Sujet Précédent Sujet Suivant

Je n'arrive pas a supprimer "better CDCS; Active discount..."

Résolu/Fermé
shiroff45 Messages postés 144 Date d'inscription dimanche 22 mars 2015 Statut Membre Dernière intervention 3 mai 2017 - 28 avril 2015 à 18:22
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 30 avril 2015 à 18:03
Salut!
4 programme se sont installés sur mon pc et j'arrive pas à les virer.
-active discount (me dit de fermer mon navigateur alors que rien n'est ouvert même pas en arrière plan)
-smoothview (je clique sur désinstaller et puis il ne ce passe rien)
-better CDCS (je clique sur désinstaller et puis il ne ce passe rien)
-spacecouaponapp (je clique sur désinstaller et puis il ne ce passe rien)

svp help et quelqu'un pourrait me dire si sa a un rapport avec les innonbrables pubs et fenêtre pop-pub qui s'affiche en permanence malgré le fait que j'ai adblock plus.

merci de votre aide
A voir également:

3 réponses

Réponse 1 / 3
Vapho Messages postés 10 Date d'inscription mardi 28 avril 2015 Statut Membre Dernière intervention 3 mai 2015 1
28 avril 2015 à 18:26
Télécharge ce logiciel, lance un scan et appuie sur nettoyer à la fin du scan
https://toolslib.net/downloads/viewdownload/1-adwcleaner/
0
Réponse 2 / 3
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 658
28 avril 2015 à 18:28
Salut,

Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :

Commence par ceci :

Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= ( d'Xplode )
Télécharge le sur ton bureau ou dossier de téléchargement.
Lance AdwCleaner, clique sur [Scanner].
L'analyse peux durer plusieurs minutes, patiente.
Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer]

Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt


puis :

Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
(et bien prendre le temps de lire afin d'appliquer correctement - tout y est expliqué).
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :
  • FRST.txt
  • Shortcut.txt
  • Additionnal.txt


Envoie, comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et en retour donne les trois liens pjjoint qui mènent à ses rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.


0
Réponse 3 / 3
shiroff45 Messages postés 144 Date d'inscription dimanche 22 mars 2015 Statut Membre Dernière intervention 3 mai 2017 23
29 avril 2015 à 15:37
voila le rapport

# AdwCleaner v4.202 - Rapport créé le 29/04/2015 à 14:38:38
# Mis à jour le 23/04/2015 par Xplode
# Base de données : 2015-04-27.1 [Serveur]
# Système d'exploitation : Windows 8.1 (x64)
# Nom d'utilisateur : Alex - ALEXANDRE
# Exécuté depuis : C:\Users\Alex\Downloads\adwcleaner_4.202.exe
# Option : Scanner
          • [ Services ] *****


Service Trouvé : iSafeKrnlMon
Service Trouvé : winzipersvc
          • [ Fichiers / Dossiers ] *****


Dossier Trouvé : C:\Program Files (x86)\Bench
Dossier Trouvé : C:\Program Files (x86)\Elex-tech
Dossier Trouvé : C:\Program Files (x86)\globalUpdate
Dossier Trouvé : C:\Program Files (x86)\Greener Web
Dossier Trouvé : C:\Program Files (x86)\Mega Browse
Dossier Trouvé : C:\Program Files (x86)\predm
Dossier Trouvé : C:\Program Files (x86)\webget
Dossier Trouvé : C:\Program Files (x86)\WinZipper
Dossier Trouvé : C:\ProgramData\{2135802c-d7f3-0dbb-2135-5802cd7f00b3}
Dossier Trouvé : C:\ProgramData\{47f22d62-129d-ab3a-47f2-22d62129b588}
Dossier Trouvé : C:\ProgramData\8c82f4da00005fd5
Dossier Trouvé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
Dossier Trouvé : C:\ProgramData\Systweak
Dossier Trouvé : C:\ProgramData\WPM
Dossier Trouvé : C:\Users\Alex\AppData\Local\genienext
Dossier Trouvé : C:\Users\Alex\AppData\Local\globalUpdate
Dossier Trouvé : C:\Users\Alex\AppData\Local\lollipop
Dossier Trouvé : C:\Users\Alex\AppData\Local\Mobogenie
Dossier Trouvé : C:\Users\Alex\AppData\Local\StartPoint
Dossier Trouvé : C:\Users\Alex\AppData\Roaming\cacaoweb
Dossier Trouvé : C:\Users\Alex\AppData\Roaming\DigitalSites
Dossier Trouvé : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\vbz2ai8p.default\Extensions\cacaoweb@cacaoweb.org
Dossier Trouvé : C:\Users\Alex\AppData\Roaming\Oxy
Dossier Trouvé : C:\Users\Alex\AppData\Roaming\Systweak
Dossier Trouvé : C:\Users\Alex\AppData\Roaming\WinZipper
Dossier Trouvé : C:\Users\Alex\Documents\Mobogenie
Dossier Trouvé : C:\Users\wangzhisong\AppData\Local\Mobogenie
Dossier Trouvé : C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Systweak
Fichier Trouvé : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\vbz2ai8p.default\Extensions\sweetsearch@gmail.com.xpi
Fichier Trouvé : C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\vbz2ai8p.default\searchplugins\startpointkms.xml
Fichier Trouvé : C:\Users\Alex\daemonprocess.txt
Fichier Trouvé : C:\WINDOWS\System32\log\iSafeKrnlCall.log
Fichier Trouvé : C:\WINDOWS\System32\roboot64.exe
          • [ Tâches planifiées ] *****


Tâche Trouvée : ASP
Tâche Trouvée : Dealply
Tâche Trouvée : Digital Sites
Tâche Trouvée : StartPoint
Tâche Trouvée : StartPoint Updater
          • [ Raccourcis ] *****


Raccourci Infecté : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Raccourci Infecté : C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Raccourci Infecté : C:\Users\Alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Raccourci Infecté : C:\Users\Alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
          • [ Registre ] *****


Clé Trouvée : HKCU\Software\AnyProtect
Clé Trouvée : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Trouvée : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Clé Trouvée : HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Clé Trouvée : HKCU\Software\Boxore
Clé Trouvée : HKCU\Software\cacaoweb
Clé Trouvée : HKCU\Software\Classes\keepmysearch
Clé Trouvée : HKCU\Software\Conduit
Clé Trouvée : HKCU\Software\Escolade
Clé Trouvée : HKCU\Software\GlobalUpdate
Clé Trouvée : HKCU\Software\Local AppWizard-Generated Applications
Clé Trouvée : HKCU\Software\lollipop
Clé Trouvée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Clé Trouvée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Clé Trouvée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Digital Sites
Clé Trouvée : HKCU\Software\Optimizer Pro
Clé Trouvée : HKCU\Software\Softonic
Clé Trouvée : HKCU\Software\systweak
Clé Trouvée : HKCU\Software\UpdateStar
Clé Trouvée : HKCU\Software\V9
Clé Trouvée : [x64] HKCU\Software\AnyProtect
Clé Trouvée : [x64] HKCU\Software\Boxore
Clé Trouvée : [x64] HKCU\Software\cacaoweb
Clé Trouvée : [x64] HKCU\Software\Conduit
Clé Trouvée : [x64] HKCU\Software\Escolade
Clé Trouvée : [x64] HKCU\Software\GlobalUpdate
Clé Trouvée : [x64] HKCU\Software\Local AppWizard-Generated Applications
Clé Trouvée : [x64] HKCU\Software\lollipop
Clé Trouvée : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Clé Trouvée : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{31090377-0740-419E-BEFC-A56E50500D5B}
Clé Trouvée : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}
Clé Trouvée : [x64] HKCU\Software\Optimizer Pro
Clé Trouvée : [x64] HKCU\Software\Softonic
Clé Trouvée : [x64] HKCU\Software\systweak
Clé Trouvée : [x64] HKCU\Software\UpdateStar
Clé Trouvée : [x64] HKCU\Software\V9
Clé Trouvée : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Trouvée : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Clé Trouvée : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Clé Trouvée : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Clé Trouvée : HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Clé Trouvée : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Clé Trouvée : HKLM\SOFTWARE\Bench
Clé Trouvée : HKLM\SOFTWARE\c3257fff-a831-19a9-3d44-01c9932aacb2
Clé Trouvée : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Clé Trouvée : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Clé Trouvée : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Clé Trouvée : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Clé Trouvée : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
Clé Trouvée : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
Clé Trouvée : HKLM\SOFTWARE\Classes\Installer\Features\758F5690DAAD39F40845E0E23C8C5C0B
Clé Trouvée : HKLM\SOFTWARE\Classes\Installer\Products\758F5690DAAD39F40845E0E23C8C5C0B
Clé Trouvée : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
Clé Trouvée : HKLM\SOFTWARE\GlobalUpdate
Clé Trouvée : HKLM\SOFTWARE\hdcode
Clé Trouvée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Clé Trouvée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
Clé Trouvée : HKLM\SOFTWARE\systweak
Clé Trouvée : HKLM\SOFTWARE\V9
Clé Trouvée : HKLM\SOFTWARE\winzipersvc
Clé Trouvée : HKLM\SOFTWARE\Wpm
Clé Trouvée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Wpm
Clé Trouvée : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{31090377-0740-419E-BEFC-A56E50500D5B}
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\254796BF4AC84B64891B61C529A2E23F
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\758F5690DAAD39F40845E0E23C8C5C0B
Valeur Trouvée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [cacaoweb]
          • [ Navigateurs ] *****


-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v36.0.4 (x86 fr)

[vbz2ai8p.default] - Ligne Trouvée : user_pref("browser.search.defaultenginename,S", "WebSearch");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("browser.search.order.1", "WebSearch");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("browser.search.order.1,S", "WebSearch");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("browser.search.searchengine.alias", "istartsurf");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("browser.search.searchengine.iconURL", "hxxp://www.istartsurf.com/web/favicon.ico");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("browser.search.searchengine.name", "istartsurf");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("browser.search.searchengine.url", "hxxp://www.istartsurf.com/web/?type=dspp&q={searchTerms}");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("browser.search.selectedEngine,S", "WebSearch");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.96R4fWvFwqSTEcCM.scode", "(function(){try{if(window.self.location.href.indexOf(\"rTY8qjwHqjC5rjU7rTaGrTgF\")>-1){return;}}catch(e){}try{var d=[[\"trianglecash.com\",\"acebook\",\[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.irmysearch.aflt", "tele_14_11_ie");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzuyCzzyD0DyEtAzyzyzztC0ByCzztAyEzytN0D0Tzu0SzztDyDtN1L2XzutBtFtCzztFyEtFtDtN1L1CzutCyEtDtAtDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyDtA0AyCtD0AtAtDtGtAtBtD0Et[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.irmysearch.cr", "894729779");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.irmysearch.instlRef", "140305_d");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.aflt", "tele_14_11_ie");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzuyCzzyD0DyEtAzyzyzztC0ByCzztAyEzytN0D0Tzu0SzztDyDtN1L2XzutBtFtCzztFyEtFtDtN1L1CzutCyEtDtAtDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyDtA0AyCtD0AtAtDtGtAtBtD0[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.cntry", "FR");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.cr", "894729779");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.dfltLng", "");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.dfltSrch", true);
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.dnsErr", true);
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.excTlbr", false);
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.hdrMd5", "0E185E1FE59F01D62E154410BD97B4C4");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.hmpg", true);
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=tele_14_11_ie&cd=2XzuyEtN2Y1L1QzuyCzzyD0DyEtAzyzyzztC0ByCzztAyEzytN0D0Tzu0SzztDyDtN1L2XzutBtFtCzztFyEtFtDtN1L1CzutCyE[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.id", "685D439981B68349");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.instlDay", "16144");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.instlRef", "140305_d");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.lastB", "hxxp://start.mysearchdial.com/?f=1&a=tele_14_11_ie&cd=2XzuyEtN2Y1L1QzuyCzzyD0DyEtAzyzyzztC0ByCzztAyEzytN0D0Tzu0SzztDyDtN1L2XzutBtFtCzztFyEtFtDtN1L1CzutCyEtD[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.lastVrsnTs", "1.8.29.015:41:16");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=tele_14_11_ie&cd=2XzuyEtN2Y1L1QzuyCzzyD0DyEtAzyzyzztC0ByCzztAyEzytN0D0Tzu0SzztDyDtN1L2XzutBtFtCzztFyEtFtDtN1L1CzutC[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.pnu_base", "{\"newVrsn\":\"90\",\"lastVrsn\":\"90\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\"showSilent\":\"false\",\"msgTs\":0,\"lstMsgTs\":\"0\"}");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.sg", "none");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.tlbrId", "base");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=tele_14_11_ie&cd=2XzuyEtN2Y1L1QzuyCzzyD0DyEtAzyzyzztC0ByCzztAyEzytN0D0Tzu0SzztDyDtN1L2XzutBtFtCzztFyEtFtDtN1L1Czu[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.vrsn", "1.8.29.0");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial.vrsni", "1.8.29.0");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial_i.newTab", false);
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial_i.smplGrp", "none");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.29.015:41:16");
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.n3NR3xcFV.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"txtlnkusaolp00000800\")>-1||url.indexOf(\"s[...]
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.quick_start.enable_search1", false);
[vbz2ai8p.default] - Ligne Trouvée : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

-\\ Google Chrome v42.0.2311.90


-\\ Chromium v


AdwCleaner[R0].txt - [25590 octets] - [10/02/2014 14:40:46]
AdwCleaner[R1].txt - [23650 octets] - [29/04/2015 14:38:38]
AdwCleaner[S0].txt - [23797 octets] - [10/02/2014 14:44:27]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [23772 octets] ##########
0
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 658
29 avril 2015 à 15:53
ok passe à FRST.
0
shiroff45 Messages postés 144 Date d'inscription dimanche 22 mars 2015 Statut Membre Dernière intervention 3 mai 2017 23
29 avril 2015 à 18:01
voila les 3 liens
-addition: https://pjjoint.malekal.com/files.php?id=20150429_o8h5l6e7o13
-shortcut: https://pjjoint.malekal.com/files.php?id=20150429_x13y12y8b8o5

pour l'autre ca marchait pas donc voila:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-04-2015
Ran by Alex (administrator) on ALEXANDRE on 29-04-2015 17:49:25
Running from C:\Users\Alex\Desktop
Loaded Profiles: Alex (Available profiles: UpdatusUser & pascal & Alex)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(blekko) C:\ProgramData\File Bulldog Anti-phishing Domain Advisor\filebulldog_antiphishing.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-08-24] (ASUS)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe [3417984 2012-08-28] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [File Bulldog Anti-phishing Domain Advisor] => C:\ProgramData\File Bulldog Anti-phishing Domain Advisor\filebulldog_antiphishing.exe [223808 2013-02-11] (blekko)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2505247626-3385962783-3350492366-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2505247626-3385962783-3350492366-1004\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31087200 2015-01-23] (Skype Technologies S.A.)
HKU\S-1-5-21-2505247626-3385962783-3350492366-1004\...\MountPoints2: {491ad48d-4cc4-11e4-824f-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-18\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2428704 2015-01-20] (IObit)
Startup: C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Aronchupa - I'm an albatraoz .lnk [2015-04-02]
ShortcutTarget: Aronchupa - I'm an albatraoz .lnk -> C:\ProgramData\{47f22d62-129d-ab3a-47f2-22d62129b588}\Aronchupa - I'm an albatraoz .exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2012-10-23]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll [2012-03-13] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll [2012-03-13] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll [2012-03-13] (ASUS Cloud Corporation.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2505247626-3385962783-3350492366-1004\Software\Microsoft\Internet Explorer\Main,Start Page = about:google
SearchScopes: HKLM-x32 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2505247626-3385962783-3350492366-1004 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://speedial.com/results.php?f=4&q={searchTerms}&a=spd_dsites06_14_20_ff&cd=2XzuyEtN2Y1L1QzuyCzzyD0DyEtAzyzyzztC0ByCzztAyEzytN0D0Tzu0SzzyCyCtN1L2XzutBtFtBtDtFzytFtCtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StBtCyB0EtBtByBtAtG0CtC0A0BtGyBzzzytCtGtB0CtBzztGtC0CyDtC0AtDyEzy0EyDtCtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtAyE0FyEyCyDzytGyCyByEyDtGzzyCzztAtG0B0F0BzztGyBtC0F0CtD0EtDyB0CtB0DtD2Q&cr=1732572186&ir=
SearchScopes: HKU\S-1-5-21-2505247626-3385962783-3350492366-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://speedial.com/results.php?f=4&q={searchTerms}&a=spd_dsites06_14_20_ff&cd=2XzuyEtN2Y1L1QzuyCzzyD0DyEtAzyzyzztC0ByCzztAyEzytN0D0Tzu0SzzyCyCtN1L2XzutBtFtBtDtFzytFtCtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StBtCyB0EtBtByBtAtG0CtC0A0BtGyBzzzytCtGtB0CtBzztGtC0CyDtC0AtDyEzy0EyDtCtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtAyE0FyEyCyDzytGyCyByEyDtGzzyCzztAtG0B0F0BzztGyBtC0F0CtD0EtDyB0CtB0DtD2Q&cr=1732572186&ir=
SearchScopes: HKU\S-1-5-21-2505247626-3385962783-3350492366-1004 -> {6B5EEC90-F6C2-514E-770D-04757387FC31} URL =
SearchScopes: HKU\S-1-5-21-2505247626-3385962783-3350492366-1004 -> {B29F3967-4A3F-4340-BCD3-FF905418E5ED} URL =
SearchScopes: HKU\S-1-5-21-2505247626-3385962783-3350492366-1004 -> {BE6C9632-C5E4-4703-8F45-D7261FAA9B64} URL =
SearchScopes: HKU\S-1-5-21-2505247626-3385962783-3350492366-1004 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL =
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\vbz2ai8p.default
FF Homepage: https://www.google.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-01-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-01-10] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-28] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Extension: DiscountExt - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\vbz2ai8p.default\Extensions\wdcbmwirqsxx@lkappjyizjkpmajtm.net [2015-04-21]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: No Name - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\vbz2ai8p.default\extensions\quick_searchff@gmail.com [Not Found]
FF Extension: No Name - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\vbz2ai8p.default\extensions\sweetsearch@gmail.com.xpi [Not Found]
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default -> https://www.google.fr/webhp?source=search_app&gfe_rd=cr&ei=epedVPrRLoik0AW-pIHwAw&gws_rd=ssl
CHR StartupUrls: Default -> "https://www.google.fr/webhp?source=search_app&gfe_rd=cr&ei=epedVPrRLoik0AW-pIHwAw&gws_rd=ssl"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-26]
CHR Extension: (Google Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-26]
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-26]
CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-26]
CHR Extension: (Adblock Plus) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-03]
CHR Extension: (Google Search) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-26]
CHR Extension: (Google Sheets) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-26]
CHR Extension: (Bookmark Manager) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-15]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-28]
CHR Extension: (Google Wallet) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-26]
CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-26]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2014-11-04] (IObit)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-18] (Microsoft Corporation)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [174112 2014-12-13] (EasyAntiCheat Ltd)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-01-28] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
S3 Origin Client Service; C:\Users\Alex\Desktop\JEUX\Origin\OriginClientService.exe [1930608 2015-03-26] (Electronic Arts)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2015-01-17] (Tunngle.net GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-01-18] (Disc Soft Ltd)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2014-12-24] (REALiX(tm))
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [3345376 2013-10-08] (Intel Corporation)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188384 2012-08-09] (Windows (R) Win 7 DDK provider)
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-29 17:49 - 2015-04-29 17:49 - 00021003 _____ () C:\Users\Alex\Desktop\FRST.txt
2015-04-29 17:46 - 2015-04-29 17:49 - 00000000 ____D () C:\FRST
2015-04-29 17:46 - 2015-04-29 17:46 - 02101248 _____ (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2015-04-29 16:19 - 2015-04-29 16:19 - 00001015 _____ () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-29 14:38 - 2015-04-29 14:38 - 02224640 _____ () C:\Users\Alex\Downloads\adwcleaner_4.202.exe
2015-04-29 14:38 - 2015-04-29 14:38 - 02224640 _____ () C:\Users\Alex\Downloads\adwcleaner_4.202 (1).exe
2015-04-29 14:10 - 2015-04-29 14:10 - 00887832 _____ () C:\Users\Alex\Downloads\JOBS.wma
2015-04-29 14:10 - 2015-04-29 14:10 - 00744408 _____ () C:\Users\Alex\Downloads\01 Piste 1.wma
2015-04-28 18:40 - 2015-04-28 18:40 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-04-28 18:39 - 2015-04-28 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-28 18:39 - 2015-04-28 18:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-04-28 18:39 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-04-28 18:39 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-04-28 18:39 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-04-28 18:38 - 2015-04-28 18:38 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Alex\Downloads\mbam-setup-2.1.6.1022.exe
2015-04-28 18:14 - 2015-04-28 18:14 - 00003212 _____ () C:\WINDOWS\System32\Tasks\{24C14CC7-D6C0-4A0C-A626-CC3650F0AFBD}
2015-04-27 21:33 - 2015-04-27 21:33 - 00113433 _____ () C:\Users\Alex\Downloads\fast-and-furious-7-french-dvdscr-2015-fast-furious-7.torrent
2015-04-27 21:33 - 2015-04-27 21:33 - 00000000 ____D () C:\Users\Alex\Documents\Téléchargements
2015-04-23 15:36 - 2015-04-23 15:36 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-04-23 15:35 - 2015-04-23 15:36 - 00000000 ____D () C:\Program Files\Handbrake
2015-04-23 15:33 - 2015-04-23 15:33 - 00000020 _____ () C:\WINDOWS\capsys184523.log
2015-04-21 19:50 - 2015-04-27 21:33 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\qBittorrent
2015-04-21 19:50 - 2015-04-21 19:50 - 00000000 ____D () C:\Users\Alex\AppData\Local\qBittorrent
2015-04-21 19:50 - 2015-04-21 19:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2015-04-21 19:50 - 2015-04-21 19:50 - 00000000 ____D () C:\Program Files (x86)\qBittorrent
2015-04-21 19:31 - 2015-04-21 14:11 - 00792056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-04-21 19:31 - 2015-04-21 14:11 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-21 19:30 - 2015-04-29 16:20 - 00145176 _____ () C:\WINDOWS\PFRO.log
2015-04-21 19:30 - 2015-04-29 16:20 - 00002156 _____ () C:\WINDOWS\setupact.log
2015-04-21 19:30 - 2015-04-21 19:30 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-04-21 19:29 - 2015-04-21 19:29 - 00000000 ____H () C:\asc_rdflag
2015-04-21 14:11 - 2015-04-21 14:11 - 03678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 02373632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-04-21 14:11 - 2015-04-21 14:11 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-04-21 14:11 - 2015-04-21 14:11 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-04-21 14:11 - 2015-04-21 14:11 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-04-21 14:11 - 2015-04-21 14:11 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 07476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-04-21 14:08 - 2015-04-21 14:08 - 01733952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 01498872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2015-04-21 14:08 - 2015-04-21 14:08 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-04-21 14:08 - 2015-04-21 14:08 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-04-21 14:08 - 2015-04-21 14:08 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-04-21 14:08 - 2015-04-21 14:08 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-04-21 14:07 - 2015-04-21 14:07 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-04-21 14:07 - 2015-04-21 14:07 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-04-21 14:07 - 2015-04-21 14:07 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-04-21 14:06 - 2015-04-21 14:06 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-04-20 14:06 - 2015-04-20 14:16 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\.AltisNewLife
2015-04-15 19:12 - 2015-04-15 19:12 - 00000000 ____D () C:\Users\Alex\AppData\Local\Pipix-3
2015-04-12 10:34 - 2015-04-26 16:51 - 00000000 ____D () C:\Users\Alex\Desktop\worldv
2015-04-11 17:30 - 2015-04-11 17:34 - 00000000 ___SD () C:\WINDOWS\system32\GWX
2015-04-11 17:30 - 2015-04-11 17:30 - 00000000 ___SD () C:\WINDOWS\SysWOW64\GWX
2015-04-11 17:10 - 2015-04-28 17:27 - 00000020 _____ () C:\Users\Alex\AppData\Roaming\appdataFr3.bin
2015-04-11 17:02 - 2015-04-28 19:33 - 00000000 ____D () C:\Program Files (x86)\Better CDCS
2015-04-11 17:01 - 2015-04-28 19:33 - 00000000 ____D () C:\Program Files (x86)\ActiveDiscount
2015-04-11 17:01 - 2015-04-11 17:02 - 00000000 ____D () C:\ProgramData\16200254889633094879
2015-04-06 20:08 - 2015-04-06 20:08 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-04-06 20:08 - 2015-04-06 20:08 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-04-04 13:23 - 2015-04-04 13:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-04-04 13:23 - 2015-04-04 13:23 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-04-04 10:45 - 2015-04-04 10:45 - 00000000 ____D () C:\Users\Alex\AppData\Local\Razer_Inc
2015-04-04 10:44 - 2015-04-04 10:44 - 00000000 ____D () C:\Users\Alex\Documents\Razer
2015-04-04 10:41 - 2015-04-04 10:41 - 00000000 ____D () C:\Users\Alex\AppData\Local\Razer
2015-04-04 10:41 - 2015-04-04 10:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-04-04 10:40 - 2015-04-04 10:40 - 00000000 ____D () C:\ProgramData\Razer
2015-04-04 10:40 - 2015-04-04 10:40 - 00000000 ____D () C:\Program Files (x86)\Razer
2015-04-02 14:32 - 2015-03-11 04:38 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-04-02 14:32 - 2015-03-11 00:08 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-04-02 14:32 - 2015-03-11 00:08 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-04-02 14:32 - 2015-03-11 00:08 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-04-02 14:32 - 2015-03-11 00:08 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-04-02 14:32 - 2015-03-11 00:08 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-04-02 14:32 - 2015-03-11 00:08 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-04-02 13:25 - 2015-04-04 20:12 - 00000000 ____D () C:\Users\Alex\AppData\Local\Arma 3
2015-04-02 13:25 - 2015-04-02 13:30 - 00000000 ____D () C:\Users\Alex\Documents\Arma 3
2015-04-02 13:25 - 2015-04-02 13:25 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2015-04-02 13:24 - 2015-04-02 14:07 - 00000000 ____D () C:\Users\Alex\AppData\Local\Arma 3 Launcher
2015-04-02 13:24 - 2015-04-02 13:24 - 00000000 ____D () C:\Users\Alex\AppData\Local\Bohemia_Interactive
2015-03-30 15:28 - 2015-03-30 15:28 - 00044296 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-29 17:49 - 2015-01-28 21:45 - 01950539 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-29 17:43 - 2013-05-05 18:31 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-04-29 17:19 - 2015-02-04 11:14 - 00001096 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-29 17:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-04-29 16:36 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-04-29 16:34 - 2012-12-22 11:21 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2505247626-3385962783-3350492366-1004
2015-04-29 16:33 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-04-29 16:23 - 2014-10-07 18:18 - 00000000 ____D () C:\Users\Alex\AppData\Local\LogMeIn Hamachi
2015-04-29 16:21 - 2015-02-04 11:14 - 00001092 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-29 16:21 - 2014-10-06 17:05 - 00000000 __RDO () C:\Users\Alex\OneDrive
2015-04-29 16:21 - 2012-12-22 11:15 - 00000401 _____ () C:\Users\Alex\AppData\Roaming\sp_data.sys
2015-04-29 16:20 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-29 16:19 - 2015-02-04 18:28 - 00000000 ____D () C:\WINDOWS\system32\log
2015-04-29 16:19 - 2014-12-26 19:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-29 16:19 - 2014-10-05 21:28 - 00000000 ____D () C:\Users\Alex
2015-04-29 16:19 - 2014-02-10 14:40 - 00000000 ____D () C:\AdwCleaner
2015-04-29 16:19 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-04-29 12:51 - 2014-10-07 13:08 - 00003936 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ED30CD3A-06E7-4F5E-AEE6-CEF5CD771953}
2015-04-28 20:53 - 2013-03-06 19:50 - 00000000 ___RD () C:\Users\Alex\Desktop\logiciels
2015-04-28 19:33 - 2015-02-26 19:43 - 00000260 _____ () C:\WINDOWS\Tasks\ASC8_SkipUac_Alex.job
2015-04-28 19:33 - 2015-02-05 18:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-28 18:39 - 2014-02-10 14:36 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-27 21:59 - 2012-12-25 16:12 - 08209920 ___SH () C:\Users\Alex\Desktop\Thumbs.db
2015-04-27 21:41 - 2013-05-30 20:43 - 01107968 ___SH () C:\Users\Alex\Downloads\Thumbs.db
2015-04-27 21:41 - 2013-02-17 14:08 - 00000000 ____D () C:\Users\Alex\Desktop\musique
2015-04-26 19:50 - 2012-12-26 12:37 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Skype
2015-04-26 17:36 - 2012-12-25 14:40 - 00000000 ____D () C:\Users\Alex\AppData\Local\Adobe
2015-04-26 17:36 - 2012-12-22 11:14 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Adobe
2015-04-26 16:47 - 2015-02-04 11:45 - 00001456 _____ () C:\Users\Alex\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2015-04-26 11:07 - 2014-10-29 21:59 - 00000000 ____D () C:\ProgramData\ProductData
2015-04-25 15:53 - 2013-06-19 18:09 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-24 12:05 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-04-23 15:45 - 2014-10-30 23:50 - 00000079 _____ () C:\Users\Alex\Desktop\rappel.txt
2015-04-23 15:38 - 2015-03-15 12:30 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\HandBrake
2015-04-23 15:36 - 2015-03-15 12:29 - 00000838 _____ () C:\Users\UpdatusUser\Desktop\Handbrake.lnk
2015-04-23 15:36 - 2015-03-15 12:29 - 00000838 _____ () C:\Users\pascal\Desktop\Handbrake.lnk
2015-04-21 19:49 - 2014-11-14 20:14 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\uTorrent
2015-04-21 19:43 - 2014-04-13 10:38 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2015-04-21 19:41 - 2012-10-23 05:35 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-21 19:38 - 2014-02-24 21:26 - 00000000 ____D () C:\ProgramData\SketchUp
2015-04-21 19:38 - 2014-02-24 21:26 - 00000000 ____D () C:\Program Files (x86)\SketchUp
2015-04-21 19:34 - 2013-02-10 19:22 - 00000000 ____D () C:\Users\Alex\Desktop\JEUX
2015-04-21 19:29 - 2014-11-06 20:29 - 00032768 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2015-04-21 19:29 - 2014-10-29 22:33 - 83771392 _____ () C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2015-04-21 19:29 - 2014-10-29 22:33 - 00884736 _____ () C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2015-04-21 19:29 - 2014-10-29 22:33 - 00069632 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak
2015-04-21 14:11 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-04-19 11:39 - 2013-09-13 08:20 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\.minecraft
2015-04-18 10:36 - 2014-03-18 12:02 - 00005430 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-04-18 10:36 - 2014-03-18 11:26 - 01689508 _____ () C:\WINDOWS\system32\perfh00C.dat
2015-04-18 10:36 - 2014-03-18 11:26 - 00433396 _____ () C:\WINDOWS\system32\perfc00C.dat
2015-04-18 10:34 - 2013-06-08 09:37 - 00000000 ____D () C:\Users\Alex\Desktop\doccument texte
2015-04-15 19:36 - 2015-03-09 13:40 - 00000000 ____D () C:\Users\Alex\AppData\Local\CrashDumps
2015-04-14 18:43 - 2013-05-05 18:31 - 00003890 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-04-14 10:17 - 2014-02-10 14:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-13 16:39 - 2014-03-16 02:55 - 00000000 ____D () C:\Users\Alex\AppData\Local\Battle.net
2015-04-13 15:50 - 2014-06-16 16:49 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2015-04-13 15:47 - 2014-06-16 16:38 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-04 19:05 - 2014-07-22 20:29 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\vlc
2015-04-02 16:24 - 2014-12-12 23:07 - 00000000 ____D () C:\WINDOWS\system32\appraiser
2015-04-02 16:24 - 2014-07-13 03:23 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2015-04-02 16:17 - 2014-06-20 17:55 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2015-04-02 13:50 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\LiveKernelReports
2015-04-01 21:31 - 2013-11-21 19:15 - 00000000 ____D () C:\ProgramData\Package Cache
2015-04-01 18:32 - 2014-04-20 16:49 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

==================== Files in the root of some directories =======

2015-04-11 17:10 - 2015-04-28 17:27 - 0000020 _____ () C:\Users\Alex\AppData\Roaming\appdataFr3.bin
2013-01-27 16:05 - 2013-01-27 16:05 - 0000021 _____ () C:\Users\Alex\AppData\Roaming\my_intel.sys
2015-02-06 18:42 - 2015-02-06 18:48 - 0000156 _____ () C:\Users\Alex\AppData\Roaming\RobotProgPrefs
2013-12-11 13:06 - 2014-03-13 16:21 - 0045270 _____ () C:\Users\Alex\AppData\Roaming\room_v3.dat
2012-12-22 11:15 - 2015-04-29 16:21 - 0000401 _____ () C:\Users\Alex\AppData\Roaming\sp_data.sys
2013-06-24 18:32 - 2013-06-24 18:32 - 0041472 ___SH () C:\Users\Alex\AppData\Roaming\Thumbs.db
2014-03-15 16:41 - 2014-03-15 16:41 - 0000044 _____ () C:\Users\Alex\AppData\Roaming\WB.CFG
2015-02-04 11:45 - 2015-04-26 16:47 - 0001456 _____ () C:\Users\Alex\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2013-02-09 17:42 - 2014-10-02 20:35 - 0007168 _____ () C:\Users\Alex\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-08 11:38 - 2014-11-08 11:38 - 0628448 _____ (CMI Limited) C:\Users\Alex\AppData\Local\nsx7F0C.tmp
2014-03-12 23:03 - 2014-01-11 23:03 - 0000032 ____R () C:\ProgramData\hash.dat
2012-08-17 02:52 - 2012-07-30 08:03 - 0000217 _____ () C:\ProgramData\SetStretch.cmd
2012-08-17 02:52 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe

Files to move or delete:
====================
C:\Users\Alex\worldpainter_64_1.7.1.exe
C:\Users\Alex\worldpainter_64_1.9.1.exe
C:\Users\Alex\worldpainter_64_1.9.2.exe
C:\ProgramData\hash.dat
C:\ProgramData\SetStretch.exe


Some content of TEMP:
====================
C:\Users\Alex\AppData\Local\Temp\jansi-64-git-Bukkit-33d5de3-2000850407057554278.dll
C:\Users\Alex\AppData\Local\Temp\jansi-64-git-Bukkit-33d5de3-2138203192393643874.dll
C:\Users\Alex\AppData\Local\Temp\jansi-64-git-Bukkit-33d5de3-6565917113597905315.dll
C:\Users\Alex\AppData\Local\Temp\Quarantine.exe
C:\Users\Alex\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-29 16:34

==================== End Of Log ============================
0
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 658
29 avril 2015 à 18:17
Envoie FRST.txt sur pjjoint et donne le lien du rapport ici.
0
shiroff45 Messages postés 144 Date d'inscription dimanche 22 mars 2015 Statut Membre Dernière intervention 3 mai 2017 23
30 avril 2015 à 17:58
oui mais quand je le met sur pjjjoint et que je fait envoyer sa me fou une page blanche au lieu de donner le lien
0
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 658
30 avril 2015 à 18:03
envoie les rapports par email : spamhere-@wanadoo.fr
donne ton speudo dans le mail que je sache à quel sujet ton mail correspond.
0

Discussions similaires

REDMI le message n'a pas été envoyé car le service n'est pas
Eric -
FalkenHarlais -

4 réponses
Impossible de supprimer un message sur Instagram (iphone)
CanDeer -
Iphoneuser -

10 réponses
Supprime sur snap mais comment être re ajouté
Nini -
Hirao -

10 réponses