Vous pensez être infecté, des pubs s'affichent quand vous naviguez sur internet ?
Perte de données, ralentissement système, virus USB ?
Désinfectez votre ordinateur gratuitement !
  • Avatar du membre
Avatar du membre
par serge
#15695
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2013
Ran by serge (administrator) on PC-DE-SERGE on 10-11-2013 07:35:32
Running from C:\Users\serge\Desktop
Microsoft® Windows Vistaâ„¢ à‰dition Familiale Basique Service Pack 1 (X86) OS Language: French Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
() C:\Program Files\Lexmark Pro700 Series\lxeemon.exe
() C:\Program Files\Lexmark Pro700 Series\ezprint.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
( ) C:\Windows\system32\lxeecoms.exe
() C:\Program Files\System Control Manager\edd.exe
(O2Micro International) C:\Windows\system32\o2flash.exe
(MSI) C:\Program Files\System Control Manager\MGSysCtrl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
() C:\Windows\system32\PSIService.exe
(TechSmith Corporation) C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
(Guillemot Corporation S.A.) C:\Program Files\Hercules\Deluxe Optical Glass\Camservice.exe
(Glarysoft Ltd) C:\Program Files\Glary Utilities 3\Integrator.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office\OSA9.EXE
(TechSmith Corporation) C:\Program Files\TechSmith\SnagIt 8\TSCHelp.exe
(---) C:\Program Files\MemAv_V1_2\MemAv.exe
(---) C:\Program Files\MemAv_V1_2\MemAv.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-18] (Microsoft Corporation)
HKLM\...\Run: [lxeemon.exe] - C:\Program Files\Lexmark Pro700 Series\lxeemon.exe [770728 2011-01-23] ()
HKLM\...\Run: [EzPrint] - C:\Program Files\Lexmark Pro700 Series\ezprint.exe [148280 2011-01-23] ()
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NvSvc] - RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] - RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [MGSysCtrl] - C:\Program Files\System Control Manager\MGSysCtrl.exe [174592 2006-12-22] (MSI)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\avastui.exe [3567800 2013-10-25] (AVAST Software)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [202240 2008-01-18] (Microsoft Corporation)
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
AppInit_DLLs: [ ] ()
Startup: C:\Users\serge\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
BootExecute: autocheck autochk * de Firefox.

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/" onclick="window.open(this.href);return false;
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com" onclick="window.open(this.href);return false;
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com/?type=hp&ts=1383849 ... 8_6053D062" onclick="window.open(this.href);return false;
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://aartemis.com/?type=hp&ts=1383849 ... 8_6053D062" onclick="window.open(this.href);return false;
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com/?type=hp&ts=1383849 ... 8_6053D062" onclick="window.open(this.href);return false;
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts ... 053D062&q=" onclick="window.open(this.href);return false;{searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts ... 053D062&q=" onclick="window.open(this.href);return false;{searchTerms}
URLSearchHook: HKCU - (No Name) - {338c5d66-6b92-40a7-a216-9830d2e54103} - No File
URLSearchHook: HKCU - (No Name) - {ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com/?type=sc&ts=1383849 ... 8_6053D062" onclick="window.open(this.href);return false;
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts ... 053D062&q=" onclick="window.open(this.href);return false;{searchTerms}
SearchScopes: HKLM - {29A7253D-32CF-793C-48FB-1A8078ABD035} URL = http://search.conduit.com/ResultsExt.aspx?q=" onclick="window.open(this.href);return false;{searchTerms}&SearchSource=4&ctid=CT3242339
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts ... 053D062&q=" onclick="window.open(this.href);return false;{searchTerms}
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {29A7253D-32CF-793C-48FB-1A8078ABD035} URL =
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts ... 053D062&q=" onclick="window.open(this.href);return false;{searchTerms}
BHO: HelperObject Class - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll (TechSmith Corporation)
BHO: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll (TechSmith Corporation)
Toolbar: HKCU - Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
Toolbar: HKCU - No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {338C5D66-6B92-40A7-A216-9830D2E54103} - No File
Toolbar: HKCU - No Name - {EBD898F8-FCF6-4694-BC3B-EABC7271EEB1} - No File
DPF: {1663ed61-23eb-11d2-b92f-008048fdd814} http://www.itinerarium.net/helperDll/ScriptX.cab" onclick="window.open(this.href);return false;
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab" onclick="window.open(this.href);return false;
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab" onclick="window.open(this.href);return false;
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241

FireFox:
========
FF ProfilePath: C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default
FF user.js: detected! => C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\user.js
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\searchplugins\iminent.xml
FF Extension: No Name - C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\Extensions\staged
FF Extension: Zula Games - C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\Extensions\zulagames@ZulaGames.com
FF Extension: webbooster - C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\Extensions\webbooster@iminent.com.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR DefaultSearchURL: (aartemis) - http://www.aartemis.com/web/?type=ds&ts ... 053D062&q=" onclick="window.open(this.href);return false;{searchTerms}
CHR DefaultSuggestURL: (aartemis) - "suggest_url": "",
CHR Extension: (glindorus) - C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\Extensions\ammjbfijeglcdlnlnhlkdhgjnlgmpehe\1.0.0_0
CHR Extension: (Google Drive) - C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Lightning Newtab) - C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\1.1.6.6_0
CHR Extension: (Google Wallet) - C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR HKLM\...\Chrome\Extension: [dmibjfmphcpfoacbchialfobiohmhged] - C:\Users\serge\AppData\Roaming\PRINTA~1\printatreeChrome.crx
CHR HKLM\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-21] (AVAST Software)
S2 lxeeCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe [193192 2010-04-14] (Lexmark International, Inc.)
R2 lxee_device; C:\Windows\system32\lxeecoms.exe [598696 2010-04-14] ( )
R2 NishService; C:\Program Files\System Control Manager\edd.exe [40960 2006-03-22] ()
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [174656 2006-11-02] ()

==================== Drivers (Whitelisted) ====================

R2 Aspi32; C:\Windows\System32\drivers\aspi32.sys [16877 2002-07-17] (Adaptec)
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [35656 2013-10-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [70384 2013-10-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [54832 2013-10-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2013-10-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [774392 2013-10-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [403440 2013-11-09] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57672 2013-10-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178304 2013-10-21] ()
R3 camfilt2; C:\Windows\System32\DRIVERS\camfilt2.sys [94720 2007-08-06] (Guillemot Corporation)
R3 MGHwCtrl; C:\Windows\system32\drivers\MGHwCtrl.sys [18944 2006-09-19] (Windows (R) Codename Longhorn DDK provider)
R3 ProcObsrv; C:\Program Files\Glary Utilities 3\ProcObsrv.sys [11552 2013-10-28] (Glarysoft Ltd)
R1 RapportCerberus_56758; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_56758.sys [330960 2013-09-15] ()
R1 RapportEI; C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [148688 2013-09-10] (Trusteer Ltd.)
R3 SNPSTD3; C:\Windows\System32\DRIVERS\snpstd3.sys [10371072 2007-07-17] (Sonix Co. Ltd.)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
S0 BootDefragDriver; System32\drivers\BootDefragDriver.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S0 RapportKELL; System32\Drivers\RapportKELL.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-10 07:35 - 2013-11-10 07:35 - 00000000 ____D C:\FRST
2013-11-10 07:32 - 2013-11-10 07:32 - 01089445 _____ (Farbar) C:\Users\serge\Desktop\FRST.exe
2013-11-09 19:23 - 2013-11-09 19:23 - 00002360 _____ C:\Windows\PFRO.log
2013-11-07 20:56 - 2013-11-07 20:59 - 00000000 ____D C:\Program Files\IminentToolbar
2013-11-07 19:50 - 2013-11-07 19:50 - 00000000 ____D C:\Program Files\Security Task Manager
2013-11-07 19:35 - 2013-11-07 19:35 - 00000000 ____D C:\Users\serge\Documents\Optimizer Pro
2013-11-07 19:34 - 2013-11-07 19:40 - 00000000 ____D C:\ProgramData\eSafe
2013-11-07 19:31 - 2013-11-07 19:31 - 00000000 _____ C:\END
2013-11-07 09:15 - 2013-11-07 15:32 - 00000000 ____D C:\Users\serge\Documents\montre reponse gardé
2013-11-03 17:34 - 2013-11-03 17:34 - 00000819 _____ C:\Users\Public\Desktop\WinMerge.lnk
2013-11-03 17:34 - 2013-11-03 17:34 - 00000000 ____D C:\Program Files\WinMerge
2013-10-31 19:50 - 2013-10-31 19:50 - 00000000 ____D C:\Users\serge\Desktop\ferdieglantine
2013-10-31 15:01 - 2013-10-31 15:02 - 00000000 ____D C:\Users\serge\Desktop\elliot
2013-10-21 19:02 - 2013-10-21 19:02 - 00000000 ____D C:\Users\serge\AppData\Roaming\AVAST Software
2013-10-21 18:48 - 2013-10-21 18:48 - 00000000 ____D C:\Users\serge\AppData\Roaming\Uniblue
2013-10-21 18:48 - 2013-10-21 18:48 - 00000000 ____D C:\Program Files\Uniblue
2013-10-21 18:47 - 2013-11-07 19:59 - 00000000 ____D C:\Program Files\MyPC Backup
2013-10-21 18:47 - 2013-10-21 18:47 - 00000000 ____D C:\Users\serge\AppData\Roaming\DealPly
2013-10-19 20:05 - 2013-10-19 20:08 - 00000000 ____D C:\AdwCleaner
2013-10-19 19:23 - 2013-10-19 19:23 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-10-19 19:15 - 2013-10-19 19:15 - 00000000 ____D C:\Users\serge\AppData\Roaming\Malwarebytes
2013-10-19 19:15 - 2013-10-19 19:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-19 18:00 - 2013-10-19 18:00 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-10-19 17:58 - 2013-10-19 19:10 - 00000000 ____D C:\Windows\865537E164904193A4B6669C62711852.TMP
2013-10-19 16:52 - 2013-10-19 16:52 - 00000000 ____D C:\Windows\system32\MRT
2013-10-19 08:58 - 2013-10-08 06:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-19 08:56 - 2013-10-08 06:50 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-19 08:56 - 2013-10-08 06:46 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-19 08:56 - 2013-10-08 06:46 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-19 08:53 - 2013-10-19 08:56 - 00004249 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-10-13 13:57 - 2013-10-19 23:39 - 00000000 ____D C:\Users\serge\AppData\Roaming\Skype
2013-10-13 13:57 - 2013-10-13 13:57 - 00000000 ____D C:\Users\serge\AppData\Local\avgchrome
2013-10-13 13:56 - 2013-10-13 13:56 - 00001878 _____ C:\Users\Public\Desktop\Skype.lnk
2013-10-13 13:56 - 2013-10-13 13:56 - 00000000 ___RD C:\Program Files\Skype
2013-10-13 13:56 - 2013-10-13 13:56 - 00000000 ____D C:\ProgramData\Skype
2013-10-13 13:56 - 2013-10-13 13:56 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-10-13 00:26 - 2013-10-13 00:26 - 00000000 ____D C:\Windows\system32\searchplugins
2013-10-13 00:26 - 2013-10-13 00:26 - 00000000 ____D C:\Windows\system32\Extensions
2013-10-13 00:11 - 2013-10-13 00:17 - 00000000 ____D C:\Users\serge\AppData\Roaming\SkypeTalking
2013-10-12 23:51 - 2013-10-19 17:14 - 00000000 ____D C:\Users\serge\AppData\Roaming\Printatree

==================== One Month Modified Files and Folders =======

2013-11-10 07:35 - 2013-11-10 07:35 - 00000000 ____D C:\FRST
2013-11-10 07:35 - 2006-11-02 12:18 - 00000000 __RHD C:\Users\Default
2013-11-10 07:34 - 2012-01-23 23:38 - 00000000 ____D C:\ProgramData\Lx_cats
2013-11-10 07:34 - 2006-11-02 13:45 - 00004768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-10 07:34 - 2006-11-02 13:45 - 00004768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-10 07:32 - 2013-11-10 07:32 - 01089445 _____ (Farbar) C:\Users\serge\Desktop\FRST.exe
2013-11-10 07:28 - 2012-01-24 19:32 - 00013025 _____ C:\Users\serge\AppData\Roaming\nvModes.001
2013-11-10 07:28 - 2012-01-24 18:51 - 00013025 _____ C:\Users\serge\AppData\Roaming\nvModes.dat
2013-11-10 07:20 - 2006-11-02 13:49 - 02076403 _____ C:\Windows\WindowsUpdate.log
2013-11-09 19:58 - 2013-02-20 09:51 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-09 19:31 - 2006-11-02 11:33 - 01495948 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-09 19:28 - 2012-01-24 10:19 - 00403440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2013-11-09 19:26 - 2013-08-15 22:41 - 00000320 _____ C:\Windows\Tasks\GlaryInitialize 3.job
2013-11-09 19:26 - 2013-08-15 22:41 - 00000000 ____D C:\Program Files\Glary Utilities 3
2013-11-09 19:26 - 2012-01-24 01:03 - 00000312 _____ C:\Windows\Tasks\GlaryInitialize.job
2013-11-09 19:24 - 2012-01-23 23:29 - 00043187 _____ C:\ProgramData\lxeescan.log
2013-11-09 19:23 - 2013-11-09 19:23 - 00002360 _____ C:\Windows\PFRO.log
2013-11-09 19:23 - 2012-11-08 19:33 - 00001050 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-09 19:23 - 2006-11-02 13:58 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-09 19:22 - 2006-11-02 13:58 - 00032618 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-09 18:13 - 2012-11-08 19:33 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-08 17:37 - 2012-11-08 19:35 - 00001981 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-07 20:59 - 2013-11-07 20:56 - 00000000 ____D C:\Program Files\IminentToolbar
2013-11-07 20:58 - 2013-04-12 18:04 - 00001833 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-11-07 20:20 - 2013-07-28 14:15 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-11-07 20:13 - 2012-01-25 17:38 - 00091178 _____ C:\ProgramData\lxeeJSW.log
2013-11-07 19:59 - 2013-10-21 18:47 - 00000000 ____D C:\Program Files\MyPC Backup
2013-11-07 19:50 - 2013-11-07 19:50 - 00000000 ____D C:\Program Files\Security Task Manager
2013-11-07 19:40 - 2013-11-07 19:34 - 00000000 ____D C:\ProgramData\eSafe
2013-11-07 19:35 - 2013-11-07 19:35 - 00000000 ____D C:\Users\serge\Documents\Optimizer Pro
2013-11-07 19:33 - 2012-09-30 13:59 - 00001009 _____ C:\Users\serge\Desktop\Internet Explorer.lnk
2013-11-07 19:33 - 2012-01-23 22:41 - 00001171 _____ C:\Users\serge\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-07 19:31 - 2013-11-07 19:31 - 00000000 _____ C:\END
2013-11-07 15:53 - 2012-02-23 17:23 - 00002814 _____ C:\ProgramData\lxeeDiagnostics.log
2013-11-07 15:32 - 2013-11-07 09:15 - 00000000 ____D C:\Users\serge\Documents\montre reponse gardé
2013-11-07 08:57 - 2012-01-23 22:40 - 00000680 _____ C:\Users\serge\AppData\Local\d3d9caps.dat
2013-11-05 13:41 - 2012-01-24 01:20 - 00000000 ____D C:\Users\serge\AppData\Roaming\XnView
2013-11-03 17:34 - 2013-11-03 17:34 - 00000819 _____ C:\Users\Public\Desktop\WinMerge.lnk
2013-11-03 17:34 - 2013-11-03 17:34 - 00000000 ____D C:\Program Files\WinMerge
2013-11-03 17:21 - 2013-08-15 22:42 - 00000887 _____ C:\Users\Public\Desktop\Glary Utilities 3.lnk
2013-10-31 19:50 - 2013-10-31 19:50 - 00000000 ____D C:\Users\serge\Desktop\ferdieglantine
2013-10-31 15:02 - 2013-10-31 15:01 - 00000000 ____D C:\Users\serge\Desktop\elliot
2013-10-28 09:38 - 2013-08-15 22:42 - 00101664 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2013-10-26 10:01 - 2012-01-23 22:39 - 00000000 ___RD C:\Users\serge\FAV SUPP
2013-10-21 19:02 - 2013-10-21 19:02 - 00000000 ____D C:\Users\serge\AppData\Roaming\AVAST Software
2013-10-21 18:48 - 2013-10-21 18:48 - 00000000 ____D C:\Users\serge\AppData\Roaming\Uniblue
2013-10-21 18:48 - 2013-10-21 18:48 - 00000000 ____D C:\Program Files\Uniblue
2013-10-21 18:47 - 2013-10-21 18:47 - 00000000 ____D C:\Users\serge\AppData\Roaming\DealPly
2013-10-21 18:45 - 2013-03-06 09:59 - 00178304 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-21 18:45 - 2013-03-06 09:59 - 00049944 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-21 18:45 - 2012-01-24 10:19 - 00774392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-21 18:45 - 2012-01-24 10:19 - 00403440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1384021692
2013-10-21 18:45 - 2012-01-24 10:19 - 00070384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-21 18:45 - 2012-01-24 10:19 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-21 18:45 - 2012-01-24 10:19 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2013-10-21 18:45 - 2012-01-24 10:19 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-21 18:45 - 2012-01-24 10:19 - 00035656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-21 18:45 - 2012-01-24 10:18 - 00269216 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-21 18:34 - 2012-01-24 10:18 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-21 18:33 - 2006-11-02 11:23 - 00002577 _____ C:\Windows\system32\config.nt
2013-10-19 23:39 - 2013-10-13 13:57 - 00000000 ____D C:\Users\serge\AppData\Roaming\Skype
2013-10-19 20:08 - 2013-10-19 20:05 - 00000000 ____D C:\AdwCleaner
2013-10-19 20:07 - 2012-06-15 14:50 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-19 19:23 - 2013-10-19 19:23 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2013-10-19 19:21 - 2012-01-23 22:39 - 00000000 ____D C:\Users\serge
2013-10-19 19:15 - 2013-10-19 19:15 - 00000000 ____D C:\Users\serge\AppData\Roaming\Malwarebytes
2013-10-19 19:15 - 2013-10-19 19:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-19 19:10 - 2013-10-19 17:58 - 00000000 ____D C:\Windows\865537E164904193A4B6669C62711852.TMP
2013-10-19 18:00 - 2013-10-19 18:00 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-10-19 17:58 - 2013-07-28 19:27 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-10-19 17:14 - 2013-10-12 23:51 - 00000000 ____D C:\Users\serge\AppData\Roaming\Printatree
2013-10-19 16:52 - 2013-10-19 16:52 - 00000000 ____D C:\Windows\system32\MRT
2013-10-19 08:58 - 2013-09-21 12:51 - 00000000 ____D C:\ProgramData\Oracle
2013-10-19 08:56 - 2013-10-19 08:53 - 00004249 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-10-19 08:56 - 2013-03-07 10:15 - 00000000 ____D C:\Program Files\Java
2013-10-13 13:57 - 2013-10-13 13:57 - 00000000 ____D C:\Users\serge\AppData\Local\avgchrome
2013-10-13 13:56 - 2013-10-13 13:56 - 00001878 _____ C:\Users\Public\Desktop\Skype.lnk
2013-10-13 13:56 - 2013-10-13 13:56 - 00000000 ___RD C:\Program Files\Skype
2013-10-13 13:56 - 2013-10-13 13:56 - 00000000 ____D C:\ProgramData\Skype
2013-10-13 13:56 - 2013-10-13 13:56 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-10-13 00:26 - 2013-10-13 00:26 - 00000000 ____D C:\Windows\system32\searchplugins
2013-10-13 00:26 - 2013-10-13 00:26 - 00000000 ____D C:\Windows\system32\Extensions
2013-10-13 00:17 - 2013-10-13 00:11 - 00000000 ____D C:\Users\serge\AppData\Roaming\SkypeTalking

Files to move or delete:
====================
C:\ProgramData\pswi_preloaded.exe
C:\Windows\Tasks\At1.job


Some content of TEMP:
====================
C:\Users\serge\AppData\Local\Temp\gusetup4.exe
C:\Users\serge\AppData\Local\Temp\Java[1].exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-10 07:33

=# AdwCleaner v3.011 - Rapport créé le 10/11/2013 à  07:52:40
# Mis à  jour le 03/11/2013 par Xplode
# Système d'exploitation : Windows Vista (TM) Home Basic Service Pack 1 (32 bits)
# Nom d'utilisateur : serge - PC-DE-SERGE
# Exécuté depuis : C:\Users\serge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KZI53XCL\adwcleaner[1].exe
# Option : Nettoyer

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\eSafe
Dossier Supprimé : C:\Program Files\IminentToolbar
Dossier Supprimé : C:\Program Files\MyPC Backup
Dossier Supprimé : C:\Program Files\Uniblue\SpeedUpMyPC
Dossier Supprimé : C:\Users\serge\AppData\Local\Temp\glindorus
Dossier Supprimé : C:\Users\serge\AppData\Local\Temp\SaltarSmart
Dossier Supprimé : C:\Users\serge\AppData\LocalLow\SimplyTech
Dossier Supprimé : C:\Users\serge\AppData\Roaming\DealPly
Dossier Supprimé : C:\Users\serge\AppData\Roaming\Uniblue\SpeedUpMyPC
Dossier Supprimé : C:\Users\serge\Documents\optimizer pro
Dossier Supprimé : C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\Extensions\zulagames@ZulaGames.com
Dossier Supprimé : C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Fichier Supprimé : C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\Extensions\webbooster@iminent.com.xpi
Fichier Supprimé : C:\END
Fichier Supprimé : C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\searchplugins\iminent.xml
Fichier Supprimé : C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\user.js
Fichier Supprimé : C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\thmodhmy.default\user.js
Fichier Supprimé : C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Fichier Supprimé : C:\Windows\System32\Tasks\Dealply

***** [ Raccourcis ] *****


***** [ Registre ] *****

Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
[#] Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{35B55025-3312-41C8-8781-A76DFB73026B}
[#] Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35B55025-3312-41C8-8781-A76DFB73026B}
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4277F7CF-0000-46CF-BA49-D624465C4BAB}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKCU\Software\AppDataLow\Software\Crossrider
Clé Supprimée : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Clé Supprimée : HKLM\Software\Iminent
Clé Supprimée : HKLM\Software\Uniblue\SpeedUpMyPC
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DealPly
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IMBoosterARP
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Iminent
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SaltarSmart
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375

***** [ Navigateurs ] *****

-\\ Internet Explorer v8.0.6001.19088


-\\ Mozilla Firefox v

[ Fichier : C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\1kcym20r.default\prefs.js ]


[ Fichier : C:\Users\serge\AppData\Roaming\Mozilla\Firefox\Profiles\thmodhmy.default\prefs.js ]


-\\ Google Chrome v30.0.1599.101

[ Fichier : C:\Users\serge\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [27447 octets] - [19/10/2013 20:06:04]
AdwCleaner[R1].txt - [8888 octets] - [10/11/2013 07:50:38]
AdwCleaner[S0].txt - [26960 octets] - [19/10/2013 20:07:46]
AdwCleaner[S1].txt - [8956 octets] - [10/11/2013 07:52:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [9016 octets] ##########
=================== End Of Log ============================
Avatar du membre
par billmaxime
#15700
:hello: serge et :welcome: sur sosvirus

ton pc n'est pas a jour >>
Microsoft® Windows Vistaâ„¢ à‰dition Familiale Basique Service Pack 1 (X86)
il existe le SP2 pour vista
Internet Explorer Version 8
il existe IE9 pour vista

fais les mises a jour via windows update du panneau de configuration, puis fais 1 disgnostic de ton pc avec cet outil et poste le rapport s'il te plaît
  • Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau.
  • Installe le logiciel.
  • Lance ZHPDiag, exécuter en tant qu'administrateur sous Windows : 7/8 et Vista
  • Clique sur Configurer
  • Clique sur l'icône représentant une loupe avec un + ( Lancer le diagnostic »)

    Note : Ne pas fermer le programme même si il est indiqué qu'il ne répond plus.

    Image
  • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPDiag.txt à  été créé.
  • Héberge le rapport ZHPDiag.txt sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum
:merci2:
Avatar du membre
par billmaxime
#17570
Il est ou ?Bonjour Hello,
Sans réponse de ta part, je considère le problème comme résolu !,
Il est pourtant très important de suivre une désinfection jusqu'au bout. En effet, même si les symptômes qui t'on amené à demander de l'aide on disparu, ton ordinateur reste toutefois infecté. Tu dois savoir également que notre aide est bénévole, voir ton sujet abandonné sans aucune explication est pour nous un manque de respect. Merci de respecter les personnes qui donnent de leur temps afin de vous aider. Quoiqu'il en soit, nous laissons ton sujet ouvert au cas où tu décides de revenir ... @ Bientôt sur SosVirus.
Il est ou ?

bonsoir oki pour la fermeture je m'en charge car[…]

how to clean junk files

Hello don't use this program , it's a bullshit :)

Bonjour https://www.aht.li/3213847/AdsFix.exe b[…]

De rien Bon WE :)