Sujet Précédent Sujet Suivant

Supprimer Web Shield, GameDesktop et Any Protect

Résolu/Fermé
Emyprbl - Modifié par Malekal_morte- le 4/06/2015 à 10:15
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 4 juin 2015 à 14:16
Bonjour,

Depuis plusieurs jours, j'essaie de désinstaller Web Shield de mon PC en vain.
Quand je tente de le désinstaller via le panneau de configuration, rien ne se passe, de même par CCleaner.

Par ailleurs, je ne sais pas si ça vient de là, mais à chaque redémarrage de mon PC, Infonaut, GameDesktop et Any Protect se réinstallent. J'ai beau les retirer à chaque fois et faire un nettoyage CCleaner ou ADWcleaner, c'est toujours la même chose.

Si quelqu'un pouvait m'aider, ça serait top, parce que là, entre les pubs qui s'ouvrent, le pc qui rame à fond, et les pages internet qui se ferment sans raison, j'ai ma dose.

Merci à quiconque m'aidera !


A voir également:

5 réponses

Réponse 1 / 5
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 627
4 juin 2015 à 10:15
Salut,

Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :

Commence par ceci :

Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= ( d'Xplode )
Télécharge le sur ton bureau ou dossier de téléchargement.
Lance AdwCleaner, clique sur [Scanner].
L'analyse peux durer plusieurs minutes, patiente.
Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer]

Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt


puis :

Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
(et bien prendre le temps de lire afin d'appliquer correctement - tout y est expliqué).
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :
  • FRST.txt
  • Shortcut.txt
  • Additionnal.txt


Envoie, comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et en retour donne les trois liens pjjoint qui mènent à ses rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.

0
Emyprbl
4 juin 2015 à 10:42
Tout d'abord, merci de m'avoir répondu aussi vite. Alors, voici le rapport ADWcleaner (je ne sais pas si ça joue mais je ne l'ai pas réinstallé, je l'avais déjà)

# AdwCleaner v3.202 - Rapport créé le 04/06/2015 à 10:20:12
# Mis à jour le 23/04/2014 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Kévin.G - KÉVING-PC
# Exécuté depuis : C:\Users\Kévin.G\Downloads\adwcleaner (1).exe
# Option : Nettoyer
          • [ Services ] *****
          • [ Fichiers / Dossiers ] *****


Dossier Supprimé : C:\Program Files (x86)\Boxore
Dossier Supprimé : C:\Program Files (x86)\predm
Dossier Supprimé : C:\Program Files (x86)\SearchProtect
Dossier Supprimé : C:\Users\Kévin.G\AppData\Local\Boxore
Dossier Supprimé : C:\Users\Kévin.G\AppData\Local\SearchProtect
Dossier Supprimé : C:\Users\Kévin.G\AppData\Roaming\AnyProtectEx
Dossier Supprimé : C:\Users\Kévin.G\AppData\Roaming\cacaoweb
Dossier Supprimé : C:\Users\Kévin.G\AppData\Roaming\Nosibay
Dossier Supprimé : C:\Users\Kévin.G\Documents\Optimizer Pro
Dossier Supprimé : C:\Program Files (x86)\Software
Fichier Supprimé : C:\Users\KVIN~1.G\AppData\Local\Temp\Uninstall.exe
Fichier Supprimé : C:\Users\Kévin.G\Desktop\cacaoweb.exe
Fichier Supprimé : C:\Windows\Tasks\APSnotifierPP1.job
Fichier Supprimé : C:\Windows\System32\Tasks\APSnotifierPP1
Fichier Supprimé : C:\Windows\Tasks\APSnotifierPP2.job
Fichier Supprimé : C:\Windows\System32\Tasks\APSnotifierPP2
Fichier Supprimé : C:\Windows\Tasks\APSnotifierPP3.job
Fichier Supprimé : C:\Windows\System32\Tasks\APSnotifierPP3
          • [ Raccourcis ] *****
          • [ Registre ] *****


Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [cacaoweb]
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Clé Supprimée : HKCU\Software\AnyProtect
Clé Supprimée : HKCU\Software\Boxore
Clé Supprimée : HKCU\Software\cacaoweb
Clé Supprimée : HKCU\Software\Nosibay
Clé Supprimée : HKCU\Software\Optimizer Pro
Clé Supprimée : HKCU\Software\Tutorials
Clé Supprimée : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKCU\Software\AppDataLow\Software\Crossrider
Clé Supprimée : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Clé Supprimée : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Clé Supprimée : HKLM\Software\Boxore
Clé Supprimée : HKLM\Software\SearchProtect
Clé Supprimée : HKLM\Software\Tutorials
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Donnée Supprimée : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll
Donnée Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll
          • [ Navigateurs ] *****


-\\ Internet Explorer v11.0.9600.17801


-\\ Google Chrome v43.0.2357.81

[ Fichier : C:\Users\Kévin.G\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Supprimée [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3330124&octid=EB_ORIGINAL_CTID&ISID=M25671EAF-F642-4865-BBC0-084E3A869FA2&SearchSource=58&CUI=&UM=8&UP=SP89B80C90-391A-4322-A7FD-FC5F8237843A&D=052815&q={searchTerms}&SSPV=


AdwCleaner[R0].txt - [13820 octets] - [06/03/2014 12:05:47]
AdwCleaner[R1].txt - [15679 octets] - [25/04/2014 08:59:24]
AdwCleaner[R2].txt - [5503 octets] - [17/05/2015 16:30:47]
AdwCleaner[R3].txt - [4872 octets] - [04/06/2015 09:42:23]
AdwCleaner[S0].txt - [13216 octets] - [06/03/2014 12:06:51]
AdwCleaner[S1].txt - [14227 octets] - [25/04/2014 09:03:55]
AdwCleaner[S2].txt - [4248 octets] - [17/05/2015 16:32:06]
AdwCleaner[S3].txt - [4730 octets] - [04/06/2015 10:20:12]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [4790 octets] ##########


Et voici les trois rapports FRST

FRST : http://pjjoint.malekal.com/files.php?id=20150604_r13y8v5h15g7
Shortcut : http://pjjoint.malekal.com/files.php?id=20150604_f13c1511j5d10
Addition : http://pjjoint.malekal.com/files.php?id=20150604_c12d5z5n11f9

Voilà, en espérant avoir tout bien fait !
0
Réponse 2 / 5
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 627
Modifié par Malekal_morte- le 4/06/2015 à 10:53
Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix

Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :

Task: {0194E14C-43DF-4B3B-8D5C-E6610D72AB41} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-6 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-1-6.exe <==== ATTENTION
Task: {1239A773-3AF8-4065-8FFE-A854CE0FC5FE} - System32\Tasks\SuperClick Auto Updater 1.10.0.16 Core => C:\Program Files (x86)\SuperClick_1.10.0.16\Update\SuperClickAutoUpdateClient.exe [2015-05-13] (SuperClick)
Task: {1265F314-1C80-4042-BED9-51F865EECD7F} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-7 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-7.exe <==== ATTENTION
Task: {127C7992-D9CD-486E-975E-76C6EE4212C7} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-7 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-1-7.exe <==== ATTENTION
Task: {3D21ABE3-6050-498E-A51B-B949B17CB603} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7.exe <==== ATTENTION
Task: {426D9FCA-0B9E-43ED-8C04-78D0E01D8747} - \APSnotifierPP3 No Task File <==== ATTENTION
Task: {596747C7-96F7-41BE-B221-B429369B62B2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {59B5F985-B406-43D2-9AD7-732B3DB97E27} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-5 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-5.exe <==== ATTENTION
Task: {5B4305A1-D3EA-4551-A14A-3A53D3BC7618} - System32\Tasks\{6D0E0B0A-3AD7-402E-B7DB-4DA4CB6A2CEF} => pcalua.exe -a C:\ProgramData\WebShield\uninstall.exe -c /kb=y /ic=1
Task: {5E4EF5FC-E3EE-4962-A0C8-9265BAFE9A04} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7.exe <==== ATTENTION
Task: {62AC913B-A7B0-4A9A-A6C2-A4DB32887650} - System32\Tasks\Selection Tools Update => C:\Users\Kévin.G\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe
Task: {7F5C570E-0363-4B92-AE06-57718D4D41D8} - System32\Tasks\{1FAAE5E1-F039-4E9A-AD2D-27BFC2F4B4C7} => pcalua.exe -a C:\Users\Kévin.G\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=tugs <==== ATTENTION
Task: {814F4134-BAB4-4B9F-AE93-6EC3F5FF4C91} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION
Task: {91621A1F-73AB-46D1-89AF-0AE90BB70F6C} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Kévin.G\AppData\Local\SmartWeb\SmartWebHelper.exe [2015-02-17] (SoftBrain Technologies Ltd.) <==== ATTENTION
Task: {9DA0F6FD-CB21-4545-BB96-682F801D4A72} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6.exe <==== ATTENTION
Task: {A365E26F-7816-4123-BA29-9764731260F5} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-3 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-3.exe <==== ATTENTION
Task: {BE3D899E-D0D8-45DB-9F46-DFDA0F1A2BCC} - \MySearchDial No Task File <==== ATTENTION
Task: {C145CE28-70E7-41DA-BC62-E1478110BE99} - \APSnotifierPP1 No Task File <==== ATTENTION
Task: {C6EFD369-B25B-4A73-B46A-F5FFC34603FC} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5.exe <==== ATTENTION
Task: {D16217DA-A486-4EE3-976F-77B9E06067C0} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3.exe <==== ATTENTION
Task: {D797600F-0F36-411A-8253-73AA3D717DBB} - System32\Tasks\NetEngine => C:\ProgramData\NetEngine\bin\D10\netengine.exe [2015-05-15] () <==== ATTENTION
Task: {DB34F510-C704-465F-948F-B105A372219E} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6.exe <==== ATTENTION
Task: {DD6D1777-9B17-4AF7-AFDD-3FBDA784A504} - \APSnotifierPP2 No Task File <==== ATTENTION
Task: {E1D993B1-DF33-4813-94CE-51090B878736} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-6 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-6.exe <==== ATTENTION
Task: {EBF5886E-967A-411D-B854-3C91783DB943} - \SomotoUpdateCheckerAutoStart No Task File <==== ATTENTION
Task: C:\Windows\Tasks\kb9O6sJLaqlw16Pc.job => C:\Users\Kýÿvin.G\AppData\Roaming\kb9O6sJLaqlw16Pc.exe <==== ATTENTION
Task: C:\Windows\Tasks\ppohlOMMW9yd9VxoaVmiXndc3.job => C:\Users\Kýÿvin.G\AppData\Roaming\ppohlOMMW9yd9VxoaVmiXndc3.exe <==== ATTENTION
HKLM-x32\...\Run: [gmsd_fr_535] => [X]
HKLM-x32\...\Run: [gmsd_fr_543] => [X]
HKLM-x32\...\Run: [gmsd_fr_579] => [X]
HKLM-x32\...\Run: [gmsd_fr_596] => [X]
HKLM-x32\...\Run: [gmsd_fr_610] => [X]
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe ()
Startup: C:\Users\Kévin.G\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-05-28]
ShortcutTarget: SmartWeb.lnk -> C:\Users\Kévin.G\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
HKLM\...\Run: [3D BubbleSound] => C:\Program Files\BubbleSound\3D BubbleSound.exe
R2 rivupesi; C:\Users\Kévin.G\AppData\Roaming\A08A6300-1431868244-81E0-25C5-BCAEC5679B85\hnse2BA3.tmp [365568 2015-05-17] () [File not signed]
R2 rZbhSeZqhwp; C:\ProgramData\HCcTpT\rZbhSeZqhwp.exe [2731512 2015-05-15] (Irrational Number Applications)
R2 scsvc_1.10.0.16; C:\Program Files (x86)\SuperClick_1.10.0.16\Service\scsvc.exe [278616 2015-05-13] (SuperClick)
R2 Update Edu App; C:\Program Files (x86)\Edu App\updateEduApp.exe [463080 2015-06-04] ()
R2 Util Edu App; C:\Program Files (x86)\Edu App\bin\utilEduApp.exe [463080 2015-06-04] ()
2015-06-04 09:53 - 2015-06-04 09:53 - 00004182 _____ C:\Windows\System32\Tasks\SuperClick Auto Updater 1.10.0.16 Pending Update
2015-06-04 09:52 - 2015-06-04 09:53 - 00000000 ____D C:\Program Files (x86)\SuperClick_1.10.0.16
2015-06-04 09:52 - 2015-06-04 09:52 - 00004170 _____ C:\Windows\System32\Tasks\SuperClick Auto Updater 1.10.0.16 Core
2015-06-04 09:52 - 2015-06-04 09:52 - 00000000 ____D C:\Program Files (x86)\predm
2015-06-04 09:33 - 2015-06-04 09:33 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsi4413.tmp
2015-06-01 18:48 - 2015-06-01 05:39 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{eb01aed1-bba3-4e72-8323-a77bb027b1d4}Gw64.sys
2015-05-30 10:52 - 2015-05-30 10:52 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsd19F8.tmp
2015-05-29 18:58 - 2015-05-28 23:45 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{36ed28a4-ac0a-4653-91ff-10beb4246550}Gw64.sys
2015-05-28 11:53 - 2015-05-28 11:53 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsiB87.tmp
2015-05-28 11:43 - 2015-05-27 21:55 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{848705a5-8a27-403e-9b59-732d0608bcbc}Gw64.sys
2015-05-28 11:14 - 2015-05-28 11:15 - 05154304 _____ C:\Users\Kévin.G\Downloads\WindowsDefender.msi
2015-05-28 10:32 - 2015-06-04 09:48 - 00000000 ____D C:\Program Files (x86)\Edu App
2015-05-28 10:32 - 2015-05-28 10:32 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsc4FF5.tmp
2015-05-28 10:01 - 2015-06-04 09:55 - 00320540 _____ C:\Windows\WindowsUpdate.log
2015-05-28 09:58 - 2015-06-04 09:46 - 00006998 _____ C:\Windows\PFRO.log
2015-05-28 09:58 - 2015-06-04 09:46 - 00000504 _____ C:\Windows\setupact.log
2015-05-28 09:58 - 2015-05-28 09:58 - 00000000 _____ C:\Windows\setuperr.log
2015-05-28 09:44 - 2015-05-28 10:22 - 00002244 _____ C:\Users\Kévin.G\Desktop\Navigateur Internet.lnk
2015-05-28 09:29 - 2015-05-28 09:29 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nssAF50.tmp
2015-05-28 09:28 - 2015-05-28 09:28 - 00003758 _____ C:\Windows\System32\Tasks\Selection Tools Update
2015-05-28 09:05 - 2015-05-28 09:06 - 00000000 ____D C:\Users\Kévin.G\AppData\Local\avabvbxvh
2015-05-27 22:00 - 2015-05-27 22:00 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nst2A64.tmp
2015-05-27 20:03 - 2015-05-27 20:03 - 00008550 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-6
2015-05-27 20:03 - 2015-05-27 20:03 - 00008216 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-7
2015-05-27 20:03 - 2015-05-27 20:03 - 00006508 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-7
2015-05-27 20:03 - 2015-05-27 20:03 - 00006170 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-6
2015-05-27 20:03 - 2015-05-27 20:03 - 00005480 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-5
2015-05-27 20:03 - 2015-05-27 20:03 - 00001030 _____ C:\Windows\Tasks\ppohlOMMW9yd9VxoaVmiXndc3.job
2015-05-27 20:02 - 2015-05-27 20:02 - 00007528 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-3
2015-05-27 19:25 - 2015-05-27 08:40 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{848705a5-8a27-403e-9b59-732d0608bcbc}w64.sys
2015-05-23 09:48 - 2015-05-23 00:40 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{6dd55e9a-3d06-4d70-b5e7-05fc3e0a3d66}w64.sys
2015-05-23 08:55 - 2015-05-23 08:55 - 00515888 _____ C:\Users\Kévin.G\Downloads\cacaoweb (6).exe
2015-05-23 08:47 - 2015-05-22 11:52 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{3f1219df-4a4d-40a3-9537-f2a95f4016b3}w64.sys
2015-05-21 20:11 - 2015-05-21 20:11 - 00000000 ____D C:\ProgramData\Evdriooihur
2015-05-21 20:09 - 2015-05-21 09:38 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{3f1219df-4a4d-40a3-9537-f2a95f4016b3}Gw64.sys
2015-05-18 12:02 - 2015-05-18 12:02 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsiC224.tmp
2015-05-18 12:01 - 2015-05-18 12:01 - 00000000 ____D C:\ProgramData\a9aaa70c00005ccb
2015-05-17 17:13 - 2015-05-17 17:13 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsz2F3F.tmp
2015-05-17 17:12 - 2015-05-18 12:09 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro 3.91
2015-05-17 17:08 - 2015-05-17 17:08 - 00000000 _____ C:\Windows\SysWOW64\Number of results
2015-05-17 15:52 - 2015-05-17 15:52 - 00000000 ____D C:\ProgramData\9d6464ee0000438b
2015-05-17 15:51 - 2015-05-17 15:51 - 00005480 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5
2015-05-17 15:51 - 2015-05-17 15:51 - 00001012 _____ C:\Windows\Tasks\kb9O6sJLaqlw16Pc.job
2015-05-17 15:50 - 2015-05-17 15:50 - 00008550 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6
2015-05-17 15:50 - 2015-05-17 15:50 - 00008216 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7
2015-05-17 15:50 - 2015-05-17 15:50 - 00007528 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3
2015-05-17 15:50 - 2015-05-17 15:50 - 00006508 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7
2015-05-17 15:50 - 2015-05-17 15:50 - 00006170 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6
2015-05-17 15:50 - 2015-05-17 15:50 - 00000000 ____D C:\Users\Kévin.G\AppData\Local\globalUpdate
2015-05-17 15:50 - 2015-05-17 15:50 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-05-17 15:49 - 2015-05-17 01:54 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{e2590817-40ca-4d03-8e1f-67fd8517bae9}Gw64.sys
2015-05-17 15:47 - 2015-05-17 15:47 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsx715A.tmp
2015-05-17 15:46 - 2015-05-28 09:34 - 00001868 _____ C:\Windows\SysWOW64\${LOGFILE}
2015-05-17 15:39 - 2015-05-17 15:39 - 00003106 _____ C:\Windows\System32\Tasks\{6D0E0B0A-3AD7-402E-B7DB-4DA4CB6A2CEF}
2015-05-17 15:37 - 2015-05-17 16:21 - 00000000 ____D C:\Program Files (x86)\GUPlayer
2015-05-17 15:23 - 2015-05-17 15:23 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsj83F3.tmp
2013-02-08 08:00 - 2013-02-08 08:00 - 4126720 _____ () C:\Program Files (x86)\GUT48FE.tmp
2007-06-12 19:34 - 2007-06-12 19:34 - 0035822 _____ () C:\Program Files (x86)\Common Files\ASPG_icon.ico
2008-05-22 18:35 - 2008-05-22 18:35 - 0051962 _____ () C:\Program Files (x86)\Common Files\banner.jpg
2009-04-08 20:31 - 2009-04-08 20:31 - 0106496 _____ () C:\Program Files (x86)\Common Files\CPInstallAction.dll
2008-08-12 07:45 - 2008-08-12 07:45 - 0155648 _____ (ASUS) C:\Program Files (x86)\Common Files\MSIactionall.dll
2015-01-19 12:46 - 2015-05-17 18:30 - 0000034 _____ () C:\Users\Kévin.G\AppData\Roaming\AdobeWLCMCache.dat
2015-05-15 21:49 - 2015-05-28 09:28 - 0002636 _____ () C:\Users\Kévin.G\AppData\Roaming\Bubble Dock.boostrap.log
2015-05-15 21:49 - 2015-05-28 09:28 - 0011454 _____ () C:\Users\Kévin.G\AppData\Roaming\Bubble Dock.installation.log
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Kévin.G\AppData\Roaming\kb9O6sJLaqlw16Pc
2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\Kévin.G\AppData\Roaming\kb9O6sJLaqlw16Pc.exe
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Kévin.G\AppData\Roaming\ppohlOMMW9yd9VxoaVmiXndc3
2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\Kévin.G\AppData\Roaming\ppohlOMMW9yd9VxoaVmiXndc3.exe
2015-05-15 21:51 - 2015-05-28 09:28 - 0000156 _____ () C:\Users\Kévin.G\AppData\Roaming\Selection Tools.installation.log
2015-05-15 21:51 - 2015-05-17 15:29 - 0000009 _____ () C:\Users\Kévin.G\AppData\Roaming\Syshandle.txt
2014-03-07 16:29 - 2014-03-31 20:40 - 0000084 _____ () C:\Users\Kévin.G\AppData\Roaming\WB.CFG
2015-05-15 21:49 - 2015-05-28 09:25 - 0000194 _____ () C:\Users\Kévin.G\AppData\Roaming\WindApp.boostrap.log
2015-05-15 21:50 - 2015-05-28 09:28 - 0000156 _____ () C:\Users\Kévin.G\AppData\Roaming\WindApp.installation.log
2015-05-28 10:32 - 2015-05-28 10:32 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsc4FF5.tmp
2015-05-30 10:52 - 2015-05-30 10:52 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsd19F8.tmp
2015-06-04 09:33 - 2015-06-04 09:33 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsi4413.tmp
2015-05-28 11:53 - 2015-05-28 11:53 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsiB87.tmp
2015-05-18 12:02 - 2015-05-18 12:02 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsiC224.tmp
2015-05-17 15:23 - 2015-05-17 15:23 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsj83F3.tmp
2015-05-28 09:29 - 2015-05-28 09:29 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nssAF50.tmp
2015-05-27 22:00 - 2015-05-27 22:00 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nst2A64.tmp
2015-05-17 15:47 - 2015-05-17 15:47 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsx715A.tmp
2015-05-17 17:13 - 2015-05-17 17:13 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsz2F3F.tmp

Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.

Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur



puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :

Like the angel you are, you laugh creating a lightness in my chest,
Your eyes they penetrate me,
(Your answer's always 'maybe')
That's when I got up and left
0
Emyprbl
4 juin 2015 à 12:10
Voilà le rapport que j'ai reçu :

Fix result of Farbar Recovery Scan Tool (x64) Version:03-06-2015
Ran by Kévin.G at 2015-06-04 11:51:15 Run:1
Running from C:\Users\Kévin.G\Desktop
Loaded Profiles: Kévin.G (Available Profiles: Kévin.G)
Boot Mode: Normal
==============================================

fixlist content:

Task: {0194E14C-43DF-4B3B-8D5C-E6610D72AB41} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-6 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-1-6.exe <==== ATTENTION

Task: {0D31081F-9CE4-4071-A21D-37EB963BEED9} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-18] (ASUS)

Task: {1239A773-3AF8-4065-8FFE-A854CE0FC5FE} - System32\Tasks\SuperClick Auto Updater 1.10.0.16 Core => C:\Program Files (x86)\SuperClick_1.10.0.16\Update\SuperClickAutoUpdateClient.exe [2015-05-13] (SuperClick)

Task: {1265F314-1C80-4042-BED9-51F865EECD7F} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-7 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-7.exe <==== ATTENTION

Task: {127C7992-D9CD-486E-975E-76C6EE4212C7} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-7 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-1-7.exe <==== ATTENTION

Task: {3D21ABE3-6050-498E-A51B-B949B17CB603} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7.exe <==== ATTENTION

Task: {426D9FCA-0B9E-43ED-8C04-78D0E01D8747} - \APSnotifierPP3 No Task File <==== ATTENTION

Task: {596747C7-96F7-41BE-B221-B429369B62B2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks

Task: {59B5F985-B406-43D2-9AD7-732B3DB97E27} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-5 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-5.exe <==== ATTENTION

Task: {5B4305A1-D3EA-4551-A14A-3A53D3BC7618} - System32\Tasks\{6D0E0B0A-3AD7-402E-B7DB-4DA4CB6A2CEF} => pcalua.exe -a C:\ProgramData\WebShield\uninstall.exe -c /kb=y /ic=1

Task: {5E4EF5FC-E3EE-4962-A0C8-9265BAFE9A04} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7.exe <==== ATTENTION

Task: {62AC913B-A7B0-4A9A-A6C2-A4DB32887650} - System32\Tasks\Selection Tools Update => C:\Users\Kévin.G\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe

Task: {7F5C570E-0363-4B92-AE06-57718D4D41D8} - System32\Tasks\{1FAAE5E1-F039-4E9A-AD2D-27BFC2F4B4C7} => pcalua.exe -a C:\Users\Kévin.G\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=tugs <==== ATTENTION

Task: {814F4134-BAB4-4B9F-AE93-6EC3F5FF4C91} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION

Task: {91621A1F-73AB-46D1-89AF-0AE90BB70F6C} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Kévin.G\AppData\Local\SmartWeb\SmartWebHelper.exe [2015-02-17] (SoftBrain Technologies Ltd.) <==== ATTENTION

Task: {9DA0F6FD-CB21-4545-BB96-682F801D4A72} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6.exe <==== ATTENTION

Task: {A365E26F-7816-4123-BA29-9764731260F5} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-3 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-3.exe <==== ATTENTION

Task: {BE3D899E-D0D8-45DB-9F46-DFDA0F1A2BCC} - \MySearchDial No Task File <==== ATTENTION

Task: {C145CE28-70E7-41DA-BC62-E1478110BE99} - \APSnotifierPP1 No Task File <==== ATTENTION

Task: {C6EFD369-B25B-4A73-B46A-F5FFC34603FC} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5.exe <==== ATTENTION

Task: {D16217DA-A486-4EE3-976F-77B9E06067C0} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3.exe <==== ATTENTION

Task: {D797600F-0F36-411A-8253-73AA3D717DBB} - System32\Tasks\NetEngine => C:\ProgramData\NetEngine\bin\D10\netengine.exe [2015-05-15] () <==== ATTENTION

Task: {DB34F510-C704-465F-948F-B105A372219E} - System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6 => C:\Program Files (x86)\CinemaPlus-3.2cV17.05\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6.exe <==== ATTENTION

Task: {DD6D1777-9B17-4AF7-AFDD-3FBDA784A504} - \APSnotifierPP2 No Task File <==== ATTENTION

Task: {E1D993B1-DF33-4813-94CE-51090B878736} - System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-6 => C:\Program Files (x86)\CinemaPlus-3.2cV27.05\da71a956-4802-44f6-856c-b67c95206423-6.exe <==== ATTENTION

Task: {EBF5886E-967A-411D-B854-3C91783DB943} - \SomotoUpdateCheckerAutoStart No Task File <==== ATTENTION

Task: C:\Windows\Tasks\kb9O6sJLaqlw16Pc.job => C:\Users\Kýÿvin.G\AppData\Roaming\kb9O6sJLaqlw16Pc.exe <==== ATTENTION

Task: C:\Windows\Tasks\ppohlOMMW9yd9VxoaVmiXndc3.job => C:\Users\Kýÿvin.G\AppData\Roaming\ppohlOMMW9yd9VxoaVmiXndc3.exe <==== ATTENTION

HKLM-x32\...\Run: [gmsd_fr_535] => [X]

HKLM-x32\...\Run: [gmsd_fr_543] => [X]

HKLM-x32\...\Run: [gmsd_fr_579] => [X]

HKLM-x32\...\Run: [gmsd_fr_596] => [X]

HKLM-x32\...\Run: [gmsd_fr_610] => [X]

ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe ()

Startup: C:\Users\Kévin.G\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-05-28]

ShortcutTarget: SmartWeb.lnk -> C:\Users\Kévin.G\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)

HKLM\...\Run: [3D BubbleSound] => C:\Program Files\BubbleSound\3D BubbleSound.exe

R2 rivupesi; C:\Users\Kévin.G\AppData\Roaming\A08A6300-1431868244-81E0-25C5-BCAEC5679B85\hnse2BA3.tmp [365568 2015-05-17] () [File not signed]

R2 rZbhSeZqhwp; C:\ProgramData\HCcTpT\rZbhSeZqhwp.exe [2731512 2015-05-15] (Irrational Number Applications)

R2 scsvc_1.10.0.16; C:\Program Files (x86)\SuperClick_1.10.0.16\Service\scsvc.exe [278616 2015-05-13] (SuperClick)

R2 Update Edu App; C:\Program Files (x86)\Edu App\updateEduApp.exe [463080 2015-06-04] ()

R2 Util Edu App; C:\Program Files (x86)\Edu App\bin\utilEduApp.exe [463080 2015-06-04] ()

2015-06-04 09:53 - 2015-06-04 09:53 - 00004182 _____ C:\Windows\System32\Tasks\SuperClick Auto Updater 1.10.0.16 Pending Update

2015-06-04 09:52 - 2015-06-04 09:53 - 00000000 ____D C:\Program Files (x86)\SuperClick_1.10.0.16

2015-06-04 09:52 - 2015-06-04 09:52 - 00004170 _____ C:\Windows\System32\Tasks\SuperClick Auto Updater 1.10.0.16 Core

2015-06-04 09:52 - 2015-06-04 09:52 - 00000000 ____D C:\Program Files (x86)\predm

2015-06-04 09:33 - 2015-06-04 09:33 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsi4413.tmp

2015-06-01 18:48 - 2015-06-01 05:39 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{eb01aed1-bba3-4e72-8323-a77bb027b1d4}Gw64.sys

2015-05-30 10:52 - 2015-05-30 10:52 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsd19F8.tmp

2015-05-29 18:58 - 2015-05-28 23:45 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{36ed28a4-ac0a-4653-91ff-10beb4246550}Gw64.sys

2015-05-28 11:53 - 2015-05-28 11:53 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsiB87.tmp

2015-05-28 11:43 - 2015-05-27 21:55 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{848705a5-8a27-403e-9b59-732d0608bcbc}Gw64.sys

2015-05-28 11:14 - 2015-05-28 11:15 - 05154304 _____ C:\Users\Kévin.G\Downloads\WindowsDefender.msi

2015-05-28 10:32 - 2015-06-04 09:48 - 00000000 ____D C:\Program Files (x86)\Edu App

2015-05-28 10:32 - 2015-05-28 10:32 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsc4FF5.tmp

2015-05-28 10:01 - 2015-06-04 09:55 - 00320540 _____ C:\Windows\WindowsUpdate.log

2015-05-28 09:58 - 2015-06-04 09:46 - 00006998 _____ C:\Windows\PFRO.log

2015-05-28 09:58 - 2015-06-04 09:46 - 00000504 _____ C:\Windows\setupact.log

2015-05-28 09:58 - 2015-05-28 09:58 - 00000000 _____ C:\Windows\setuperr.log

2015-05-28 09:44 - 2015-05-28 10:22 - 00002244 _____ C:\Users\Kévin.G\Desktop\Navigateur Internet.lnk

2015-05-28 09:29 - 2015-05-28 09:29 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nssAF50.tmp

2015-05-28 09:28 - 2015-05-28 09:28 - 00003758 _____ C:\Windows\System32\Tasks\Selection Tools Update

2015-05-28 09:05 - 2015-05-28 09:06 - 00000000 ____D C:\Users\Kévin.G\AppData\Local\avabvbxvh

2015-05-27 22:00 - 2015-05-27 22:00 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nst2A64.tmp

2015-05-27 20:03 - 2015-05-27 20:03 - 00008550 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-6

2015-05-27 20:03 - 2015-05-27 20:03 - 00008216 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-7

2015-05-27 20:03 - 2015-05-27 20:03 - 00006508 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-7

2015-05-27 20:03 - 2015-05-27 20:03 - 00006170 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-6

2015-05-27 20:03 - 2015-05-27 20:03 - 00005480 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-5

2015-05-27 20:03 - 2015-05-27 20:03 - 00001030 _____ C:\Windows\Tasks\ppohlOMMW9yd9VxoaVmiXndc3.job

2015-05-27 20:02 - 2015-05-27 20:02 - 00007528 _____ C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-3

2015-05-27 19:25 - 2015-05-27 08:40 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{848705a5-8a27-403e-9b59-732d0608bcbc}w64.sys

2015-05-23 09:48 - 2015-05-23 00:40 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{6dd55e9a-3d06-4d70-b5e7-05fc3e0a3d66}w64.sys

2015-05-23 08:55 - 2015-05-23 08:55 - 00515888 _____ C:\Users\Kévin.G\Downloads\cacaoweb (6).exe

2015-05-23 08:47 - 2015-05-22 11:52 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{3f1219df-4a4d-40a3-9537-f2a95f4016b3}w64.sys

2015-05-21 20:11 - 2015-05-21 20:11 - 00000000 ____D C:\ProgramData\Evdriooihur

2015-05-21 20:09 - 2015-05-21 09:38 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{3f1219df-4a4d-40a3-9537-f2a95f4016b3}Gw64.sys

2015-05-18 12:02 - 2015-05-18 12:02 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsiC224.tmp

2015-05-18 12:01 - 2015-05-18 12:01 - 00000000 ____D C:\ProgramData\a9aaa70c00005ccb

2015-05-17 17:13 - 2015-05-17 17:13 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsz2F3F.tmp

2015-05-17 17:12 - 2015-05-18 12:09 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro 3.91

2015-05-17 17:08 - 2015-05-17 17:08 - 00000000 _____ C:\Windows\SysWOW64\Number of results

2015-05-17 15:52 - 2015-05-17 15:52 - 00000000 ____D C:\ProgramData\9d6464ee0000438b

2015-05-17 15:51 - 2015-05-17 15:51 - 00005480 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5

2015-05-17 15:51 - 2015-05-17 15:51 - 00001012 _____ C:\Windows\Tasks\kb9O6sJLaqlw16Pc.job

2015-05-17 15:50 - 2015-05-17 15:50 - 00008550 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6

2015-05-17 15:50 - 2015-05-17 15:50 - 00008216 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7

2015-05-17 15:50 - 2015-05-17 15:50 - 00007528 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3

2015-05-17 15:50 - 2015-05-17 15:50 - 00006508 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7

2015-05-17 15:50 - 2015-05-17 15:50 - 00006170 _____ C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6

2015-05-17 15:50 - 2015-05-17 15:50 - 00000000 ____D C:\Users\Kévin.G\AppData\Local\globalUpdate

2015-05-17 15:50 - 2015-05-17 15:50 - 00000000 ____D C:\Program Files (x86)\globalUpdate

2015-05-17 15:49 - 2015-05-17 01:54 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{e2590817-40ca-4d03-8e1f-67fd8517bae9}Gw64.sys

2015-05-17 15:47 - 2015-05-17 15:47 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsx715A.tmp

2015-05-17 15:46 - 2015-05-28 09:34 - 00001868 _____ C:\Windows\SysWOW64\${LOGFILE}

2015-05-17 15:39 - 2015-05-17 15:39 - 00003106 _____ C:\Windows\System32\Tasks\{6D0E0B0A-3AD7-402E-B7DB-4DA4CB6A2CEF}

2015-05-17 15:37 - 2015-05-17 16:21 - 00000000 ____D C:\Program Files (x86)\GUPlayer

2015-05-17 15:23 - 2015-05-17 15:23 - 00613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsj83F3.tmp

2013-02-08 08:00 - 2013-02-08 08:00 - 4126720 _____ () C:\Program Files (x86)\GUT48FE.tmp

2007-06-12 19:34 - 2007-06-12 19:34 - 0035822 _____ () C:\Program Files (x86)\Common Files\ASPG_icon.ico

2008-05-22 18:35 - 2008-05-22 18:35 - 0051962 _____ () C:\Program Files (x86)\Common Files\banner.jpg

2009-04-08 20:31 - 2009-04-08 20:31 - 0106496 _____ () C:\Program Files (x86)\Common Files\CPInstallAction.dll

2008-08-12 07:45 - 2008-08-12 07:45 - 0155648 _____ (ASUS) C:\Program Files (x86)\Common Files\MSIactionall.dll

2015-01-19 12:46 - 2015-05-17 18:30 - 0000034 _____ () C:\Users\Kévin.G\AppData\Roaming\AdobeWLCMCache.dat

2015-05-15 21:49 - 2015-05-28 09:28 - 0002636 _____ () C:\Users\Kévin.G\AppData\Roaming\Bubble Dock.boostrap.log

2015-05-15 21:49 - 2015-05-28 09:28 - 0011454 _____ () C:\Users\Kévin.G\AppData\Roaming\Bubble Dock.installation.log

2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Kévin.G\AppData\Roaming\kb9O6sJLaqlw16Pc

2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\Kévin.G\AppData\Roaming\kb9O6sJLaqlw16Pc.exe

2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Kévin.G\AppData\Roaming\ppohlOMMW9yd9VxoaVmiXndc3

2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\Kévin.G\AppData\Roaming\ppohlOMMW9yd9VxoaVmiXndc3.exe

2015-05-15 21:51 - 2015-05-28 09:28 - 0000156 _____ () C:\Users\Kévin.G\AppData\Roaming\Selection Tools.installation.log

2015-05-15 21:51 - 2015-05-17 15:29 - 0000009 _____ () C:\Users\Kévin.G\AppData\Roaming\Syshandle.txt

2014-03-07 16:29 - 2014-03-31 20:40 - 0000084 _____ () C:\Users\Kévin.G\AppData\Roaming\WB.CFG

2015-05-15 21:49 - 2015-05-28 09:25 - 0000194 _____ () C:\Users\Kévin.G\AppData\Roaming\WindApp.boostrap.log

2015-05-15 21:50 - 2015-05-28 09:28 - 0000156 _____ () C:\Users\Kévin.G\AppData\Roaming\WindApp.installation.log

2015-05-28 10:32 - 2015-05-28 10:32 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsc4FF5.tmp

2015-05-30 10:52 - 2015-05-30 10:52 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsd19F8.tmp

2015-06-04 09:33 - 2015-06-04 09:33 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsi4413.tmp

2015-05-28 11:53 - 2015-05-28 11:53 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsiB87.tmp

2015-05-18 12:02 - 2015-05-18 12:02 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsiC224.tmp

2015-05-17 15:23 - 2015-05-17 15:23 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsj83F3.tmp

2015-05-28 09:29 - 2015-05-28 09:29 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nssAF50.tmp

2015-05-27 22:00 - 2015-05-27 22:00 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nst2A64.tmp

2015-05-17 15:47 - 2015-05-17 15:47 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsx715A.tmp

2015-05-17 17:13 - 2015-05-17 17:13 - 0613255 _____ (CMI Limited) C:\Users\Kévin.G\AppData\Local\nsz2F3F.tmp


"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0194E14C-43DF-4B3B-8D5C-E6610D72AB41}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0194E14C-43DF-4B3B-8D5C-E6610D72AB41}" => key removed successfully
C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-6 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\da71a956-4802-44f6-856c-b67c95206423-1-6" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0D31081F-9CE4-4071-A21D-37EB963BEED9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D31081F-9CE4-4071-A21D-37EB963BEED9}" => key removed successfully
C:\Windows\System32\Tasks\ATKOSD2 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ATKOSD2" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1239A773-3AF8-4065-8FFE-A854CE0FC5FE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1239A773-3AF8-4065-8FFE-A854CE0FC5FE}" => key removed successfully
C:\Windows\System32\Tasks\SuperClick Auto Updater 1.10.0.16 Core => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SuperClick Auto Updater 1.10.0.16 Core" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1265F314-1C80-4042-BED9-51F865EECD7F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1265F314-1C80-4042-BED9-51F865EECD7F}" => key removed successfully
C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-7 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\da71a956-4802-44f6-856c-b67c95206423-7" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{127C7992-D9CD-486E-975E-76C6EE4212C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{127C7992-D9CD-486E-975E-76C6EE4212C7}" => key removed successfully
C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-7 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\da71a956-4802-44f6-856c-b67c95206423-1-7" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3D21ABE3-6050-498E-A51B-B949B17CB603}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D21ABE3-6050-498E-A51B-B949B17CB603}" => key removed successfully
C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{426D9FCA-0B9E-43ED-8C04-78D0E01D8747}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{426D9FCA-0B9E-43ED-8C04-78D0E01D8747}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP3" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{596747C7-96F7-41BE-B221-B429369B62B2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{596747C7-96F7-41BE-B221-B429369B62B2}" => key removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{59B5F985-B406-43D2-9AD7-732B3DB97E27}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59B5F985-B406-43D2-9AD7-732B3DB97E27}" => key removed successfully
C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-5 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\da71a956-4802-44f6-856c-b67c95206423-5" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5B4305A1-D3EA-4551-A14A-3A53D3BC7618}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B4305A1-D3EA-4551-A14A-3A53D3BC7618}" => key removed successfully
C:\Windows\System32\Tasks\{6D0E0B0A-3AD7-402E-B7DB-4DA4CB6A2CEF} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6D0E0B0A-3AD7-402E-B7DB-4DA4CB6A2CEF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5E4EF5FC-E3EE-4962-A0C8-9265BAFE9A04}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E4EF5FC-E3EE-4962-A0C8-9265BAFE9A04}" => key removed successfully
C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{62AC913B-A7B0-4A9A-A6C2-A4DB32887650}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62AC913B-A7B0-4A9A-A6C2-A4DB32887650}" => key removed successfully
C:\Windows\System32\Tasks\Selection Tools Update => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Selection Tools Update" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F5C570E-0363-4B92-AE06-57718D4D41D8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F5C570E-0363-4B92-AE06-57718D4D41D8}" => key removed successfully
C:\Windows\System32\Tasks\{1FAAE5E1-F039-4E9A-AD2D-27BFC2F4B4C7} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1FAAE5E1-F039-4E9A-AD2D-27BFC2F4B4C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{814F4134-BAB4-4B9F-AE93-6EC3F5FF4C91}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{814F4134-BAB4-4B9F-AE93-6EC3F5FF4C91}" => key removed successfully
C:\Windows\System32\Tasks\Crossbrowse => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Crossbrowse" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{91621A1F-73AB-46D1-89AF-0AE90BB70F6C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{91621A1F-73AB-46D1-89AF-0AE90BB70F6C}" => key removed successfully
C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartWeb Upgrade Trigger Task" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9DA0F6FD-CB21-4545-BB96-682F801D4A72}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9DA0F6FD-CB21-4545-BB96-682F801D4A72}" => key removed successfully
C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A365E26F-7816-4123-BA29-9764731260F5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A365E26F-7816-4123-BA29-9764731260F5}" => key removed successfully
C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-3 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\da71a956-4802-44f6-856c-b67c95206423-3" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BE3D899E-D0D8-45DB-9F46-DFDA0F1A2BCC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE3D899E-D0D8-45DB-9F46-DFDA0F1A2BCC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MySearchDial" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C145CE28-70E7-41DA-BC62-E1478110BE99}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C145CE28-70E7-41DA-BC62-E1478110BE99}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP1" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C6EFD369-B25B-4A73-B46A-F5FFC34603FC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6EFD369-B25B-4A73-B46A-F5FFC34603FC}" => key removed successfully
C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D16217DA-A486-4EE3-976F-77B9E06067C0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D16217DA-A486-4EE3-976F-77B9E06067C0}" => key removed successfully
C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{D797600F-0F36-411A-8253-73AA3D717DBB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D797600F-0F36-411A-8253-73AA3D717DBB}" => key removed successfully
C:\Windows\System32\Tasks\NetEngine => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NetEngine" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DB34F510-C704-465F-948F-B105A372219E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB34F510-C704-465F-948F-B105A372219E}" => key removed successfully
C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DD6D1777-9B17-4AF7-AFDD-3FBDA784A504}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD6D1777-9B17-4AF7-AFDD-3FBDA784A504}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP2" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E1D993B1-DF33-4813-94CE-51090B878736}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E1D993B1-DF33-4813-94CE-51090B878736}" => key removed successfully
C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-6 => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\da71a956-4802-44f6-856c-b67c95206423-6" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EBF5886E-967A-411D-B854-3C91783DB943}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EBF5886E-967A-411D-B854-3C91783DB943}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SomotoUpdateCheckerAutoStart" => key removed successfully
C:\Windows\Tasks\kb9O6sJLaqlw16Pc.job => moved successfully.
C:\Windows\Tasks\ppohlOMMW9yd9VxoaVmiXndc3.job => moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_fr_535 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_fr_543 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_fr_579 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_fr_596 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\gmsd_fr_610 => value removed successfully
C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk => moved successfully.
C:\Users\Kévin.G\AppData\Local\SmartWeb\SmartWebHelper.exe => moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\3D BubbleSound => value removed successfully
rivupesi => Service stopped successfully.
rivupesi => Service removed successfully
rZbhSeZqhwp => Unable to stop service.
rZbhSeZqhwp => Service removed successfully
scsvc_1.10.0.16 => Service stopped successfully.
scsvc_1.10.0.16 => Service removed successfully
Update Edu App => Unable to stop service.
Update Edu App => Service removed successfully
Util Edu App => Unable to stop service.
Util Edu App => Service removed successfully
C:\Windows\System32\Tasks\SuperClick Auto Updater 1.10.0.16 Pending Update => moved successfully.
C:\Program Files (x86)\SuperClick_1.10.0.16 => moved successfully.
"C:\Windows\System32\Tasks\SuperClick Auto Updater 1.10.0.16 Core" => File/Folder not found.
C:\Program Files (x86)\predm => moved successfully.
C:\Users\Kévin.G\AppData\Local\nsi4413.tmp => moved successfully.
C:\Windows\system32\Drivers\{eb01aed1-bba3-4e72-8323-a77bb027b1d4}Gw64.sys => moved successfully.
C:\Users\Kévin.G\AppData\Local\nsd19F8.tmp => moved successfully.
C:\Windows\system32\Drivers\{36ed28a4-ac0a-4653-91ff-10beb4246550}Gw64.sys => moved successfully.
C:\Users\Kévin.G\AppData\Local\nsiB87.tmp => moved successfully.
C:\Windows\system32\Drivers\{848705a5-8a27-403e-9b59-732d0608bcbc}Gw64.sys => moved successfully.
C:\Users\Kévin.G\Downloads\WindowsDefender.msi => moved successfully.

"C:\Program Files (x86)\Edu App" folder move:

Could not move "C:\Program Files (x86)\Edu App" folder => Scheduled to move on reboot.

C:\Users\Kévin.G\AppData\Local\nsc4FF5.tmp => moved successfully.
Could not move "C:\Windows\WindowsUpdate.log" => Scheduled to move on reboot.
C:\Windows\PFRO.log => moved successfully.
C:\Windows\setupact.log => moved successfully.
C:\Windows\setuperr.log => moved successfully.
C:\Users\Kévin.G\Desktop\Navigateur Internet.lnk => moved successfully.
C:\Users\Kévin.G\AppData\Local\nssAF50.tmp => moved successfully.
"C:\Windows\System32\Tasks\Selection Tools Update" => File/Folder not found.
C:\Users\Kévin.G\AppData\Local\avabvbxvh => moved successfully.
C:\Users\Kévin.G\AppData\Local\nst2A64.tmp => moved successfully.
"C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-6" => File/Folder not found.
"C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-7" => File/Folder not found.
"C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-7" => File/Folder not found.
"C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-1-6" => File/Folder not found.
"C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-5" => File/Folder not found.
"C:\Windows\Tasks\ppohlOMMW9yd9VxoaVmiXndc3.job" => File/Folder not found.
"C:\Windows\System32\Tasks\da71a956-4802-44f6-856c-b67c95206423-3" => File/Folder not found.
C:\Windows\system32\Drivers\{848705a5-8a27-403e-9b59-732d0608bcbc}w64.sys => moved successfully.
C:\Windows\system32\Drivers\{6dd55e9a-3d06-4d70-b5e7-05fc3e0a3d66}w64.sys => moved successfully.
C:\Users\Kévin.G\Downloads\cacaoweb (6).exe => moved successfully.
C:\Windows\system32\Drivers\{3f1219df-4a4d-40a3-9537-f2a95f4016b3}w64.sys => moved successfully.
C:\ProgramData\Evdriooihur => moved successfully.
C:\Windows\system32\Drivers\{3f1219df-4a4d-40a3-9537-f2a95f4016b3}Gw64.sys => moved successfully.
C:\Users\Kévin.G\AppData\Local\nsiC224.tmp => moved successfully.
C:\ProgramData\a9aaa70c00005ccb => moved successfully.
C:\Users\Kévin.G\AppData\Local\nsz2F3F.tmp => moved successfully.
C:\Program Files (x86)\Optimizer Pro 3.91 => moved successfully.
C:\Windows\SysWOW64\Number of results => moved successfully.
C:\ProgramData\9d6464ee0000438b => moved successfully.
"C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-5" => File/Folder not found.
"C:\Windows\Tasks\kb9O6sJLaqlw16Pc.job" => File/Folder not found.
"C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-6" => File/Folder not found.
"C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-7" => File/Folder not found.
"C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-3" => File/Folder not found.
"C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-7" => File/Folder not found.
"C:\Windows\System32\Tasks\ee84a26f-9e4f-4a79-b5ef-df0702b8c928-1-6" => File/Folder not found.
C:\Users\Kévin.G\AppData\Local\globalUpdate => moved successfully.
C:\Program Files (x86)\globalUpdate => moved successfully.
C:\Windows\system32\Drivers\{e2590817-40ca-4d03-8e1f-67fd8517bae9}Gw64.sys => moved successfully.
C:\Users\Kévin.G\AppData\Local\nsx715A.tmp => moved successfully.
C:\Windows\SysWOW64\${LOGFILE} => moved successfully.
"C:\Windows\System32\Tasks\{6D0E0B0A-3AD7-402E-B7DB-4DA4CB6A2CEF}" => File/Folder not found.
C:\Program Files (x86)\GUPlayer => moved successfully.
C:\Users\Kévin.G\AppData\Local\nsj83F3.tmp => moved successfully.
C:\Program Files (x86)\GUT48FE.tmp => moved successfully.
C:\Program Files (x86)\Common Files\ASPG_icon.ico => moved successfully.
C:\Program Files (x86)\Common Files\banner.jpg => moved successfully.
C:\Program Files (x86)\Common Files\CPInstallAction.dll => moved successfully.
C:\Program Files (x86)\Common Files\MSIactionall.dll => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\AdobeWLCMCache.dat => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\Bubble Dock.boostrap.log => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\Bubble Dock.installation.log => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\kb9O6sJLaqlw16Pc => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\kb9O6sJLaqlw16Pc.exe => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\ppohlOMMW9yd9VxoaVmiXndc3 => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\ppohlOMMW9yd9VxoaVmiXndc3.exe => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\Selection Tools.installation.log => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\Syshandle.txt => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\WB.CFG => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\WindApp.boostrap.log => moved successfully.
C:\Users\Kévin.G\AppData\Roaming\WindApp.installation.log => moved successfully.
"C:\Users\Kévin.G\AppData\Local\nsc4FF5.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nsd19F8.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nsi4413.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nsiB87.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nsiC224.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nsj83F3.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nssAF50.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nst2A64.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nsx715A.tmp" => File/Folder not found.
"C:\Users\Kévin.G\AppData\Local\nsz2F3F.tmp" => File/Folder not found.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-06-04 11:56:15)<=

C:\Program Files (x86)\Edu App => Is moved successfully
C:\Windows\WindowsUpdate.log => Is moved successfully

End of Fixlog 11:56:15

Je redémarre mon pc et réinitialise mes paramètres google chrome.
Y a-t'il autre chose maintenant?
0
Réponse 3 / 5
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 627
4 juin 2015 à 12:49
tu peux faire un nettoyage Malwarebytes histoire de, après faut voir ce que ça donne pour les pubs etc.
où il en reste.


Malwarebytes (temps : environ 40min de scan):
==================================================
Télécharge et installe Malwarebyte : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Mets le à jour puis lance un examen.

A la fin du scan, clic sur "Mettre tout en quarantaine" en bas à gauche.
Redémarre l'ordinateur si besoin.
Après redémarrage, relance Malwarebytes.
Vas chercher le rapport dans l'onglet Historique.
A gauche Journal des examens.
Doube-clic sur l'examen dans la liste.
Puis en bas Copier dans le presse papier
Vas sur http://pjjoint.malekal.com et en bas, clic droit / coller pour coller le rapport du scan Malwarebytes.
Clic sur envoyer.
Dans un nouveau message ici en réponse, donne le lien pjjoint afin de pouvoir consulter le rapport.


0
Réponse 4 / 5
Emyprbl
4 juin 2015 à 13:45
Voilà, le scan a été fait et voici le lien du rapport.

http://pjjoint.malekal.com/files.php?id=20150604_p11s5t8k14u15

J'ai vérifié je n'ai plus aucun des programmes dans ma liste. Merci en tout cas ! Si il y a éventuellement autre chose à ajouter, je le ferais, mais je n'ai déjà plus ces problèmes ! Si je peux faire autre chose pour les éviter à l'avenir..
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 627
4 juin 2015 à 14:16
On peut cloturer =)


Voila, c'est terminé, tu peux supprimer les programmes utilisés.

Quelques conseils :


Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=


Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
(Surtout active les détections LPIs pour détecter les programmes parasites et publicitaires)


Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html


0

Discussions similaires

blocage dl-protect.link
stef38100 -
bazfile -

8 réponses