WINDOWS DEFENDER est desactivé

-
Bonjour,



Windows defender est soumis à une soit disant organisation et ne fonctionne plus du coté contrôle des virus
j'ai lu des commentaires concernant FRST et voici les rapports
https://pjjoint.malekal.com/files.php?id=FRST_20190708_t8c12b10e7e12
https://pjjoint.malekal.com/files.php?id=20190708_t6i13f510k10
https://pjjoint.malekal.com/files.php?id=20190708_y7q6e5s11w15
Afficher la suite 

2 réponses

Messages postés
6912
Date d'inscription
samedi 19 août 2017
Statut
Membre
Dernière intervention
21 octobre 2019
2112
0
Merci
Bonjour,

C'est une question ?
Oui oui j’ai besoin d’aide en fait!
Commenter la réponse de fermiparadoxx
Messages postés
171239
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
21 octobre 2019
17714
0
Merci
Salut,

Windows Defender ne fonctionne plus car ton ordinateur est très infecté à cause de tous les cracks que tu télécharges.


Tu as des programmes qui ont été installés à l'achat de l'ordinateur ou installés par la suite et qui sont pas forcément utiles.
Ils encombrent Windows et peuvent le ralentir.
Tu peux donc les désinstaller.
Vas dans le Panneau de configuration
puis programmes et fonctionnalités.
Désinstalle :

iCloud
IDM Crack 6.27 build
Internet Download Manager
IObit Uninstaller



Voici la correction à effectuer avec FRST. Tu peux t'aider de cette note explicative avec des captures d'écran.
Relance FRST puis sur ton clavier appuyer sur la touche CTRL + Y.
Le bloc-note va s'ouvrir, copie/colle ceci.

Start:
CloseProcesses:
CreateRestorePoint:
HKLM\...\RunOnce: [GUYTHICEPC] => C:\Windows\Temp\g5C95.tmp.exe [216064 2019-07-04] () [Fichier non signé] <==== ATTENTION
HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION
HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION
HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION
HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION
HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION
HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION
HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION
HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION
HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-2003759519-3225932229-3000039668-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {14CD3E9C-0871-4AA2-AD5D-FD23854EF58C} - System32\Tasks\90c5642c5878v348 => C:\WINDOWS\system32\rundll32.exe "C:\ProgramData\90c5642c5878v348\90c5642c5878v348.dll",ccvIaONb <==== ATTENTION
Task: {2174AB1D-C699-4F6C-B739-4819E29ABF90} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {26FE43A1-5904-47A9-8934-76242D53A9AA} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {2D005C97-3945-4E53-AE4D-36766905A413} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {44B9E613-1849-437C-B38C-5625A15D5185} - System32\Tasks\{46E0ADA6-D301-4001-984D-5706118EE793} => C:\ProgramData\53908644842486263\watchdog.exe [1051136 2019-06-26] () [Fichier non signé] <==== ATTENTION
Task: {4E85CE94-A902-43C3-A94A-29D6FEF27A68} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {544AEF29-398B-4723-BD55-498DBB108269} - System32\Tasks\42c9383c5964v277 => C:\WINDOWS\system32\rundll32.exe "C:\ProgramData\42c9383c5964v277\42c9383c5964v277.dll",ccvIaONb <==== ATTENTION
Task: {59EEABB8-E33E-43C1-B54A-A75CC65C33C6} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {6238A595-399F-425A-8A41-655D8BC2BB80} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {7A7459BC-3AC5-4BCB-8009-EE638B95EF1A} - System32\Tasks\64c8196c5694v564 => C:\WINDOWS\system32\rundll32.exe "C:\ProgramData\64c8196c5694v564\64c8196c5694v564.dll",ccvIaONb <==== ATTENTION
Task: {AABFE27B-5745-4F7F-BDB2-6107D70F471C} - System32\Tasks\66c7285c5901v193 => C:\WINDOWS\system32\rundll32.exe "C:\ProgramData\66c7285c5901v193\66c7285c5901v193.dll",ccvIaONb <==== ATTENTION
Task: {B792CCDD-9B9C-49AC-AAC8-2F1F0BC6317A} - System32\Tasks\85c4624c4723v569 => C:\WINDOWS\system32\rundll32.exe "C:\ProgramData\85c4624c4723v569\85c4624c4723v569.dll",ccvIaONb <==== ATTENTION
Task: {DF5B29D5-5D7C-44DE-9AA7-D0CD7ED57E56} - System32\Tasks\58c9435c9416v461 => C:\WINDOWS\system32\rundll32.exe "C:\ProgramData\58c9435c9416v461\58c9435c9416v461.dll",ccvIaONb <==== ATTENTION
Task: {E98E054C-916D-468A-AE51-D68DBA8F14D0} - System32\Tasks\5c7132c4289v844 => C:\WINDOWS\system32\rundll32.exe "C:\ProgramData\5c7132c4289v844\5c7132c4289v844.dll",ccvIaONb <==== ATTENTION
Task: {F0C3D159-359E-41FE-ACD0-45CBF59FD2C3} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe [908144 2017-11-02] (MICROLEAVES LTD -> Microleaves) <==== ATTENTION
Task: {F4DEA5E4-E6BD-4945-8D3F-ED244991CF90} - System32\Tasks\F3B62478-A64F-7924-28E1-422074AD9451 => C:\WINDOWS\SysWOW64\regsvr32.exe /n /s /i:"/68d50f067e556727 /q" "C:\PROGRA~3\0B25D8~1\{766C7~1."
Task: {F887EFB5-1ADB-43A9-9D80-2B720E0FEE09} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
2019-06-15 22:20 - 2019-06-15 22:20 - 000000000 ___HD C:\ProgramData\5c7132c4289v844
2019-06-15 22:17 - 2019-06-15 22:17 - 000000000 ___HD C:\ProgramData\64c8196c5694v564
2019-06-15 22:16 - 2019-06-15 22:16 - 000000000 ___HD C:\ProgramData\66c7285c5901v193
2019-06-15 22:16 - 2019-06-15 22:16 - 000000000 ___HD C:\ProgramData\58c9435c9416v461
2019-06-15 22:16 - 2019-06-15 22:16 - 000000000 ___HD C:\ProgramData\42c9383c5964v277
2019-06-15 21:43 - 2019-06-15 21:43 - 000000000 ___HD C:\ProgramData\85c4624c4723v569
2019-06-15 21:42 - 2019-06-15 21:42 - 000000000 ___HD C:\ProgramData\90c5642c5878v348
2019-06-15 19:16 - 2019-06-15 19:16 - 000006343 _____ C:\Users\Guythice\Downloads\Free YouTube Download 2.2.1.1.1.torrent
2019-06-15 19:13 - 2019-06-15 19:13 - 000028114 _____ C:\Users\Guythice\Downloads\Photoshop CS2 + crack.rar.torrent
2019-06-15 19:02 - 2019-06-15 19:02 - 000216828 _____ C:\Users\Guythice\Documents\Doc1 FETE DES PERES.pdf
2019-06-15 00:50 - 2019-06-15 00:50 - 000037147 _____ C:\Users\Guythice\Downloads\[ Torrent9.cz ] Murder.Mystery.2019.FRENCH.720p.WEB.H264-EXTREME.torrent
2019-06-14 00:30 - 2019-06-14 00:30 - 000029497 _____ C:\Users\Guythice\Downloads\[ Torrent9.cz ] All.Inclusive.2019.FRENCH.HDRip.XviD-EXTREME.torrent
2019-06-14 00:30 - 2019-06-14 00:30 - 000023441 _____ C:\Users\Guythice\Downloads\[ Torrent9.cz ] Qu.est.ce.qu.on.a.Encore.fait.au.Bon.Dieu.2019.FRENCH.1080p.HDLight.x264.AC3-EXTREME.torrent
2019-06-13 07:03 - 2019-06-13 07:05 - 000722944 _____ C:\Users\Guythice\AppData\Local\sha.db
2019-06-13 07:03 - 2019-06-13 07:04 - 000000000 ____D C:\Program Files (x86)\FastDataX
2019-06-13 07:03 - 2019-06-13 07:03 - 000140800 _____ C:\Users\Guythice\AppData\Local\installer.dat
2019-06-13 07:03 - 2019-06-13 07:03 - 000011568 _____ C:\Users\Guythice\AppData\Local\InstallationConfiguration.xml
2019-06-13 07:03 - 2019-06-13 07:03 - 000000000 ____D C:\Program Files\Common Files\VGRT8RZBJA
2019-06-13 07:02 - 2019-06-27 16:20 - 000000000 ____D C:\ProgramData\{424B2580-538A-3427-F24E-A4B8F2A9FDE9}
2019-06-13 07:02 - 2019-06-27 15:39 - 000000000 ____D C:\ProgramData\{0B36F570-837A-7D5A-029E-D9F1027980A0}
2019-06-13 07:02 - 2019-06-15 03:10 - 000000404 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
2019-06-13 07:02 - 2019-06-15 03:10 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G6.job
2019-06-13 07:02 - 2019-06-15 03:10 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G5.job
2019-06-13 07:02 - 2019-06-15 03:10 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G4.job
2019-06-13 07:02 - 2019-06-15 03:10 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
2019-06-13 07:02 - 2019-06-15 03:10 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
2019-06-13 07:02 - 2019-06-15 03:10 - 000000372 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
2019-06-13 07:02 - 2019-06-13 07:02 - 000000000 ____D C:\Program Files (x86)\Microleaves
2019-06-13 07:01 - 2019-06-16 09:00 - 000000000 ____D C:\Program Files\Common Files\XU63900JK7
2019-06-13 07:01 - 2019-06-13 07:01 - 000000000 ____D C:\Program Files (x86)\foldershare
2019-06-13 06:59 - 2019-06-13 06:59 - 000000000 ____D C:\Users\Guythice\AppData\Roaming\Microleaves
2019-06-13 06:59 - 2019-06-13 06:59 - 000000000 ____D C:\Users\Guythice\AppData\Local\AdvinstAnalytics
EmptyTemp:
RemoveProxy:
Reboot:
End:


Enregistre le contenu par le menu fichier puis enregistrer.

Ferme le bloc-note, retourne sur FRST et clique sur le bouton "Corriger / Fix"
Un redémarrage sera peut-être nécessaire et automatique.
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur.


2°)
Réinitialise/Répare les navigateurs WEB concernés par les problèmes :

3°)

Remets tous les serveurs de noms (DNS) en automatiques.
Suis le paragraphe "manuellement" du tutoriel pour réintialiser les DNS
Ouvre les propriétés de la carte Ethernet et Wifi.
Dans TCP/IP V4, assure toi ue les serveurs de noms / DNS soient automatiques.
sur cette page : https://www.malekal.com/wp-content/uploads/Comment_modifier_DNS_5-300x212.png


4°)
Termine par un nettoyage Malwarebytes - Tutoriel Malwarebytes Anti-Malware version gratuite

5°)
Vois ce que cela donne et si des améliorations ont eu lieu.
Si ce n'est pas le cas, si tu as encore des pages de pubs intempestives, précise sur quel navigateur WEB.
Refais un scan FRST et donne les nouveaux rapports via pjjoint.

4)
Refais un scan FRST et donne les nouveaux rapports via pjjoint

Commenter la réponse de Malekal_morte-