Istartsurf - windows manager protect - xtab - ... reviennent!
Résolu/Fermé
A voir également:
- Istartsurf - windows manager protect - xtab - ... reviennent!
- Clé windows 10 gratuit - Guide
- Windows 10 gratuit - Guide
- Windows 12 - Guide
- Windows ne démarre pas - Guide
- Pc manager - Télécharger - Optimisation
5 réponses
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
22 mars 2015 à 12:14
22 mars 2015 à 12:14
Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix
Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :
HKLM\...\Run: [mbot_fr_552] => [X]
HKLM\...\Run: [StormWatch] => C:\Program Files\StormWatch\StormWatchApp.exe
HKLM\...\Run: [gmsd_fr_327] => [X]
HKLM\...\Run: [WinCheck] => C:\Users\YUKSEL\AppData\Local\BC323E12-1426978653-DD11-AE7C-001EECF106AA\bnssE8AD.exe [286208 2015-03-21] ()
HKLM\...\RunOnce: [Update] => C:\Users\YUKSEL\AppData\Roaming\VOPackage\VOPackage.exe [296817 2015-03-21] ( )
Startup: C:\Users\YUKSEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
FF user.js: detected! => C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\user.js [2015-03-21]
FF Extension: foxcconvertergmailcom - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\foxcconverter@gmail.com [2015-02-25]
FF Extension: Fast Start - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\istart_ffnt@gmail.com [2015-03-21]
FF Extension: jid1fQpPMP6uBdJNCgjetpack - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\jid1-fQpPMP6uBdJNCg@jetpack [2015-03-21]
FF Extension: sortbookmarksbouanto - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\sortbookmarks@bouanto [2015-03-21]
FF Extension: winservice86 - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\taylorralston@hotmail.com [2015-03-21]
FF HKLM\...\Firefox\Extensions: [istart_ffnt@gmail.com] - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\extensions\istart_ffnt@gmail.com
S2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [53832 2014-11-25] (Just Develop It) <==== ATTENTION
R2 bLyxRJNjjFA; C:\ProgramData\xXntfukmw\bLyxRJNjjFA.exe [2733536 2015-03-15] (Useful Technology)
R2 gobupebo; C:\Users\YUKSEL\AppData\Local\BC323E12-1426978797-DD11-AE7C-001EECF106AA\cnss283C.tmp [70656 2015-03-21] () [File not signed]
R2 cepomeqy; C:\Users\YUKSEL\AppData\Local\BC323E12-1426451596-DD11-AE7C-001EECF106AA\snseB7A0.tmp [100864 2015-03-15] () [File not signed]
R2 IHProtect Service; C:\Program Files\XTab\ProtectService.exe [158816 2015-03-16] (XTab system)
R2 jumosegy; C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426974148-DD11-AE7C-001EECF106AA\jnsa7905.tmp [128512 2015-03-21] () [File not signed]
R2 lizucusy; C:\Users\YUKSEL\AppData\Local\BC323E12-1426978824-DD11-AE7C-001EECF106AA\snst759F.tmp [89088 2015-03-21] () [File not signed]
R2 sonunevo; C:\Users\YUKSEL\AppData\Local\BC323E12-1426943014-DD11-AE7C-001EECF106AA\insi8E9B.tmp [133120 2015-03-21] () [File not signed]
R2 vuqevezo; C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426447634-DD11-AE7C-001EECF106AA\jnsnD04C.tmp [169984 2015-03-15] () [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [493712 2015-03-21] (SysTool PasSame LIMITED)
R2 witojuxu; C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426974148-DD11-AE7C-001EECF106AA\nsw2485.tmp [231936 2015-03-22] () [File not signed]
R2 wysecymu; C:\Users\YUKSEL\AppData\Local\BC323E12-1426451582-DD11-AE7C-001EECF106AA\cnsj7D8F.tmp [94720 2015-03-15] () [File not signed]
S2 3c133651; C:\Windows\system32\rundll32.exe c:\Program Files\Optimizer Pro 3.56\OptProMon.dll,ENT
S2 StormWatch Update Service; C:\Program Files\StormWatch\StormWatchSrv.exe [X]
2015-03-22 10:48 - 2015-03-22 10:48 - 00001091 _____ () C:\Users\YUKSEL\Desktop\Continue Live Installation.lnk
2015-03-22 10:27 - 2015-03-22 10:27 - 00000000 ____D () C:\Users\YUKSEL\SupTab
2015-03-22 10:48 - 2015-03-22 10:48 - 00001091 _____ () C:\Users\YUKSEL\Desktop\Continue Live Installation.lnk
2015-03-22 10:27 - 2015-03-22 10:27 - 00000000 ____D () C:\Users\YUKSEL\SupTab
2015-03-22 10:24 - 2015-03-22 10:24 - 00001915 _____ () C:\Users\YUKSEL\Desktop\Sync Folder.lnk
2015-03-22 10:23 - 2015-03-22 10:23 - 02171392 _____ () C:\Users\YUKSEL\Desktop\AdwCleaner.exe
2015-03-22 10:23 - 2015-03-22 10:23 - 00001027 _____ () C:\Users\YUKSEL\Desktop\MyPC Backup.lnk
2015-03-22 10:23 - 2015-03-22 10:23 - 00000551 _____ () C:\Users\YUKSEL\Downloads\Setup .website
2015-03-22 10:23 - 2015-03-22 10:23 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2015-03-22 10:21 - 2015-03-22 10:24 - 00000000 ____D () C:\Program Files\MyPC Backup
2015-03-22 10:13 - 2015-03-22 10:14 - 01135104 _____ (Farbar) C:\Users\YUKSEL\Desktop\FRST.exe
2015-03-22 10:01 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\VOPackage
2015-03-22 10:01 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-03-22 10:01 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1427014884-DD11-AE7C-001EECF106AA
2015-03-21 23:52 - 2015-03-21 23:52 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-03-21 23:52 - 2015-03-21 23:52 - 00000000 ____D () C:\Program Files\XTab
2015-03-21 23:51 - 2015-03-22 10:28 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BreakingNewsAlert
2015-03-21 23:51 - 2015-03-21 23:51 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\istartsurf
2015-03-21 23:51 - 2015-03-21 23:51 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-03-21 23:00 - 2015-03-21 23:41 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426978824-DD11-AE7C-001EECF106AA
2015-03-21 22:59 - 2015-03-21 23:00 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426978797-DD11-AE7C-001EECF106AA
2015-03-21 22:57 - 2015-03-21 22:58 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426978653-DD11-AE7C-001EECF106AA
2015-03-21 22:55 - 2015-03-22 10:55 - 00002418 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5_user.job
2015-03-21 22:55 - 2015-03-22 10:55 - 00002418 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5.job
2015-03-21 22:54 - 2015-03-22 10:59 - 00000940 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-03-21 22:54 - 2015-03-22 10:54 - 00003446 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-7.job
2015-03-21 22:54 - 2015-03-22 10:54 - 00003110 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-6.job
2015-03-21 22:53 - 2015-03-21 23:36 - 00000936 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-03-21 22:52 - 2015-03-22 10:52 - 00005490 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-6.job
2015-03-21 22:52 - 2015-03-22 10:52 - 00005154 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-7.job
2015-03-21 22:52 - 2015-03-22 10:52 - 00002084 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-10_user.job
2015-03-21 22:52 - 2015-03-21 22:53 - 00000000 ____D () C:\Program Files\globalUpdate
2015-03-21 22:52 - 2015-03-21 22:53 - 00000000 ____D () C:\Program Files\d72034bb-b797-49b7-a92d-058cf5adfd69
2015-03-21 22:52 - 2015-03-21 22:52 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\globalUpdate
2015-03-21 22:51 - 2015-03-21 22:55 - 00000000 ____D () C:\Program Files\winservice86
2015-03-21 22:42 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426974148-DD11-AE7C-001EECF106AA
2015-03-21 17:46 - 2015-03-21 17:46 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426956375-DD11-AE7C-001EECF106AA
2015-03-21 16:20 - 2015-03-21 23:36 - 00001342 _____ () C:\Windows\Tasks\KOZVWN.job
2015-03-21 16:20 - 2015-03-21 16:20 - 01509888 _____ (Video HDV21.03) C:\Users\YUKSEL\AppData\Roaming\KOZVWN.exe
2015-03-21 16:20 - 2015-03-21 16:20 - 00613255 _____ (CMI Limited) C:\Users\YUKSEL\AppData\Local\nsb1872.tmp
2015-03-21 16:19 - 2015-03-21 23:36 - 00001340 _____ () C:\Windows\Tasks\DRNTL.job
2015-03-21 16:18 - 2015-03-21 16:18 - 02006016 _____ (Video HDV21.03) C:\Users\YUKSEL\AppData\Roaming\DRNTL.exe
2015-03-21 15:57 - 2015-03-21 23:36 - 00001340 _____ () C:\Windows\Tasks\YLQSN.job
2015-03-21 15:57 - 2015-03-21 15:57 - 01315328 _____ (Cinema PlusV21.03) C:\Users\YUKSEL\AppData\Roaming\YLQSN.exe
2015-03-21 15:55 - 2015-03-21 23:36 - 00001342 _____ () C:\Windows\Tasks\VCGISA.job
2015-03-21 15:55 - 2015-03-21 15:55 - 01945600 _____ (Cinema PlusV21.03) C:\Users\YUKSEL\AppData\Roaming\VCGISA.exe
2015-03-21 15:38 - 2015-03-21 15:38 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426948679-DD11-AE7C-001EECF106AA
2015-03-21 14:40 - 2015-03-21 14:40 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426945235-DD11-AE7C-001EECF106AA
2015-03-21 13:58 - 2015-03-21 13:57 - 00613255 _____ (CMI Limited) C:\Users\YUKSEL\AppData\Local\nsi95FB.tmp
2015-03-21 13:47 - 2015-03-21 23:36 - 00000004 _____ () C:\Windows\system32\029B560A371F4E00AB32838EBC01B9E7
2015-03-21 13:07 - 2015-03-21 15:59 - 00008712 _____ () C:\Windows\system32\VCLOff.ini
2015-03-21 13:06 - 2015-03-20 14:54 - 00335064 _____ (VC Corporation) C:\Windows\system32\VCL.dll
2015-03-21 13:03 - 2015-03-21 13:03 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426943014-DD11-AE7C-001EECF106AA
2015-03-21 12:46 - 2015-03-21 12:46 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426938388-DD11-AE7C-001EECF106AA
2015-03-21 11:30 - 2015-03-21 11:30 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426933854-DD11-AE7C-001EECF106AA
2015-03-21 10:10 - 2015-03-21 10:10 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426929049-DD11-AE7C-001EECF106AA
2015-03-15 20:41 - 2015-03-15 20:41 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\MiniGet
2015-03-15 20:37 - 2015-03-15 20:49 - 00000000 ____D () C:\ProgramData\{3e62a1c9-7ae5-f554-3e62-2a1c97ae8725}
2015-03-15 20:33 - 2015-03-21 23:41 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426451596-DD11-AE7C-001EECF106AA
2015-03-15 20:33 - 2015-03-15 20:33 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426451582-DD11-AE7C-001EECF106AA
2015-03-15 20:30 - 2015-03-15 20:30 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426451435-DD11-AE7C-001EECF106AA
2015-03-15 20:29 - 2015-03-15 20:32 - 00000000 ____D () C:\ProgramData\xXntfukmw
2015-03-15 20:28 - 2015-03-22 10:22 - 00000237 _____ () C:\Users\YUKSEL\AppData\Local\recently-fix.db
2015-03-15 20:28 - 2015-03-15 20:28 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\T79Wy2t
2015-03-15 20:28 - 2015-03-15 20:28 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\KvSGLyE
2015-03-15 20:28 - 2015-03-15 20:28 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\758pgkN
2015-03-15 20:28 - 2015-03-15 20:28 - 00000000 ____D () C:\ProgramData\atjs
2015-03-15 20:27 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426447634-DD11-AE7C-001EECF106AA
2015-03-15 20:27 - 2015-03-15 20:27 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\ninjaVOD
2015-03-09 22:30 - 2015-03-09 22:30 - 00005487 _____ () C:\Users\YUKSEL\AppData\Roaming\VCGISA
2015-03-09 22:30 - 2015-03-09 22:30 - 00005487 _____ () C:\Users\YUKSEL\AppData\Roaming\DRNTL
2015-02-22 11:21 - 2015-02-22 11:23 - 00000000 ____D () C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
2015-02-20 12:41 - 2015-02-20 12:41 - 00628496 _____ (CMI Limited) C:\Users\YUKSEL\AppData\Local\nst7F7A.tmp
2015-02-20 12:00 - 2015-02-20 12:00 - 00613057 _____ (CMI Limited) C:\Users\YUKSEL\AppData\Local\nsj7206.tmp
2015-02-20 11:05 - 2015-02-20 11:05 - 00205776 _____ () C:\Windows\system32\11.exe
2015-02-20 11:03 - 2015-03-12 03:57 - 00000000 ____D () C:\ProgramData\{710bd651-fb75-c8a4-710b-bd651fb75947}
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-6.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-7.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-10_user.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5_user.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-6.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-7.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\DRNTL.job => C:\Users\YUKSEL\AppData\Roaming\DRNTL.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\KOZVWN.job => C:\Users\YUKSEL\AppData\Roaming\KOZVWN.exe <==== ATTENTION
Task: C:\Windows\Tasks\VCGISA.job => C:\Users\YUKSEL\AppData\Roaming\VCGISA.exe <==== ATTENTION
Task: C:\Windows\Tasks\YLQSN.job => C:\Users\YUKSEL\AppData\Roaming\YLQSN.exe <==== ATTENTION
Task: {060DD3F4-166A-498D-A169-D1811D7057C4} - System32\Tasks\KOZVWN => C:\Users\YUKSEL\AppData\Roaming\KOZVWN.exe [2015-03-21] (Video HDV21.03) <==== ATTENTION
Task: {12D5782C-774E-47D2-BE99-B814EA719F5D} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-7 => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-1-7.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {192F5BDF-C9BE-45F2-AE7A-1AE2332CAA06} - System32\Tasks\ninja VOD => C:\Users\YUKSEL\AppData\Local\ninjaVOD\ninja VOD\1.3.17.3\ninjavod.exe
Task: {1C66D49A-D8D4-4FF5-9D4C-E33A9DB8858B} - System32\Tasks\{FA732E44-BFAE-454A-9751-98226E501A82} => pcalua.exe -a "C:\Users\YUKSEL\AppData\Local\Temp\Rar$EXa0.452\Adobe CS4\payloads\AdobeAIR1.0\AdobeAIRInstaller.exe" -d "C:\Program Files\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02" -c -silent
Task: {1CB5B8FE-6764-42F3-BA1C-9875F24D76FA} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-6 => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-6.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {2124417A-C6E2-4A49-A7B8-43A4407D115F} - System32\Tasks\VCGISA => C:\Users\YUKSEL\AppData\Roaming\VCGISA.exe [2015-03-21] (Cinema PlusV21.03) <==== ATTENTION
Task: {3D536C8E-2824-41C5-A987-F52D16ED77AB} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2015-03-21] (globalUpdate) <==== ATTENTION
Task: {4BD6E127-56E4-4A7C-8F20-8ED1A7ADCEED} - System32\Tasks\{07BB39FF-09D2-4376-9E11-F6988D988E9C} => C:\Users\YUKSEL\Desktop\adobe master cs4\Adobe CS4 Master Collection\Adobe CS4\Setup.exe
Task: {5E3686BE-A13A-47CC-92E6-C7CC70D11EA9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {69D3892B-FDDA-4DBB-A1C8-40F1B0523190} - System32\Tasks\PNPGLZVDA => C:\ProgramData\0dfcafffadba49a298b588510cb87bf9\0dfcafffadba49a298b588510cb87bf9.exe
Task: {6B55B027-4EF9-4106-BDAD-12F628036429} - System32\Tasks\{7F0833DC-E405-4247-A636-EFB101D0CA26} => pcalua.exe -a C:\Users\YUKSEL\Documents\sp46032.exe -d C:\Users\YUKSEL\Documents
Task: {7085C26F-CEB8-4BFA-B9EE-26D70CA15294} - System32\Tasks\{EA484D14-DE67-4DBE-815D-2153E05A0DC2} => pcalua.exe -a C:\Users\YUKSEL\AppData\Roaming\omniboxes\UninstallManager.exe -c -ptid=amt
Task: {71BF1558-AF42-4647-8FDE-9B1EDC3B7CD2} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2015-03-21] (globalUpdate) <==== ATTENTION
Task: {75F02FB5-DB2E-4374-B513-E9D9652D6E66} - System32\Tasks\{5726A5B8-2EC4-4BC9-83A5-9BEDAED04136} => pcalua.exe -a C:\Users\YUKSEL\Desktop\A309_VistaLogo_Drv_V1.0.x.40_Direct_Install.exe -d C:\Users\YUKSEL\Desktop
Task: {76953474-8C62-4F64-99F5-E06CD81DAB7A} - System32\Tasks\YLQSN => C:\Users\YUKSEL\AppData\Roaming\YLQSN.exe [2015-03-21] (Cinema PlusV21.03) <==== ATTENTION
Task: {82F99A5F-7663-4940-B4C6-D1493BD826C4} - System32\Tasks\{FDFE9776-A653-4FAF-A82C-5836DB5C9CEF} => pcalua.exe -a C:\Users\YUKSEL\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=ium6
Task: {8578A72C-2CBD-4E37-88AE-098F024A0883} - System32\Tasks\krQvNK3kA8xElLS => C:\Users\YUKSEL\AppData\Roaming\KvSGLyE\P6E5o1E.exe [2015-03-15] ( )
Task: {926F4610-B727-4935-87ED-CA2227887414} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-7 => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-7.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {97734D60-CCD9-43BF-825D-8C11741E8102} - System32\Tasks\DRNTL => C:\Users\YUKSEL\AppData\Roaming\DRNTL.exe [2015-03-21] (Video HDV21.03) <==== ATTENTION
Task: {A5DB17D4-0288-4831-9246-7F83AC5C7A79} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5_user => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-5.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {AAFDEEC8-47A0-4BA5-8E05-424CD797948C} - System32\Tasks\{C0D21CB1-F5CB-4488-9788-50A6DEF5BE74} => pcalua.exe -a C:\Users\YUKSEL\Documents\sp45500.exe -d C:\Users\YUKSEL\Documents
Task: {AD2255BC-2E5B-43EF-B087-0635B6651E3E} - System32\Tasks\ZdCKe6tqxdhFojz => C:\Users\YUKSEL\AppData\Roaming\758pgkN\qVa8gyX.exe [2015-03-15] ( )
Task: {C97D579B-E012-480A-BC78-B5D7CD039AC4} - System32\Tasks\ninja VOD Updater => C:\Users\YUKSEL\AppData\Local\ninjaVOD\ninja VOD\1.3.17.3\ninjasetup.exe
Task: {CD1AD785-362A-4CFB-9163-3C5BB1F207F8} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {D2695D6B-6D13-4171-87AF-42C3D024AA7E} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-10_user => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-10.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {DDDA10AE-AB15-4C5B-B556-B27293822DA8} - System32\Tasks\4ClZResVfOa907w => C:\Users\YUKSEL\AppData\Roaming\T79Wy2t\s2s6UAT.exe [2015-03-15] ( )
Task: {F06E88D9-8468-41E2-A13D-F35ACB9CAE6E} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5 => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-5.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {FA0AF908-E4A4-4FE8-873D-1C494730F437} - System32\Tasks\UDZXH => C:\ProgramData\869b78dd0a6f49f08fdae40c91a846c4\869b78dd0a6f49f08fdae40c91a846c4.exe
cmd: netsh winsock reset
Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.
Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.
Redémarre l'ordinateur
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix
Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :
HKLM\...\Run: [mbot_fr_552] => [X]
HKLM\...\Run: [StormWatch] => C:\Program Files\StormWatch\StormWatchApp.exe
HKLM\...\Run: [gmsd_fr_327] => [X]
HKLM\...\Run: [WinCheck] => C:\Users\YUKSEL\AppData\Local\BC323E12-1426978653-DD11-AE7C-001EECF106AA\bnssE8AD.exe [286208 2015-03-21] ()
HKLM\...\RunOnce: [Update] => C:\Users\YUKSEL\AppData\Roaming\VOPackage\VOPackage.exe [296817 2015-03-21] ( )
Startup: C:\Users\YUKSEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
FF user.js: detected! => C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\user.js [2015-03-21]
FF Extension: foxcconvertergmailcom - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\foxcconverter@gmail.com [2015-02-25]
FF Extension: Fast Start - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\istart_ffnt@gmail.com [2015-03-21]
FF Extension: jid1fQpPMP6uBdJNCgjetpack - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\jid1-fQpPMP6uBdJNCg@jetpack [2015-03-21]
FF Extension: sortbookmarksbouanto - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\sortbookmarks@bouanto [2015-03-21]
FF Extension: winservice86 - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\Extensions\taylorralston@hotmail.com [2015-03-21]
FF HKLM\...\Firefox\Extensions: [istart_ffnt@gmail.com] - C:\Users\YUKSEL\AppData\Roaming\Mozilla\Firefox\Profiles\a7npdqxw.default\extensions\istart_ffnt@gmail.com
S2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [53832 2014-11-25] (Just Develop It) <==== ATTENTION
R2 bLyxRJNjjFA; C:\ProgramData\xXntfukmw\bLyxRJNjjFA.exe [2733536 2015-03-15] (Useful Technology)
R2 gobupebo; C:\Users\YUKSEL\AppData\Local\BC323E12-1426978797-DD11-AE7C-001EECF106AA\cnss283C.tmp [70656 2015-03-21] () [File not signed]
R2 cepomeqy; C:\Users\YUKSEL\AppData\Local\BC323E12-1426451596-DD11-AE7C-001EECF106AA\snseB7A0.tmp [100864 2015-03-15] () [File not signed]
R2 IHProtect Service; C:\Program Files\XTab\ProtectService.exe [158816 2015-03-16] (XTab system)
R2 jumosegy; C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426974148-DD11-AE7C-001EECF106AA\jnsa7905.tmp [128512 2015-03-21] () [File not signed]
R2 lizucusy; C:\Users\YUKSEL\AppData\Local\BC323E12-1426978824-DD11-AE7C-001EECF106AA\snst759F.tmp [89088 2015-03-21] () [File not signed]
R2 sonunevo; C:\Users\YUKSEL\AppData\Local\BC323E12-1426943014-DD11-AE7C-001EECF106AA\insi8E9B.tmp [133120 2015-03-21] () [File not signed]
R2 vuqevezo; C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426447634-DD11-AE7C-001EECF106AA\jnsnD04C.tmp [169984 2015-03-15] () [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [493712 2015-03-21] (SysTool PasSame LIMITED)
R2 witojuxu; C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426974148-DD11-AE7C-001EECF106AA\nsw2485.tmp [231936 2015-03-22] () [File not signed]
R2 wysecymu; C:\Users\YUKSEL\AppData\Local\BC323E12-1426451582-DD11-AE7C-001EECF106AA\cnsj7D8F.tmp [94720 2015-03-15] () [File not signed]
S2 3c133651; C:\Windows\system32\rundll32.exe c:\Program Files\Optimizer Pro 3.56\OptProMon.dll,ENT
S2 StormWatch Update Service; C:\Program Files\StormWatch\StormWatchSrv.exe [X]
2015-03-22 10:48 - 2015-03-22 10:48 - 00001091 _____ () C:\Users\YUKSEL\Desktop\Continue Live Installation.lnk
2015-03-22 10:27 - 2015-03-22 10:27 - 00000000 ____D () C:\Users\YUKSEL\SupTab
2015-03-22 10:48 - 2015-03-22 10:48 - 00001091 _____ () C:\Users\YUKSEL\Desktop\Continue Live Installation.lnk
2015-03-22 10:27 - 2015-03-22 10:27 - 00000000 ____D () C:\Users\YUKSEL\SupTab
2015-03-22 10:24 - 2015-03-22 10:24 - 00001915 _____ () C:\Users\YUKSEL\Desktop\Sync Folder.lnk
2015-03-22 10:23 - 2015-03-22 10:23 - 02171392 _____ () C:\Users\YUKSEL\Desktop\AdwCleaner.exe
2015-03-22 10:23 - 2015-03-22 10:23 - 00001027 _____ () C:\Users\YUKSEL\Desktop\MyPC Backup.lnk
2015-03-22 10:23 - 2015-03-22 10:23 - 00000551 _____ () C:\Users\YUKSEL\Downloads\Setup .website
2015-03-22 10:23 - 2015-03-22 10:23 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2015-03-22 10:21 - 2015-03-22 10:24 - 00000000 ____D () C:\Program Files\MyPC Backup
2015-03-22 10:13 - 2015-03-22 10:14 - 01135104 _____ (Farbar) C:\Users\YUKSEL\Desktop\FRST.exe
2015-03-22 10:01 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\VOPackage
2015-03-22 10:01 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-03-22 10:01 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1427014884-DD11-AE7C-001EECF106AA
2015-03-21 23:52 - 2015-03-21 23:52 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-03-21 23:52 - 2015-03-21 23:52 - 00000000 ____D () C:\Program Files\XTab
2015-03-21 23:51 - 2015-03-22 10:28 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BreakingNewsAlert
2015-03-21 23:51 - 2015-03-21 23:51 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\istartsurf
2015-03-21 23:51 - 2015-03-21 23:51 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-03-21 23:00 - 2015-03-21 23:41 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426978824-DD11-AE7C-001EECF106AA
2015-03-21 22:59 - 2015-03-21 23:00 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426978797-DD11-AE7C-001EECF106AA
2015-03-21 22:57 - 2015-03-21 22:58 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426978653-DD11-AE7C-001EECF106AA
2015-03-21 22:55 - 2015-03-22 10:55 - 00002418 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5_user.job
2015-03-21 22:55 - 2015-03-22 10:55 - 00002418 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5.job
2015-03-21 22:54 - 2015-03-22 10:59 - 00000940 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-03-21 22:54 - 2015-03-22 10:54 - 00003446 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-7.job
2015-03-21 22:54 - 2015-03-22 10:54 - 00003110 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-6.job
2015-03-21 22:53 - 2015-03-21 23:36 - 00000936 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-03-21 22:52 - 2015-03-22 10:52 - 00005490 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-6.job
2015-03-21 22:52 - 2015-03-22 10:52 - 00005154 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-7.job
2015-03-21 22:52 - 2015-03-22 10:52 - 00002084 _____ () C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-10_user.job
2015-03-21 22:52 - 2015-03-21 22:53 - 00000000 ____D () C:\Program Files\globalUpdate
2015-03-21 22:52 - 2015-03-21 22:53 - 00000000 ____D () C:\Program Files\d72034bb-b797-49b7-a92d-058cf5adfd69
2015-03-21 22:52 - 2015-03-21 22:52 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\globalUpdate
2015-03-21 22:51 - 2015-03-21 22:55 - 00000000 ____D () C:\Program Files\winservice86
2015-03-21 22:42 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426974148-DD11-AE7C-001EECF106AA
2015-03-21 17:46 - 2015-03-21 17:46 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426956375-DD11-AE7C-001EECF106AA
2015-03-21 16:20 - 2015-03-21 23:36 - 00001342 _____ () C:\Windows\Tasks\KOZVWN.job
2015-03-21 16:20 - 2015-03-21 16:20 - 01509888 _____ (Video HDV21.03) C:\Users\YUKSEL\AppData\Roaming\KOZVWN.exe
2015-03-21 16:20 - 2015-03-21 16:20 - 00613255 _____ (CMI Limited) C:\Users\YUKSEL\AppData\Local\nsb1872.tmp
2015-03-21 16:19 - 2015-03-21 23:36 - 00001340 _____ () C:\Windows\Tasks\DRNTL.job
2015-03-21 16:18 - 2015-03-21 16:18 - 02006016 _____ (Video HDV21.03) C:\Users\YUKSEL\AppData\Roaming\DRNTL.exe
2015-03-21 15:57 - 2015-03-21 23:36 - 00001340 _____ () C:\Windows\Tasks\YLQSN.job
2015-03-21 15:57 - 2015-03-21 15:57 - 01315328 _____ (Cinema PlusV21.03) C:\Users\YUKSEL\AppData\Roaming\YLQSN.exe
2015-03-21 15:55 - 2015-03-21 23:36 - 00001342 _____ () C:\Windows\Tasks\VCGISA.job
2015-03-21 15:55 - 2015-03-21 15:55 - 01945600 _____ (Cinema PlusV21.03) C:\Users\YUKSEL\AppData\Roaming\VCGISA.exe
2015-03-21 15:38 - 2015-03-21 15:38 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426948679-DD11-AE7C-001EECF106AA
2015-03-21 14:40 - 2015-03-21 14:40 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426945235-DD11-AE7C-001EECF106AA
2015-03-21 13:58 - 2015-03-21 13:57 - 00613255 _____ (CMI Limited) C:\Users\YUKSEL\AppData\Local\nsi95FB.tmp
2015-03-21 13:47 - 2015-03-21 23:36 - 00000004 _____ () C:\Windows\system32\029B560A371F4E00AB32838EBC01B9E7
2015-03-21 13:07 - 2015-03-21 15:59 - 00008712 _____ () C:\Windows\system32\VCLOff.ini
2015-03-21 13:06 - 2015-03-20 14:54 - 00335064 _____ (VC Corporation) C:\Windows\system32\VCL.dll
2015-03-21 13:03 - 2015-03-21 13:03 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426943014-DD11-AE7C-001EECF106AA
2015-03-21 12:46 - 2015-03-21 12:46 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426938388-DD11-AE7C-001EECF106AA
2015-03-21 11:30 - 2015-03-21 11:30 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426933854-DD11-AE7C-001EECF106AA
2015-03-21 10:10 - 2015-03-21 10:10 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426929049-DD11-AE7C-001EECF106AA
2015-03-15 20:41 - 2015-03-15 20:41 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\MiniGet
2015-03-15 20:37 - 2015-03-15 20:49 - 00000000 ____D () C:\ProgramData\{3e62a1c9-7ae5-f554-3e62-2a1c97ae8725}
2015-03-15 20:33 - 2015-03-21 23:41 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426451596-DD11-AE7C-001EECF106AA
2015-03-15 20:33 - 2015-03-15 20:33 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426451582-DD11-AE7C-001EECF106AA
2015-03-15 20:30 - 2015-03-15 20:30 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\BC323E12-1426451435-DD11-AE7C-001EECF106AA
2015-03-15 20:29 - 2015-03-15 20:32 - 00000000 ____D () C:\ProgramData\xXntfukmw
2015-03-15 20:28 - 2015-03-22 10:22 - 00000237 _____ () C:\Users\YUKSEL\AppData\Local\recently-fix.db
2015-03-15 20:28 - 2015-03-15 20:28 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\T79Wy2t
2015-03-15 20:28 - 2015-03-15 20:28 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\KvSGLyE
2015-03-15 20:28 - 2015-03-15 20:28 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\758pgkN
2015-03-15 20:28 - 2015-03-15 20:28 - 00000000 ____D () C:\ProgramData\atjs
2015-03-15 20:27 - 2015-03-22 10:01 - 00000000 ____D () C:\Users\YUKSEL\AppData\Roaming\BC323E12-1426447634-DD11-AE7C-001EECF106AA
2015-03-15 20:27 - 2015-03-15 20:27 - 00000000 ____D () C:\Users\YUKSEL\AppData\Local\ninjaVOD
2015-03-09 22:30 - 2015-03-09 22:30 - 00005487 _____ () C:\Users\YUKSEL\AppData\Roaming\VCGISA
2015-03-09 22:30 - 2015-03-09 22:30 - 00005487 _____ () C:\Users\YUKSEL\AppData\Roaming\DRNTL
2015-02-22 11:21 - 2015-02-22 11:23 - 00000000 ____D () C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
2015-02-20 12:41 - 2015-02-20 12:41 - 00628496 _____ (CMI Limited) C:\Users\YUKSEL\AppData\Local\nst7F7A.tmp
2015-02-20 12:00 - 2015-02-20 12:00 - 00613057 _____ (CMI Limited) C:\Users\YUKSEL\AppData\Local\nsj7206.tmp
2015-02-20 11:05 - 2015-02-20 11:05 - 00205776 _____ () C:\Windows\system32\11.exe
2015-02-20 11:03 - 2015-03-12 03:57 - 00000000 ____D () C:\ProgramData\{710bd651-fb75-c8a4-710b-bd651fb75947}
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-6.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-7.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-10_user.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5_user.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-6.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-7.job => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\DRNTL.job => C:\Users\YUKSEL\AppData\Roaming\DRNTL.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\KOZVWN.job => C:\Users\YUKSEL\AppData\Roaming\KOZVWN.exe <==== ATTENTION
Task: C:\Windows\Tasks\VCGISA.job => C:\Users\YUKSEL\AppData\Roaming\VCGISA.exe <==== ATTENTION
Task: C:\Windows\Tasks\YLQSN.job => C:\Users\YUKSEL\AppData\Roaming\YLQSN.exe <==== ATTENTION
Task: {060DD3F4-166A-498D-A169-D1811D7057C4} - System32\Tasks\KOZVWN => C:\Users\YUKSEL\AppData\Roaming\KOZVWN.exe [2015-03-21] (Video HDV21.03) <==== ATTENTION
Task: {12D5782C-774E-47D2-BE99-B814EA719F5D} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-1-7 => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-1-7.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {192F5BDF-C9BE-45F2-AE7A-1AE2332CAA06} - System32\Tasks\ninja VOD => C:\Users\YUKSEL\AppData\Local\ninjaVOD\ninja VOD\1.3.17.3\ninjavod.exe
Task: {1C66D49A-D8D4-4FF5-9D4C-E33A9DB8858B} - System32\Tasks\{FA732E44-BFAE-454A-9751-98226E501A82} => pcalua.exe -a "C:\Users\YUKSEL\AppData\Local\Temp\Rar$EXa0.452\Adobe CS4\payloads\AdobeAIR1.0\AdobeAIRInstaller.exe" -d "C:\Program Files\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02" -c -silent
Task: {1CB5B8FE-6764-42F3-BA1C-9875F24D76FA} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-6 => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-6.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {2124417A-C6E2-4A49-A7B8-43A4407D115F} - System32\Tasks\VCGISA => C:\Users\YUKSEL\AppData\Roaming\VCGISA.exe [2015-03-21] (Cinema PlusV21.03) <==== ATTENTION
Task: {3D536C8E-2824-41C5-A987-F52D16ED77AB} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2015-03-21] (globalUpdate) <==== ATTENTION
Task: {4BD6E127-56E4-4A7C-8F20-8ED1A7ADCEED} - System32\Tasks\{07BB39FF-09D2-4376-9E11-F6988D988E9C} => C:\Users\YUKSEL\Desktop\adobe master cs4\Adobe CS4 Master Collection\Adobe CS4\Setup.exe
Task: {5E3686BE-A13A-47CC-92E6-C7CC70D11EA9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {69D3892B-FDDA-4DBB-A1C8-40F1B0523190} - System32\Tasks\PNPGLZVDA => C:\ProgramData\0dfcafffadba49a298b588510cb87bf9\0dfcafffadba49a298b588510cb87bf9.exe
Task: {6B55B027-4EF9-4106-BDAD-12F628036429} - System32\Tasks\{7F0833DC-E405-4247-A636-EFB101D0CA26} => pcalua.exe -a C:\Users\YUKSEL\Documents\sp46032.exe -d C:\Users\YUKSEL\Documents
Task: {7085C26F-CEB8-4BFA-B9EE-26D70CA15294} - System32\Tasks\{EA484D14-DE67-4DBE-815D-2153E05A0DC2} => pcalua.exe -a C:\Users\YUKSEL\AppData\Roaming\omniboxes\UninstallManager.exe -c -ptid=amt
Task: {71BF1558-AF42-4647-8FDE-9B1EDC3B7CD2} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [2015-03-21] (globalUpdate) <==== ATTENTION
Task: {75F02FB5-DB2E-4374-B513-E9D9652D6E66} - System32\Tasks\{5726A5B8-2EC4-4BC9-83A5-9BEDAED04136} => pcalua.exe -a C:\Users\YUKSEL\Desktop\A309_VistaLogo_Drv_V1.0.x.40_Direct_Install.exe -d C:\Users\YUKSEL\Desktop
Task: {76953474-8C62-4F64-99F5-E06CD81DAB7A} - System32\Tasks\YLQSN => C:\Users\YUKSEL\AppData\Roaming\YLQSN.exe [2015-03-21] (Cinema PlusV21.03) <==== ATTENTION
Task: {82F99A5F-7663-4940-B4C6-D1493BD826C4} - System32\Tasks\{FDFE9776-A653-4FAF-A82C-5836DB5C9CEF} => pcalua.exe -a C:\Users\YUKSEL\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=ium6
Task: {8578A72C-2CBD-4E37-88AE-098F024A0883} - System32\Tasks\krQvNK3kA8xElLS => C:\Users\YUKSEL\AppData\Roaming\KvSGLyE\P6E5o1E.exe [2015-03-15] ( )
Task: {926F4610-B727-4935-87ED-CA2227887414} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-7 => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-7.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {97734D60-CCD9-43BF-825D-8C11741E8102} - System32\Tasks\DRNTL => C:\Users\YUKSEL\AppData\Roaming\DRNTL.exe [2015-03-21] (Video HDV21.03) <==== ATTENTION
Task: {A5DB17D4-0288-4831-9246-7F83AC5C7A79} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5_user => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-5.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {AAFDEEC8-47A0-4BA5-8E05-424CD797948C} - System32\Tasks\{C0D21CB1-F5CB-4488-9788-50A6DEF5BE74} => pcalua.exe -a C:\Users\YUKSEL\Documents\sp45500.exe -d C:\Users\YUKSEL\Documents
Task: {AD2255BC-2E5B-43EF-B087-0635B6651E3E} - System32\Tasks\ZdCKe6tqxdhFojz => C:\Users\YUKSEL\AppData\Roaming\758pgkN\qVa8gyX.exe [2015-03-15] ( )
Task: {C97D579B-E012-480A-BC78-B5D7CD039AC4} - System32\Tasks\ninja VOD Updater => C:\Users\YUKSEL\AppData\Local\ninjaVOD\ninja VOD\1.3.17.3\ninjasetup.exe
Task: {CD1AD785-362A-4CFB-9163-3C5BB1F207F8} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {D2695D6B-6D13-4171-87AF-42C3D024AA7E} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-10_user => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-10.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {DDDA10AE-AB15-4C5B-B556-B27293822DA8} - System32\Tasks\4ClZResVfOa907w => C:\Users\YUKSEL\AppData\Roaming\T79Wy2t\s2s6UAT.exe [2015-03-15] ( )
Task: {F06E88D9-8468-41E2-A13D-F35ACB9CAE6E} - System32\Tasks\c11972de-6e25-4edb-9282-88917b9117ef-5 => C:\Program Files\winservice86\c11972de-6e25-4edb-9282-88917b9117ef-5.exe [2015-03-21] (Corporate Inc) <==== ATTENTION
Task: {FA0AF908-E4A4-4FE8-873D-1C494730F437} - System32\Tasks\UDZXH => C:\ProgramData\869b78dd0a6f49f08fdae40c91a846c4\869b78dd0a6f49f08fdae40c91a846c4.exe
cmd: netsh winsock reset
Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.
Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.
Redémarre l'ordinateur
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
- Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
- Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=
- Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
22 mars 2015 à 12:05
22 mars 2015 à 12:05
Salut,
je charge les rapports et je te dis.
je charge les rapports et je te dis.
Merci beaucoup Malekal morte,
ça a l'air d'être résolu,
j'ai réinitialisé mes navigateurs, par contre j'ai l'impression que Chrome est plus lent.
Je peux lancer un adwcleaner scan et un Malewarebytes scan?
Merci encore de ta réactivité et d'avoir pris le temps de répondre à ma demande.
ça a l'air d'être résolu,
j'ai réinitialisé mes navigateurs, par contre j'ai l'impression que Chrome est plus lent.
Je peux lancer un adwcleaner scan et un Malewarebytes scan?
Merci encore de ta réactivité et d'avoir pris le temps de répondre à ma demande.
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
22 mars 2015 à 13:48
22 mars 2015 à 13:48
oui pour AdwCleaner et Malwarebytes
cela devrait supprimer les restes =)
Voila, c'est terminé, tu peux supprimer les programmes utilisés.
Quelques conseils :
Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=
Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html
cela devrait supprimer les restes =)
Voila, c'est terminé, tu peux supprimer les programmes utilisés.
Quelques conseils :
Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=
Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question