Ad by zombie new [Résolu/Fermé]

Signaler
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016
-
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016
-
Bonjour,
Voila mon soucis, des pubs non stop sur toutes les pages dont la signature est zombie news. A rien comprendre.
J'ai essayé à plusieurs reprises de nettoyer avec différents logiciels. Rien ni fait.
Si qq à des solutions , je suis preneur.
Merci à tout le monde


13 réponses

Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
Bonsoir

▶ Télécharge ici : FRST (de Farbar)
!!! En fonction de ta version de Windows, prends la "32-Bit Version" ou la "64-Bit Version" !!!
Aide : va dans Démarrer > Panneau de configuration > Système pour savoir si tu es sous 32 bits ou 64 bits.

▶ Double-clique sur l'icône FRST.exe pour lancer le programme. (Sous Windows Vista, 7 et 8, il faut faire un clic droit dessus, puis exécuter en tant qu'administrateur.) Clique ensuite sur Oui lorsqu'un message d'avertissement (Disclaimer) s'affiche.

▶ Sur le menu principal, clique sur le bouton Scan et patiente le temps de l'analyse.

▶ A la fin du scan, deux rapports s'affichent, FRST.txt et Addition.txt Poste les rapports dans ta prochaine réponse.

Les rapport se trouvent ici : C:\FRST\Logs

▶ Envoie-les sur https://www.cjoint.com/ et poste les liens obtenus en échange.
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

https://www.cjoint.com/?3CklIF5IGSo je pense que cette fois ci sera la bonne. Je progresse , j'ai appris à faire un lien.
Bonne journée.
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
Manque le second rapport
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

C:\Users\Jm\Downloads\Shortcut.txt
C:\Users\Jm\Downloads\Addition.txt
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
Il faut les héberger sur cjoint
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

je l'ai aussi fait
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
non il manque additionnal
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

c'est fait ,mais je ne comprends pas pourquoi il n'y était pas?
Cordialement
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

je me permets de te poster aussi adwclearner. Merci
# AdwCleaner v4.112 - Rapport créé le 10/03/2015 à 20:29:34
# Mis à jour le 09/03/2015 par Xplode
# Base de données : 2015-03-05.1 [Serveur]
# Système d'exploitation : Windows 7 Starter Service Pack 1 (x86)
# Nom d'utilisateur : Jm - JM-PC
# Exécuté depuis : C:\Users\Jm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEDAPZ9R\adwcleaner_4.112.exe
# Option : Nettoyer
          • [ Services ] *****
          • [ Fichiers / Dossiers ] *****


Dossier Supprimé : C:\ProgramData\Browser
Dossier Supprimé : C:\Program Files\StormVade
Dossier Supprimé : C:\Users\Jm\AppData\Local\ZombieNews
Dossier Supprimé : C:\Users\Jm\AppData\Local\speed browser
Fichier Supprimé : C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\speed browser.lnk
Fichier Supprimé : C:\Users\Jm\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Fichier Supprimé : C:\Users\Jm\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
          • [ Tâches planifiées ] *****
          • [ Raccourcis ] *****
          • [ Registre ] *****


Clé Supprimée : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
Clé Supprimée : HKLM\SOFTWARE\SpeedBrowser
          • [ Navigateurs ] *****


-\\ Internet Explorer v11.0.9600.17631


-\\ Mozilla Firefox v


-\\ Google Chrome v40.0.2214.115

[C:\Users\Jm\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3332182&octid=EB_ORIGINAL_CTID&ISID=M3A1B0131-25F7-4F2C-A809-ABF06C08CB56&SearchSource=58&CUI=&UM=8&UP=SP52CA0B8F-2AEA-4301-B4D8-AD631CC2F387&q={searchTerms}&SSPV=


AdwCleaner[R0].txt - [35574 octets] - [05/12/2013 18:22:38]
AdwCleaner[R1].txt - [30385 octets] - [07/12/2013 07:44:00]
AdwCleaner[R2].txt - [6748 octets] - [07/03/2015 20:09:25]
AdwCleaner[R3].txt - [2647 octets] - [10/03/2015 20:17:39]
AdwCleaner[S0].txt - [34275 octets] - [05/12/2013 18:30:10]
AdwCleaner[S1].txt - [30748 octets] - [07/12/2013 07:45:48]
AdwCleaner[S2].txt - [6190 octets] - [07/03/2015 20:17:11]
AdwCleaner[S3].txt - [2553 octets] - [10/03/2015 20:29:34]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [2613 octets] ##########
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

Pour te dire qu'après Adwcleaner " zombie est toujours là. Peut etre ai je fais n'importe quoi?
Etant donné que je me sers assez souvent de mon ordi j'essai aussi de faire .
Merci pour ton aide , j'attends la suite
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
Tu vois il me faut les liens comme pour ce cas
https://forums.commentcamarche.net/forum/affich-31675447-mon-ecran-se-fige-avec-le-rond#4

Là tu vois il est bien arrivé à le faire

Prends ton temps
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

pour moi l'écran ne se fige pas , mais ce qui est figé pour l'instant c'est zombie.
tu peut me dire ce que tu attends maintenant? Merci
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
J'attends les deux rapports à savoir frst.txt et addition.txt sur cjoint

Sans cela je ne peux pas t'aider
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

j'ai tout fais ce qu'il fallait avec cjoint et sauvegarder durant 4 jours. Si c'est pas bon ,ore merci peux tu me donner plus de précision sur ce que je dois faire
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-03-2015
Ran by Jm at 2015-03-10 13:07:52
Running from C:\Users\Jm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PNNFIWUF
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assistant de connexion Windows Live (HKLM\...\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}) (Version: 5.000.818.5 - Microsoft Corporation)
Atheros Client Installation Program (HKLM\...\{D1434266-0486-4469-B338-A60082CC04E1}) (Version: 1.0.1.0805 - Atheros)
Avast Free Antivirus (HKLM\...\avast) (Version: 10.0.2208 - AVAST Software)
BatteryLifeExtender (HKLM\...\{853F8A41-A3C9-43FA-87FA-1AE74FC6F3F7}) (Version: 1.0.1 - Samsung)
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
ChargeableUSB (HKLM\...\{92D50865-FC60-4EA8-BA7A-5581B0D13EFB}) (Version: 1.0.0.0 - SAMSUNG)
Copy (Version: 130.0.366.000 - Hewlett-Packard) Hidden
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3304 - CyberLink Corp.)
Dairy Dash (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}) (Version: - Oberon Media)
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.372.000 - Hewlett-Packard) Hidden
DJ_AIO_06_F2400_SW_Min (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Easy Display Manager (HKLM\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.0 - Samsung Electronics Co., Ltd.)
Easy Network Manager (HKLM\...\{B660E0D0-A8CB-45A7-96FB-93E8C915A0B2}) (Version: 4.2.4 - Samsung)
Easy Resolution Manager (HKLM\...\{45535A5E-1F81-4F35-BE1D-43D10A7D03B4}) (Version: 1.0.0 - Samsung)
EasyBatteryManager (HKLM\...\{178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}) (Version: 4.0.0.3 - Samsung)
F2400 (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Farm Frenzy 2 (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}) (Version: - Oberon Media)
Galerie de photos Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Heroes of Might and Magic IV: Winds of War (HKLM\...\Heroes of Might and Magic IV) (Version: - )
Heroes(TM) II Gold (HKLM\...\Heroes of Might and Magic II Gold) (Version: - )
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Deskjet F2400 All-In-One Driver Software 13.0 Rel .6 (HKLM\...\{CDBF8C2D-04B0-4F9B-9AE1-7422F7F0EC94}) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden
hpPrintProjects (Version: 130.0.303.000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
hpWLPGInstaller (Version: 130.0.303.000 - Hewlett-Packard) Hidden
Installation Windows Live (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Installation Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.1972 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Internet Speed Tracker Internet Explorer Toolbar (HKLM\...\InternetSpeedTracker_9tbar Uninstall Internet Explorer) (Version: - Mindspark Interactive Network) <==== ATTENTION
Java 7 Update 13 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Ma-Config.com (HKLM\...\{7DB4CB30-B94A-4282-AC8A-C86F615AA45B}) (Version: 5.1.050 - Cybelsoft)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.22.3.3 - Marvell)
MergeModule_x86 (Version: 9.0.02 - Sony Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (French) (HKLM\...\{95120000-00AF-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM\...\MSTTS) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (HKLM\...\{3B160861-7250-451E-B5EE-8B92BF30A710}) (Version: 9.7.0621 - Microsoft Corporation)
Module de compatibilité pour Microsoft Office System 2007 (HKLM\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Module linguistique Microsoft .NET Framework 4 Client Profile FRA (HKLM\...\Microsoft .NET Framework 4 Client Profile FRA Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
OpenOffice.org 3.3 (HKLM\...\{7E0610A2-E336-40B3-B685-C4905E97EC9A}) (Version: 3.3.9567 - OpenOffice.org)
Outil de téléchargement Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlayMemories Home (HKLM\...\{93AA5B49-0994-4EF6-80F3-868C9CEA88ED}) (Version: 4.0.02.10030 - Sony Corporation)
PMB_ModeEditor (Version: 9.0.02 - Sony Corporation) Hidden
PMB_ServiceUploader (Version: 9.0.02 - Sony Corporation) Hidden
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
ReadPlease 2003/ReadPlease PLUS 2003 (HKLM\...\ReadPlease 2003_is1) (Version: 2003.1.10 - ReadPlease Corporation)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5983 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Software (HKLM\...\{F2BC3383-F000-410C-A038-3846ADBE8D90}) (Version: 1.01.0088 - REALTEK Semiconductor Corp.)
Samsung Recovery Solution 4 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 4.0.0.42 - Samsung)
Samsung Support Center (HKLM\...\{CCC2B140-B47A-45FA-AAE3-BD60DA41AE00}) (Version: 1.0.21 - Samsung)
Samsung Update Plus (HKLM\...\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}) (Version: 2.0 - Samsung Electronics Co., Ltd.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
SmartSound Common Data (HKLM\...\InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (HKLM\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (Version: 5.1.6 - SmartSound Software Inc.) Hidden
SmartWebPrinting (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SOHLib for PlayMemories Home (Version: 1.0.3.02170 - Sony Corporation) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Star Wars Rebellion de LucasArts (HKLM\...\LucasArts' Star Wars Rebellion) (Version: - )
Status (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.10.0 - Synaptics Incorporated)
TEFView 2.69 (HKLM\...\TEFView_is1) (Version: - TablEdit)
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.376.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Updater (HKLM\...\{D54E3D9F-FEB8-4D2D-A138-B69A5C80080B}) (Version: 2.6.49 - Creative Island Media, LLC) <==== ATTENTION
User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Live FolderShare (HKLM\...\{76810709-A7D3-468D-9167-A1780C1E766C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version: - )
WiseConvert (HKLM\...\WiseConvert) (Version: 1.0 - WiseConvert)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{05589F80-C356-11CE-BF01-00AA0055595A}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{083863F1-70DE-11D0-BD40-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{17CCA71B-ECD7-11D0-B908-00A0C9223196}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{2933BF90-7B36-11D2-B20E-00C04F983E60}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{33156164-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{33156168-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{33D9A762-90C8-11D0-BD43-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{4A3C0757-14E2-4262-9C0B-0C9015E8994C}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{505C2E67-8615-4CA9-9B57-48CF6EE696FD}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Jm\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{62BE5D10-60EB-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{632B606A-BBC6-11D2-A329-006097C4E476}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{6A2E0670-28E4-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{720D4AC0-7533-11D0-A5D6-28DB04C10000}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{83A4D5A6-E2C1-4edd-AD48-1A1C50BD06EF}\InprocServer32 -> C:\Users\Jm\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\ImageUploader6.ocx (Aurigma, Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{860BB310-5D01-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\Jm\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{8D52AA2E-40BE-46D7-8F36-DB7B0F636824}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{8E849609-C7E8-4EC7-8BD3-D55E871A340D}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{94AB719E-1300-4098-8C18-B2A765327D15}\InprocServer32 -> C:\Users\Jm\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\ImageUploader6.ocx (Aurigma, Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{A5AC04E7-3E13-48CE-A43F-9FBA59DB1544}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{AB37E6C0-194D-4C33-A924-5178414DEB98}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{AB406AAC-2B2B-11D3-B36B-00C04F6108FF}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{b287e6b2-868b-4ac1-acce-c69eb5fd29d1}\InprocServer32 -> C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tSrcAs.dll No File
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{BA6272FD-A7AD-4498-9476-552040B7EDD4}\InprocServer32 -> C:\Users\Jm\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\ImageUploader6.ocx (Aurigma, Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{BF357E76-2001-47F1-8057-46DEE9627DFD}\InprocServer32 -> C:\Users\Jm\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\ImageUploader6.ocx (Aurigma, Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{BF87B6E1-8C27-11D0-B3F0-00AA003761C5}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C1AB3D89-6973-45A6-AA44-09CEBBF872E5}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C3043B13-E649-436A-9CE7-8DA8CB0BF7C8}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C6DABB43-032C-4A5B-A590-9277F9C43E14}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C6E13344-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C6E13360-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C6E13370-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Jm\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{CDA42200-BD88-11D0-BD4E-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{DF0AD8E0-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{DF0AD8E1-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{DF0AD8E3-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{E05592E4-C0B5-11D0-A439-00A0C9223196}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{E297AB5E-40B0-41BD-9E06-E4144084EE5F}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{E30629D2-27E5-11CE-875D-00608CB78066}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{E436EBB3-524F-11CE-9F53-0020AF0BA770}\InprocServer32 -> No File Path

==================== Restore Points =========================

10-03-2015 07:51:44 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0862875E-AE45-426F-A2B4-391C401C7D52} - System32\Tasks\{FEFE79DC-E531-4F41-B582-322B0992774F} => pcalua.exe -a C:\windows\IsUn040c.exe -c -f"d:\jeux\Heroes IV\Heroes of Might and Magic IV.isu" -c"C:\Program Files\Common Files\3DO Shared\3DOUnInst.dll
Task: {20599042-5088-4751-9555-DC527CA06DAB} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2009-10-26] (SAMSUNG Electronics)
Task: {29648446-D320-442F-9360-AFB84D2650A6} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2015-01-29] (AVAST Software)
Task: {3CA6FF77-A6E3-4840-8EC3-634E6407525C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {42F90F15-30EA-46C9-9BFA-5FB7A161FCC2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {452597BB-0719-4A5B-B500-906B30A421CB} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2009-11-20] (SEC)
Task: {587AC2F1-0C92-4403-A9E0-8BA64B96E119} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-04-20] ()
Task: {5D106323-5ECE-419E-8F89-0352C482E22A} - System32\Tasks\{DA71D593-5981-4D59-AB62-9AC29A0D5D19} => pcalua.exe -a "C:\Program Files\Samsung Casual Games\Farm Frenzy 2\Uninstall.exe" -c "C:\Program Files\Samsung Casual Games\Farm Frenzy 2\install.log"
Task: {6A19EE5E-1AE6-4E33-8FEE-2788C9F7055D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {6AE2CCA7-E146-4B4E-AECB-28CD85D2AA07} - System32\Tasks\{82E55512-B5DF-4032-B525-7FABF52D0178} => pcalua.exe -a C:\Users\Jm\AppData\Roaming\omniboxes\UninstallManager.exe -c -ptid=obw
Task: {7029D5D0-90F8-46A5-BB4C-4851D5F2211A} - System32\Tasks\{A070093D-E757-4E91-A20C-260EA23D57E7} => pcalua.exe -a "C:\Program Files\ZHPDiag\ZHPhep.exe" -d "C:\Program Files\ZHPDiag"
Task: {772B7D22-DBC0-41D0-A51A-5B9BA350AFD4} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000UA => C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-07] (Facebook Inc.)
Task: {853A09A3-8684-48D0-8CD6-87C339D0BF11} - System32\Tasks\{3DBF1D28-2EE1-47CA-AB73-C7C71376468B} => pcalua.exe -a "C:\Program Files\ZHPDiag\ZHPFix\ZHPhep.exe" -d "C:\Program Files\ZHPDiag\ZHPFix"
Task: {8F12C965-7C23-4831-8374-4220907F460B} - System32\Tasks\{E0A9891E-3850-458B-94B3-FDCA5EC0B67A} => pcalua.exe -a E:\AOE1\FR\DIRECTX\DXSETUP.EXE -d E:\AOE1\FR\DIRECTX
Task: {B071B750-085E-4803-84AA-5D37AD2BB876} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {B62C20A8-CF2A-4ABE-AB7C-D282F3B9E188} - System32\Tasks\avastBCLRestartS-1-5-21-2071869296-2185399040-3217962726-1000 => Chrome.exe
Task: {BB95967C-D920-40C7-9FE9-14B6400EAACB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000Core => C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-07] (Facebook Inc.)
Task: {BD747F36-E83F-48AB-9A25-1F12335054DA} - System32\Tasks\{305ADD2D-4CE8-4F59-9D8F-0BE5A242417C} => pcalua.exe -a C:\Users\Jm\Desktop\OOo_3.3.0_Win_x86_install-wJRE_fr.exe -d C:\Users\Jm\Desktop
Task: {C106F74F-3812-4829-AFB7-9C8929F73AAB} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2009-10-16] (SAMSUNG Electronics co., LTD.)
Task: {E0E6C7D3-17C0-4112-AE88-9676590156B8} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19] (Samsung Electronics. Co. Ltd.)
Task: {E99D2DB4-302F-4E02-9291-B23CE409DD76} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-08] (Adobe Systems Incorporated)
Task: {EB2DED19-DD17-4309-8920-AA908F78029D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {F809258D-B5BF-492C-8F59-C33E0DF27D94} - System32\Tasks\Sony Corporation\Sony Home Network Library\SOHLib SOHDms => C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe [2014-01-16] (Sony Corporation)
Task: {F88076AB-5106-4301-A2BB-2B708594C6D3} - System32\Tasks\{5DA476B9-DD39-4576-822D-93295771141A} => pcalua.exe -a C:\windows\IsUninst.exe -c -f"d:\jeux\Heroes II\Uninst.isu"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000Core.job => C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000UA.job => C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-09 12:49 - 2015-03-09 12:49 - 02919936 _____ () C:\Program Files\Alwil Software\Avast5\defs\15030900\algo.dll
2015-03-10 07:27 - 2015-03-10 07:27 - 02920960 _____ () C:\Program Files\Alwil Software\Avast5\defs\15030901\algo.dll
2015-01-29 20:06 - 2015-01-29 20:06 - 38562088 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2011-01-17 15:19 - 2011-09-10 10:38 - 00985088 _____ () C:\Program Files\OpenOffice.org 3\program\libxml2.dll
2009-12-09 02:10 - 2009-03-05 10:54 - 00311296 _____ () C:\windows\SYSTEM32\Rezip.exe
2015-02-19 22:40 - 2015-02-19 22:40 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2071869296-2185399040-3217962726-1000\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: HotKeysCmds => C:\windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\windows\system32\igfxtray.exe
MSCONFIG\startupreg: msnmsgr => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: Persistence => C:\windows\system32\igfxpers.exe

==================== Accounts: =============================

Administrateur (S-1-5-21-2071869296-2185399040-3217962726-500 - Administrator - Disabled)
Invité (S-1-5-21-2071869296-2185399040-3217962726-501 - Limited - Disabled)
Jm (S-1-5-21-2071869296-2185399040-3217962726-1000 - Administrator - Enabled) => C:\Users\Jm

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/10/2015 11:32:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 2d0

Heure de début : 01d05b1b785b94b6

Heure de fin : 0

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport : ae802809-c710-11e4-8562-0024545973d7

Error: (03/10/2015 07:51:17 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : fb0

Heure de début : 01d05afbfce2ae34

Heure de fin : 0

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 07:38:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante iexplore.exe, version : 11.0.9600.17631, horodatage : 0x54b31a70
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18247, horodatage : 0x521ea91c
Code d'exception : 0xc0000374
Décalage d'erreur : 0x000c3873
ID du processus défaillant : 0x2c98
Heure de début de l'application défaillante : 0xiexplore.exe0
Chemin d'accès de l'application défaillante : iexplore.exe1
Chemin d'accès du module défaillant: iexplore.exe2
ID de rapport : iexplore.exe3

Error: (03/08/2015 06:27:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1330

Heure de début : 01d059c4195069ac

Heure de fin : 117

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 06:16:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1dd4

Heure de début : 01d059c171c7fb22

Heure de fin : 162

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 06:05:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1288

Heure de début : 01d059c19f0e556e

Heure de fin : 87

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 08:39:03 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 17c4

Heure de début : 01d05971831a86bc

Heure de fin : 2746

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 08:06:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante SpfService.exe, version : 1.3.0.9090, horodatage : 0x4e684be0
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18247, horodatage : 0x521ea91c
Code d'exception : 0xc0000005
Décalage d'erreur : 0x0005d032
ID du processus défaillant : 0x8a0
Heure de début de l'application défaillante : 0xSpfService.exe0
Chemin d'accès de l'application défaillante : SpfService.exe1
Chemin d'accès du module défaillant: SpfService.exe2
ID de rapport : SpfService.exe3

Error: (03/08/2015 07:50:24 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : e5c

Heure de début : 01d0596a8d616c90

Heure de fin : 150

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/07/2015 08:07:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante iexplore.exe, version : 11.0.9600.17631, horodatage : 0x54b31a70
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18247, horodatage : 0x521ea91c
Code d'exception : 0xc0000005
Décalage d'erreur : 0x000533af
ID du processus défaillant : 0x1ad4
Heure de début de l'application défaillante : 0xiexplore.exe0
Chemin d'accès de l'application défaillante : iexplore.exe1
Chemin d'accès du module défaillant: iexplore.exe2
ID de rapport : iexplore.exe3


System errors:
=============
Error: (03/10/2015 00:44:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service WinDefend.

Error: (03/10/2015 09:39:19 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service Rezip.

Error: (03/10/2015 07:50:03 AM) (Source: Schannel) (EventID: 4120) (User: AUTORITE NT)
Description: L'alerte fatale suivante a été générée : 70. L'état d'erreur interne est 105.

Error: (03/10/2015 03:52:20 AM) (Source: Schannel) (EventID: 4116) (User: AUTORITE NT)
Description: Le certificat reçu à partir du serveur distant ne contient par le nom attendu. Il n'est par conséquent pas possible de déterminer si nous sommes connecté au serveur correct. Le nom de serveur attendu est auth.ff.avast.com. La demande de connexion SSL a échoué. Les données jointes contiennent le certificat du serveur.

Error: (03/10/2015 03:52:20 AM) (Source: Schannel) (EventID: 4120) (User: AUTORITE NT)
Description: L'alerte fatale suivante a été générée : 43. L'état d'erreur interne est 552.

Error: (03/09/2015 09:03:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service RAOxHLsBfm.

Error: (03/09/2015 06:37:58 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger :
cdrom

Error: (03/09/2015 06:37:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service StormWatch Update Service n'a pas pu démarrer en raison de l'erreur :
%%2

Error: (03/09/2015 06:37:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Internet Speed TrackerService n'a pas pu démarrer en raison de l'erreur :
%%2

Error: (03/09/2015 06:37:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Application Manager 3.16.8591351 n'a pas pu démarrer en raison de l'erreur :
%%2


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Atom(TM) CPU N450 @ 1.66GHz
Percentage of memory in use: 88%
Total physical RAM: 1013.3 MB
Available physical RAM: 116.79 MB
Total Pagefile: 2037.3 MB
Available Pagefile: 727.19 MB
Total Virtual: 2047.88 MB
Available Virtual: 1899.57 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:45.54 GB) (Free:12.59 GB) NTFS
Drive d: () (Fixed) (Total:88.41 GB) (Free:73.32 GB) NTFS
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
Là tu as bien réussi à me donner frst.txt => http://www.cjoint.com/data3/3CklIF5IGSo.htm

Il me manque le second rapport addition.txt c'est celui là que tu dois héberger
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-03-2015
Ran by Jm at 2015-03-10 13:07:52
Running from C:\Users\Jm\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PNNFIWUF
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assistant de connexion Windows Live (HKLM\...\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}) (Version: 5.000.818.5 - Microsoft Corporation)
Atheros Client Installation Program (HKLM\...\{D1434266-0486-4469-B338-A60082CC04E1}) (Version: 1.0.1.0805 - Atheros)
Avast Free Antivirus (HKLM\...\avast) (Version: 10.0.2208 - AVAST Software)
BatteryLifeExtender (HKLM\...\{853F8A41-A3C9-43FA-87FA-1AE74FC6F3F7}) (Version: 1.0.1 - Samsung)
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
ChargeableUSB (HKLM\...\{92D50865-FC60-4EA8-BA7A-5581B0D13EFB}) (Version: 1.0.0.0 - SAMSUNG)
Copy (Version: 130.0.366.000 - Hewlett-Packard) Hidden
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3304 - CyberLink Corp.)
Dairy Dash (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}) (Version: - Oberon Media)
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.372.000 - Hewlett-Packard) Hidden
DJ_AIO_06_F2400_SW_Min (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Easy Display Manager (HKLM\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.0 - Samsung Electronics Co., Ltd.)
Easy Network Manager (HKLM\...\{B660E0D0-A8CB-45A7-96FB-93E8C915A0B2}) (Version: 4.2.4 - Samsung)
Easy Resolution Manager (HKLM\...\{45535A5E-1F81-4F35-BE1D-43D10A7D03B4}) (Version: 1.0.0 - Samsung)
EasyBatteryManager (HKLM\...\{178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}) (Version: 4.0.0.3 - Samsung)
F2400 (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Farm Frenzy 2 (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}) (Version: - Oberon Media)
Galerie de photos Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Heroes of Might and Magic IV: Winds of War (HKLM\...\Heroes of Might and Magic IV) (Version: - )
Heroes(TM) II Gold (HKLM\...\Heroes of Might and Magic II Gold) (Version: - )
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Deskjet F2400 All-In-One Driver Software 13.0 Rel .6 (HKLM\...\{CDBF8C2D-04B0-4F9B-9AE1-7422F7F0EC94}) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden
hpPrintProjects (Version: 130.0.303.000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
hpWLPGInstaller (Version: 130.0.303.000 - Hewlett-Packard) Hidden
Installation Windows Live (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Installation Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.1972 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Internet Speed Tracker Internet Explorer Toolbar (HKLM\...\InternetSpeedTracker_9tbar Uninstall Internet Explorer) (Version: - Mindspark Interactive Network) <==== ATTENTION
Java 7 Update 13 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Ma-Config.com (HKLM\...\{7DB4CB30-B94A-4282-AC8A-C86F615AA45B}) (Version: 5.1.050 - Cybelsoft)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.22.3.3 - Marvell)
MergeModule_x86 (Version: 9.0.02 - Sony Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (French) (HKLM\...\{95120000-00AF-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM\...\MSTTS) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (HKLM\...\{3B160861-7250-451E-B5EE-8B92BF30A710}) (Version: 9.7.0621 - Microsoft Corporation)
Module de compatibilité pour Microsoft Office System 2007 (HKLM\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Module linguistique Microsoft .NET Framework 4 Client Profile FRA (HKLM\...\Microsoft .NET Framework 4 Client Profile FRA Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
OpenOffice.org 3.3 (HKLM\...\{7E0610A2-E336-40B3-B685-C4905E97EC9A}) (Version: 3.3.9567 - OpenOffice.org)
Outil de téléchargement Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlayMemories Home (HKLM\...\{93AA5B49-0994-4EF6-80F3-868C9CEA88ED}) (Version: 4.0.02.10030 - Sony Corporation)
PMB_ModeEditor (Version: 9.0.02 - Sony Corporation) Hidden
PMB_ServiceUploader (Version: 9.0.02 - Sony Corporation) Hidden
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
ReadPlease 2003/ReadPlease PLUS 2003 (HKLM\...\ReadPlease 2003_is1) (Version: 2003.1.10 - ReadPlease Corporation)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5983 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Software (HKLM\...\{F2BC3383-F000-410C-A038-3846ADBE8D90}) (Version: 1.01.0088 - REALTEK Semiconductor Corp.)
Samsung Recovery Solution 4 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 4.0.0.42 - Samsung)
Samsung Support Center (HKLM\...\{CCC2B140-B47A-45FA-AAE3-BD60DA41AE00}) (Version: 1.0.21 - Samsung)
Samsung Update Plus (HKLM\...\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}) (Version: 2.0 - Samsung Electronics Co., Ltd.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
SmartSound Common Data (HKLM\...\InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (HKLM\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (Version: 5.1.6 - SmartSound Software Inc.) Hidden
SmartWebPrinting (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SOHLib for PlayMemories Home (Version: 1.0.3.02170 - Sony Corporation) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Star Wars Rebellion de LucasArts (HKLM\...\LucasArts' Star Wars Rebellion) (Version: - )
Status (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.10.0 - Synaptics Incorporated)
TEFView 2.69 (HKLM\...\TEFView_is1) (Version: - TablEdit)
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.376.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Updater (HKLM\...\{D54E3D9F-FEB8-4D2D-A138-B69A5C80080B}) (Version: 2.6.49 - Creative Island Media, LLC) <==== ATTENTION
User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Live FolderShare (HKLM\...\{76810709-A7D3-468D-9167-A1780C1E766C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version: - )
WiseConvert (HKLM\...\WiseConvert) (Version: 1.0 - WiseConvert)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{05589F80-C356-11CE-BF01-00AA0055595A}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{083863F1-70DE-11D0-BD40-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{17CCA71B-ECD7-11D0-B908-00A0C9223196}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{2933BF90-7B36-11D2-B20E-00C04F983E60}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{33156164-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{33156168-81D6-11D3-8006-00C04FA30A73}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{33D9A762-90C8-11D0-BD43-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{4A3C0757-14E2-4262-9C0B-0C9015E8994C}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{505C2E67-8615-4CA9-9B57-48CF6EE696FD}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Jm\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{62BE5D10-60EB-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{632B606A-BBC6-11D2-A329-006097C4E476}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{6A2E0670-28E4-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{720D4AC0-7533-11D0-A5D6-28DB04C10000}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{83A4D5A6-E2C1-4edd-AD48-1A1C50BD06EF}\InprocServer32 -> C:\Users\Jm\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\ImageUploader6.ocx (Aurigma, Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{860BB310-5D01-11D0-BD3B-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\Jm\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{8D52AA2E-40BE-46D7-8F36-DB7B0F636824}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{8E849609-C7E8-4EC7-8BD3-D55E871A340D}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{94AB719E-1300-4098-8C18-B2A765327D15}\InprocServer32 -> C:\Users\Jm\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\ImageUploader6.ocx (Aurigma, Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{A5AC04E7-3E13-48CE-A43F-9FBA59DB1544}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{AB37E6C0-194D-4C33-A924-5178414DEB98}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{AB406AAC-2B2B-11D3-B36B-00C04F6108FF}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{b287e6b2-868b-4ac1-acce-c69eb5fd29d1}\InprocServer32 -> C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tSrcAs.dll No File
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{BA6272FD-A7AD-4498-9476-552040B7EDD4}\InprocServer32 -> C:\Users\Jm\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\ImageUploader6.ocx (Aurigma, Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{BF357E76-2001-47F1-8057-46DEE9627DFD}\InprocServer32 -> C:\Users\Jm\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\ImageUploader6.ocx (Aurigma, Inc.)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{BF87B6E1-8C27-11D0-B3F0-00AA003761C5}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C1AB3D89-6973-45A6-AA44-09CEBBF872E5}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C3043B13-E649-436A-9CE7-8DA8CB0BF7C8}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C6DABB43-032C-4A5B-A590-9277F9C43E14}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C6E13344-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C6E13360-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{C6E13370-30AC-11D0-A18C-00A0C9118956}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Jm\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{CDA42200-BD88-11D0-BD4E-00A0C911CE86}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{DF0AD8E0-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{DF0AD8E1-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{DF0AD8E3-F91C-4109-AE46-1EAA5CD8AB08}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{E05592E4-C0B5-11D0-A439-00A0C9223196}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{E297AB5E-40B0-41BD-9E06-E4144084EE5F}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{E30629D2-27E5-11CE-875D-00608CB78066}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2071869296-2185399040-3217962726-1000_Classes\CLSID\{E436EBB3-524F-11CE-9F53-0020AF0BA770}\InprocServer32 -> No File Path

==================== Restore Points =========================

10-03-2015 07:51:44 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0862875E-AE45-426F-A2B4-391C401C7D52} - System32\Tasks\{FEFE79DC-E531-4F41-B582-322B0992774F} => pcalua.exe -a C:\windows\IsUn040c.exe -c -f"d:\jeux\Heroes IV\Heroes of Might and Magic IV.isu" -c"C:\Program Files\Common Files\3DO Shared\3DOUnInst.dll
Task: {20599042-5088-4751-9555-DC527CA06DAB} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2009-10-26] (SAMSUNG Electronics)
Task: {29648446-D320-442F-9360-AFB84D2650A6} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2015-01-29] (AVAST Software)
Task: {3CA6FF77-A6E3-4840-8EC3-634E6407525C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {42F90F15-30EA-46C9-9BFA-5FB7A161FCC2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {452597BB-0719-4A5B-B500-906B30A421CB} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2009-11-20] (SEC)
Task: {587AC2F1-0C92-4403-A9E0-8BA64B96E119} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-04-20] ()
Task: {5D106323-5ECE-419E-8F89-0352C482E22A} - System32\Tasks\{DA71D593-5981-4D59-AB62-9AC29A0D5D19} => pcalua.exe -a "C:\Program Files\Samsung Casual Games\Farm Frenzy 2\Uninstall.exe" -c "C:\Program Files\Samsung Casual Games\Farm Frenzy 2\install.log"
Task: {6A19EE5E-1AE6-4E33-8FEE-2788C9F7055D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {6AE2CCA7-E146-4B4E-AECB-28CD85D2AA07} - System32\Tasks\{82E55512-B5DF-4032-B525-7FABF52D0178} => pcalua.exe -a C:\Users\Jm\AppData\Roaming\omniboxes\UninstallManager.exe -c -ptid=obw
Task: {7029D5D0-90F8-46A5-BB4C-4851D5F2211A} - System32\Tasks\{A070093D-E757-4E91-A20C-260EA23D57E7} => pcalua.exe -a "C:\Program Files\ZHPDiag\ZHPhep.exe" -d "C:\Program Files\ZHPDiag"
Task: {772B7D22-DBC0-41D0-A51A-5B9BA350AFD4} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000UA => C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-07] (Facebook Inc.)
Task: {853A09A3-8684-48D0-8CD6-87C339D0BF11} - System32\Tasks\{3DBF1D28-2EE1-47CA-AB73-C7C71376468B} => pcalua.exe -a "C:\Program Files\ZHPDiag\ZHPFix\ZHPhep.exe" -d "C:\Program Files\ZHPDiag\ZHPFix"
Task: {8F12C965-7C23-4831-8374-4220907F460B} - System32\Tasks\{E0A9891E-3850-458B-94B3-FDCA5EC0B67A} => pcalua.exe -a E:\AOE1\FR\DIRECTX\DXSETUP.EXE -d E:\AOE1\FR\DIRECTX
Task: {B071B750-085E-4803-84AA-5D37AD2BB876} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {B62C20A8-CF2A-4ABE-AB7C-D282F3B9E188} - System32\Tasks\avastBCLRestartS-1-5-21-2071869296-2185399040-3217962726-1000 => Chrome.exe
Task: {BB95967C-D920-40C7-9FE9-14B6400EAACB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000Core => C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-07] (Facebook Inc.)
Task: {BD747F36-E83F-48AB-9A25-1F12335054DA} - System32\Tasks\{305ADD2D-4CE8-4F59-9D8F-0BE5A242417C} => pcalua.exe -a C:\Users\Jm\Desktop\OOo_3.3.0_Win_x86_install-wJRE_fr.exe -d C:\Users\Jm\Desktop
Task: {C106F74F-3812-4829-AFB7-9C8929F73AAB} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2009-10-16] (SAMSUNG Electronics co., LTD.)
Task: {E0E6C7D3-17C0-4112-AE88-9676590156B8} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19] (Samsung Electronics. Co. Ltd.)
Task: {E99D2DB4-302F-4E02-9291-B23CE409DD76} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-08] (Adobe Systems Incorporated)
Task: {EB2DED19-DD17-4309-8920-AA908F78029D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-27] (Google Inc.)
Task: {F809258D-B5BF-492C-8F59-C33E0DF27D94} - System32\Tasks\Sony Corporation\Sony Home Network Library\SOHLib SOHDms => C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe [2014-01-16] (Sony Corporation)
Task: {F88076AB-5106-4301-A2BB-2B708594C6D3} - System32\Tasks\{5DA476B9-DD39-4576-822D-93295771141A} => pcalua.exe -a C:\windows\IsUninst.exe -c -f"d:\jeux\Heroes II\Uninst.isu"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000Core.job => C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000UA.job => C:\Users\Jm\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-09 12:49 - 2015-03-09 12:49 - 02919936 _____ () C:\Program Files\Alwil Software\Avast5\defs\15030900\algo.dll
2015-03-10 07:27 - 2015-03-10 07:27 - 02920960 _____ () C:\Program Files\Alwil Software\Avast5\defs\15030901\algo.dll
2015-01-29 20:06 - 2015-01-29 20:06 - 38562088 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2011-01-17 15:19 - 2011-09-10 10:38 - 00985088 _____ () C:\Program Files\OpenOffice.org 3\program\libxml2.dll
2009-12-09 02:10 - 2009-03-05 10:54 - 00311296 _____ () C:\windows\SYSTEM32\Rezip.exe
2015-02-19 22:40 - 2015-02-19 22:40 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
AlternateDataStreams: C:\ProgramData\Temp:E1F04E8D

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2071869296-2185399040-3217962726-1000\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: HotKeysCmds => C:\windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\windows\system32\igfxtray.exe
MSCONFIG\startupreg: msnmsgr => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: Persistence => C:\windows\system32\igfxpers.exe

==================== Accounts: =============================

Administrateur (S-1-5-21-2071869296-2185399040-3217962726-500 - Administrator - Disabled)
Invité (S-1-5-21-2071869296-2185399040-3217962726-501 - Limited - Disabled)
Jm (S-1-5-21-2071869296-2185399040-3217962726-1000 - Administrator - Enabled) => C:\Users\Jm

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/10/2015 11:32:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 2d0

Heure de début : 01d05b1b785b94b6

Heure de fin : 0

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport : ae802809-c710-11e4-8562-0024545973d7

Error: (03/10/2015 07:51:17 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : fb0

Heure de début : 01d05afbfce2ae34

Heure de fin : 0

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 07:38:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante iexplore.exe, version : 11.0.9600.17631, horodatage : 0x54b31a70
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18247, horodatage : 0x521ea91c
Code d'exception : 0xc0000374
Décalage d'erreur : 0x000c3873
ID du processus défaillant : 0x2c98
Heure de début de l'application défaillante : 0xiexplore.exe0
Chemin d'accès de l'application défaillante : iexplore.exe1
Chemin d'accès du module défaillant: iexplore.exe2
ID de rapport : iexplore.exe3

Error: (03/08/2015 06:27:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1330

Heure de début : 01d059c4195069ac

Heure de fin : 117

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 06:16:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1dd4

Heure de début : 01d059c171c7fb22

Heure de fin : 162

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 06:05:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1288

Heure de début : 01d059c19f0e556e

Heure de fin : 87

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 08:39:03 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 17c4

Heure de début : 01d05971831a86bc

Heure de fin : 2746

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/08/2015 08:06:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante SpfService.exe, version : 1.3.0.9090, horodatage : 0x4e684be0
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18247, horodatage : 0x521ea91c
Code d'exception : 0xc0000005
Décalage d'erreur : 0x0005d032
ID du processus défaillant : 0x8a0
Heure de début de l'application défaillante : 0xSpfService.exe0
Chemin d'accès de l'application défaillante : SpfService.exe1
Chemin d'accès du module défaillant: SpfService.exe2
ID de rapport : SpfService.exe3

Error: (03/08/2015 07:50:24 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.9600.17631 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : e5c

Heure de début : 01d0596a8d616c90

Heure de fin : 150

Chemin d'accès de l'application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (03/07/2015 08:07:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante iexplore.exe, version : 11.0.9600.17631, horodatage : 0x54b31a70
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18247, horodatage : 0x521ea91c
Code d'exception : 0xc0000005
Décalage d'erreur : 0x000533af
ID du processus défaillant : 0x1ad4
Heure de début de l'application défaillante : 0xiexplore.exe0
Chemin d'accès de l'application défaillante : iexplore.exe1
Chemin d'accès du module défaillant: iexplore.exe2
ID de rapport : iexplore.exe3


System errors:
=============
Error: (03/10/2015 00:44:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service WinDefend.

Error: (03/10/2015 09:39:19 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service Rezip.

Error: (03/10/2015 07:50:03 AM) (Source: Schannel) (EventID: 4120) (User: AUTORITE NT)
Description: L'alerte fatale suivante a été générée : 70. L'état d'erreur interne est 105.

Error: (03/10/2015 03:52:20 AM) (Source: Schannel) (EventID: 4116) (User: AUTORITE NT)
Description: Le certificat reçu à partir du serveur distant ne contient par le nom attendu. Il n'est par conséquent pas possible de déterminer si nous sommes connecté au serveur correct. Le nom de serveur attendu est auth.ff.avast.com. La demande de connexion SSL a échoué. Les données jointes contiennent le certificat du serveur.

Error: (03/10/2015 03:52:20 AM) (Source: Schannel) (EventID: 4120) (User: AUTORITE NT)
Description: L'alerte fatale suivante a été générée : 43. L'état d'erreur interne est 552.

Error: (03/09/2015 09:03:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service RAOxHLsBfm.

Error: (03/09/2015 06:37:58 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger :
cdrom

Error: (03/09/2015 06:37:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service StormWatch Update Service n'a pas pu démarrer en raison de l'erreur :
%%2

Error: (03/09/2015 06:37:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Internet Speed TrackerService n'a pas pu démarrer en raison de l'erreur :
%%2

Error: (03/09/2015 06:37:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Application Manager 3.16.8591351 n'a pas pu démarrer en raison de l'erreur :
%%2


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Atom(TM) CPU N450 @ 1.66GHz
Percentage of memory in use: 88%
Total physical RAM: 1013.3 MB
Available physical RAM: 116.79 MB
Total Pagefile: 2037.3 MB
Available Pagefile: 727.19 MB
Total Virtual: 2047.88 MB
Available Virtual: 1899.57 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:45.54 GB) (Free:12.59 GB) NTFS
Drive d: () (Fixed) (Total:88.41 GB) (Free:73.32 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: DBD6377A)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=45.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=88.4 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
Impeccable

Télécharge et enregistre Zhpcleaner sur ton bureau :

https://nicolascoolman.eu

[*] Fais un clique droit dessus, lance le en tant qu'administrateur !
[*] Accepte le contrat de licence d'utilisation finale (CLUF),
[*] Clique sur "réparation"
[*] Clique sur rapport (normalement le rapport s'affiche)
[*] Enregistre le rapport sur ton bureau
[*] Héberge son rapport de modification qui se trouve sur le Bureau :

https://www.cjoint.com/ à lire => https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers

, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum </gras>


Note :
- Cet outil ne nécessite pas d'installation !
- Le rapport se trouve également dans ce répertoire "%AppData%".
Si problème il y a il existe toujours une solution
~~~~~~ Cs ~~~~~~
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

merci encore et bonne fin de soirée.
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482 >
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

Passe zhpcleaner
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016
>
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020

~ ZHPCleaner v2015.3.10.116 by Nicolas Coolman (09/03/2015)
~ Run by Jm (Administrator) (11/03/2015 07:48:07)
~ Forum : https://nicolascoolman.eu
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scanner
~ Report : C:\Users\Jm\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Jm\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 32-bit Service Pack 1 (Build 7601)


---\\ Service. (2)
[S] TROUVÉ : InternetSpeedTracker_9tService (PUP.MindSpark)
[S] TROUVÉ : StormWatch Update Service (PUP.StormWatch)


---\\ Navigateur internet. (13)
TROUVÉ Proxy: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 ( 1 )
TROUVÉ Proxy: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 ( 1 )
TROUVÉ fichier: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Beamrise.lnk [Bad : C:\Users\Jm\AppData\Local\Beamrise\Application\beamrise.exe] (Hijacker.Beamrise)
TROUVÉ Quicklaunch: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
TROUVÉ Quicklaunch: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
TROUVÉ TaskBar: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
TROUVÉ Desktop: C:\Users\Public\Desktop\Google Chrome.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
TROUVÉ SystemTools: C:\Users\Jm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
TROUVÉ Programs: C:\Users\Jm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
TROUVÉ IE Params: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page [hxxp://www.omniboxes.com/web/?type=ds&ts=1425667801&from=obw&uid=HitachiXHTS5450[...]] (PUP.Omniboxes)
TROUVÉ IE Params: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Search_URL [hxxp://www.omniboxes.com/web/?type=ds&ts=1425667801&from=obw&uid=HitachiXHTS5450[...]] (PUP.Omniboxes)
TROUVÉ IE Params: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Start Page [hxxp://www.omniboxes.com/?type=hp&ts=1425667801&from=obw&uid=HitachiXHTS545016B9[...]] (PUP.Omniboxes)
TROUVÉ IE Params: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Search Page [hxxp://www.omniboxes.com/web/?type=ds&ts=1425667801&from=obw&uid=HitachiXHTS5450[...]] (PUP.Omniboxes)


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (16)
TROUVÉ fichier: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Beamrise.lnk [ - ](Hijacker.Beamrise)
TROUVÉ fichier: C:\windows\Prefetch\INTERNETSPEEDTRACKER (1).EXE-1C5B75DC.pf [ - ](PUP.MindSpark)
TROUVÉ fichier: C:\windows\Prefetch\INTERNETSPEEDTRACKER.EXE-90B6486E.pf [ - ](PUP.MindSpark)
TROUVÉ fichier: C:\windows\Prefetch\INTERNETSPEEDTRACKER.EXE-A8C6AF3A.pf [ - ](PUP.MindSpark)
TROUVÉ fichier: C:\windows\Prefetch\INTERNETSPEEDTRACKERSETUP.EXE-E91108BA.pf [ - ](PUP.MindSpark)
TROUVÉ fichier: C:\windows\Installer\be4fdf1.msi [ - ](PUP.DoctorPC)
TROUVÉ fichier: C:\ProgramData\HeMxUZ\RAOxHLsBfm.exe [Time Lapse Solutions - ZombieNews Service](PUP.TimeLapseSolutions)
TROUVÉ fichier: C:\ProgramData\HeMxUZ\dat\SzRxxz.exe [Time Lapse Solutions - ZombieNews](PUP.TimeLapseSolutions)
TROUVÉ fichier: C:\Users\Jm\AppData\Local\Temp\AVBD.exe [Nosibay - Bubble Dock installer](PUP.Nosibay)
TROUVÉ fichier: C:\Users\Jm\AppData\Local\Temp\app7735\Of_FR-I3-BubbleDock_chk_0_233.exe [Nosibay - Bubble Dock installer](PUP.Nosibay)
TROUVÉ fichier: C:\Users\Jm\AppData\Local\Temp\632015222326\Bubble Dock Uninstall.exe [Nosibay - Bubble Dock Uninstaller](PUP.Nosibay)
TROUVÉ fichier: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Beamrise.lnk [ - ](Hijacker.Beamrise)
TROUVÉ fichier: C:\Users\Jm\AppData\Local\Temp\Bubble Dock.txt [ - ](PUP.BubbleDock)
TROUVÉ fichier: C:\Users\Jm\AppData\Local\Temp\CytiWebUntemp.exe [ - ](PUP.CytiWeb)
TROUVÉ fichier: C:\Users\Jm\AppData\Local\Temp\LBubble Dock.txt [ - ](PUP.BubbleDock)
TROUVÉ fichier: C:\windows\AppPatch\nbin\VC32Loader.dll [Client Connect LTD - Search Protect](PUP.SearchProtect)


---\\ Base de Registres ( Clés, Valeurs, Données ). (84)
TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\InternetSpeedTracker_9tService [C:\PROGRA~1\INTERN~3\bar\1.bin\9tbarsvc.exe (Not File) ] (PUP.MindSpark)
TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\StormWatch Update Service ["C:\Program Files\StormWatch\StormWatchSrv.exe" (Not File) ] (PUP.StormWatch)
TROUVÉ clé: HKLM\SOFTWARE\Clients\StartMenuInternet\Beamrise.FXR3NKGWYDKTHPYULIFC7D4RVI ["C:\Users\Jm\AppData\Local\Beamrise\Application\beamrise.exe"] (Hijacker.Beamrise)
TROUVÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\StormWatch ["C:\Program Files\StormWatch\StormWatchApp.exe"] (PUP.StormWatch)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{00d567a7-288b-452a-86d9-4fa0f9b016c7}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9thttpct.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{07A3B0CA-D7F7-4B0B-923D-CE2443924B9A}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9thtmlmu.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{2d8d602c-3f3a-4e10-8de0-649e53fbd8b3}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tbprtct.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{3bb92c80-a0a8-4fe7-a687-84f0eab37857}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tskin.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{481dd1d9-2619-4136-bead-8766ae46542d}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tskin.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{4e32a64d-a039-4be1-a529-736c30c4dff2}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tbar.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{5e694d07-1b76-414b-a9bc-e9e587d9ea37}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tdatact.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{63e0b5d3-81e0-4fcf-a195-71c7c73e16db}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tskin.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{936cbb2c-016a-4ed4-ab0d-4959192cfd02}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tfeedmg.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{b62fecee-b019-42aa-aefb-9f8d07b22de1}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tdlghk.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{be096679-462a-4ffc-aa06-744a9f2f9982}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\T8HTML.DLL] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{e92307ff-fbe1-4fc0-a578-3e24556c68cf}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9ttpinst.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{eba23a0b-4d36-4a6d-b165-82c666042145}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tmlbtn.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{f296aa45-8bb3-4ad4-a29e-95d1fd51aec2}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tscript.dll] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{00d567a7-288b-452a-86d9-4fa0f9b016c7} [HttpControl Class] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{07A3B0CA-D7F7-4B0B-923D-CE2443924B9A} [InternetSpeedTracker_9t HTML Menu] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{2d8d602c-3f3a-4e10-8de0-649e53fbd8b3} [ProtectorControl Class] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{3bb92c80-a0a8-4fe7-a687-84f0eab37857} [Popup Menu Plugin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{481dd1d9-2619-4136-bead-8766ae46542d} [Skin Settings] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{4e32a64d-a039-4be1-a529-736c30c4dff2} [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{5e694d07-1b76-414b-a9bc-e9e587d9ea37} [DataCtrl Class] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{63e0b5d3-81e0-4fcf-a195-71c7c73e16db} [Pseudo Transparent Plugin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{936cbb2c-016a-4ed4-ab0d-4959192cfd02} [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{b62fecee-b019-42aa-aefb-9f8d07b22de1} [Disable Addon Rebuttal Control] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{be096679-462a-4ffc-aa06-744a9f2f9982} [InternetSpeedTracker_9t HTML] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{e92307ff-fbe1-4fc0-a578-3e24556c68cf} [Internet Speed Tracker Third Party Installer] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{eba23a0b-4d36-4a6d-b165-82c666042145} [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{f296aa45-8bb3-4ad4-a29e-95d1fd51aec2} [] (PUP.MindSpark)
TROUVÉ clé: HKEY_USERS\S-1-5-21-2071869296-2185399040-3217962726-1000\Software\Beamrise [] (Hijacker.Beamrise)
TROUVÉ clé: HKEY_USERS\S-1-5-21-2071869296-2185399040-3217962726-1000\Software\InternetSpeedTracker_9t [] (PUP.MindSpark)
TROUVÉ clé: HKEY_USERS\S-1-5-21-2071869296-2185399040-3217962726-1000\Software\Linkey [] (PUP.LinkeySearch)
TROUVÉ clé: HKCU\Software\Beamrise [] (Hijacker.Beamrise)
TROUVÉ clé: HKCU\Software\InternetSpeedTracker_9t [] (PUP.MindSpark)
TROUVÉ clé: HKCU\Software\Linkey [] (PUP.LinkeySearch)
TROUVÉ clé: HKCU\Software\AppDataLow\Software\InternetSpeedTracker_9t [] (PUP.MindSpark)
TROUVÉ clé: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey [] (PUP.LinkeySearch)
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\omniboxes.com [] (PUP.Omniboxes)
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.omniboxes.com [72] (PUP.Omniboxes)
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com [] (PUP.SpecialSavings)
TROUVÉ clé: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com [6308] (PUP.SpecialSavings)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.FeedManager [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.FeedManager.1 [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.HTMLMenu [InternetSpeedTracker_9t HTML Menu] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.HTMLMenu.1 [InternetSpeedTracker_9t HTML Menu] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.HTMLPanel [InternetSpeedTracker_9t HTML Panel] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.HTMLPanel.1 [InternetSpeedTracker_9t HTML Panel] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.MultipleButton [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.MultipleButton.1 [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.PseudoTransparentPlugin [Pseudo Transparent Plugin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.PseudoTransparentPlugin.1 [Pseudo Transparent Plugin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ScriptButton [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ScriptButton.1 [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.SettingsPlugin [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.SettingsPlugin.1 [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ThirdPartyInstaller [Internet Speed Tracker Third Party Installer] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ThirdPartyInstaller.1 [Internet Speed Tracker Third Party Installer] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ToolbarProtector [ProtectorControl Class] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ToolbarProtector.1 [ProtectorControl Class] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc [Google Update Legacy On Demand] (Adware.Boxore)
TROUVÉ clé: HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc.1.0 [Google Update Legacy On Demand] (Adware.Boxore)
TROUVÉ clé: HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3COMClassService [Update3COMClass] (Adware.Boxore)
TROUVÉ clé: HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3COMClassService.1.0 [Update3COMClass] (Adware.Boxore)
TROUVÉ clé: HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc [SoftwareUpdate Update3Web] (Adware.Boxore)
TROUVÉ clé: HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc.1.0 [SoftwareUpdate Update3Web] (Adware.Boxore)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{07A3B0CA-D7F7-4B0B-923D-CE2443924B9A} [InternetSpeedTracker_9t HTML Menu] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{be096679-462a-4ffc-aa06-744a9f2f9982} [InternetSpeedTracker_9t HTML] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Classes\CLSID\{e92307ff-fbe1-4fc0-a578-3e24556c68cf} [Internet Speed Tracker Third Party Installer] (PUP.MindSpark)
TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Iminent [] (Adware.IMBooster)
TROUVÉ clé: HKLM\SOFTWARE\InternetSpeedTracker_9t [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InternetSpeedTracker_9tbar Uninstall Internet Explorer [Mindspark Interactive Network] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey [] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LucasArts' Star Wars Rebellion [Star Wars Rebellion de LucasArts] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{01907012-88bd-4a1e-9e60-9f4d3e5ffc28} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{481dd1d9-2619-4136-bead-8766ae46542d} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{499a1bf0-aff3-48e8-9333-c4a4567ab59d} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{63ad0951-229a-4f3b-9e96-b4891811a156} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81fda3b2-1023-4131-8055-29ce1560c12a} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{968e8731-8549-4289-ad46-b9a9eac1d302} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\beamrise.exe [C:\Users\Jm\AppData\Local\Beamrise\Application\beamrise.exe] (Hijacker.Beamrise)
TROUVÉ clé: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InternetSpeedTracker_9tbar Uninstall Internet Explorer [Internet Speed Tracker Internet Explorer Toolbar] (PUP.MindSpark)



---\\ Bilan de la réparation
~ Aucune réparation effectuée.
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scannés : 56404
~ Items trouvés : 115
~ Items réparés : 0


End of clean at 08:59:57
===================
ZHPCleaner-[S]-07032015-19_00_00.txt
ZHPCleaner-[S]-07032015-19_45_22.txt
ZHPCleaner-[S]-08032015-13_01_45.txt
ZHPCleaner-[S]-11032015-08_59_57.txt
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
Fais réparer
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

~ ZHPCleaner v2015.3.10.116 by Nicolas Coolman (09/03/2015)
~ Run by Jm (Administrator) (11/03/2015 09:05:20)
~ Forum : https://nicolascoolman.eu
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Réparer
~ Report : C:\Users\Jm\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Jm\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 32-bit Service Pack 1 (Build 7601)


---\\ Service. (2)




---\\ Navigateur internet. (13)
REMPLACÉ Proxy: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 ( 1 )
REMPLACÉ Proxy: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 ( 1 )
DEPLACÉ fichier: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Beamrise.lnk [Bad : C:\Users\Jm\AppData\Local\Beamrise\Application\beamrise.exe] (Hijacker.Beamrise)
REMPLACÉ Quicklaunch: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
REMPLACÉ Quicklaunch: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
REMPLACÉ TaskBar: C:\Users\Jm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
REMPLACÉ Desktop: C:\Users\Public\Desktop\Google Chrome.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
REMPLACÉ SystemTools: C:\Users\Jm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
REMPLACÉ Programs: C:\Users\Jm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [Bad : http://www.omniboxes.com/?type=sc&ts=1425667801&from=obw&uid=HitachiXHTS545016B9A300_100104PB5B03QCEDRTZHX] (Hijacker.Browser)
REMPLACÉ IE Params: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page [hxxp://www.omniboxes.com/web/?type=ds&ts=1425667801&from=obw&uid=HitachiXHTS5450[...]] (PUP.Omniboxes)
REMPLACÉ IE Params: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Default_Search_URL [hxxp://www.omniboxes.com/web/?type=ds&ts=1425667801&from=obw&uid=HitachiXHTS5450[...]] (PUP.Omniboxes)
REMPLACÉ IE Params: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Start Page [hxxp://www.omniboxes.com/?type=hp&ts=1425667801&from=obw&uid=HitachiXHTS545016B9[...]] (PUP.Omniboxes)
REMPLACÉ IE Params: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\\Search Page [hxxp://www.omniboxes.com/web/?type=ds&ts=1425667801&from=obw&uid=HitachiXHTS5450[...]] (PUP.Omniboxes)


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (14)
DEPLACÉ fichier: C:\windows\Prefetch\INTERNETSPEEDTRACKER (1).EXE-1C5B75DC.pf [ - ] (PUP.MindSpark)
DEPLACÉ fichier: C:\windows\Prefetch\INTERNETSPEEDTRACKER.EXE-90B6486E.pf [ - ] (PUP.MindSpark)
DEPLACÉ fichier: C:\windows\Prefetch\INTERNETSPEEDTRACKER.EXE-A8C6AF3A.pf [ - ] (PUP.MindSpark)
DEPLACÉ fichier: C:\windows\Prefetch\INTERNETSPEEDTRACKERSETUP.EXE-E91108BA.pf [ - ] (PUP.MindSpark)
DEPLACÉ fichier: C:\windows\Installer\be4fdf1.msi [ - ] (PUP.DoctorPC)
DEPLACÉ fichier: C:\ProgramData\HeMxUZ\RAOxHLsBfm.exe [Time Lapse Solutions - ZombieNews Service] (PUP.TimeLapseSolutions)
DEPLACÉ fichier****: C:\ProgramData\HeMxUZ\dat\SzRxxz.exe [Time Lapse Solutions - ZombieNews] (PUP.TimeLapseSolutions)
DEPLACÉ fichier: C:\Users\Jm\AppData\Local\Temp\AVBD.exe [Nosibay - Bubble Dock installer] (PUP.Nosibay)
DEPLACÉ fichier: C:\Users\Jm\AppData\Local\Temp\app7735\Of_FR-I3-BubbleDock_chk_0_233.exe [Nosibay - Bubble Dock installer] (PUP.Nosibay)
DEPLACÉ fichier: C:\Users\Jm\AppData\Local\Temp\632015222326\Bubble Dock Uninstall.exe [Nosibay - Bubble Dock Uninstaller] (PUP.Nosibay)
DEPLACÉ fichier: C:\Users\Jm\AppData\Local\Temp\Bubble Dock.txt [ - ] (PUP.BubbleDock)
DEPLACÉ fichier: C:\Users\Jm\AppData\Local\Temp\CytiWebUntemp.exe [ - ] (PUP.CytiWeb)
DEPLACÉ fichier: C:\Users\Jm\AppData\Local\Temp\LBubble Dock.txt [ - ] (PUP.BubbleDock)
DEPLACÉ fichier: C:\windows\AppPatch\nbin\VC32Loader.dll [Client Connect LTD - Search Protect] (PUP.SearchProtect)


---\\ Base de Registres ( Clés, Valeurs, Données ). (77)
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\InternetSpeedTracker_9tService [C:\PROGRA~1\INTERN~3\bar\1.bin\9tbarsvc.exe (Not File) ] (PUP.MindSpark)
SUPPRIMÉ clé^: HKLM\SYSTEM\CurrentControlSet\Services\StormWatch Update Service ["C:\Program Files\StormWatch\StormWatchSrv.exe" (Not File) ] (PUP.StormWatch)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Clients\StartMenuInternet\Beamrise.FXR3NKGWYDKTHPYULIFC7D4RVI ["C:\Users\Jm\AppData\Local\Beamrise\Application\beamrise.exe"] (Hijacker.Beamrise)
SUPPRIMÉ valeur: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\StormWatch ["C:\Program Files\StormWatch\StormWatchApp.exe"] (PUP.StormWatch)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{00d567a7-288b-452a-86d9-4fa0f9b016c7}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9thttpct.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{07A3B0CA-D7F7-4B0B-923D-CE2443924B9A}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9thtmlmu.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{2d8d602c-3f3a-4e10-8de0-649e53fbd8b3}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tbprtct.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{3bb92c80-a0a8-4fe7-a687-84f0eab37857}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tskin.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{481dd1d9-2619-4136-bead-8766ae46542d}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tskin.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{4e32a64d-a039-4be1-a529-736c30c4dff2}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tbar.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{5e694d07-1b76-414b-a9bc-e9e587d9ea37}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tdatact.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{63e0b5d3-81e0-4fcf-a195-71c7c73e16db}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tskin.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{936cbb2c-016a-4ed4-ab0d-4959192cfd02}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tfeedmg.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{b62fecee-b019-42aa-aefb-9f8d07b22de1}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tdlghk.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{be096679-462a-4ffc-aa06-744a9f2f9982}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\T8HTML.DLL] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{e92307ff-fbe1-4fc0-a578-3e24556c68cf}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9ttpinst.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{eba23a0b-4d36-4a6d-b165-82c666042145}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tmlbtn.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{f296aa45-8bb3-4ad4-a29e-95d1fd51aec2}\InprocServer32 [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin\9tscript.dll] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{00d567a7-288b-452a-86d9-4fa0f9b016c7} [HttpControl Class] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{07A3B0CA-D7F7-4B0B-923D-CE2443924B9A} [InternetSpeedTracker_9t HTML Menu] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{2d8d602c-3f3a-4e10-8de0-649e53fbd8b3} [ProtectorControl Class] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{3bb92c80-a0a8-4fe7-a687-84f0eab37857} [Popup Menu Plugin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{481dd1d9-2619-4136-bead-8766ae46542d} [Skin Settings] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{4e32a64d-a039-4be1-a529-736c30c4dff2} [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{5e694d07-1b76-414b-a9bc-e9e587d9ea37} [DataCtrl Class] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{63e0b5d3-81e0-4fcf-a195-71c7c73e16db} [Pseudo Transparent Plugin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{936cbb2c-016a-4ed4-ab0d-4959192cfd02} [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{b62fecee-b019-42aa-aefb-9f8d07b22de1} [Disable Addon Rebuttal Control] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{be096679-462a-4ffc-aa06-744a9f2f9982} [InternetSpeedTracker_9t HTML] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{e92307ff-fbe1-4fc0-a578-3e24556c68cf} [Internet Speed Tracker Third Party Installer] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{eba23a0b-4d36-4a6d-b165-82c666042145} [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\CLSID\{f296aa45-8bb3-4ad4-a29e-95d1fd51aec2} [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2071869296-2185399040-3217962726-1000\Software\Beamrise [] (Hijacker.Beamrise)
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2071869296-2185399040-3217962726-1000\Software\InternetSpeedTracker_9t [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKEY_USERS\S-1-5-21-2071869296-2185399040-3217962726-1000\Software\Linkey [] (PUP.LinkeySearch)
SUPPRIMÉ clé*: HKCU\Software\AppDataLow\Software\InternetSpeedTracker_9t [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey [] (PUP.LinkeySearch)
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\omniboxes.com [] (PUP.Omniboxes)
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.omniboxes.com [72] (PUP.Omniboxes)
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com [] (PUP.SpecialSavings)
SUPPRIMÉ clé*: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com [6308] (PUP.SpecialSavings)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.FeedManager [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.FeedManager.1 [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.HTMLMenu [InternetSpeedTracker_9t HTML Menu] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.HTMLMenu.1 [InternetSpeedTracker_9t HTML Menu] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.HTMLPanel [InternetSpeedTracker_9t HTML Panel] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.HTMLPanel.1 [InternetSpeedTracker_9t HTML Panel] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.MultipleButton [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.MultipleButton.1 [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.PseudoTransparentPlugin [Pseudo Transparent Plugin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.PseudoTransparentPlugin.1 [Pseudo Transparent Plugin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ScriptButton [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ScriptButton.1 [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.SettingsPlugin [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.SettingsPlugin.1 [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ThirdPartyInstaller [Internet Speed Tracker Third Party Installer] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ThirdPartyInstaller.1 [Internet Speed Tracker Third Party Installer] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ToolbarProtector [ProtectorControl Class] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\InternetSpeedTracker_9t.ToolbarProtector.1 [ProtectorControl Class] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc [Google Update Legacy On Demand] (Adware.Boxore)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassSvc.1.0 [Google Update Legacy On Demand] (Adware.Boxore)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3COMClassService [Update3COMClass] (Adware.Boxore)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3COMClassService.1.0 [Update3COMClass] (Adware.Boxore)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc [SoftwareUpdate Update3Web] (Adware.Boxore)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Classes\SoftwareUpdate.Update3WebSvc.1.0 [SoftwareUpdate Update3Web] (Adware.Boxore)
SUPPRIMÉ clé*: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Iminent [] (Adware.IMBooster)
SUPPRIMÉ clé*: HKLM\SOFTWARE\InternetSpeedTracker_9t [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InternetSpeedTracker_9tbar Uninstall Internet Explorer [Mindspark Interactive Network] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey [] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LucasArts' Star Wars Rebellion [Star Wars Rebellion de LucasArts] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{01907012-88bd-4a1e-9e60-9f4d3e5ffc28} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{481dd1d9-2619-4136-bead-8766ae46542d} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{499a1bf0-aff3-48e8-9333-c4a4567ab59d} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{63ad0951-229a-4f3b-9e96-b4891811a156} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81fda3b2-1023-4131-8055-29ce1560c12a} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{968e8731-8549-4289-ad46-b9a9eac1d302} [C:\Program Files\InternetSpeedTracker_9t\bar\1.bin] (PUP.MindSpark)
SUPPRIMÉ clé*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\beamrise.exe [C:\Users\Jm\AppData\Local\Beamrise\Application\beamrise.exe] (Hijacker.Beamrise)



---\\ Bilan de la réparation
~ Réparation réalisée avec succès.
~ Ce navigateur est absent (Opera Software)
~ Le système a été redémarré.


---\\ Statistiques
~ Items scannés : 56340
~ Items trouvés : 0
~ Items réparés : 30


End of clean at 10:28:53
===================
ZHPCleaner-[R]-11032015-10_28_53.txt
ZHPCleaner-[S]-07032015-19_00_00.txt
ZHPCleaner-[S]-07032015-19_45_22.txt
ZHPCleaner-[S]-08032015-13_01_45.txt
ZHPCleaner-[S]-11032015-08_59_57.txt
Messages postés
42808
Date d'inscription
lundi 25 avril 2011
Statut
Contributeur sécurité
Dernière intervention
10 septembre 2020
3 482
Toujours zombienews?
Messages postés
96
Date d'inscription
jeudi 29 août 2013
Statut
Membre
Dernière intervention
21 décembre 2016

Ils ne sont plus là les Zombies quelle galère .
Mille merci et Bonn continuation, heureusement que comment ça marche existe et qui y a des personnes qui donnent leurs temps aux autres .
Merci .