statsSystem => C:\Users\FANNY\AppData\Local\Microsoft\WinU\~muwhypx.exe
Task: {1E7B3387-ECED-43AC-ABD0-B33A762F528F} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\FANNY\AppData\Roaming\~cwptsem.exe
Task: {35D4F616-6B7D-480D-92FA-08B52EB8B6FB} - \Pricora 1.1-codedownloader No Task File <==== ATTENTION
Task: {392169A0-3D3E-4CAA-9CA6-48257E2599F2} - \Pricora 1.1-enabler No Task File <==== ATTENTION
Task: {5ED2B6AA-0B3A-448C-BC2D-1B94CA2E5458} - System32\Tasks\bzZnmqClCADn6RJ => C:\Users\FANNY\AppData\Roaming\HDFkDec\UBBFlFj.exe [2015-02-20] ( ) <==== ATTENTION
Task: {718EB15B-5ACA-4FD9-ADDF-DE73469C93B9} - System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C} => pcalua.exe -a C:\Users\FANNY\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=ill
Task: {7354C118-5101-43B8-8FBF-D26181416EF1} - System32\Tasks\Selection Tools Update => C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe [2015-03-02] (Nosibay)
Task: {94B554A8-EAFF-4093-9708-02E2D8DA4D81} - System32\Tasks\WIN-statsAdmin => C:\Users\FANNY\AppData\Local\Microsoft\WinU\~jweioff.exe <==== ATTENTION
Task: {9A60BECE-4FE6-4060-B8BE-0B178FEAE9FA} - System32\Tasks\{FA45E45D-41C4-453C-B8BC-287839659B2D} => pcalua.exe -a C:\Users\FANNY\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {9D383AE0-0A18-4F2A-8C93-0DA6FA2F757F} - System32\Tasks\JJILD => C:\Users\FANNY\AppData\Roaming\JJILD.exe [2015-03-02] (HD PlusV02.03) <==== ATTENTION
Task: {ABADEA1C-5A0D-4FEA-ADA4-DF8B17E89061} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4099818321-3234377780-4292726065-1000Core => C:\Users\FANNY\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-01] (Google Inc.)
Task: {B74131D8-E2DC-4A34-8CFD-27FCC382C1EF} - System32\Tasks\AffiliatedUpdate => C:\Users\FANNY\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {BFFC225C-528B-4B15-9A88-869C28E22D35} - System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6 => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-6.exe <==== ATTENTION
Task: {C71F8FCC-C832-438C-901A-7CC2DB7C5446} - System32\Tasks\JeqzLVGqNyBV7S1 => C:\Users\FANNY\AppData\Roaming\isjVa4J\GDxkFST.exe [2014-11-22] ( )
Task: {CB772D01-722B-41DD-A95D-39209641213A} - System32\Tasks\WindApp Update => C:\Users\FANNY\AppData\Roaming\Store\WindApp\WindApp Update.exe [2015-02-20] (Nosibay) <==== ATTENTION
Task: {D155B908-EE7F-4282-B9C6-0198510B6E41} - System32\Tasks\{2C2916EB-D598-4A97-A553-DAEE67B08DE8} => Chrome.exe
Task: {E0A79AB5-7EB6-4E47-A1C8-26A5D00CEB76} - \Pricora 1.1-updater No Task File <==== ATTENTION
Task: {F199D111-E298-48C3-9349-293C53F85B86} - \Pricora 1.1-firefoxinstaller No Task File <==== ATTENTION
Task: {F22694B6-A3A6-498E-AA8B-522785320ED3} - System32\Tasks\WIN-fdfEfEfAfC => C:\Users\FANNY\AppData\Roaming\~caxagkj.exe
Task: {F76E13AB-ACC9-4A5A-BD7F-554DF47A4582} - System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12 => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-12.exe [2015-03-03] (Corporate Inc) <==== ATTENTION
Task: C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-12.exeI/agentregpath='winservice86' /appid=64755 /srcid='002201' /subid='0' /zdata='0' /bic=E9EC00E25F044ABC96996C568E2E58D3IE /verifier=e5ee51462259abf045a497d310da98c1 /installerversion=1_36_01_22 /installationtime=1425413178 /statsdomain=http://stats.ourinputdatastorage.com /errorsdomain=http://errors.ourinputdatastorage.com /url=http://update.ourinputdatastorage.com/verify/index.html /crregname='winservice86' /torpedofilepath C:\Program Files (x86)\winservice86' /asw='0_-2147483647_4608_256' /processid='CFB75EBE3A5E429984E65495974815D4PI' /installationtime='1425413178' /installername='C:\Users\FANNY\AppData\Local\Temp\nsd87C6.tmp\Pvmmavnpp.exe' /mac='3195768387+498139398+28:92:4A:3C:0F:5F' /macs='dd8666eaa0a5a135e423c1859205043d' /sid='S-1-5-21-4099818321-3234377780-4292726065-1000' /jsmainfunc=main /ffid=taylorralston@hotmail.com /chid=onhcengeacabehdkdhbdcigfolmmakof /guid1=5070729f-befc-4a48-bb2b-94be449c6657 /guid2=5700a729-3001-41aa-9e55-9ac7be8ff77d /guid3=e1b7a217-8407-4f70-baf6-2246812ad339 /guid4=0208c7b6-2d54-4acc-b4b9-313ff45856c1 /guid5=9824e1d7-f5c9-4e1e-a4d3-488b044bbf72 /guid6=f72618da-5eaa-44b6-954d-0e1b20c46297 /guid7=a148c174-e9b3-45df-82ec-3f991ce4ec54 /guid8=195f3c84-1312-405e-84e7-b3ebdaf2411a /guid9=8f6b45b1-8f99-4694-8a30-92e245681fd5 /guid10=9b707bef-ea53-4cba-9702-7175d4c937c9 /guid11=632af827-8eea-425e-bae3-da48257fd0b2 /guid12=ea03d0a6-46f1-4b16-bd77-c7be64fe06e7 /guid13=ed4f0397-5368-4d03-be40-cdf5bb6d6f84 /guid14=55ba33e9-b70d-4b87-9970-1f0dc2197c09 /guid15=a538eff3-d44e-4675-9909-04225e9e4d42 /schedulereinstall=1 /useminfeatures=1 /crossrideragentinstallation=1 /compilationbot=1 /deployagent=0 /maxextfilename=1293297481.mxaddon /installto=529 /verifiertaskname='5070729f-befc-4a48-bb2b-94be449c6657-12' //fallbackurl='file://C:\Program Files (x86)\winservice86\vhf\index.htm <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AffiliatedUpdate.job => C:\Users\FANNY\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\JJILD.job => C:\Users\FANNY\AppData\Roaming\JJILD.exe <==== ATTENTION
Task: C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-6.exe <==== ATTENTION
Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.
Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.
Redémarre l'ordinateur
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
~~
Désinstalle Norton, tu as déjà Avast!
Un seul antivirus par PC.
AV: Norton Internet Security (Disabled - Out of date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix
Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dans le bloc ce qui suit :
HKU\S-1-5-21-4099818321-3234377780-4292726065-1000\...\Run: [WindApp] => C:\Users\FANNY\AppData\Roaming\Store\WindApp\WindApp.exe /winstartup
R2 cehufofi; C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F\jnsiAD7D.tmp [103424 2015-03-02] () [File not signed]
R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)
R2 qiduvoko; C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F\inst65B8.tmp [99840 2015-03-02] () [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [493712 2015-03-03] (SysTool PasSame LIMITED)
S2 BasementDuster; C:\Program Files (x86)\IGS\BasementDuster.exe [X]
S2 cae99edb; C:\Windows\system32\rundll32.exe c:\Program Files (x86)\Super Optimizer\SupOptStats.dll,ENT
R2 xeqomesu; C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F\nsc7A27.tmpfs [X]
2015-03-03 21:41 - 2015-03-03 21:41 - 00001093 _____ () C:\Users\FANNY\Desktop\Continue Live Installation.lnk
2015-03-03 21:30 - 2015-03-03 21:30 - 00003748 _____ () C:\Windows\System32\Tasks\Selection Tools Update
2015-03-03 21:30 - 2015-03-03 21:30 - 00000078 _____ () C:\Users\FANNY\AppData\Roaming\Selection Tools.installation.log
2015-03-03 21:30 - 2015-03-03 21:30 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\WTools
2015-03-03 21:29 - 2015-03-03 21:29 - 00005712 _____ () C:\Users\FANNY\AppData\Roaming\Bubble Dock.installation.log
2015-03-03 21:29 - 2015-03-03 21:29 - 00003714 _____ () C:\Windows\System32\Tasks\WindApp Update
2015-03-03 21:29 - 2015-03-03 21:29 - 00000078 _____ () C:\Users\FANNY\AppData\Roaming\WindApp.installation.log
2015-03-03 21:29 - 2015-03-03 21:29 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Store
2015-03-03 21:29 - 2015-03-03 21:29 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock
2015-03-03 21:28 - 2015-03-03 21:30 - 00001305 _____ () C:\Users\FANNY\AppData\Roaming\Bubble Dock.boostrap.log
2015-03-03 21:28 - 2015-03-03 21:28 - 00000097 _____ () C:\Users\FANNY\AppData\Roaming\WindApp.boostrap.log
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\VOPackage
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425418128-3631-4238-28924A3C0F5F
2015-03-03 21:25 - 2015-03-03 21:25 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-03-03 21:25 - 2015-03-03 21:25 - 00000000 ____D () C:\Program Files (x86)\XTab
2015-03-03 21:24 - 2015-03-03 21:24 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\istartsurf
2015-03-03 21:24 - 2015-03-03 21:24 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-03-03 21:21 - 2015-03-03 21:21 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2015-03-03 21:06 - 2015-03-03 21:08 - 00004092 _____ () C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job
2015-03-03 21:06 - 2015-03-03 21:07 - 00002094 _____ () C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job
2015-03-03 21:06 - 2015-03-03 21:06 - 00007122 _____ () C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12
2015-03-03 21:06 - 2015-03-03 21:06 - 00000000 ____D () C:\Program Files (x86)\winservice86
2015-03-03 21:04 - 2015-03-03 21:04 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425416672-3631-4238-28924A3C0F5F
2015-03-03 21:02 - 2015-03-03 21:02 - 00003150 _____ () C:\Windows\System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C}
2015-03-03 19:29 - 2015-03-03 19:30 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425410986-3631-4238-28924A3C0F5F
2015-03-03 13:26 - 2015-03-03 18:54 - 00005068 _____ () C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job
2015-03-03 13:26 - 2015-03-03 13:26 - 00007200 _____ () C:\Windows\System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6
2015-03-03 13:25 - 2015-03-03 13:25 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425389150-3631-4238-28924A3C0F5F
2015-03-03 12:55 - 2015-03-03 12:56 - 00000000 ____D () C:\Program Files (x86)\195f3c84-1312-405e-84e7-b3ebdaf2411a
2015-03-03 12:54 - 2015-03-03 12:54 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425387298-3631-4238-28924A3C0F5F
2015-03-02 21:46 - 2015-03-02 23:52 - 00000000 ____D () C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}
2015-03-02 21:37 - 2015-03-02 21:39 - 00010648 _____ () C:\Windows\SysWOW64\BasementDuster.ini
2015-03-02 21:36 - 2015-03-02 21:36 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F
2015-03-02 21:24 - 2015-03-02 21:24 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425331470-3631-4238-28924A3C0F5F
2015-03-02 21:07 - 2015-03-02 21:07 - 00029611 _____ () C:\Users\FANNY\Downloads\scandal-s02e05-vostfr-hdtv.torrent
2015-03-02 20:44 - 2015-03-03 21:41 - 00001336 _____ () C:\Windows\Tasks\JJILD.job
2015-03-02 20:44 - 2015-03-02 21:41 - 01997784 _____ (HD PlusV02.03) C:\Users\FANNY\AppData\Roaming\JJILD.exe
2015-03-02 20:44 - 2015-03-02 21:41 - 00004366 _____ () C:\Windows\System32\Tasks\JJILD
2015-03-02 20:41 - 2015-03-02 20:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf
2015-03-02 20:39 - 2015-03-02 21:39 - 00008552 _____ () C:\Windows\SysWOW64\BasementDusterOff.ini
2015-03-02 20:39 - 2015-03-02 21:39 - 00008552 _____ () C:\Windows\system32\BasementDusterOff.ini
2015-03-02 20:38 - 2015-02-24 14:51 - 00318808 _____ (OM Inc.) C:\Windows\SysWOW64\BDL.dll
2015-03-02 20:27 - 2015-03-02 20:32 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425328020-3631-4238-28924A3C0F5F
2015-03-02 20:20 - 2015-03-02 20:21 - 00029931 _____ () C:\Users\FANNY\Downloads\scandal-s02e04-french-hdtv.torrent
2015-03-02 20:20 - 2015-03-02 20:20 - 00000000 ____D () C:\Program Files (x86)\30215a2f-25e0-405c-b5a6-cabd1843ece0
2015-03-02 20:18 - 2015-03-02 20:42 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F
2015-03-01 23:32 - 2015-03-03 21:08 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-02-20 22:29 - 2015-03-03 12:56 - 00000000 ____D () C:\Program Files (x86)\93dabc92-2c3c-49f6-b30b-6fb9e1094381
2015-02-20 09:05 - 2015-02-20 09:05 - 00003280 _____ () C:\Windows\System32\Tasks\uVQSKGkp2zrEvUD
2015-02-20 09:05 - 2015-02-20 09:05 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\cY2huiV
2015-02-20 09:04 - 2015-02-20 09:05 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\HDFkDec
2015-02-20 09:04 - 2015-02-20 09:04 - 00003240 _____ () C:\Windows\System32\Tasks\bzZnmqClCADn6RJ
2015-02-20 09:05 - 2014-11-22 01:41 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\isjVa4J
Task: {0361176D-6ED6-48DF-B741-5E2BD7BB5BEB} - \Pricora 1.1-chromeinstaller No Task File <==== ATTENTION
Task: {0E325F56-2514-46A6-AB59-44D8D51F0D0B} - System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-10.exe [2015-03-03] (Corporate Inc) <==== ATTENTION
Task: {1325F27F-F842-4E15-905C-E4E1A6AAEDD6} - System32\Tasks\uVQSKGkp2zrEvUD => C:\Users\FANNY\AppData\Roaming\cY2huiV\zZxJpPe.exe [2015-02-20] ( )
Task: {1A8EE32B-F35E-455C-BC48-11C68F1FE8F2} - System32\Tasks\WIN-statsSystem => C:\Users\FANNY\AppData\Local\Microsoft\WinU\~muwhypx.exe
Task: {1E7B3387-ECED-43AC-ABD0-B33A762F528F} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\FANNY\AppData\Roaming\~cwptsem.exe
Task: {35D4F616-6B7D-480D-92FA-08B52EB8B6FB} - \Pricora 1.1-codedownloader No Task File <==== ATTENTION
Task: {392169A0-3D3E-4CAA-9CA6-48257E2599F2} - \Pricora 1.1-enabler No Task File <==== ATTENTION
Task: {5ED2B6AA-0B3A-448C-BC2D-1B94CA2E5458} - System32\Tasks\bzZnmqClCADn6RJ => C:\Users\FANNY\AppData\Roaming\HDFkDec\UBBFlFj.exe [2015-02-20] ( ) <==== ATTENTION
Task: {718EB15B-5ACA-4FD9-ADDF-DE73469C93B9} - System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C} => pcalua.exe -a C:\Users\FANNY\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=ill
Task: {7354C118-5101-43B8-8FBF-D26181416EF1} - System32\Tasks\Selection Tools Update => C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe [2015-03-02] (Nosibay)
Task: {94B554A8-EAFF-4093-9708-02E2D8DA4D81} - System32\Tasks\WIN-statsAdmin => C:\Users\FANNY\AppData\Local\Microsoft\WinU\~jweioff.exe <==== ATTENTION
Task: {9A60BECE-4FE6-4060-B8BE-0B178FEAE9FA} - System32\Tasks\{FA45E45D-41C4-453C-B8BC-287839659B2D} => pcalua.exe -a C:\Users\FANNY\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {9D383AE0-0A18-4F2A-8C93-0DA6FA2F757F} - System32\Tasks\JJILD => C:\Users\FANNY\AppData\Roaming\JJILD.exe [2015-03-02] (HD PlusV02.03) <==== ATTENTION
Task: {ABADEA1C-5A0D-4FEA-ADA4-DF8B17E89061} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4099818321-3234377780-4292726065-1000Core => C:\Users\FANNY\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-01] (Google Inc.)
Task: {B74131D8-E2DC-4A34-8CFD-27FCC382C1EF} - System32\Tasks\AffiliatedUpdate => C:\Users\FANNY\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {BFFC225C-528B-4B15-9A88-869C28E22D35} - System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6 => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-6.exe <==== ATTENTION
Task: {C71F8FCC-C832-438C-901A-7CC2DB7C5446} - System32\Tasks\JeqzLVGqNyBV7S1 => C:\Users\FANNY\AppData\Roaming\isjVa4J\GDxkFST.exe [2014-11-22] ( )
Task: {CB772D01-722B-41DD-A95D-39209641213A} - System32\Tasks\WindApp Update => C:\Users\FANNY\AppData\Roaming\Store\WindApp\WindApp Update.exe [2015-02-20] (Nosibay) <==== ATTENTION
Task: {D155B908-EE7F-4282-B9C6-0198510B6E41} - System32\Tasks\{2C2916EB-D598-4A97-A553-DAEE67B08DE8} => Chrome.exe
Task: {E0A79AB5-7EB6-4E47-A1C8-26A5D00CEB76} - \Pricora 1.1-updater No Task File <==== ATTENTION
Task: {F199D111-E298-48C3-9349-293C53F85B86} - \Pricora 1.1-firefoxinstaller No Task File <==== ATTENTION
Task: {F22694B6-A3A6-498E-AA8B-522785320ED3} - System32\Tasks\WIN-fdfEfEfAfC => C:\Users\FANNY\AppData\Roaming\~caxagkj.exe
Task: {F76E13AB-ACC9-4A5A-BD7F-554DF47A4582} - System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12 => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-12.exe [2015-03-03] (Corporate Inc) <==== ATTENTION
Task: C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-12.exeI/agentregpath='winservice86' /appid=64755 /srcid='002201' /subid='0' /zdata='0' /bic=E9EC00E25F044ABC96996C568E2E58D3IE /verifier=e5ee51462259abf045a497d310da98c1 /installerversion=1_36_01_22 /installationtime=1425413178 /statsdomain=http://stats.ourinputdatastorage.com /errorsdomain=http://errors.ourinputdatastorage.com /url=http://update.ourinputdatastorage.com/verify/index.html /crregname='winservice86' /torpedofilepath C:\Program Files (x86)\winservice86' /asw='0_-2147483647_4608_256' /processid='CFB75EBE3A5E429984E65495974815D4PI' /installationtime='1425413178' /installername='C:\Users\FANNY\AppData\Local\Temp\nsd87C6.tmp\Pvmmavnpp.exe' /mac='3195768387+498139398+28:92:4A:3C:0F:5F' /macs='dd8666eaa0a5a135e423c1859205043d' /sid='S-1-5-21-4099818321-3234377780-4292726065-1000' /jsmainfunc=main /ffid=taylorralston@hotmail.com /chid=onhcengeacabehdkdhbdcigfolmmakof /guid1=5070729f-befc-4a48-bb2b-94be449c6657 /guid2=5700a729-3001-41aa-9e55-9ac7be8ff77d /guid3=e1b7a217-8407-4f70-baf6-2246812ad339 /guid4=0208c7b6-2d54-4acc-b4b9-313ff45856c1 /guid5=9824e1d7-f5c9-4e1e-a4d3-488b044bbf72 /guid6=f72618da-5eaa-44b6-954d-0e1b20c46297 /guid7=a148c174-e9b3-45df-82ec-3f991ce4ec54 /guid8=195f3c84-1312-405e-84e7-b3ebdaf2411a /guid9=8f6b45b1-8f99-4694-8a30-92e245681fd5 /guid10=9b707bef-ea53-4cba-9702-7175d4c937c9 /guid11=632af827-8eea-425e-bae3-da48257fd0b2 /guid12=ea03d0a6-46f1-4b16-bd77-c7be64fe06e7 /guid13=ed4f0397-5368-4d03-be40-cdf5bb6d6f84 /guid14=55ba33e9-b70d-4b87-9970-1f0dc2197c09 /guid15=a538eff3-d44e-4675-9909-04225e9e4d42 /schedulereinstall=1 /useminfeatures=1 /crossrideragentinstallation=1 /compilationbot=1 /deployagent=0 /maxextfilename=1293297481.mxaddon /installto=529 /verifiertaskname='5070729f-befc-4a48-bb2b-94be449c6657-12' //fallbackurl='file://C:\Program Files (x86)\winservice86\vhf\index.htm <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AffiliatedUpdate.job => C:\Users\FANNY\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\JJILD.job => C:\Users\FANNY\AppData\Roaming\JJILD.exe <==== ATTENTION
Task: C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-6.exe <==== ATTENTION
Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.
Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.
Redémarre l'ordinateur
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
- Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
- Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=
- Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=
~~
Désinstalle Norton, tu as déjà Avast!
Un seul antivirus par PC.
AV: Norton Internet Security (Disabled - Out of date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 666
3 mars 2015 à 22:38
3 mars 2015 à 22:38
tu as des erreurs proxys ?
si oui, fais ça : https://forum.malekal.com/viewtopic.php?t=47404&start=
si oui, fais ça : https://forum.malekal.com/viewtopic.php?t=47404&start=
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 666
Modifié par Malekal_morte- le 3/03/2015 à 22:56
Modifié par Malekal_morte- le 3/03/2015 à 22:56
sayane6
Messages postés
12
Date d'inscription
mardi 3 mars 2015
Statut
Membre
Dernière intervention
3 mars 2016
3 mars 2015 à 23:10
3 mars 2015 à 23:10
c'est bon je peux de nouveau me connecter, merci
voici le texte que ca m'a affiché :
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-03-2015
Ran by FANNY at 2015-03-03 22:13:24 Run:1
Running from C:\Users\FANNY\Desktop
Loaded Profiles: FANNY (Available profiles: FANNY)
Boot Mode: Normal
==============================================
Content of fixlist:
HKU\S-1-5-21-4099818321-3234377780-4292726065-1000\...\Run: [WindApp] => C:\Users\FANNY\AppData\Roaming\Store\WindApp\WindApp.exe /winstartup
R2 cehufofi; C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F\jnsiAD7D.tmp [103424 2015-03-02] () [File not signed]
R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)
R2 qiduvoko; C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F\inst65B8.tmp [99840 2015-03-02] () [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [493712 2015-03-03] (SysTool PasSame LIMITED)
S2 BasementDuster; C:\Program Files (x86)\IGS\BasementDuster.exe [X]
S2 cae99edb; C:\Windows\system32\rundll32.exe c:\Program Files (x86)\Super Optimizer\SupOptStats.dll,ENT
R2 xeqomesu; C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F\nsc7A27.tmpfs [X]
2015-03-03 21:41 - 2015-03-03 21:41 - 00001093 _____ () C:\Users\FANNY\Desktop\Continue Live Installation.lnk
2015-03-03 21:30 - 2015-03-03 21:30 - 00003748 _____ () C:\Windows\System32\Tasks\Selection Tools Update
2015-03-03 21:30 - 2015-03-03 21:30 - 00000078 _____ () C:\Users\FANNY\AppData\Roaming\Selection Tools.installation.log
2015-03-03 21:30 - 2015-03-03 21:30 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\WTools
2015-03-03 21:29 - 2015-03-03 21:29 - 00005712 _____ () C:\Users\FANNY\AppData\Roaming\Bubble Dock.installation.log
2015-03-03 21:29 - 2015-03-03 21:29 - 00003714 _____ () C:\Windows\System32\Tasks\WindApp Update
2015-03-03 21:29 - 2015-03-03 21:29 - 00000078 _____ () C:\Users\FANNY\AppData\Roaming\WindApp.installation.log
2015-03-03 21:29 - 2015-03-03 21:29 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Store
2015-03-03 21:29 - 2015-03-03 21:29 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock
2015-03-03 21:28 - 2015-03-03 21:30 - 00001305 _____ () C:\Users\FANNY\AppData\Roaming\Bubble Dock.boostrap.log
2015-03-03 21:28 - 2015-03-03 21:28 - 00000097 _____ () C:\Users\FANNY\AppData\Roaming\WindApp.boostrap.log
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\VOPackage
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425418128-3631-4238-28924A3C0F5F
2015-03-03 21:25 - 2015-03-03 21:25 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-03-03 21:25 - 2015-03-03 21:25 - 00000000 ____D () C:\Program Files (x86)\XTab
2015-03-03 21:24 - 2015-03-03 21:24 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\istartsurf
2015-03-03 21:24 - 2015-03-03 21:24 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-03-03 21:21 - 2015-03-03 21:21 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2015-03-03 21:06 - 2015-03-03 21:08 - 00004092 _____ () C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job
2015-03-03 21:06 - 2015-03-03 21:07 - 00002094 _____ () C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job
2015-03-03 21:06 - 2015-03-03 21:06 - 00007122 _____ () C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12
2015-03-03 21:06 - 2015-03-03 21:06 - 00000000 ____D () C:\Program Files (x86)\winservice86
2015-03-03 21:04 - 2015-03-03 21:04 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425416672-3631-4238-28924A3C0F5F
2015-03-03 21:02 - 2015-03-03 21:02 - 00003150 _____ () C:\Windows\System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C}
2015-03-03 19:29 - 2015-03-03 19:30 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425410986-3631-4238-28924A3C0F5F
2015-03-03 13:26 - 2015-03-03 18:54 - 00005068 _____ () C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job
2015-03-03 13:26 - 2015-03-03 13:26 - 00007200 _____ () C:\Windows\System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6
2015-03-03 13:25 - 2015-03-03 13:25 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425389150-3631-4238-28924A3C0F5F
2015-03-03 12:55 - 2015-03-03 12:56 - 00000000 ____D () C:\Program Files (x86)\195f3c84-1312-405e-84e7-b3ebdaf2411a
2015-03-03 12:54 - 2015-03-03 12:54 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425387298-3631-4238-28924A3C0F5F
2015-03-02 21:46 - 2015-03-02 23:52 - 00000000 ____D () C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}
2015-03-02 21:37 - 2015-03-02 21:39 - 00010648 _____ () C:\Windows\SysWOW64\BasementDuster.ini
2015-03-02 21:36 - 2015-03-02 21:36 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F
2015-03-02 21:24 - 2015-03-02 21:24 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425331470-3631-4238-28924A3C0F5F
2015-03-02 21:07 - 2015-03-02 21:07 - 00029611 _____ () C:\Users\FANNY\Downloads\scandal-s02e05-vostfr-hdtv.torrent
2015-03-02 20:44 - 2015-03-03 21:41 - 00001336 _____ () C:\Windows\Tasks\JJILD.job
2015-03-02 20:44 - 2015-03-02 21:41 - 01997784 _____ (HD PlusV02.03) C:\Users\FANNY\AppData\Roaming\JJILD.exe
2015-03-02 20:44 - 2015-03-02 21:41 - 00004366 _____ () C:\Windows\System32\Tasks\JJILD
2015-03-02 20:41 - 2015-03-02 20:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf
2015-03-02 20:39 - 2015-03-02 21:39 - 00008552 _____ () C:\Windows\SysWOW64\BasementDusterOff.ini
2015-03-02 20:39 - 2015-03-02 21:39 - 00008552 _____ () C:\Windows\system32\BasementDusterOff.ini
2015-03-02 20:38 - 2015-02-24 14:51 - 00318808 _____ (OM Inc.) C:\Windows\SysWOW64\BDL.dll
2015-03-02 20:27 - 2015-03-02 20:32 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425328020-3631-4238-28924A3C0F5F
2015-03-02 20:20 - 2015-03-02 20:21 - 00029931 _____ () C:\Users\FANNY\Downloads\scandal-s02e04-french-hdtv.torrent
2015-03-02 20:20 - 2015-03-02 20:20 - 00000000 ____D () C:\Program Files (x86)\30215a2f-25e0-405c-b5a6-cabd1843ece0
2015-03-02 20:18 - 2015-03-02 20:42 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F
2015-03-01 23:32 - 2015-03-03 21:08 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-02-20 22:29 - 2015-03-03 12:56 - 00000000 ____D () C:\Program Files (x86)\93dabc92-2c3c-49f6-b30b-6fb9e1094381
2015-02-20 09:05 - 2015-02-20 09:05 - 00003280 _____ () C:\Windows\System32\Tasks\uVQSKGkp2zrEvUD
2015-02-20 09:05 - 2015-02-20 09:05 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\cY2huiV
2015-02-20 09:04 - 2015-02-20 09:05 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\HDFkDec
2015-02-20 09:04 - 2015-02-20 09:04 - 00003240 _____ () C:\Windows\System32\Tasks\bzZnmqClCADn6RJ
2015-02-20 09:05 - 2014-11-22 01:41 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\isjVa4J
Task: {0361176D-6ED6-48DF-B741-5E2BD7BB5BEB} - \Pricora 1.1-chromeinstaller No Task File <==== ATTENTION
Task: {0E325F56-2514-46A6-AB59-44D8D51F0D0B} - System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-10.exe [2015-03-03] (Corporate Inc) <==== ATTENTION
Task: {1325F27F-F842-4E15-905C-E4E1A6AAEDD6} - System32\Tasks\uVQSKGkp2zrEvUD => C:\Users\FANNY\AppData\Roaming\cY2huiV\zZxJpPe.exe [2015-02-20] ( )
Task: {1A8EE32B-F35E-455C-BC48-11C68F1FE8F2} - System32\Tasks\WIN-statsSystem => C:\Users\FANNY\AppData\Local\Microsoft\WinU\~muwhypx.exe
Task: {1E7B3387-ECED-43AC-ABD0-B33A762F528F} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\FANNY\AppData\Roaming\~cwptsem.exe
Task: {35D4F616-6B7D-480D-92FA-08B52EB8B6FB} - \Pricora 1.1-codedownloader No Task File <==== ATTENTION
Task: {392169A0-3D3E-4CAA-9CA6-48257E2599F2} - \Pricora 1.1-enabler No Task File <==== ATTENTION
Task: {5ED2B6AA-0B3A-448C-BC2D-1B94CA2E5458} - System32\Tasks\bzZnmqClCADn6RJ => C:\Users\FANNY\AppData\Roaming\HDFkDec\UBBFlFj.exe [2015-02-20] ( ) <==== ATTENTION
Task: {718EB15B-5ACA-4FD9-ADDF-DE73469C93B9} - System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C} => pcalua.exe -a C:\Users\FANNY\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=ill
Task: {7354C118-5101-43B8-8FBF-D26181416EF1} - System32\Tasks\Selection Tools Update => C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe [2015-03-02] (Nosibay)
Task: {94B554A8-EAFF-4093-9708-02E2D8DA4D81} - System32\Tasks\WIN-statsAdmin => C:\Users\FANNY\AppData\Local\Microsoft\WinU\~jweioff.exe <==== ATTENTION
Task: {9A60BECE-4FE6-4060-B8BE-0B178FEAE9FA} - System32\Tasks\{FA45E45D-41C4-453C-B8BC-287839659B2D} => pcalua.exe -a C:\Users\FANNY\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {9D383AE0-0A18-4F2A-8C93-0DA6FA2F757F} - System32\Tasks\JJILD => C:\Users\FANNY\AppData\Roaming\JJILD.exe [2015-03-02] (HD PlusV02.03) <==== ATTENTION
Task: {ABADEA1C-5A0D-4FEA-ADA4-DF8B17E89061} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4099818321-3234377780-4292726065-1000Core => C:\Users\FANNY\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-01] (Google Inc.)
Task: {B74131D8-E2DC-4A34-8CFD-27FCC382C1EF} - System32\Tasks\AffiliatedUpdate => C:\Users\FANNY\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {BFFC225C-528B-4B15-9A88-869C28E22D35} - System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6 => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-6.exe <==== ATTENTION
Task: {C71F8FCC-C832-438C-901A-7CC2DB7C5446} - System32\Tasks\JeqzLVGqNyBV7S1 => C:\Users\FANNY\AppData\Roaming\isjVa4J\GDxkFST.exe [2014-11-22] ( )
Task: {CB772D01-722B-41DD-A95D-39209641213A} - System32\Tasks\WindApp Update => C:\Users\FANNY\AppData\Roaming\Store\WindApp\WindApp Update.exe [2015-02-20] (Nosibay) <==== ATTENTION
Task: {D155B908-EE7F-4282-B9C6-0198510B6E41} - System32\Tasks\{2C2916EB-D598-4A97-A553-DAEE67B08DE8} => Chrome.exe
Task: {E0A79AB5-7EB6-4E47-A1C8-26A5D00CEB76} - \Pricora 1.1-updater No Task File <==== ATTENTION
Task: {F199D111-E298-48C3-9349-293C53F85B86} - \Pricora 1.1-firefoxinstaller No Task File <==== ATTENTION
Task: {F22694B6-A3A6-498E-AA8B-522785320ED3} - System32\Tasks\WIN-fdfEfEfAfC => C:\Users\FANNY\AppData\Roaming\~caxagkj.exe
Task: {F76E13AB-ACC9-4A5A-BD7F-554DF47A4582} - System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12 => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-12.exe [2015-03-03] (Corporate Inc) <==== ATTENTION
Task: C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-12.exeI/agentregpath='winservice86' /appid=64755 /srcid='002201' /subid='0' /zdata='0' /bic=E9EC00E25F044ABC96996C568E2E58D3IE /verifier=e5ee51462259abf045a497d310da98c1 /installerversion=1_36_01_22 /installationtime=1425413178 /statsdomain=http://stats.ourinputdatastorage.com /errorsdomain=http://errors.ourinputdatastorage.com /url=http://update.ourinputdatastorage.com/verify/index.html /crregname='winservice86' /torpedofilepath C:\Program Files (x86)\winservice86' /asw='0_-2147483647_4608_256' /processid='CFB75EBE3A5E429984E65495974815D4PI' /installationtime='1425413178' /installername='C:\Users\FANNY\AppData\Local\Temp\nsd87C6.tmp\Pvmmavnpp.exe' /mac='3195768387+498139398+28:92:4A:3C:0F:5F' /macs='dd8666eaa0a5a135e423c1859205043d' /sid='S-1-5-21-4099818321-3234377780-4292726065-1000' /jsmainfunc=main /ffid=taylorralston@hotmail.com /chid=onhcengeacabehdkdhbdcigfolmmakof /guid1=5070729f-befc-4a48-bb2b-94be449c6657 /guid2=5700a729-3001-41aa-9e55-9ac7be8ff77d /guid3=e1b7a217-8407-4f70-baf6-2246812ad339 /guid4=0208c7b6-2d54-4acc-b4b9-313ff45856c1 /guid5=9824e1d7-f5c9-4e1e-a4d3-488b044bbf72 /guid6=f72618da-5eaa-44b6-954d-0e1b20c46297 /guid7=a148c174-e9b3-45df-82ec-3f991ce4ec54 /guid8=195f3c84-1312-405e-84e7-b3ebdaf2411a /guid9=8f6b45b1-8f99-4694-8a30-92e245681fd5 /guid10=9b707bef-ea53-4cba-9702-7175d4c937c9 /guid11=632af827-8eea-425e-bae3-da48257fd0b2 /guid12=ea03d0a6-46f1-4b16-bd77-c7be64fe06e7 /guid13=ed4f0397-5368-4d03-be40-cdf5bb6d6f84 /guid14=55ba33e9-b70d-4b87-9970-1f0dc2197c09 /guid15=a538eff3-d44e-4675-9909-04225e9e4d42 /schedulereinstall=1 /useminfeatures=1 /crossrideragentinstallation=1 /compilationbot=1 /deployagent=0 /maxextfilename=1293297481.mxaddon /installto=529 /verifiertaskname='5070729f-befc-4a48-bb2b-94be449c6657-12' //fallbackurl='file://C:\Program Files (x86)\winservice86\vhf\index.htm <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AffiliatedUpdate.job => C:\Users\FANNY\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\JJILD.job => C:\Users\FANNY\AppData\Roaming\JJILD.exe <==== ATTENTION
Task: C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-6.exe <==== ATTENTION
HKU\S-1-5-21-4099818321-3234377780-4292726065-1000\Software\Microsoft\Windows\CurrentVersion\Run\\WindApp => value deleted successfully.
cehufofi => Service stopped successfully.
cehufofi => Service deleted successfully.
IHProtect Service => Service stopped successfully.
IHProtect Service => Service deleted successfully.
qiduvoko => Service stopped successfully.
qiduvoko => Service deleted successfully.
WindowsMangerProtect => Service stopped successfully.
WindowsMangerProtect => Service deleted successfully.
BasementDuster => Service deleted successfully.
cae99edb => Service deleted successfully.
xeqomesu => Service stopped successfully.
xeqomesu => Service deleted successfully.
C:\Users\FANNY\Desktop\Continue Live Installation.lnk => Moved successfully.
C:\Windows\System32\Tasks\Selection Tools Update => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Selection Tools.installation.log => Moved successfully.
"C:\Users\FANNY\AppData\Roaming\WTools" directory move:
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\gdiplus.dll => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\MFC71.dll => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\msvcp71.dll => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\msvcr71.dll => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools Uninstall.exe => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\version.ini => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\tmp\commands.xml => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\tmp\log.txt => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\product.conf => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\apc.conf => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\manifest.xml => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\us\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\it\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\gb\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\fr\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\es\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\layout.xml => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\bt_close_click.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\bt_close_default.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\bt_close_focus.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_bottom_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_bottom_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_bottom_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_bottom_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_bottom.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_bottom_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_top.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_top_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_top_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_top_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_top_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_top_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\layout.xml => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\bt_close_click.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\bt_close_default.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\bt_close_focus.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_bottom_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_bottom_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_bottom_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_bottom_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_bottom.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_bottom_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_top.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_top_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_top_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_top_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_top_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_top_right_msk.png => Moved successfully.
Could not move "C:\Users\FANNY\AppData\Roaming\WTools" directory. => Scheduled to move on reboot.
C:\Users\FANNY\AppData\Roaming\Bubble Dock.installation.log => Moved successfully.
C:\Windows\System32\Tasks\WindApp Update => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WindApp.installation.log => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Store => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Bubble Dock.boostrap.log => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WindApp.boostrap.log => Moved successfully.
C:\Users\FANNY\AppData\Roaming\VOPackage => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425418128-3631-4238-28924A3C0F5F => Moved successfully.
C:\ProgramData\IHProtectUpDate => Moved successfully.
C:\Program Files (x86)\XTab => Moved successfully.
C:\Users\FANNY\AppData\Roaming\istartsurf => Moved successfully.
C:\ProgramData\WindowsMangerProtect => Moved successfully.
C:\PhysicalDisk0_MBR.bin => Moved successfully.
C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job => Moved successfully.
C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job => Moved successfully.
C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12 => Moved successfully.
C:\Program Files (x86)\winservice86 => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425416672-3631-4238-28924A3C0F5F => Moved successfully.
C:\Windows\System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C} => Moved successfully.
C:\Users\FANNY\AppData\Local\32444335-1425410986-3631-4238-28924A3C0F5F => Moved successfully.
C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job => Moved successfully.
C:\Windows\System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6 => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425389150-3631-4238-28924A3C0F5F => Moved successfully.
C:\Program Files (x86)\195f3c84-1312-405e-84e7-b3ebdaf2411a => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425387298-3631-4238-28924A3C0F5F => Moved successfully.
"C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}" directory move:
Could not move "C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\5045ccdbebdb4225" => Scheduled to move on reboot.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\9db86a8ecc0fa5f1 => Moved successfully.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\superpc_soft_partner.dat => Moved successfully.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\superpc_soft_partner.exe => Moved successfully.
Could not move "C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}" directory. => Scheduled to move on reboot.
C:\Windows\SysWOW64\BasementDuster.ini => Moved successfully.
C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425331470-3631-4238-28924A3C0F5F => Moved successfully.
C:\Users\FANNY\Downloads\scandal-s02e05-vostfr-hdtv.torrent => Moved successfully.
C:\Windows\Tasks\JJILD.job => Moved successfully.
C:\Users\FANNY\AppData\Roaming\JJILD.exe => Moved successfully.
C:\Windows\System32\Tasks\JJILD => Moved successfully.
C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf => Moved successfully.
C:\Windows\SysWOW64\BasementDusterOff.ini => Moved successfully.
C:\Windows\system32\BasementDusterOff.ini => Moved successfully.
C:\Windows\SysWOW64\BDL.dll => Moved successfully.
C:\Users\FANNY\AppData\Local\32444335-1425328020-3631-4238-28924A3C0F5F => Moved successfully.
C:\Users\FANNY\Downloads\scandal-s02e04-french-hdtv.torrent => Moved successfully.
C:\Program Files (x86)\30215a2f-25e0-405c-b5a6-cabd1843ece0 => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F => Moved successfully.
C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7 => Moved successfully.
C:\Program Files (x86)\93dabc92-2c3c-49f6-b30b-6fb9e1094381 => Moved successfully.
C:\Windows\System32\Tasks\uVQSKGkp2zrEvUD => Moved successfully.
C:\Users\FANNY\AppData\Roaming\cY2huiV => Moved successfully.
C:\Users\FANNY\AppData\Roaming\HDFkDec => Moved successfully.
C:\Windows\System32\Tasks\bzZnmqClCADn6RJ => Moved successfully.
C:\Users\FANNY\AppData\Roaming\isjVa4J => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0361176D-6ED6-48DF-B741-5E2BD7BB5BEB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0361176D-6ED6-48DF-B741-5E2BD7BB5BEB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-chromeinstaller" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0E325F56-2514-46A6-AB59-44D8D51F0D0B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E325F56-2514-46A6-AB59-44D8D51F0D0B}" => Key deleted successfully.
C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5070729f-befc-4a48-bb2b-94be449c6657-10_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1325F27F-F842-4E15-905C-E4E1A6AAEDD6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1325F27F-F842-4E15-905C-E4E1A6AAEDD6}" => Key deleted successfully.
C:\Windows\System32\Tasks\uVQSKGkp2zrEvUD not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\uVQSKGkp2zrEvUD" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1A8EE32B-F35E-455C-BC48-11C68F1FE8F2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A8EE32B-F35E-455C-BC48-11C68F1FE8F2}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-statsSystem => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsSystem" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1E7B3387-ECED-43AC-ABD0-B33A762F528F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E7B3387-ECED-43AC-ABD0-B33A762F528F}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-GGfIfEGCfEGbGffIfCfEGC" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{35D4F616-6B7D-480D-92FA-08B52EB8B6FB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35D4F616-6B7D-480D-92FA-08B52EB8B6FB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-codedownloader" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{392169A0-3D3E-4CAA-9CA6-48257E2599F2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{392169A0-3D3E-4CAA-9CA6-48257E2599F2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-enabler" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5ED2B6AA-0B3A-448C-BC2D-1B94CA2E5458}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5ED2B6AA-0B3A-448C-BC2D-1B94CA2E5458}" => Key deleted successfully.
C:\Windows\System32\Tasks\bzZnmqClCADn6RJ not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\bzZnmqClCADn6RJ" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{718EB15B-5ACA-4FD9-ADDF-DE73469C93B9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{718EB15B-5ACA-4FD9-ADDF-DE73469C93B9}" => Key deleted successfully.
C:\Windows\System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C} not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{EE22DD0A-733B-408F-9F9D-46702C60DB2C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7354C118-5101-43B8-8FBF-D26181416EF1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7354C118-5101-43B8-8FBF-D26181416EF1}" => Key deleted successfully.
C:\Windows\System32\Tasks\Selection Tools Update not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Selection Tools Update" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{94B554A8-EAFF-4093-9708-02E2D8DA4D81}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94B554A8-EAFF-4093-9708-02E2D8DA4D81}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-statsAdmin => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsAdmin" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9A60BECE-4FE6-4060-B8BE-0B178FEAE9FA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9A60BECE-4FE6-4060-B8BE-0B178FEAE9FA}" => Key deleted successfully.
C:\Windows\System32\Tasks\{FA45E45D-41C4-453C-B8BC-287839659B2D} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FA45E45D-41C4-453C-B8BC-287839659B2D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9D383AE0-0A18-4F2A-8C93-0DA6FA2F757F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D383AE0-0A18-4F2A-8C93-0DA6FA2F757F}" => Key deleted successfully.
C:\Windows\System32\Tasks\JJILD not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\JJILD" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ABADEA1C-5A0D-4FEA-ADA4-DF8B17E89061}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABADEA1C-5A0D-4FEA-ADA4-DF8B17E89061}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4099818321-3234377780-4292726065-1000Core => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-4099818321-3234377780-4292726065-1000Core" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B74131D8-E2DC-4A34-8CFD-27FCC382C1EF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B74131D8-E2DC-4A34-8CFD-27FCC382C1EF}" => Key deleted successfully.
C:\Windows\System32\Tasks\AffiliatedUpdate => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AffiliatedUpdate" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BFFC225C-528B-4B15-9A88-869C28E22D35}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BFFC225C-528B-4B15-9A88-869C28E22D35}" => Key deleted successfully.
C:\Windows\System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6 not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\temp_5070729f-befc-4a48-bb2b-94be449c6657-6" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C71F8FCC-C832-438C-901A-7CC2DB7C5446}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C71F8FCC-C832-438C-901A-7CC2DB7C5446}" => Key deleted successfully.
C:\Windows\System32\Tasks\JeqzLVGqNyBV7S1 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\JeqzLVGqNyBV7S1" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CB772D01-722B-41DD-A95D-39209641213A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB772D01-722B-41DD-A95D-39209641213A}" => Key deleted successfully.
C:\Windows\System32\Tasks\WindApp Update not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WindApp Update" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D155B908-EE7F-4282-B9C6-0198510B6E41}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D155B908-EE7F-4282-B9C6-0198510B6E41}" => Key deleted successfully.
C:\Windows\System32\Tasks\{2C2916EB-D598-4A97-A553-DAEE67B08DE8} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2C2916EB-D598-4A97-A553-DAEE67B08DE8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E0A79AB5-7EB6-4E47-A1C8-26A5D00CEB76}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0A79AB5-7EB6-4E47-A1C8-26A5D00CEB76}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-updater" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F199D111-E298-48C3-9349-293C53F85B86}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F199D111-E298-48C3-9349-293C53F85B86}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-firefoxinstaller" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F22694B6-A3A6-498E-AA8B-522785320ED3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F22694B6-A3A6-498E-AA8B-522785320ED3}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-fdfEfEfAfC => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-fdfEfEfAfC" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F76E13AB-ACC9-4A5A-BD7F-554DF47A4582}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F76E13AB-ACC9-4A5A-BD7F-554DF47A4582}" => Key deleted successfully.
C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12 not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5070729f-befc-4a48-bb2b-94be449c6657-12" => Key deleted successfully.
C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job not found.
C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job not found.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\AffiliatedUpdate.job => Moved successfully.
C:\Windows\Tasks\JJILD.job not found.
C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job not found.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\5045ccdbebdb4225 => Is moved successfully.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52} => Is moved successfully.
voici le texte que ca m'a affiché :
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-03-2015
Ran by FANNY at 2015-03-03 22:13:24 Run:1
Running from C:\Users\FANNY\Desktop
Loaded Profiles: FANNY (Available profiles: FANNY)
Boot Mode: Normal
==============================================
Content of fixlist:
HKU\S-1-5-21-4099818321-3234377780-4292726065-1000\...\Run: [WindApp] => C:\Users\FANNY\AppData\Roaming\Store\WindApp\WindApp.exe /winstartup
R2 cehufofi; C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F\jnsiAD7D.tmp [103424 2015-03-02] () [File not signed]
R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158896 2015-01-16] (XTab system)
R2 qiduvoko; C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F\inst65B8.tmp [99840 2015-03-02] () [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [493712 2015-03-03] (SysTool PasSame LIMITED)
S2 BasementDuster; C:\Program Files (x86)\IGS\BasementDuster.exe [X]
S2 cae99edb; C:\Windows\system32\rundll32.exe c:\Program Files (x86)\Super Optimizer\SupOptStats.dll,ENT
R2 xeqomesu; C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F\nsc7A27.tmpfs [X]
2015-03-03 21:41 - 2015-03-03 21:41 - 00001093 _____ () C:\Users\FANNY\Desktop\Continue Live Installation.lnk
2015-03-03 21:30 - 2015-03-03 21:30 - 00003748 _____ () C:\Windows\System32\Tasks\Selection Tools Update
2015-03-03 21:30 - 2015-03-03 21:30 - 00000078 _____ () C:\Users\FANNY\AppData\Roaming\Selection Tools.installation.log
2015-03-03 21:30 - 2015-03-03 21:30 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\WTools
2015-03-03 21:29 - 2015-03-03 21:29 - 00005712 _____ () C:\Users\FANNY\AppData\Roaming\Bubble Dock.installation.log
2015-03-03 21:29 - 2015-03-03 21:29 - 00003714 _____ () C:\Windows\System32\Tasks\WindApp Update
2015-03-03 21:29 - 2015-03-03 21:29 - 00000078 _____ () C:\Users\FANNY\AppData\Roaming\WindApp.installation.log
2015-03-03 21:29 - 2015-03-03 21:29 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Store
2015-03-03 21:29 - 2015-03-03 21:29 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock
2015-03-03 21:28 - 2015-03-03 21:30 - 00001305 _____ () C:\Users\FANNY\AppData\Roaming\Bubble Dock.boostrap.log
2015-03-03 21:28 - 2015-03-03 21:28 - 00000097 _____ () C:\Users\FANNY\AppData\Roaming\WindApp.boostrap.log
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\VOPackage
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-03-03 21:28 - 2015-03-03 21:28 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425418128-3631-4238-28924A3C0F5F
2015-03-03 21:25 - 2015-03-03 21:25 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-03-03 21:25 - 2015-03-03 21:25 - 00000000 ____D () C:\Program Files (x86)\XTab
2015-03-03 21:24 - 2015-03-03 21:24 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\istartsurf
2015-03-03 21:24 - 2015-03-03 21:24 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-03-03 21:21 - 2015-03-03 21:21 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2015-03-03 21:06 - 2015-03-03 21:08 - 00004092 _____ () C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job
2015-03-03 21:06 - 2015-03-03 21:07 - 00002094 _____ () C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job
2015-03-03 21:06 - 2015-03-03 21:06 - 00007122 _____ () C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12
2015-03-03 21:06 - 2015-03-03 21:06 - 00000000 ____D () C:\Program Files (x86)\winservice86
2015-03-03 21:04 - 2015-03-03 21:04 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425416672-3631-4238-28924A3C0F5F
2015-03-03 21:02 - 2015-03-03 21:02 - 00003150 _____ () C:\Windows\System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C}
2015-03-03 19:29 - 2015-03-03 19:30 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425410986-3631-4238-28924A3C0F5F
2015-03-03 13:26 - 2015-03-03 18:54 - 00005068 _____ () C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job
2015-03-03 13:26 - 2015-03-03 13:26 - 00007200 _____ () C:\Windows\System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6
2015-03-03 13:25 - 2015-03-03 13:25 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425389150-3631-4238-28924A3C0F5F
2015-03-03 12:55 - 2015-03-03 12:56 - 00000000 ____D () C:\Program Files (x86)\195f3c84-1312-405e-84e7-b3ebdaf2411a
2015-03-03 12:54 - 2015-03-03 12:54 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425387298-3631-4238-28924A3C0F5F
2015-03-02 21:46 - 2015-03-02 23:52 - 00000000 ____D () C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}
2015-03-02 21:37 - 2015-03-02 21:39 - 00010648 _____ () C:\Windows\SysWOW64\BasementDuster.ini
2015-03-02 21:36 - 2015-03-02 21:36 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F
2015-03-02 21:24 - 2015-03-02 21:24 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425331470-3631-4238-28924A3C0F5F
2015-03-02 21:07 - 2015-03-02 21:07 - 00029611 _____ () C:\Users\FANNY\Downloads\scandal-s02e05-vostfr-hdtv.torrent
2015-03-02 20:44 - 2015-03-03 21:41 - 00001336 _____ () C:\Windows\Tasks\JJILD.job
2015-03-02 20:44 - 2015-03-02 21:41 - 01997784 _____ (HD PlusV02.03) C:\Users\FANNY\AppData\Roaming\JJILD.exe
2015-03-02 20:44 - 2015-03-02 21:41 - 00004366 _____ () C:\Windows\System32\Tasks\JJILD
2015-03-02 20:41 - 2015-03-02 20:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf
2015-03-02 20:39 - 2015-03-02 21:39 - 00008552 _____ () C:\Windows\SysWOW64\BasementDusterOff.ini
2015-03-02 20:39 - 2015-03-02 21:39 - 00008552 _____ () C:\Windows\system32\BasementDusterOff.ini
2015-03-02 20:38 - 2015-02-24 14:51 - 00318808 _____ (OM Inc.) C:\Windows\SysWOW64\BDL.dll
2015-03-02 20:27 - 2015-03-02 20:32 - 00000000 ____D () C:\Users\FANNY\AppData\Local\32444335-1425328020-3631-4238-28924A3C0F5F
2015-03-02 20:20 - 2015-03-02 20:21 - 00029931 _____ () C:\Users\FANNY\Downloads\scandal-s02e04-french-hdtv.torrent
2015-03-02 20:20 - 2015-03-02 20:20 - 00000000 ____D () C:\Program Files (x86)\30215a2f-25e0-405c-b5a6-cabd1843ece0
2015-03-02 20:18 - 2015-03-02 20:42 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F
2015-03-01 23:32 - 2015-03-03 21:08 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-02-20 22:29 - 2015-03-03 12:56 - 00000000 ____D () C:\Program Files (x86)\93dabc92-2c3c-49f6-b30b-6fb9e1094381
2015-02-20 09:05 - 2015-02-20 09:05 - 00003280 _____ () C:\Windows\System32\Tasks\uVQSKGkp2zrEvUD
2015-02-20 09:05 - 2015-02-20 09:05 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\cY2huiV
2015-02-20 09:04 - 2015-02-20 09:05 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\HDFkDec
2015-02-20 09:04 - 2015-02-20 09:04 - 00003240 _____ () C:\Windows\System32\Tasks\bzZnmqClCADn6RJ
2015-02-20 09:05 - 2014-11-22 01:41 - 00000000 ____D () C:\Users\FANNY\AppData\Roaming\isjVa4J
Task: {0361176D-6ED6-48DF-B741-5E2BD7BB5BEB} - \Pricora 1.1-chromeinstaller No Task File <==== ATTENTION
Task: {0E325F56-2514-46A6-AB59-44D8D51F0D0B} - System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-10.exe [2015-03-03] (Corporate Inc) <==== ATTENTION
Task: {1325F27F-F842-4E15-905C-E4E1A6AAEDD6} - System32\Tasks\uVQSKGkp2zrEvUD => C:\Users\FANNY\AppData\Roaming\cY2huiV\zZxJpPe.exe [2015-02-20] ( )
Task: {1A8EE32B-F35E-455C-BC48-11C68F1FE8F2} - System32\Tasks\WIN-statsSystem => C:\Users\FANNY\AppData\Local\Microsoft\WinU\~muwhypx.exe
Task: {1E7B3387-ECED-43AC-ABD0-B33A762F528F} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\FANNY\AppData\Roaming\~cwptsem.exe
Task: {35D4F616-6B7D-480D-92FA-08B52EB8B6FB} - \Pricora 1.1-codedownloader No Task File <==== ATTENTION
Task: {392169A0-3D3E-4CAA-9CA6-48257E2599F2} - \Pricora 1.1-enabler No Task File <==== ATTENTION
Task: {5ED2B6AA-0B3A-448C-BC2D-1B94CA2E5458} - System32\Tasks\bzZnmqClCADn6RJ => C:\Users\FANNY\AppData\Roaming\HDFkDec\UBBFlFj.exe [2015-02-20] ( ) <==== ATTENTION
Task: {718EB15B-5ACA-4FD9-ADDF-DE73469C93B9} - System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C} => pcalua.exe -a C:\Users\FANNY\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=ill
Task: {7354C118-5101-43B8-8FBF-D26181416EF1} - System32\Tasks\Selection Tools Update => C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe [2015-03-02] (Nosibay)
Task: {94B554A8-EAFF-4093-9708-02E2D8DA4D81} - System32\Tasks\WIN-statsAdmin => C:\Users\FANNY\AppData\Local\Microsoft\WinU\~jweioff.exe <==== ATTENTION
Task: {9A60BECE-4FE6-4060-B8BE-0B178FEAE9FA} - System32\Tasks\{FA45E45D-41C4-453C-B8BC-287839659B2D} => pcalua.exe -a C:\Users\FANNY\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {9D383AE0-0A18-4F2A-8C93-0DA6FA2F757F} - System32\Tasks\JJILD => C:\Users\FANNY\AppData\Roaming\JJILD.exe [2015-03-02] (HD PlusV02.03) <==== ATTENTION
Task: {ABADEA1C-5A0D-4FEA-ADA4-DF8B17E89061} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4099818321-3234377780-4292726065-1000Core => C:\Users\FANNY\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-01] (Google Inc.)
Task: {B74131D8-E2DC-4A34-8CFD-27FCC382C1EF} - System32\Tasks\AffiliatedUpdate => C:\Users\FANNY\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {BFFC225C-528B-4B15-9A88-869C28E22D35} - System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6 => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-6.exe <==== ATTENTION
Task: {C71F8FCC-C832-438C-901A-7CC2DB7C5446} - System32\Tasks\JeqzLVGqNyBV7S1 => C:\Users\FANNY\AppData\Roaming\isjVa4J\GDxkFST.exe [2014-11-22] ( )
Task: {CB772D01-722B-41DD-A95D-39209641213A} - System32\Tasks\WindApp Update => C:\Users\FANNY\AppData\Roaming\Store\WindApp\WindApp Update.exe [2015-02-20] (Nosibay) <==== ATTENTION
Task: {D155B908-EE7F-4282-B9C6-0198510B6E41} - System32\Tasks\{2C2916EB-D598-4A97-A553-DAEE67B08DE8} => Chrome.exe
Task: {E0A79AB5-7EB6-4E47-A1C8-26A5D00CEB76} - \Pricora 1.1-updater No Task File <==== ATTENTION
Task: {F199D111-E298-48C3-9349-293C53F85B86} - \Pricora 1.1-firefoxinstaller No Task File <==== ATTENTION
Task: {F22694B6-A3A6-498E-AA8B-522785320ED3} - System32\Tasks\WIN-fdfEfEfAfC => C:\Users\FANNY\AppData\Roaming\~caxagkj.exe
Task: {F76E13AB-ACC9-4A5A-BD7F-554DF47A4582} - System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12 => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-12.exe [2015-03-03] (Corporate Inc) <==== ATTENTION
Task: C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-12.exeI/agentregpath='winservice86' /appid=64755 /srcid='002201' /subid='0' /zdata='0' /bic=E9EC00E25F044ABC96996C568E2E58D3IE /verifier=e5ee51462259abf045a497d310da98c1 /installerversion=1_36_01_22 /installationtime=1425413178 /statsdomain=http://stats.ourinputdatastorage.com /errorsdomain=http://errors.ourinputdatastorage.com /url=http://update.ourinputdatastorage.com/verify/index.html /crregname='winservice86' /torpedofilepath C:\Program Files (x86)\winservice86' /asw='0_-2147483647_4608_256' /processid='CFB75EBE3A5E429984E65495974815D4PI' /installationtime='1425413178' /installername='C:\Users\FANNY\AppData\Local\Temp\nsd87C6.tmp\Pvmmavnpp.exe' /mac='3195768387+498139398+28:92:4A:3C:0F:5F' /macs='dd8666eaa0a5a135e423c1859205043d' /sid='S-1-5-21-4099818321-3234377780-4292726065-1000' /jsmainfunc=main /ffid=taylorralston@hotmail.com /chid=onhcengeacabehdkdhbdcigfolmmakof /guid1=5070729f-befc-4a48-bb2b-94be449c6657 /guid2=5700a729-3001-41aa-9e55-9ac7be8ff77d /guid3=e1b7a217-8407-4f70-baf6-2246812ad339 /guid4=0208c7b6-2d54-4acc-b4b9-313ff45856c1 /guid5=9824e1d7-f5c9-4e1e-a4d3-488b044bbf72 /guid6=f72618da-5eaa-44b6-954d-0e1b20c46297 /guid7=a148c174-e9b3-45df-82ec-3f991ce4ec54 /guid8=195f3c84-1312-405e-84e7-b3ebdaf2411a /guid9=8f6b45b1-8f99-4694-8a30-92e245681fd5 /guid10=9b707bef-ea53-4cba-9702-7175d4c937c9 /guid11=632af827-8eea-425e-bae3-da48257fd0b2 /guid12=ea03d0a6-46f1-4b16-bd77-c7be64fe06e7 /guid13=ed4f0397-5368-4d03-be40-cdf5bb6d6f84 /guid14=55ba33e9-b70d-4b87-9970-1f0dc2197c09 /guid15=a538eff3-d44e-4675-9909-04225e9e4d42 /schedulereinstall=1 /useminfeatures=1 /crossrideragentinstallation=1 /compilationbot=1 /deployagent=0 /maxextfilename=1293297481.mxaddon /installto=529 /verifiertaskname='5070729f-befc-4a48-bb2b-94be449c6657-12' //fallbackurl='file://C:\Program Files (x86)\winservice86\vhf\index.htm <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AffiliatedUpdate.job => C:\Users\FANNY\AppData\Roaming\AFFILI~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\JJILD.job => C:\Users\FANNY\AppData\Roaming\JJILD.exe <==== ATTENTION
Task: C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job => C:\Program Files (x86)\winservice86\5070729f-befc-4a48-bb2b-94be449c6657-6.exe <==== ATTENTION
HKU\S-1-5-21-4099818321-3234377780-4292726065-1000\Software\Microsoft\Windows\CurrentVersion\Run\\WindApp => value deleted successfully.
cehufofi => Service stopped successfully.
cehufofi => Service deleted successfully.
IHProtect Service => Service stopped successfully.
IHProtect Service => Service deleted successfully.
qiduvoko => Service stopped successfully.
qiduvoko => Service deleted successfully.
WindowsMangerProtect => Service stopped successfully.
WindowsMangerProtect => Service deleted successfully.
BasementDuster => Service deleted successfully.
cae99edb => Service deleted successfully.
xeqomesu => Service stopped successfully.
xeqomesu => Service deleted successfully.
C:\Users\FANNY\Desktop\Continue Live Installation.lnk => Moved successfully.
C:\Windows\System32\Tasks\Selection Tools Update => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Selection Tools.installation.log => Moved successfully.
"C:\Users\FANNY\AppData\Roaming\WTools" directory move:
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\gdiplus.dll => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\MFC71.dll => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\msvcp71.dll => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\msvcr71.dll => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools Uninstall.exe => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\version.ini => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\tmp\commands.xml => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\tmp\log.txt => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\product.conf => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\apc.conf => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\manifest.xml => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\us\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\it\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\gb\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\fr\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\es\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alerter.country => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\layout.xml => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\bt_close_click.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\bt_close_default.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\bt_close_focus.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_bottom_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_bottom_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_bottom_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_bottom_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_bottom.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_bottom_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_top.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_edge_top_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_top_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_top_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_top_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\ca\alert\img\common\win_top_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\layout.xml => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\bt_close_click.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\bt_close_default.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\bt_close_focus.jpg => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_bottom_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_bottom_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_bottom_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_bottom_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_bottom.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_bottom_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_right_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_top.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_edge_top_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_top_left.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_top_left_msk.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_top_right.png => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WTools\Selection Tools\modules\nosibox\conf\alert\img\common\win_top_right_msk.png => Moved successfully.
Could not move "C:\Users\FANNY\AppData\Roaming\WTools" directory. => Scheduled to move on reboot.
C:\Users\FANNY\AppData\Roaming\Bubble Dock.installation.log => Moved successfully.
C:\Windows\System32\Tasks\WindApp Update => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WindApp.installation.log => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Store => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Bubble Dock.boostrap.log => Moved successfully.
C:\Users\FANNY\AppData\Roaming\WindApp.boostrap.log => Moved successfully.
C:\Users\FANNY\AppData\Roaming\VOPackage => Moved successfully.
C:\Users\FANNY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425418128-3631-4238-28924A3C0F5F => Moved successfully.
C:\ProgramData\IHProtectUpDate => Moved successfully.
C:\Program Files (x86)\XTab => Moved successfully.
C:\Users\FANNY\AppData\Roaming\istartsurf => Moved successfully.
C:\ProgramData\WindowsMangerProtect => Moved successfully.
C:\PhysicalDisk0_MBR.bin => Moved successfully.
C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job => Moved successfully.
C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job => Moved successfully.
C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12 => Moved successfully.
C:\Program Files (x86)\winservice86 => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425416672-3631-4238-28924A3C0F5F => Moved successfully.
C:\Windows\System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C} => Moved successfully.
C:\Users\FANNY\AppData\Local\32444335-1425410986-3631-4238-28924A3C0F5F => Moved successfully.
C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job => Moved successfully.
C:\Windows\System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6 => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425389150-3631-4238-28924A3C0F5F => Moved successfully.
C:\Program Files (x86)\195f3c84-1312-405e-84e7-b3ebdaf2411a => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425387298-3631-4238-28924A3C0F5F => Moved successfully.
"C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}" directory move:
Could not move "C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\5045ccdbebdb4225" => Scheduled to move on reboot.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\9db86a8ecc0fa5f1 => Moved successfully.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\superpc_soft_partner.dat => Moved successfully.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\superpc_soft_partner.exe => Moved successfully.
Could not move "C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}" directory. => Scheduled to move on reboot.
C:\Windows\SysWOW64\BasementDuster.ini => Moved successfully.
C:\Users\FANNY\AppData\Local\32444335-1425332202-3631-4238-28924A3C0F5F => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425331470-3631-4238-28924A3C0F5F => Moved successfully.
C:\Users\FANNY\Downloads\scandal-s02e05-vostfr-hdtv.torrent => Moved successfully.
C:\Windows\Tasks\JJILD.job => Moved successfully.
C:\Users\FANNY\AppData\Roaming\JJILD.exe => Moved successfully.
C:\Windows\System32\Tasks\JJILD => Moved successfully.
C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf => Moved successfully.
C:\Windows\SysWOW64\BasementDusterOff.ini => Moved successfully.
C:\Windows\system32\BasementDusterOff.ini => Moved successfully.
C:\Windows\SysWOW64\BDL.dll => Moved successfully.
C:\Users\FANNY\AppData\Local\32444335-1425328020-3631-4238-28924A3C0F5F => Moved successfully.
C:\Users\FANNY\Downloads\scandal-s02e04-french-hdtv.torrent => Moved successfully.
C:\Program Files (x86)\30215a2f-25e0-405c-b5a6-cabd1843ece0 => Moved successfully.
C:\Users\FANNY\AppData\Roaming\32444335-1425327526-3631-4238-28924A3C0F5F => Moved successfully.
C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7 => Moved successfully.
C:\Program Files (x86)\93dabc92-2c3c-49f6-b30b-6fb9e1094381 => Moved successfully.
C:\Windows\System32\Tasks\uVQSKGkp2zrEvUD => Moved successfully.
C:\Users\FANNY\AppData\Roaming\cY2huiV => Moved successfully.
C:\Users\FANNY\AppData\Roaming\HDFkDec => Moved successfully.
C:\Windows\System32\Tasks\bzZnmqClCADn6RJ => Moved successfully.
C:\Users\FANNY\AppData\Roaming\isjVa4J => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0361176D-6ED6-48DF-B741-5E2BD7BB5BEB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0361176D-6ED6-48DF-B741-5E2BD7BB5BEB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-chromeinstaller" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0E325F56-2514-46A6-AB59-44D8D51F0D0B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E325F56-2514-46A6-AB59-44D8D51F0D0B}" => Key deleted successfully.
C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5070729f-befc-4a48-bb2b-94be449c6657-10_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1325F27F-F842-4E15-905C-E4E1A6AAEDD6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1325F27F-F842-4E15-905C-E4E1A6AAEDD6}" => Key deleted successfully.
C:\Windows\System32\Tasks\uVQSKGkp2zrEvUD not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\uVQSKGkp2zrEvUD" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1A8EE32B-F35E-455C-BC48-11C68F1FE8F2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A8EE32B-F35E-455C-BC48-11C68F1FE8F2}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-statsSystem => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsSystem" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1E7B3387-ECED-43AC-ABD0-B33A762F528F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E7B3387-ECED-43AC-ABD0-B33A762F528F}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-GGfIfEGCfEGbGffIfCfEGC" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{35D4F616-6B7D-480D-92FA-08B52EB8B6FB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35D4F616-6B7D-480D-92FA-08B52EB8B6FB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-codedownloader" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{392169A0-3D3E-4CAA-9CA6-48257E2599F2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{392169A0-3D3E-4CAA-9CA6-48257E2599F2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-enabler" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5ED2B6AA-0B3A-448C-BC2D-1B94CA2E5458}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5ED2B6AA-0B3A-448C-BC2D-1B94CA2E5458}" => Key deleted successfully.
C:\Windows\System32\Tasks\bzZnmqClCADn6RJ not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\bzZnmqClCADn6RJ" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{718EB15B-5ACA-4FD9-ADDF-DE73469C93B9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{718EB15B-5ACA-4FD9-ADDF-DE73469C93B9}" => Key deleted successfully.
C:\Windows\System32\Tasks\{EE22DD0A-733B-408F-9F9D-46702C60DB2C} not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{EE22DD0A-733B-408F-9F9D-46702C60DB2C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7354C118-5101-43B8-8FBF-D26181416EF1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7354C118-5101-43B8-8FBF-D26181416EF1}" => Key deleted successfully.
C:\Windows\System32\Tasks\Selection Tools Update not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Selection Tools Update" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{94B554A8-EAFF-4093-9708-02E2D8DA4D81}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94B554A8-EAFF-4093-9708-02E2D8DA4D81}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-statsAdmin => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsAdmin" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9A60BECE-4FE6-4060-B8BE-0B178FEAE9FA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9A60BECE-4FE6-4060-B8BE-0B178FEAE9FA}" => Key deleted successfully.
C:\Windows\System32\Tasks\{FA45E45D-41C4-453C-B8BC-287839659B2D} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FA45E45D-41C4-453C-B8BC-287839659B2D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9D383AE0-0A18-4F2A-8C93-0DA6FA2F757F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D383AE0-0A18-4F2A-8C93-0DA6FA2F757F}" => Key deleted successfully.
C:\Windows\System32\Tasks\JJILD not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\JJILD" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ABADEA1C-5A0D-4FEA-ADA4-DF8B17E89061}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABADEA1C-5A0D-4FEA-ADA4-DF8B17E89061}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4099818321-3234377780-4292726065-1000Core => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-4099818321-3234377780-4292726065-1000Core" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B74131D8-E2DC-4A34-8CFD-27FCC382C1EF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B74131D8-E2DC-4A34-8CFD-27FCC382C1EF}" => Key deleted successfully.
C:\Windows\System32\Tasks\AffiliatedUpdate => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AffiliatedUpdate" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BFFC225C-528B-4B15-9A88-869C28E22D35}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BFFC225C-528B-4B15-9A88-869C28E22D35}" => Key deleted successfully.
C:\Windows\System32\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6 not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\temp_5070729f-befc-4a48-bb2b-94be449c6657-6" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C71F8FCC-C832-438C-901A-7CC2DB7C5446}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C71F8FCC-C832-438C-901A-7CC2DB7C5446}" => Key deleted successfully.
C:\Windows\System32\Tasks\JeqzLVGqNyBV7S1 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\JeqzLVGqNyBV7S1" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CB772D01-722B-41DD-A95D-39209641213A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB772D01-722B-41DD-A95D-39209641213A}" => Key deleted successfully.
C:\Windows\System32\Tasks\WindApp Update not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WindApp Update" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D155B908-EE7F-4282-B9C6-0198510B6E41}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D155B908-EE7F-4282-B9C6-0198510B6E41}" => Key deleted successfully.
C:\Windows\System32\Tasks\{2C2916EB-D598-4A97-A553-DAEE67B08DE8} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2C2916EB-D598-4A97-A553-DAEE67B08DE8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E0A79AB5-7EB6-4E47-A1C8-26A5D00CEB76}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0A79AB5-7EB6-4E47-A1C8-26A5D00CEB76}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-updater" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F199D111-E298-48C3-9349-293C53F85B86}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F199D111-E298-48C3-9349-293C53F85B86}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Pricora 1.1-firefoxinstaller" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F22694B6-A3A6-498E-AA8B-522785320ED3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F22694B6-A3A6-498E-AA8B-522785320ED3}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-fdfEfEfAfC => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-fdfEfEfAfC" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F76E13AB-ACC9-4A5A-BD7F-554DF47A4582}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F76E13AB-ACC9-4A5A-BD7F-554DF47A4582}" => Key deleted successfully.
C:\Windows\System32\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12 not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5070729f-befc-4a48-bb2b-94be449c6657-12" => Key deleted successfully.
C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-10_user.job not found.
C:\Windows\Tasks\5070729f-befc-4a48-bb2b-94be449c6657-12.job not found.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\AffiliatedUpdate.job => Moved successfully.
C:\Windows\Tasks\JJILD.job not found.
C:\Windows\Tasks\temp_5070729f-befc-4a48-bb2b-94be449c6657-6.job not found.
> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-03-03 22:16:07)<
C:\Users\FANNY\AppData\Roaming\WTools => Is moved successfully.C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52}\5045ccdbebdb4225 => Is moved successfully.
C:\ProgramData\{f40c7a94-b0df-9989-f40c-c7a94b0dea52} => Is moved successfully.
End of Fixlog 22:16:08
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 666
Modifié par Malekal_morte- le 3/03/2015 à 23:11
Modifié par Malekal_morte- le 3/03/2015 à 23:11
ok, histoire de virer les restes.
Normalement, le PC devrait déjà être un peu plus rapide.
(réinitialise bien les navigateurs WEB aussi).
Scan Malwarebytes (temps : environ 40min de scan):
==================================================
Télécharge et installe Malwarebyte : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Mets le à jour puis lance un examen.
A la fin du scan, clic sur "Mettre tout en quarantaine" en bas à gauche.
Redémarre l'ordinateur si besoin.
Après redémarrage, relance Malwarebytes.
Vas chercher le rapport dans l'onglet Historique.
A gauche Journal des examens.
Doube-clic sur l'examen dans la liste.
Puis en bas Copier dans le presse papier
Vas sur http://pjjoint.malekal.com et en bas, clic droit / coller pour coller le rapport du scan Malwarebytes.
Clic sur envoyer.
Dans un nouveau message ici en réponse, donne le lien pjjoint afin de pouvoir consulter le rapport.
Like the angel you are, you laugh creating a lightness in my chest,
Your eyes they penetrate me,
(Your answer's always 'maybe')
That's when I got up and left
Normalement, le PC devrait déjà être un peu plus rapide.
(réinitialise bien les navigateurs WEB aussi).
Scan Malwarebytes (temps : environ 40min de scan):
==================================================
Télécharge et installe Malwarebyte : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Mets le à jour puis lance un examen.
A la fin du scan, clic sur "Mettre tout en quarantaine" en bas à gauche.
Redémarre l'ordinateur si besoin.
Après redémarrage, relance Malwarebytes.
Vas chercher le rapport dans l'onglet Historique.
A gauche Journal des examens.
Doube-clic sur l'examen dans la liste.
Puis en bas Copier dans le presse papier
Vas sur http://pjjoint.malekal.com et en bas, clic droit / coller pour coller le rapport du scan Malwarebytes.
Clic sur envoyer.
Dans un nouveau message ici en réponse, donne le lien pjjoint afin de pouvoir consulter le rapport.
Like the angel you are, you laugh creating a lightness in my chest,
Your eyes they penetrate me,
(Your answer's always 'maybe')
That's when I got up and left
sayane6
Messages postés
12
Date d'inscription
mardi 3 mars 2015
Statut
Membre
Dernière intervention
3 mars 2016
3 mars 2015 à 23:55
3 mars 2015 à 23:55
voila le lien :
https://pjjoint.malekal.com/files.php?id=20150303_w128w13e13w11
https://pjjoint.malekal.com/files.php?id=20150303_w128w13e13w11
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 666
4 mars 2015 à 09:21
4 mars 2015 à 09:21
C'est un rapport de l'application et non d'une analyse.
Tu as bien lancé le scan ?
Il semble que Bubble dock soit encore là =)
Tu as bien lancé le scan ?
Il semble que Bubble dock soit encore là =)
sayane6
Messages postés
12
Date d'inscription
mardi 3 mars 2015
Statut
Membre
Dernière intervention
3 mars 2016
4 mars 2015 à 12:33
4 mars 2015 à 12:33
Bbonjour
oui j'ai ien lancé le scan pendant 40 min environ.
Je vous joint le lien c'est ca qu'il vous faut
https://pjjoint.malekal.com/files.php?id=20150304_q14j10r8h10v10
oui j'ai ien lancé le scan pendant 40 min environ.
Je vous joint le lien c'est ca qu'il vous faut
https://pjjoint.malekal.com/files.php?id=20150304_q14j10r8h10v10
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 666
4 mars 2015 à 12:39
4 mars 2015 à 12:39
c'est tjrs le rapport d'application et non de scan, tu n'es pas dans le bon onglet =)
Refais une analyse FRST, voir s'il y a des restes.
Y a du mieux ou pas pour le PC ?
Refais une analyse FRST, voir s'il y a des restes.
Y a du mieux ou pas pour le PC ?
sayane6
Messages postés
12
Date d'inscription
mardi 3 mars 2015
Statut
Membre
Dernière intervention
3 mars 2016
4 mars 2015 à 13:05
4 mars 2015 à 13:05
voici les nouveaux rapports :
https://pjjoint.malekal.com/files.php?id=20150304_y8u8y14o12v6
https://pjjoint.malekal.com/files.php?id=20150304_v8w8o7k8j9
https://pjjoint.malekal.com/files.php?id=20150304_h9l5w115g15
oui le pc va beaucoup mieux en tout cas pour l'instant rien ne s'est remis en place :)
https://pjjoint.malekal.com/files.php?id=20150304_y8u8y14o12v6
https://pjjoint.malekal.com/files.php?id=20150304_v8w8o7k8j9
https://pjjoint.malekal.com/files.php?id=20150304_h9l5w115g15
oui le pc va beaucoup mieux en tout cas pour l'instant rien ne s'est remis en place :)
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 666
4 mars 2015 à 13:16
4 mars 2015 à 13:16
Voila, c'est terminé, tu peux supprimer les programmes utilisés.
Fais un nettoyage Malwarebytes ces prochains jours.
Quelques conseils :
Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=
Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html
Fais un nettoyage Malwarebytes ces prochains jours.
Quelques conseils :
Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=
Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html
sayane6
Messages postés
12
Date d'inscription
mardi 3 mars 2015
Statut
Membre
Dernière intervention
3 mars 2016
4 mars 2015 à 13:23
4 mars 2015 à 13:23
super merci beaucoup pour tout ;)