Sujet Précédent Sujet Suivant

WINSERVICE86 encore et toujours

Résolu/Fermé
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015 - 25 févr. 2015 à 14:27
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015 - 26 févr. 2015 à 16:40
Bonjour,

Malekale AIDE MOI stp !!! Tu sembles être le sauveur de cette me*de de winservice :)

Merci d'avance



4 réponses

Réponse 1 / 4
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 628
25 févr. 2015 à 14:32
Salut,



Suis ce tutorial : https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
Cela va générer deux rapports FRST.
Envoie comme expliqué, ces deux rapports sur le site http://pjjoint.malekal.com et donne les trois liens pjjoint de ces rapports afin qu'ils puissent être consultés.



0
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015
25 févr. 2015 à 16:08
https://pjjoint.malekal.com/files.php?id=20150225_u13f9o13d6n13
https://pjjoint.malekal.com/files.php?id=20150225_h8l15h15i6t15
https://pjjoint.malekal.com/files.php?id=20150225_d6h12i7j14z6

Voila =)
0
Réponse 2 / 4
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 628
Modifié par Malekal_morte- le 25/02/2015 à 17:07
Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix

Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :

Task: {051BBB98-0513-4C69-9124-8C07DB7149F5} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.exe [2015-02-24] (Corporate Inc) <==== ATTENTION
Task: {2481D40F-FC1B-4B9E-B376-0CAF3F4FEC48} - System32\Tasks\WIN-statsAdmin => C:\Users\Gwenola\AppData\Local\Microsoft\WinU\~yfwgzyg.exe <==== ATTENTION
Task: {2E438E3B-6096-43BC-A9B7-940402F640EB} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-5.exe <==== ATTENTION
Task: {30453DD7-5EB7-4426-BBFD-9C227AFDD3DE} - System32\Tasks\{453CC4DE-6547-4776-B62B-6D0C7D3EF94A} => pcalua.exe -a C:\Users\Gwenola\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {308FA64E-9796-497A-BE86-5B448167DB5A} - System32\Tasks\zqZNoapDuWIYFH4 => C:\Users\Gwenola\AppData\Roaming\Cwju7Jl\LFKDiPx.exe [2014-11-27] ( )
Task: {43435B52-907C-4610-92E3-8E7CE7A24873} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-10.exe <==== ATTENTION
Task: {46D01E03-734E-4323-8803-1ECD25E422E8} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.exe [2015-02-24] (Corporate Inc) <==== ATTENTION
Task: {4D4B1C59-EDE9-4C38-846E-1C620AAA5063} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5 => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-5.exe <==== ATTENTION
Task: {68AC392D-FA10-4166-83DD-696E6618E89F} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {6C3D02F6-FD0B-47E9-9D4B-208DA557AE64} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.exe [2015-02-24] (Corporate Inc) <==== ATTENTION
Task: {6F82B938-CC38-4C19-9D89-A97384E5A48E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {78E98419-8D85-4CCC-87C4-847AEACED3C8} - System32\Tasks\{E5EB411F-3C46-4513-969E-2A421BF48874} => Chrome.exe
Task: {819D5534-FF0B-4E30-9A01-F897F4906849} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12 => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-12.exe <==== ATTENTION
Task: {8CFD3E25-080C-41C3-884C-A8D3599EC82A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-02-24] (AVAST Software)
Task: {977589C5-7128-496F-A1D6-777623A68702} - System32\Tasks\WIN-fIGbfFfEGCfFGEGbfCfE => C:\Users\Gwenola\AppData\Roaming\~lckrykg.exe
Task: {A04DF379-D121-4FA3-8B24-9D24864F1D8D} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.exe <==== ATTENTION
Task: {A0E9D6B2-9AE3-493E-9AA9-7CB8C72AB678} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.exe <==== ATTENTION
Task: {A8BEC284-8CAA-4431-AD87-765454ED244E} - System32\Tasks\lLiBeUev4PMr3wl => C:\Users\Gwenola\AppData\Roaming\6nDS42f\t696FPm.exe [2015-02-03] ( )
Task: {BF1AFEF3-F263-44AA-B881-28BBD3DC4D0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-23] (Google Inc.)
Task: {C350B5B2-A81E-486B-8A1A-846C40335280} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\Gwenola\AppData\Roaming\~gjsfgtc.exe
Task: {C9BFE23F-57D3-44FA-97AC-7923E0A84452} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7 => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.exe <==== ATTENTION
Task: {CB1B9429-F2C3-4472-A2F5-9E074577822F} - System32\Tasks\PenWes => C:\Program Files (x86)\PenWes\dnshelper.exe <==== ATTENTION
Task: {CC502D11-F5F6-4A78-8668-01E5B7162F1B} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.exe <==== ATTENTION
Task: {D9265BE7-BA08-455A-B5A9-0A37EB4E38F4} - System32\Tasks\WIN-statsSystem => C:\Users\Gwenola\AppData\Local\Microsoft\WinU\~wlhptjm.exe
Task: {DF0DD35C-372A-4C2E-864E-FC9D609D2DA9} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6 => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.exe [2015-02-23] (Corporate Inc) <==== ATTENTION
Task: {E27F7D2D-1AF4-476F-8849-A1B51775644D} - System32\Tasks\vlSCzVE8qVk3suW => C:\Users\Gwenola\AppData\Roaming\qIhN6PK\buvE7xI.exe [2015-02-03] ( )
Task: {E66BFE00-2477-48B4-98FA-D94F825A85F9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-23] (Google Inc.)
Task: {E9794187-0FD1-4B67-8809-0A4A7ED52766} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10.exe <==== ATTENTION
Task: {ECE47BFE-24E6-4632-8FDD-B44B92FBCF16} - System32\Tasks\{72C7D207-2BA3-4538-8EC2-EEEDF6E07D7D} => Chrome.exe
Task: {F3660D28-F1DD-4F9F-963E-6A52F28AE48A} - System32\Tasks\{BD56A2B7-A67C-447F-A8D4-8263B43301E5} => pcalua.exe -a C:\Users\Gwenola\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {FA2D883B-558D-4C15-BCDB-E76B9934C3E7} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-12.exeF/agentregpath='winservice86' /appid=64755 /srcid='002201' /subid='0' /zdata='0' /bic=484C3607B4C1426D9261B6B7FC7835A5IE /verifier=1a0651ee6068642a426ba61f73910947 /installerversion=1_36_01_22 /installationtime=1424697275 /statsdomain=http://stats.ourgenstatsstorage.com /errorsdomain=http://errors.ourgenstatsstorage.com /url=http://update.ourgenstatsstorage.com/verify/index.html /crregname='winservice86' /torpedofilepath C:\Program Files (x86)\winservice86' /asw='0_-2139094784_4096_256' /processid='532D8D8655E0400EA16E03D4E3F0C060PI' /installationtime='1424697275' /installername='C:\Users\Gwenola\AppData\Local\Temp\nshF00A.tmp\Boiozoaw.exe' /mac='3765982650+498139398+70:71:BC:D3:9D:E3' /macs='8bd660c4373580c81b4f0356724d4d09' /sid='S-1-5-21-3669835548-1391938347-304947314-1001' /jsmainfunc=main /ffid=taylorralston@hotmail.com /chid=onhcengeacabehdkdhbdcigfolmmakof /guid1=81e694b6-be4d-4504-bacc-fffa64699da3 /guid2=1e7751dc-8b8a-49f5-b5d6-2ceac4ccc9d5 /guid3=5d0c58aa-b6f0-4bd3-915d-bad2ebc00185 /guid4=7761cb03-4a9d-4262-b046-d12fefa70f1c /guid5=f204d323-6061-4970-9e77-ac21dc6c543d /guid6=b14ca0d9-e7be-4e21-a4bb-3b14ccc277a8 /guid7=1abe4f81-d43f-4ff9-8814-ca26d0118729 /guid8=572eb682-33b3-4b02-bf28-0ff1a7f4da41 /guid9=871072a4-5455-498c-b7f7-cedf73ce532e /guid10=0c59f367-b1c1-4d06-82ee-d78506808f6a /guid11=50be9586-b3bf-4a03-a0f4-5dcb9cddf9bf /guid12=2da6ebaf-4947-40f6-95c3-eeb560e41281 /guid13=2d4d7206-d4be-4a05-895e-18022b713e08 /guid14=7888f940-bbbd-4a1a-b66f-987043c991fe /guid15=f2a9f9ee-0ce2-4533-9084-f42786bccd06 /schedulereinstall=1 /useminfeatures=1 /crossrideragentinstallation=1 /compilationbot=1 /deployagent=0 /maxextfilename=1293297481.mxaddon /installto=513 /verifiertaskname='81e694b6-be4d-4504-bacc-fffa64699da3-12' //fallbackurl='file://C:\Program Files (x86)\winservice86\vhf\index.htm <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.exeF/agentregpath='winservice86' /appid=64755 /srcid='002201' /subid='0' /zdata='0' /bic=484C3607B4C1426D9261B6B7FC7835A5IE /verifier=1a0651ee6068642a426ba61f73910947 /installerversion=1_36_01_22 /installationtime=1424773903 /statsdomain=http://stats.ourinfoonlinestack.com /errorsdomain=http://errors.ourinfoonlinestack.com /url=http://update.ourinfoonlinestack.com/verify/index.html /crregname='winservice86' /torpedofilepath C:\Program Files (x86)\winservice86' /asw='0_-2139095039_4096_256' /processid='4295601B72B74167972F2638753D5681PI' /installationtime='1424773903' /installername='C:\Users\Gwenola\AppData\Local\Temp\nsrE5FC.tmp\Suoxoyhm.exe' /mac='3765982650+498139398+70:71:BC:D3:9D:E3' /macs='8bd660c4373580c81b4f0356724d4d09' /sid='S-1-5-21-3669835548-1391938347-304947314-1001' /jsmainfunc=main /ffid=taylorralston@hotmail.com /chid=onhcengeacabehdkdhbdcigfolmmakof /guid1=8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7 /guid2=f146d56a-493d-404f-8b1a-db108e8a8ab1 /guid3=d240fbba-0f8a-4b79-8b35-d12161bc5f37 /guid4=43c82bea-cc19-479b-9829-87d51b4504b7 /guid5=9873dfc1-b67b-4edf-a5a6-3f238b495e8e /guid6=77cd381f-6b8d-46a2-9c9a-2169772b52a5 /guid7=467ed708-0ee6-4175-9ccc-ace8dd033d89 /guid8=c2a69466-1b6a-479d-a186-8814fde96b52 /guid9=99aa4c2c-e3e7-4bb2-b632-ba9bc0825061 /guid10=bf83907b-189a-486e-8fff-d75554578db4 /guid11=e12e92ad-b266-417b-9754-9782ba407e45 /guid12=aedde827-dcb6-43a0-bb03-c81ec8d0ba56 /guid13=228a4466-ef61-4dbd-8b80-7931cf119545 /guid14=88b00ed3-4c53-45f6-84c8-5ca6dc337c67 /guid15=e251dada-d684-4c10-aa4d-9707fa46921f /schedulereinstall=1 /useminfeatures=1 /crossrideragentinstallation=1 /compilationbot=1 /deployagent=0 /maxextfilename=1293297481.mxaddon /installto=529 /verifiertaskname='8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12' //fallbackurl='file://C:\Program Files (x86)\winservice86\vhf\index.htm <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.exe <==== ATTENTION
HKU\S-1-5-21-3669835548-1391938347-304947314-1001\...\Run: [WindApp] => C:\Users\Gwenola\AppData\Roaming\Store\WindApp\WindApp.exe /winstartup
HKU\S-1-5-21-3669835548-1391938347-304947314-1001\...\Run: [BoBrowser] => [X]
HKLM-x32\...\Run: [mbot_fr_237] => [X]
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:49215;https=127.0.0.1:49215 [Attention - Possible Proxy Malicieux]
R2 ClaraUpdater; C:\Program Files (x86)\Common Files\ClaraUpdater\ClaraUpdater.exe [328304 2015-02-23] (ClaraLabs)
R2 nozelyci; C:\Users\Gwenola\AppData\Local\7B3F6D80-1424342873-1016-8A7E-C42DC2D0B6AC\snsgC486.tmp [141312 2015-02-19] () [File not signed]
R2 wukytogo; C:\Users\Gwenola\AppData\Roaming\7B3F6D80-1424342769-1016-8A7E-C42DC2D0B6AC\nsg57D7.tmpfs [X]
2015-02-24 11:27 - 2015-02-25 14:18 - 00002432 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user.job
2015-02-24 11:27 - 2015-02-25 14:18 - 00002432 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.job
2015-02-24 11:27 - 2015-02-24 11:32 - 00005462 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5
2015-02-24 11:26 - 2015-02-25 15:32 - 00003124 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.job
2015-02-24 11:26 - 2015-02-25 15:31 - 00005504 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.job
2015-02-24 11:26 - 2015-02-25 15:31 - 00002098 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user.job
2015-02-24 11:26 - 2015-02-25 14:18 - 00005504 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.job
2015-02-24 11:26 - 2015-02-25 14:18 - 00004090 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.job
2015-02-24 11:26 - 2015-02-25 14:18 - 00003460 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.job
2015-02-24 11:26 - 2015-02-24 11:32 - 00006490 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7
2015-02-24 11:26 - 2015-02-24 11:32 - 00006152 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6
2015-02-24 11:26 - 2015-02-24 11:31 - 00008534 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7
2015-02-24 11:26 - 2015-02-24 11:31 - 00008532 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6
2015-02-24 11:26 - 2015-02-24 11:31 - 00007120 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12
2015-02-24 11:26 - 2015-02-24 11:26 - 00000000 ____D () C:\Program Files (x86)\c2a69466-1b6a-479d-a186-8814fde96b52
2015-02-23 22:32 - 2015-02-23 22:32 - 04762200 _____ (AVAST Software) C:\Users\Gwenola\Downloads\Non confirmé 382016.crdownload
2015-02-23 22:28 - 2015-02-24 11:26 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2015-02-23 14:27 - 2015-02-24 11:45 - 00001099 _____ () C:\Users\Gwenola\Desktop\Continue Live Installation.lnk
2015-02-23 14:13 - 2015-02-23 14:32 - 00001969 _____ () C:\Windows\patsearch.bin
2015-02-23 14:13 - 2015-02-23 14:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf
2015-02-23 13:57 - 2015-02-23 13:57 - 00013432 _____ () C:\Users\Gwenola\Documents\AdwCleaner[S1]2.txt
2015-02-23 13:50 - 2015-02-23 22:16 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\Store
2015-02-23 13:50 - 2015-02-23 14:13 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\WTools
2015-02-23 13:50 - 2015-02-23 13:50 - 00000078 _____ () C:\Users\Gwenola\AppData\Roaming\WindApp.installation.log
2015-02-23 13:50 - 2015-02-23 13:50 - 00000078 _____ () C:\Users\Gwenola\AppData\Roaming\Selection Tools.installation.log
2015-02-23 13:49 - 2015-02-25 15:14 - 00003124 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.job
2015-02-23 13:49 - 2015-02-25 15:14 - 00002098 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user.job
2015-02-23 13:49 - 2015-02-25 14:18 - 00004090 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12.job
2015-02-23 13:49 - 2015-02-25 14:18 - 00003460 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.job
2015-02-23 13:49 - 2015-02-25 14:18 - 00002432 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user.job
2015-02-23 13:49 - 2015-02-25 14:18 - 00002432 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5.job
2015-02-23 13:49 - 2015-02-24 11:40 - 00000000 ____D () C:\Program Files (x86)\winservice86
2015-02-23 13:49 - 2015-02-23 22:15 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\Nosibay
2015-02-23 13:49 - 2015-02-23 14:15 - 00005462 _____ () C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5
2015-02-23 13:49 - 2015-02-23 14:14 - 00007120 _____ () C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12
2015-02-23 13:49 - 2015-02-23 14:14 - 00006490 _____ () C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7
2015-02-23 13:49 - 2015-02-23 14:14 - 00006152 _____ () C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6
2015-02-23 13:49 - 2015-02-23 13:50 - 00005783 _____ () C:\Users\Gwenola\AppData\Roaming\Bubble Dock.installation.log
2015-02-23 13:49 - 2015-02-23 13:50 - 00001311 _____ () C:\Users\Gwenola\AppData\Roaming\Bubble Dock.boostrap.log
2015-02-23 13:49 - 2015-02-23 13:49 - 00000097 _____ () C:\Users\Gwenola\AppData\Roaming\WindApp.boostrap.log
2015-02-23 13:49 - 2015-02-23 13:49 - 00000000 ____D () C:\Users\Gwenola\AppData\Local\globalUpdate
2015-02-23 13:44 - 2015-02-23 13:44 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\7B3F6D80-1424699064-1016-8A7E-C42DC2D0B6AC
2015-02-23 13:43 - 2015-02-23 13:43 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-02-23 13:42 - 2015-02-24 13:47 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-02-19 10:47 - 2015-02-24 15:52 - 00000000 ____D () C:\Users\Gwenola\AppData\Local\7B3F6D80-1424342873-1016-8A7E-C42DC2D0B6AC
2015-02-19 10:46 - 2015-02-24 13:47 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\7B3F6D80-1424342769-1016-8A7E-C42DC2D0B6AC
2015-02-03 09:09 - 2015-02-03 09:09 - 00003284 _____ () C:\Windows\System32\Tasks\vlSCzVE8qVk3suW
2015-02-03 09:09 - 2015-02-03 09:09 - 00003244 _____ () C:\Windows\System32\Tasks\lLiBeUev4PMr3wl
2015-02-03 09:09 - 2015-02-03 09:09 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\qIhN6PK
2015-02-03 09:09 - 2015-02-03 09:09 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\6nDS42f
2015-02-03 09:09 - 2015-01-04 20:57 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\GoM1g2K
2015-02-03 09:09 - 2014-11-27 19:10 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\Cwju7Jl


Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.

Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.

Relance FRST qui doit se trouver sur le bureau et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur


puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :



Like the angel you are, you laugh creating a lightness in my chest,
Your eyes they penetrate me,
(Your answer's always 'maybe')
That's when I got up and left
0
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015
25 févr. 2015 à 17:49
J'ai fait copier /coller ok
Mais FRST n'est pas sur mon bureau je dois le DL et quand je clique que FIX il me dit qu'il ne trouve pas :/
0
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015
25 févr. 2015 à 17:50
je te fais un imprim ecran en MP
0
jacques.gache Messages postés 33453 Date d'inscription mardi 13 novembre 2007 Statut Contributeur sécurité Dernière intervention 25 janvier 2016 1 616
25 févr. 2015 à 17:54
bonjour, pour aider !!

vas chercher FRST puis clique droit dessus puis couper et tu vas surton bureau et clique droit et coller comme cela il sera au bon endroit

Malekal_morte désolé si j'ai dérangé tu sais comment faire !! IOI !!
0
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 628
25 févr. 2015 à 19:17
titilolajulia tu t'en sors ?
Il faut que fixlist.txt soit dans le même dossier que le programme FRST.
0
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015
25 févr. 2015 à 21:36
merci d'etre venue en aide ^^ alors oui j'ai enregistrer FRST au lieu de l'executer direct.
Du coup il m'a sorti un autre fichier txt le voici


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-02-2015 01
Ran by Gwenola at 2015-02-25 21:34:13 Run:1
Running from C:\Users\Gwenola\Desktop
Loaded Profiles: Gwenola (Available profiles: Gwenola & Thibaud)
Boot Mode: Normal
==============================================

Content of fixlist:

Task: {051BBB98-0513-4C69-9124-8C07DB7149F5} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.exe [2015-02-24] (Corporate Inc) <==== ATTENTION
Task: {2481D40F-FC1B-4B9E-B376-0CAF3F4FEC48} - System32\Tasks\WIN-statsAdmin => C:\Users\Gwenola\AppData\Local\Microsoft\WinU\~yfwgzyg.exe <==== ATTENTION
Task: {2E438E3B-6096-43BC-A9B7-940402F640EB} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-5.exe <==== ATTENTION
Task: {30453DD7-5EB7-4426-BBFD-9C227AFDD3DE} - System32\Tasks\{453CC4DE-6547-4776-B62B-6D0C7D3EF94A} => pcalua.exe -a C:\Users\Gwenola\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {308FA64E-9796-497A-BE86-5B448167DB5A} - System32\Tasks\zqZNoapDuWIYFH4 => C:\Users\Gwenola\AppData\Roaming\Cwju7Jl\LFKDiPx.exe [2014-11-27] ( )
Task: {43435B52-907C-4610-92E3-8E7CE7A24873} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-10.exe <==== ATTENTION
Task: {46D01E03-734E-4323-8803-1ECD25E422E8} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.exe [2015-02-24] (Corporate Inc) <==== ATTENTION
Task: {4D4B1C59-EDE9-4C38-846E-1C620AAA5063} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5 => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-5.exe <==== ATTENTION
Task: {68AC392D-FA10-4166-83DD-696E6618E89F} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {6C3D02F6-FD0B-47E9-9D4B-208DA557AE64} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.exe [2015-02-24] (Corporate Inc) <==== ATTENTION
Task: {6F82B938-CC38-4C19-9D89-A97384E5A48E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {78E98419-8D85-4CCC-87C4-847AEACED3C8} - System32\Tasks\{E5EB411F-3C46-4513-969E-2A421BF48874} => Chrome.exe
Task: {819D5534-FF0B-4E30-9A01-F897F4906849} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12 => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-12.exe <==== ATTENTION
Task: {8CFD3E25-080C-41C3-884C-A8D3599EC82A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-02-24] (AVAST Software)
Task: {977589C5-7128-496F-A1D6-777623A68702} - System32\Tasks\WIN-fIGbfFfEGCfFGEGbfCfE => C:\Users\Gwenola\AppData\Roaming\~lckrykg.exe
Task: {A04DF379-D121-4FA3-8B24-9D24864F1D8D} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.exe <==== ATTENTION
Task: {A0E9D6B2-9AE3-493E-9AA9-7CB8C72AB678} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.exe <==== ATTENTION
Task: {A8BEC284-8CAA-4431-AD87-765454ED244E} - System32\Tasks\lLiBeUev4PMr3wl => C:\Users\Gwenola\AppData\Roaming\6nDS42f\t696FPm.exe [2015-02-03] ( )
Task: {BF1AFEF3-F263-44AA-B881-28BBD3DC4D0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-23] (Google Inc.)
Task: {C350B5B2-A81E-486B-8A1A-846C40335280} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\Gwenola\AppData\Roaming\~gjsfgtc.exe
Task: {C9BFE23F-57D3-44FA-97AC-7923E0A84452} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7 => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.exe <==== ATTENTION
Task: {CB1B9429-F2C3-4472-A2F5-9E074577822F} - System32\Tasks\PenWes => C:\Program Files (x86)\PenWes\dnshelper.exe <==== ATTENTION
Task: {CC502D11-F5F6-4A78-8668-01E5B7162F1B} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.exe <==== ATTENTION
Task: {D9265BE7-BA08-455A-B5A9-0A37EB4E38F4} - System32\Tasks\WIN-statsSystem => C:\Users\Gwenola\AppData\Local\Microsoft\WinU\~wlhptjm.exe
Task: {DF0DD35C-372A-4C2E-864E-FC9D609D2DA9} - System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6 => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.exe [2015-02-23] (Corporate Inc) <==== ATTENTION
Task: {E27F7D2D-1AF4-476F-8849-A1B51775644D} - System32\Tasks\vlSCzVE8qVk3suW => C:\Users\Gwenola\AppData\Roaming\qIhN6PK\buvE7xI.exe [2015-02-03] ( )
Task: {E66BFE00-2477-48B4-98FA-D94F825A85F9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-23] (Google Inc.)
Task: {E9794187-0FD1-4B67-8809-0A4A7ED52766} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10.exe <==== ATTENTION
Task: {ECE47BFE-24E6-4632-8FDD-B44B92FBCF16} - System32\Tasks\{72C7D207-2BA3-4538-8EC2-EEEDF6E07D7D} => Chrome.exe
Task: {F3660D28-F1DD-4F9F-963E-6A52F28AE48A} - System32\Tasks\{BD56A2B7-A67C-447F-A8D4-8263B43301E5} => pcalua.exe -a C:\Users\Gwenola\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {FA2D883B-558D-4C15-BCDB-E76B9934C3E7} - System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7 => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-12.exeF/agentregpath='winservice86' /appid=64755 /srcid='002201' /subid='0' /zdata='0' /bic=484C3607B4C1426D9261B6B7FC7835A5IE /verifier=1a0651ee6068642a426ba61f73910947 /installerversion=1_36_01_22 /installationtime=1424697275 /statsdomain=http://stats.ourgenstatsstorage.com /errorsdomain=http://errors.ourgenstatsstorage.com /url=http://update.ourgenstatsstorage.com/verify/index.html /crregname='winservice86' /torpedofilepath C:\Program Files (x86)\winservice86' /asw='0_-2139094784_4096_256' /processid='532D8D8655E0400EA16E03D4E3F0C060PI' /installationtime='1424697275' /installername='C:\Users\Gwenola\AppData\Local\Temp\nshF00A.tmp\Boiozoaw.exe' /mac='3765982650+498139398+70:71:BC:D3:9D:E3' /macs='8bd660c4373580c81b4f0356724d4d09' /sid='S-1-5-21-3669835548-1391938347-304947314-1001' /jsmainfunc=main /ffid=taylorralston@hotmail.com /chid=onhcengeacabehdkdhbdcigfolmmakof /guid1=81e694b6-be4d-4504-bacc-fffa64699da3 /guid2=1e7751dc-8b8a-49f5-b5d6-2ceac4ccc9d5 /guid3=5d0c58aa-b6f0-4bd3-915d-bad2ebc00185 /guid4=7761cb03-4a9d-4262-b046-d12fefa70f1c /guid5=f204d323-6061-4970-9e77-ac21dc6c543d /guid6=b14ca0d9-e7be-4e21-a4bb-3b14ccc277a8 /guid7=1abe4f81-d43f-4ff9-8814-ca26d0118729 /guid8=572eb682-33b3-4b02-bf28-0ff1a7f4da41 /guid9=871072a4-5455-498c-b7f7-cedf73ce532e /guid10=0c59f367-b1c1-4d06-82ee-d78506808f6a /guid11=50be9586-b3bf-4a03-a0f4-5dcb9cddf9bf /guid12=2da6ebaf-4947-40f6-95c3-eeb560e41281 /guid13=2d4d7206-d4be-4a05-895e-18022b713e08 /guid14=7888f940-bbbd-4a1a-b66f-987043c991fe /guid15=f2a9f9ee-0ce2-4533-9084-f42786bccd06 /schedulereinstall=1 /useminfeatures=1 /crossrideragentinstallation=1 /compilationbot=1 /deployagent=0 /maxextfilename=1293297481.mxaddon /installto=513 /verifiertaskname='81e694b6-be4d-4504-bacc-fffa64699da3-12' //fallbackurl='file://C:\Program Files (x86)\winservice86\vhf\index.htm <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user.job => C:\Program Files (x86)\winservice86\81e694b6-be4d-4504-bacc-fffa64699da3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.exeF/agentregpath='winservice86' /appid=64755 /srcid='002201' /subid='0' /zdata='0' /bic=484C3607B4C1426D9261B6B7FC7835A5IE /verifier=1a0651ee6068642a426ba61f73910947 /installerversion=1_36_01_22 /installationtime=1424773903 /statsdomain=http://stats.ourinfoonlinestack.com /errorsdomain=http://errors.ourinfoonlinestack.com /url=http://update.ourinfoonlinestack.com/verify/index.html /crregname='winservice86' /torpedofilepath C:\Program Files (x86)\winservice86' /asw='0_-2139095039_4096_256' /processid='4295601B72B74167972F2638753D5681PI' /installationtime='1424773903' /installername='C:\Users\Gwenola\AppData\Local\Temp\nsrE5FC.tmp\Suoxoyhm.exe' /mac='3765982650+498139398+70:71:BC:D3:9D:E3' /macs='8bd660c4373580c81b4f0356724d4d09' /sid='S-1-5-21-3669835548-1391938347-304947314-1001' /jsmainfunc=main /ffid=taylorralston@hotmail.com /chid=onhcengeacabehdkdhbdcigfolmmakof /guid1=8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7 /guid2=f146d56a-493d-404f-8b1a-db108e8a8ab1 /guid3=d240fbba-0f8a-4b79-8b35-d12161bc5f37 /guid4=43c82bea-cc19-479b-9829-87d51b4504b7 /guid5=9873dfc1-b67b-4edf-a5a6-3f238b495e8e /guid6=77cd381f-6b8d-46a2-9c9a-2169772b52a5 /guid7=467ed708-0ee6-4175-9ccc-ace8dd033d89 /guid8=c2a69466-1b6a-479d-a186-8814fde96b52 /guid9=99aa4c2c-e3e7-4bb2-b632-ba9bc0825061 /guid10=bf83907b-189a-486e-8fff-d75554578db4 /guid11=e12e92ad-b266-417b-9754-9782ba407e45 /guid12=aedde827-dcb6-43a0-bb03-c81ec8d0ba56 /guid13=228a4466-ef61-4dbd-8b80-7931cf119545 /guid14=88b00ed3-4c53-45f6-84c8-5ca6dc337c67 /guid15=e251dada-d684-4c10-aa4d-9707fa46921f /schedulereinstall=1 /useminfeatures=1 /crossrideragentinstallation=1 /compilationbot=1 /deployagent=0 /maxextfilename=1293297481.mxaddon /installto=529 /verifiertaskname='8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12' //fallbackurl='file://C:\Program Files (x86)\winservice86\vhf\index.htm <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.job => C:\Program Files (x86)\winservice86\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.exe <==== ATTENTION
HKU\S-1-5-21-3669835548-1391938347-304947314-1001\...\Run: [WindApp] => C:\Users\Gwenola\AppData\Roaming\Store\WindApp\WindApp.exe /winstartup
HKU\S-1-5-21-3669835548-1391938347-304947314-1001\...\Run: [BoBrowser] => [X]
HKLM-x32\...\Run: [mbot_fr_237] => [X]
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:49215;https=127.0.0.1:49215 [Attention - Possible Proxy Malicieux]
R2 ClaraUpdater; C:\Program Files (x86)\Common Files\ClaraUpdater\ClaraUpdater.exe [328304 2015-02-23] (ClaraLabs)
R2 nozelyci; C:\Users\Gwenola\AppData\Local\7B3F6D80-1424342873-1016-8A7E-C42DC2D0B6AC\snsgC486.tmp [141312 2015-02-19] () [File not signed]
R2 wukytogo; C:\Users\Gwenola\AppData\Roaming\7B3F6D80-1424342769-1016-8A7E-C42DC2D0B6AC\nsg57D7.tmpfs [X]
2015-02-24 11:27 - 2015-02-25 14:18 - 00002432 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user.job
2015-02-24 11:27 - 2015-02-25 14:18 - 00002432 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.job
2015-02-24 11:27 - 2015-02-24 11:32 - 00005462 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5
2015-02-24 11:26 - 2015-02-25 15:32 - 00003124 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.job
2015-02-24 11:26 - 2015-02-25 15:31 - 00005504 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.job
2015-02-24 11:26 - 2015-02-25 15:31 - 00002098 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user.job
2015-02-24 11:26 - 2015-02-25 14:18 - 00005504 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.job
2015-02-24 11:26 - 2015-02-25 14:18 - 00004090 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.job
2015-02-24 11:26 - 2015-02-25 14:18 - 00003460 _____ () C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.job
2015-02-24 11:26 - 2015-02-24 11:32 - 00006490 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7
2015-02-24 11:26 - 2015-02-24 11:32 - 00006152 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6
2015-02-24 11:26 - 2015-02-24 11:31 - 00008534 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7
2015-02-24 11:26 - 2015-02-24 11:31 - 00008532 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6
2015-02-24 11:26 - 2015-02-24 11:31 - 00007120 _____ () C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12
2015-02-24 11:26 - 2015-02-24 11:26 - 00000000 ____D () C:\Program Files (x86)\c2a69466-1b6a-479d-a186-8814fde96b52
2015-02-23 22:32 - 2015-02-23 22:32 - 04762200 _____ (AVAST Software) C:\Users\Gwenola\Downloads\Non confirmé 382016.crdownload
2015-02-23 22:28 - 2015-02-24 11:26 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2015-02-23 14:27 - 2015-02-24 11:45 - 00001099 _____ () C:\Users\Gwenola\Desktop\Continue Live Installation.lnk
2015-02-23 14:13 - 2015-02-23 14:32 - 00001969 _____ () C:\Windows\patsearch.bin
2015-02-23 14:13 - 2015-02-23 14:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf
2015-02-23 13:57 - 2015-02-23 13:57 - 00013432 _____ () C:\Users\Gwenola\Documents\AdwCleaner[S1]2.txt
2015-02-23 13:50 - 2015-02-23 22:16 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\Store
2015-02-23 13:50 - 2015-02-23 14:13 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\WTools
2015-02-23 13:50 - 2015-02-23 13:50 - 00000078 _____ () C:\Users\Gwenola\AppData\Roaming\WindApp.installation.log
2015-02-23 13:50 - 2015-02-23 13:50 - 00000078 _____ () C:\Users\Gwenola\AppData\Roaming\Selection Tools.installation.log
2015-02-23 13:49 - 2015-02-25 15:14 - 00003124 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.job
2015-02-23 13:49 - 2015-02-25 15:14 - 00002098 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user.job
2015-02-23 13:49 - 2015-02-25 14:18 - 00004090 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12.job
2015-02-23 13:49 - 2015-02-25 14:18 - 00003460 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.job
2015-02-23 13:49 - 2015-02-25 14:18 - 00002432 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user.job
2015-02-23 13:49 - 2015-02-25 14:18 - 00002432 _____ () C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5.job
2015-02-23 13:49 - 2015-02-24 11:40 - 00000000 ____D () C:\Program Files (x86)\winservice86
2015-02-23 13:49 - 2015-02-23 22:15 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\Nosibay
2015-02-23 13:49 - 2015-02-23 14:15 - 00005462 _____ () C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5
2015-02-23 13:49 - 2015-02-23 14:14 - 00007120 _____ () C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12
2015-02-23 13:49 - 2015-02-23 14:14 - 00006490 _____ () C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7
2015-02-23 13:49 - 2015-02-23 14:14 - 00006152 _____ () C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6
2015-02-23 13:49 - 2015-02-23 13:50 - 00005783 _____ () C:\Users\Gwenola\AppData\Roaming\Bubble Dock.installation.log
2015-02-23 13:49 - 2015-02-23 13:50 - 00001311 _____ () C:\Users\Gwenola\AppData\Roaming\Bubble Dock.boostrap.log
2015-02-23 13:49 - 2015-02-23 13:49 - 00000097 _____ () C:\Users\Gwenola\AppData\Roaming\WindApp.boostrap.log
2015-02-23 13:49 - 2015-02-23 13:49 - 00000000 ____D () C:\Users\Gwenola\AppData\Local\globalUpdate
2015-02-23 13:44 - 2015-02-23 13:44 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\7B3F6D80-1424699064-1016-8A7E-C42DC2D0B6AC
2015-02-23 13:43 - 2015-02-23 13:43 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-02-23 13:42 - 2015-02-24 13:47 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-02-19 10:47 - 2015-02-24 15:52 - 00000000 ____D () C:\Users\Gwenola\AppData\Local\7B3F6D80-1424342873-1016-8A7E-C42DC2D0B6AC
2015-02-19 10:46 - 2015-02-24 13:47 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\7B3F6D80-1424342769-1016-8A7E-C42DC2D0B6AC
2015-02-03 09:09 - 2015-02-03 09:09 - 00003284 _____ () C:\Windows\System32\Tasks\vlSCzVE8qVk3suW
2015-02-03 09:09 - 2015-02-03 09:09 - 00003244 _____ () C:\Windows\System32\Tasks\lLiBeUev4PMr3wl
2015-02-03 09:09 - 2015-02-03 09:09 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\qIhN6PK
2015-02-03 09:09 - 2015-02-03 09:09 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\6nDS42f
2015-02-03 09:09 - 2015-01-04 20:57 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\GoM1g2K
2015-02-03 09:09 - 2014-11-27 19:10 - 00000000 ____D () C:\Users\Gwenola\AppData\Roaming\Cwju7Jl


"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{051BBB98-0513-4C69-9124-8C07DB7149F5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{051BBB98-0513-4C69-9124-8C07DB7149F5}" => Key deleted successfully.
C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2481D40F-FC1B-4B9E-B376-0CAF3F4FEC48}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2481D40F-FC1B-4B9E-B376-0CAF3F4FEC48}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-statsAdmin => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsAdmin" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2E438E3B-6096-43BC-A9B7-940402F640EB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E438E3B-6096-43BC-A9B7-940402F640EB}" => Key deleted successfully.
C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\81e694b6-be4d-4504-bacc-fffa64699da3-5_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{30453DD7-5EB7-4426-BBFD-9C227AFDD3DE}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{30453DD7-5EB7-4426-BBFD-9C227AFDD3DE}" => Key deleted successfully.
C:\Windows\System32\Tasks\{453CC4DE-6547-4776-B62B-6D0C7D3EF94A} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{453CC4DE-6547-4776-B62B-6D0C7D3EF94A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{308FA64E-9796-497A-BE86-5B448167DB5A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{308FA64E-9796-497A-BE86-5B448167DB5A}" => Key deleted successfully.
C:\Windows\System32\Tasks\zqZNoapDuWIYFH4 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\zqZNoapDuWIYFH4" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{43435B52-907C-4610-92E3-8E7CE7A24873}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43435B52-907C-4610-92E3-8E7CE7A24873}" => Key deleted successfully.
C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\81e694b6-be4d-4504-bacc-fffa64699da3-10_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{46D01E03-734E-4323-8803-1ECD25E422E8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{46D01E03-734E-4323-8803-1ECD25E422E8}" => Key deleted successfully.
C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4D4B1C59-EDE9-4C38-846E-1C620AAA5063}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4D4B1C59-EDE9-4C38-846E-1C620AAA5063}" => Key deleted successfully.
C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\81e694b6-be4d-4504-bacc-fffa64699da3-5" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{68AC392D-FA10-4166-83DD-696E6618E89F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{68AC392D-FA10-4166-83DD-696E6618E89F}" => Key deleted successfully.
C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6C3D02F6-FD0B-47E9-9D4B-208DA557AE64}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C3D02F6-FD0B-47E9-9D4B-208DA557AE64}" => Key deleted successfully.
C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6F82B938-CC38-4C19-9D89-A97384E5A48E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6F82B938-CC38-4C19-9D89-A97384E5A48E}" => Key deleted successfully.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{78E98419-8D85-4CCC-87C4-847AEACED3C8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78E98419-8D85-4CCC-87C4-847AEACED3C8}" => Key deleted successfully.
C:\Windows\System32\Tasks\{E5EB411F-3C46-4513-969E-2A421BF48874} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E5EB411F-3C46-4513-969E-2A421BF48874}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{819D5534-FF0B-4E30-9A01-F897F4906849}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{819D5534-FF0B-4E30-9A01-F897F4906849}" => Key deleted successfully.
C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\81e694b6-be4d-4504-bacc-fffa64699da3-12" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8CFD3E25-080C-41C3-884C-A8D3599EC82A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8CFD3E25-080C-41C3-884C-A8D3599EC82A}" => Key deleted successfully.
C:\Windows\System32\Tasks\avast! Emergency Update => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avast! Emergency Update" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{977589C5-7128-496F-A1D6-777623A68702}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{977589C5-7128-496F-A1D6-777623A68702}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-fIGbfFfEGCfFGEGbfCfE => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-fIGbfFfEGCfFGEGbfCfE" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A04DF379-D121-4FA3-8B24-9D24864F1D8D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A04DF379-D121-4FA3-8B24-9D24864F1D8D}" => Key deleted successfully.
C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A0E9D6B2-9AE3-493E-9AA9-7CB8C72AB678}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A0E9D6B2-9AE3-493E-9AA9-7CB8C72AB678}" => Key deleted successfully.
C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A8BEC284-8CAA-4431-AD87-765454ED244E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8BEC284-8CAA-4431-AD87-765454ED244E}" => Key deleted successfully.
C:\Windows\System32\Tasks\lLiBeUev4PMr3wl => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\lLiBeUev4PMr3wl" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BF1AFEF3-F263-44AA-B881-28BBD3DC4D0E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BF1AFEF3-F263-44AA-B881-28BBD3DC4D0E}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C350B5B2-A81E-486B-8A1A-846C40335280}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C350B5B2-A81E-486B-8A1A-846C40335280}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-GGfIfEGCfEGbGffIfCfEGC" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C9BFE23F-57D3-44FA-97AC-7923E0A84452}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C9BFE23F-57D3-44FA-97AC-7923E0A84452}" => Key deleted successfully.
C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\81e694b6-be4d-4504-bacc-fffa64699da3-1-7" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CB1B9429-F2C3-4472-A2F5-9E074577822F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB1B9429-F2C3-4472-A2F5-9E074577822F}" => Key deleted successfully.
C:\Windows\System32\Tasks\PenWes => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PenWes" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CC502D11-F5F6-4A78-8668-01E5B7162F1B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC502D11-F5F6-4A78-8668-01E5B7162F1B}" => Key deleted successfully.
C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D9265BE7-BA08-455A-B5A9-0A37EB4E38F4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D9265BE7-BA08-455A-B5A9-0A37EB4E38F4}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-statsSystem => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsSystem" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DF0DD35C-372A-4C2E-864E-FC9D609D2DA9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF0DD35C-372A-4C2E-864E-FC9D609D2DA9}" => Key deleted successfully.
C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\81e694b6-be4d-4504-bacc-fffa64699da3-1-6" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E27F7D2D-1AF4-476F-8849-A1B51775644D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E27F7D2D-1AF4-476F-8849-A1B51775644D}" => Key deleted successfully.
C:\Windows\System32\Tasks\vlSCzVE8qVk3suW => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\vlSCzVE8qVk3suW" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E66BFE00-2477-48B4-98FA-D94F825A85F9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E66BFE00-2477-48B4-98FA-D94F825A85F9}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E9794187-0FD1-4B67-8809-0A4A7ED52766}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E9794187-0FD1-4B67-8809-0A4A7ED52766}" => Key deleted successfully.
C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ECE47BFE-24E6-4632-8FDD-B44B92FBCF16}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ECE47BFE-24E6-4632-8FDD-B44B92FBCF16}" => Key deleted successfully.
C:\Windows\System32\Tasks\{72C7D207-2BA3-4538-8EC2-EEEDF6E07D7D} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{72C7D207-2BA3-4538-8EC2-EEEDF6E07D7D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3660D28-F1DD-4F9F-963E-6A52F28AE48A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3660D28-F1DD-4F9F-963E-6A52F28AE48A}" => Key deleted successfully.
C:\Windows\System32\Tasks\{BD56A2B7-A67C-447F-A8D4-8263B43301E5} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BD56A2B7-A67C-447F-A8D4-8263B43301E5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FA2D883B-558D-4C15-BCDB-E76B9934C3E7}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA2D883B-558D-4C15-BCDB-E76B9934C3E7}" => Key deleted successfully.
C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7" => Key deleted successfully.
C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.job => Moved successfully.
C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.job => Moved successfully.
C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user.job => Moved successfully.
C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12.job => Moved successfully.
C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5.job => Moved successfully.
C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user.job => Moved successfully.
C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.job => Moved successfully.
C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.job => Moved successfully.
C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user.job => Moved successfully.
C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.job => Moved successfully.
C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.job => Moved successfully.
C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user.job => Moved successfully.
C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.job => Moved successfully.
C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.job => Moved successfully.
HKU\S-1-5-21-3669835548-1391938347-304947314-1001\Software\Microsoft\Windows\CurrentVersion\Run\\WindApp => value deleted successfully.
HKU\S-1-5-21-3669835548-1391938347-304947314-1001\Software\Microsoft\Windows\CurrentVersion\Run\\BoBrowser => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mbot_fr_237 => value deleted successfully.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
ClaraUpdater => Service stopped successfully.
ClaraUpdater => Service deleted successfully.
nozelyci => Service stopped successfully.
nozelyci => Service deleted successfully.
wukytogo => Service stopped successfully.
wukytogo => Service deleted successfully.
"C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5_user.job" => File/Directory not found.
"C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5.job" => File/Directory not found.
"C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-5" => File/Directory not found.
"C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6.job" => File/Directory not found.
"C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6.job" => File/Directory not found.
"C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-10_user.job" => File/Directory not found.
"C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7.job" => File/Directory not found.
"C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12.job" => File/Directory not found.
"C:\Windows\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7.job" => File/Directory not found.
"C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-7" => File/Directory not found.
"C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-1-6" => File/Directory not found.
"C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-7" => File/Directory not found.
"C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-6" => File/Directory not found.
"C:\Windows\System32\Tasks\8b5b3f65-3f7a-4b60-8ad1-a20cecb53ee7-12" => File/Directory not found.
C:\Program Files (x86)\c2a69466-1b6a-479d-a186-8814fde96b52 => Moved successfully.
C:\Users\Gwenola\Downloads\Non confirmé 382016.crdownload => Moved successfully.
C:\Program Files (x86)\globalUpdate => Moved successfully.
C:\Users\Gwenola\Desktop\Continue Live Installation.lnk => Moved successfully.
C:\Windows\patsearch.bin => Moved successfully.
C:\Windows\system32\Drivers\Msft_Kernel_webTinstMK_01009.Wdf => Moved successfully.
C:\Users\Gwenola\Documents\AdwCleaner[S1]2.txt => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\Store => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\WTools => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\WindApp.installation.log => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\Selection Tools.installation.log => Moved successfully.
"C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6.job" => File/Directory not found.
"C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-10_user.job" => File/Directory not found.
"C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12.job" => File/Directory not found.
"C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7.job" => File/Directory not found.
"C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5_user.job" => File/Directory not found.
"C:\Windows\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5.job" => File/Directory not found.
C:\Program Files (x86)\winservice86 => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\Nosibay => Moved successfully.
"C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-5" => File/Directory not found.
"C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-12" => File/Directory not found.
"C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-7" => File/Directory not found.
"C:\Windows\System32\Tasks\81e694b6-be4d-4504-bacc-fffa64699da3-1-6" => File/Directory not found.
C:\Users\Gwenola\AppData\Roaming\Bubble Dock.installation.log => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\Bubble Dock.boostrap.log => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\WindApp.boostrap.log => Moved successfully.
C:\Users\Gwenola\AppData\Local\globalUpdate => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\7B3F6D80-1424699064-1016-8A7E-C42DC2D0B6AC => Moved successfully.
C:\ProgramData\IHProtectUpDate => Moved successfully.
C:\ProgramData\WindowsMangerProtect => Moved successfully.
C:\Users\Gwenola\AppData\Local\7B3F6D80-1424342873-1016-8A7E-C42DC2D0B6AC => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\7B3F6D80-1424342769-1016-8A7E-C42DC2D0B6AC => Moved successfully.
"C:\Windows\System32\Tasks\vlSCzVE8qVk3suW" => File/Directory not found.
"C:\Windows\System32\Tasks\lLiBeUev4PMr3wl" => File/Directory not found.
C:\Users\Gwenola\AppData\Roaming\qIhN6PK => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\6nDS42f => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\GoM1g2K => Moved successfully.
C:\Users\Gwenola\AppData\Roaming\Cwju7Jl => Moved successfully.

End of Fixlog 21:34:25

0
Réponse 3 / 4
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 628
25 févr. 2015 à 22:37
ok réinitialise bien les navigateurs WEB comme indiqué à la fin de la procédure puis histoire de :



Scan Malwarebytes (temps : environ 40min de scan):
==================================================
Télécharge et installe Malwarebyte : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Mets le à jour puis lance un examen.

A la fin du scan, clic sur "Mettre tout en quarantaine" en bas à gauche.
Redémarre l'ordinateur si besoin.
Après redémarrage, relance Malwarebytes.
Vas chercher le rapport dans l'onglet Historique.
A gauche Journal des applications.
DAns la liste prends le scan effectué à l'instant "Journal d'examen"
Doube-clic sur l'examen dans la liste.
Puis en bas Copier dans le presse papier
Vas sur http://pjjoint.malekal.com et en bas, clic droit / coller pour coller le rapport du scan Malwarebytes.
Clic sur envoyer.
Dans un nouveau message ici en réponse, donne le lien pjjoint afin de pouvoir consulter le rapport.


0
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015
26 févr. 2015 à 14:45
https://pjjoint.malekal.com/files.php?id=20150226_l13r14t13m15k10
je pense c'est bon !
0
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015
26 févr. 2015 à 14:46
protection log : https://pjjoint.malekal.com/files.php?id=20150226_8f5i14y9y6
0
Réponse 4 / 4
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 628
26 févr. 2015 à 15:42
ok =)


Quelques conseils :


Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=


Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/


Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html


0
titilolajulia Messages postés 11 Date d'inscription lundi 23 février 2015 Statut Membre Dernière intervention 26 février 2015
26 févr. 2015 à 16:40
du coup c'est bon, c'est finis ?? Merciiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiii
vraiment, merci beaucoup alors !!!!!
0

Discussions similaires

winservice86 et QuickRef : rapport adwcleaner
JOHANNA -
Malekal_morte- -

11 réponses