Votre question
Résolu

virus connexion internet

Tags :
  • Firefox
  • Chrome
  • Internet
  • Internet explorer 7
  • Windows 7
  • Internet Explorer
  • Internet mobile
  • Sécurité
Dernière réponse : dans Sécurité et virus
8 Novembre 2013 12:19:56

Bonjour à tous,

un nouveau problème qui dépasse mes compétences: depuis quelques temps, sur mon netbook packard bell avec système d'exploitation windows, quand je me connecte à internet en wifi via internet explorer, ma navigation est polluée par des fenêtres intempestives du type saving wave akamaidh ou rsz akamaidh ou bannersdontwork. j'ai téléchargé un spyhunter qui détecte près de 2000 menaces après le scan complet de l'ordi mais il faut s'enregistrer et payer le logiciel pour l'utiliser. J'ai donc laissé tomber. Quelqu'un saurait-il comment procéder gratuitement, SVP?
PS: le scan de l'ordi avec microsoft security essential ne suffit pas à nettoyer l'ordi de ces virus.
Cordialement et vous remerciant d'avance de votre aide.
thierry

Autres pages sur : virus connexion internet

a c 639 8 Sécurité
a b 2 Internet
a b Ē Google Chrome
a b È Firefox
a b $ Windows 7
8 Novembre 2013 13:20:01

hello

en installant spyhunter, tu l'a s infecté encore un peu plus et en plus il va te demander de l'argent

et ne fera rien sur ton pc à part te prendre ton pognon.

désinstalle de suite spyhunter

et ensuite fais ceci, stp



£££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££


  • Sur cette page, télécharge la version FRST de Farbar, compatible avec ton système

  • enregistre le fichier sur ton Bureau /!!\ et pas ailleurs , /!!\
    c'est important pour la suite de la désinfection, merci !!!!!

    Comment savoir quelle version 32 bits ou 64 bits est exécutée sur mon système ?


  • Ferme toutes les applications, y compris ton navigateur

  • Double-clique sur FRST.exe et clique sur Oui pour accepter le Disclaimer

    /!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur

  • Sur le menu principal, clique sur Scan
  • patiente le temps de l'analyse



  • A la fin du scan, un rapport FRST.txt s'ouvre.
  • A son premier lancement, l'outil va aussi créer un fichier nommé Addition.txt

  • Héberge ces rapports sur ce site d'hébergement de fichiers
  • indique les liens fournis dans ta réponse.

  • Aide en images

    Les rapports sont enregistrés au même emplacement que l'outil et sous C:\FRST\Logs



  • Sous IE9 ou IE10 , le filtre SmartScreen déclenche une alerte.

    • Cliquer sur Actions .
    • puis sur Exécuter quand même



  • £££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££
    m
    0
    l
    8 Novembre 2013 15:21:05

    merci de vos conseils, j'essaie la manipulation et vous tiens au courant, cordialement, thierr
    m
    0
    l
    Contenus similaires
    8 Novembre 2013 15:42:21

    j'ai un problème pour desinstaller spyhunter: je clique sur panneau de configuration, desinstaller un programme, puis sur la liste je selectionne spyhunter, je coche desinstaller, ensuite ça met "preparing to remove" et s'affiche; voulez vous autoriser le programme suivant provenant d'un editeur inconnu à apporter des modifications à cet ordinateur? puis je mets oui et ça met " veuillez patienter pendant que windows configure spyhunter" . ça ouvre souhaitez vous executer cet objet inconnu?, je ferme. on me demande sur internet de la part de spyhunter: why are you uninstalling spyhunter?et là ça bloque...c'est comme si spyhunter était protégé d'une desinstallation éventuelle...
    m
    0
    l
    a c 639 8 Sécurité
    a b 2 Internet
    a b Ē Google Chrome
    a b È Firefox
    a b $ Windows 7
    8 Novembre 2013 18:20:35

    hello

    laisse tomber, donne moi les 2 rapports de FRST

    m
    0
    l
    11 Novembre 2013 19:01:01

    merci de votre aide, comme le netbook rame, j'utilise un autre ordi et une clé usb pour les manip. j'essaie de vous envoyer le tout et on va voir si ça marche; thierry
    m
    0
    l
    11 Novembre 2013 19:01:57

    bloc notes
    S
    Spoiler
    can result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-11-2013 01
    Ran by P bell (administrator) on PBELL-PC on 11-11-2013 18:34:58
    Running from C:\Users\P bell\Desktop
    Microsoft Windows 7 Édition Starter Service Pack 1 (X86) OS Language: French Standard
    Internet Explorer Version 10
    Boot Mode: Normal

    ==================== Processes (Whitelisted) ===================

    (Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
    (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
    (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    (Just Develop It) C:\Program Files\MyPC Backup\BackupStack.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
    (Intel Corporation) C:\Windows\System32\igfxtray.exe
    (Intel Corporation) C:\Windows\System32\hkcmd.exe
    (Intel Corporation) C:\Windows\System32\igfxpers.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
    (Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
    (SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Messenger\SweetIM.exe
    (SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
    (MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe
    (Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
    (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
    (Dritek System Inc.) C:\Program Files\Launch Manager\dsiwmis.exe
    (Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
    (Dritek System Inc.) C:\Program Files\Launch Manager\LMworker.exe
    (Dritek System Inc.) C:\Program Files\Launch Manager\LMutilps32.exe
    (Acer Incorporated) C:\Program Files\Packard Bell\Registration\GREGsvc.exe
    (Realsil Microelectronics Inc.) C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe
    (Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
    (Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
    (Intel Corporation) C:\Windows\system32\igfxext.exe
    (Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
    (Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
    (Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
    (Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE

    ==================== Registry (Whitelisted) ==================

    HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10025576 2011-02-11] (Realtek Semiconductor)
    HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
    HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1934632 2010-10-08] (Synaptics Incorporated)
    HKLM\...\Run: [Power Management] - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [715368 2011-05-10] (Acer Incorporated)
    HKLM\...\Run: [SweetIM] - C:\Program Files\SweetIM\Messenger\SweetIM.exe [114992 2012-02-16] (SweetIM Technologies Ltd.)
    HKLM\...\Run: [Sweetpacks Communicator] - C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [295728 2012-02-26] (SweetIM Technologies Ltd.)
    HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-08-12] (Microsoft Corporation)
    HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
    HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
    HKLM\...\Run: [Boxore Client] - C:\Program Files\Boxore\BoxoreClient\boxore.exe [606496 2013-03-15] (Boxore OU)
    HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2011-10-24] (Apple Inc.)
    HKCU\...\Run: [Bubble Dock] - "C:\Users\P bell\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup
    HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
    HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files\Packard Bell\Screensaver\run_Packard Bell.exe [ 2010-07-29] ()
    HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files\Packard Bell\Screensaver\run_Packard Bell.exe [ 2010-07-29] ()
    Startup: C:\Users\P bell\Desktop\Startup\MyPC Backup.lnk
    ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)

    ==================== Internet (Whitelisted) ====================

    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
    HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://packardbell.msn.com
    HKCU\Software\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = http://google.fr/
    SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=APBTDF&pc=MAPB&src=IE-SearchBox
    SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=APBTDF&pc=MAPB&src=IE-SearchBox
    SearchScopes: HKCU - DefaultScope {67760133-87D9-4CFA-9554-C29600107D93} URL = http://www.bing.com/search?q={searchTerms}&r=731
    SearchScopes: HKCU - BrowserMngrDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
    SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=B4DC16DE2BE6E184&affID=125035&tsp=5026
    SearchScopes: HKCU - {67760133-87D9-4CFA-9554-C29600107D93} URL = http://www.bing.com/search?q={searchTerms}&r=731
    SearchScopes: HKCU - {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = http://www.amazon.fr/gp/bit/amazonserp/ref=bit_bds-p23_...{searchTerms}
    BHO: Savings Wave - {11111111-1111-1111-1111-110111271165} - C:\Program Files\Savings Wave\Savings Wave-bho.dll (Innovative Apps)
    BHO: Plus-HD-3.5 - {11111111-1111-1111-1111-110311711180} - C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-bho.dll (Plus HD)
    BHO: No Name - {2EECD738-5844-4a99-B4B6-146BF802613B} - No File
    BHO: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
    BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll No File
    BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
    BHO: searchgol Helper Object - {8F547BDD-FCD4-48F8-A06F-573D6F404A3C} - C:\Program Files\searchgol\searchgol\1.8.16.19\bh\searchgol.dll (Montera Technologeis LTD)
    BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
    BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    BHO: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
    Toolbar: HKLM - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    Toolbar: HKLM - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
    Toolbar: HKLM - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
    Toolbar: HKLM - searchgol Toolbar - {00078E95-3A4A-4137-8DE7-2824908D1C17} - C:\Program Files\searchgol\searchgol\1.8.16.19\searchgolTlbr.dll (Montera Technologeis LTD)
    Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

    Chrome:
    =======
    CHR Extension: (Iminent) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.16.5.1
    CHR Extension: (Wajam) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0
    CHR Extension: (Bubble Dock ) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp\1.0.0.130
    CHR Extension: (Plus-HD-3.5) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldikpdnngdmeceeameoaannjilbjppnm\1.23.31_0
    CHR Extension: (Savings Wave) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lglkfgcmohcdajpldlnhjjiojjgkbmhm\1.23.65_0
    CHR Extension: (Helper extension) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchpfiddbhbdnagofhkjlaiaejmkdcla\2.0_0
    CHR Extension: (Smart Display) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.4_0
    CHR HKLM\...\Chrome\Extension: [aipfmkinhleccnodemkoofnnofpbbpac] - C:\Users\P bell\AppData\Roaming\BabSolution\CR\searchgol.crx
    CHR HKLM\...\Chrome\Extension: [jpmbfleldcgkldadpdinhjjopdfpjfjp] - C:\Users\P bell\AppData\Local\Wajam\Chrome\wajam.crx
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

    ========================== Services (Whitelisted) =================

    S4 AdobeActiveFileMonitor9.0; C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [169408 2010-09-30] (Adobe Systems Incorporated)
    R2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [32808 2013-05-11] (Just Develop It)
    R2 GREGService; C:\Program Files\Packard Bell\Registration\GREGsvc.exe [36456 2011-05-30] (Acer Incorporated)
    R2 IconMan_R; C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe [1755136 2011-03-07] (Realsil Microelectronics Inc.)
    R2 Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [244624 2011-04-22] (Acer Incorporated)
    R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-08-12] (Microsoft Corporation)
    R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295376 2013-08-12] (Microsoft Corporation)
    S2 Software_update; C:\Program Files\Software\Update\SoftwareUpdate.exe [119408 2013-04-16] (The Software Group)
    S3 Software_update_m; C:\Program Files\Software\Update\SoftwareUpdate.exe [119408 2013-04-16] (The Software Group)

    ==================== Drivers (Whitelisted) ====================

    R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [13904 2011-05-06] ()
    R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation)
    R1 MpKsl9b714520; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{928E41CE-7322-44E5-91EE-2A2114A7B7CF}\MpKsl9b714520.sys [40392 2013-11-11] (Microsoft Corporation)
    R1 MpKsldd9d6965; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{928E41CE-7322-44E5-91EE-2A2114A7B7CF}\MpKsldd9d6965.sys [40392 2013-11-11] (Microsoft Corporation)
    R3 RSPCIESTOR; C:\Windows\System32\DRIVERS\RtsPStor.sys [252520 2011-03-07] (Realtek Semiconductor Corp.)

    ==================== NetSvcs (Whitelisted) ===================


    ==================== One Month Created Files and Folders ========

    2013-11-11 18:34 - 2013-11-11 18:34 - 00000000 ____D C:\FRST
    2013-11-11 17:32 - 2013-11-11 17:28 - 01090275 _____ (Farbar) C:\Users\P bell\Desktop\FRST.exe
    2013-11-07 18:20 - 2013-11-07 18:20 - 00002260 _____ C:\Users\P bell\Desktop\SpyHunter.lnk
    2013-11-07 18:20 - 2013-11-07 18:20 - 00000000 ____D C:\Users\P bell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
    2013-11-07 18:19 - 2013-11-07 18:20 - 00000000 ____D C:\sh4ldr
    2013-11-07 18:19 - 2013-11-07 18:19 - 00000000 ____D C:\Program Files\Enigma Software Group
    2013-11-07 18:17 - 2013-11-08 15:31 - 00000000 ____D C:\Windows\220FB0354744483A9A0B41DF77061583.TMP
    2013-11-07 18:16 - 2013-11-07 18:16 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
    2013-10-15 07:57 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
    2013-10-15 07:57 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
    2013-10-15 07:57 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
    2013-10-15 07:57 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
    2013-10-15 07:57 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
    2013-10-15 07:57 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
    2013-10-15 07:57 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

    ==================== One Month Modified Files and Folders =======

    2013-11-11 18:36 - 2010-11-20 22:01 - 01549936 _____ C:\Windows\system32\PerfStringBackup.INI
    2013-11-11 18:34 - 2013-11-11 18:34 - 00000000 ____D C:\FRST
    2013-11-11 18:31 - 2011-11-28 12:59 - 01887993 _____ C:\Windows\WindowsUpdate.log
    2013-11-11 18:30 - 2009-07-14 05:34 - 00016160 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2013-11-11 18:30 - 2009-07-14 05:34 - 00016160 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2013-11-11 18:29 - 2013-04-16 09:24 - 00000906 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001280 _____ C:\Windows\Tasks\Plus-HD-3.5-updater.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001184 _____ C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001084 _____ C:\Windows\Tasks\Plus-HD-3.5-enabler.job
    2013-11-11 18:09 - 2013-10-05 18:01 - 00001880 _____ C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job
    2013-11-11 18:09 - 2013-04-30 14:12 - 00000360 _____ C:\Windows\Tasks\AmiUpdXp.job
    2013-11-11 18:09 - 2013-04-16 09:24 - 00000902 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
    2013-11-11 18:09 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
    2013-11-11 18:09 - 2009-07-14 05:39 - 00094843 _____ C:\Windows\setupact.log
    2013-11-11 17:28 - 2013-11-11 17:32 - 01090275 _____ (Farbar) C:\Users\P bell\Desktop\FRST.exe
    2013-11-08 21:13 - 2012-07-06 14:25 - 00000000 ____D C:\Users\P bell\AppData\Local\CrashDumps
    2013-11-08 15:31 - 2013-11-07 18:17 - 00000000 ____D C:\Windows\220FB0354744483A9A0B41DF77061583.TMP
    2013-11-08 14:34 - 2013-10-01 18:35 - 00000000 ____D C:\Users\P bell\Documents\demande logement fonctionnaire
    2013-11-08 12:35 - 2013-09-03 10:24 - 00000000 ____D C:\Users\P bell\Documents\lycée condorcet 2013-2014
    2013-11-07 19:56 - 2013-04-30 14:12 - 00000000 ____D C:\Users\P bell\AppData\Local\SwvUpdater
    2013-11-07 18:20 - 2013-11-07 18:20 - 00002260 _____ C:\Users\P bell\Desktop\SpyHunter.lnk
    2013-11-07 18:20 - 2013-11-07 18:20 - 00000000 ____D C:\Users\P bell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
    2013-11-07 18:20 - 2013-11-07 18:19 - 00000000 ____D C:\sh4ldr
    2013-11-07 18:19 - 2013-11-07 18:19 - 00000000 ____D C:\Program Files\Enigma Software Group
    2013-11-07 18:16 - 2013-11-07 18:16 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
    2013-11-06 15:43 - 2013-02-21 12:16 - 00000000 ____D C:\Users\P bell\Documents\self défense
    2013-11-05 13:29 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
    2013-10-29 12:09 - 2012-05-07 15:53 - 00000000 ____D C:\Users\P bell\Documents\xantia + kangoo + clio
    2013-10-19 13:21 - 2013-03-10 18:01 - 00001912 _____ C:\Windows\epplauncher.mif
    2013-10-19 13:20 - 2013-03-10 18:00 - 00000000 ____D C:\Program Files\Microsoft Security Client
    2013-10-12 23:05 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache

    Files to move or delete:
    ====================
    C:\Users\Public\AlexaNSISPlugin.6856.dll


    Some content of TEMP:
    ====================
    C:\Users\P bell\AppData\Local\Temp\84962-658111-microsoft-office-2010-professional.exe
    C:\Users\P bell\AppData\Local\Temp\avguidx.dll
    C:\Users\P bell\AppData\Local\Temp\BackupSetup.exe
    C:\Users\P bell\AppData\Local\Temp\boxore.exe
    C:\Users\P bell\AppData\Local\Temp\CommonInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\FrameFoxSetup.exe
    C:\Users\P bell\AppData\Local\Temp\fs_health_check.exe
    C:\Users\P bell\AppData\Local\Temp\GC_PCTOOLS.exe
    C:\Users\P bell\AppData\Local\Temp\iGearedHelper.dll
    C:\Users\P bell\AppData\Local\Temp\instloffer.exe
    C:\Users\P bell\AppData\Local\Temp\jre-6u32-windows-i586-iftw.exe
    C:\Users\P bell\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
    C:\Users\P bell\AppData\Local\Temp\MachineIdCreator.exe
    C:\Users\P bell\AppData\Local\Temp\oi_{66267116-D51A-4156-A0EB-750E18B28EB8}.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1492.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1830.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1935.exe
    C:\Users\P bell\AppData\Local\Temp\setup__2011.exe
    C:\Users\P bell\AppData\Local\Temp\Shortcut_SweetImSetup.exe
    C:\Users\P bell\AppData\Local\Temp\SHSetup.exe
    C:\Users\P bell\AppData\Local\Temp\simbo.exe
    C:\Users\P bell\AppData\Local\Temp\SIMEEIInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\tbbabylonv3.exe
    C:\Users\P bell\AppData\Local\Temp\ToolbarInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\uninst1.exe
    C:\Users\P bell\AppData\Local\Temp\UNINSTALL.EXE


    ==================== Bamital & volsnap Check =================

    C:\Windows\explorer.exe => MD5 is legit
    C:\Windows\System32\winlogon.exe => MD5 is legit
    C:\Windows\System32\wininit.exe => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\System32\services.exe => MD5 is legit
    C:\Windows\System32\User32.dll => MD5 is legit
    C:\Windows\System32\userinit.exe => MD5 is legit
    C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


    LastRegBack: 2013-11-03 17:48

    ==================== End Of Log ============================
    m
    0
    l
    11 Novembre 2013 19:02:59

    addition bloc notes
    Spoiler
    Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-11-2013 01
    Ran by P bell at 2013-11-11 18:37:21
    Running from C:\Users\P bell\Desktop
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
    AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

    ==================== Installed Programs ======================

    Adobe AIR (Version: 1.5.3.9130)
    Adobe Community Help (Version: 3.2.1)
    Adobe Community Help (Version: 3.2.1.650)
    Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
    Adobe Photoshop Elements 9 (Version: 9.0)
    Adobe Reader XI (11.0.05) - Français (Version: 11.0.05)
    Agatha Christie - Death on the Nile (Version: 2.2.0.98)
    Apple Application Support (Version: 2.3.3)
    Apple Mobile Device Support (Version: 6.1.0.13)
    Apple Software Update (Version: 2.1.3.127)
    Bejeweled 2 Deluxe (Version: 2.2.0.95)
    Bing Bar (Version: 7.0.765.0)
    Bonjour (Version: 3.0.0.10)
    Boxore Client (Version: 1.2.38.0)
    Chuzzle Deluxe (Version: 2.2.0.95)
    D3DX10 (Version: 15.4.2368.0902)
    Elements 9 Organizer (Version: 9.0)
    Elements STI Installer (Version: 1.0)
    FATE (Version: 2.2.0.97)
    Final Drive: Nitro (Version: 2.2.0.95)
    Fotogalerija Windows Live (Version: 15.4.3502.0922)
    Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
    Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
    Galeria fotogràfica del Windows Live (Version: 15.4.3502.0922)
    Galeria fotografii usługi Windows Live (Version: 15.4.3502.0922)
    Galerie de photos Windows Live (Version: 15.4.3502.0922)
    Galerie foto Windows Live (Version: 15.4.3502.0922)
    Identity Card (Version: 1.00.3501)
    Insaniquarium Deluxe (Version: 2.2.0.97)
    Intel(R) Control Center (Version: 1.2.1.1007)
    Intel(R) Graphics Media Accelerator Driver (Version: 8.14.10.2230)
    Intel(R) Rapid Storage Technology (Version: 10.1.0.1008)
    Java 7 Update 17 (Version: 7.0.170)
    Jewel Match 3 (Version: 2.2.0.97)
    Jewel Quest Solitaire (Version: 2.2.0.95)
    Junk Mail filter update (Version: 15.4.3502.0922)
    Launch Manager (Version: 5.1.7)
    Logiciel de base du périphérique HP Deskjet 1050 J410 series (Version: 28.0.1313.0)
    Mesh Runtime (Version: 15.4.5722.2)
    Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
    Microsoft .NET Framework 4 Client Profile FRA Language Pack (Version: 4.0.30319)
    Microsoft Application Error Reporting (Version: 12.0.6012.5000)
    Microsoft Security Client (Version: 4.3.0219.0)
    Microsoft Security Essentials (Version: 4.3.219.0)
    Microsoft Silverlight (Version: 5.1.20913.0)
    Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
    Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
    Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
    Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
    Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
    Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
    Module linguistique Microsoft .NET Framework 4 Client Profile FRA (Version: 4.0.30319)
    MSVCRT (Version: 15.4.2862.0708)
    MyPC Backup (Version: )
    OpenOffice.org 3.3 (Version: 3.3.9567)
    Packard Bell Games (Version: 1.0.2.5)
    Packard Bell Power Management (Version: 6.00.3007)
    Packard Bell Recovery Management (Version: 5.00.3502)
    Packard Bell Registration (Version: 1.04.3503)
    Packard Bell ScreenSaver (Version: 1.1.0124.2011)
    Packard Bell Updater (Version: 1.02.3500)
    Penguins! (Version: 2.2.0.95)
    PhotoFiltre 7
    Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
    Plus-HD-3.5 (Version: 1.28.153.1)
    Poczta usługi Windows Live (Version: 15.4.3502.0922)
    Podstawowe programy Windows Live (Version: 15.4.3502.0922)
    Polar Bowler (Version: 2.2.0.97)
    Pošta Windows Live (Version: 15.4.3502.0922)
    QuickShare (Version: 1.6.1.905)
    QuickTime (Version: 7.71.80.42)
    Raccolta foto di Windows Live (Version: 15.4.3502.0922)
    Realtek Ethernet Controller Driver (Version: 7.37.1229.2010)
    Realtek High Definition Audio Driver (Version: 6.0.1.6307)
    Realtek PCIE Card Reader (Version: 6.1.7600.78)
    Savings Wave (Version: 1.27.153.1)
    Search-Gol Chrome Toolbar
    searchgol toolbar (Version: 1.8.16.19)
    Skip-Bo - Castaway Caper (Version: 2.2.0.95)
    Skype™ 5.10 (Version: 5.10.116)
    Slingo Deluxe (Version: 2.2.0.95)
    Software Version Updater (Version: 1.1.3.7)
    SpyHunter (Version: 4.16.5.4290)
    StarterBackgroundChanger (Version: 0.8.1.0)
    SweetIM for Messenger 3.6 (Version: 3.6.0008)
    SweetPacks Toolbar for Internet Explorer 4.5 (Version: 4.5.0000)
    Synaptics Pointing Device Driver (Version: 15.1.18.0)
    Torchlight (Version: 2.2.0.97)
    Tradewinds Legends (Version: 2.2.0.95)
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
    Update Installer for WildTangent Games App
    Update Manager for SweetPacks 1.0 (Version: 1.0.0005)
    Video Web Camera (Version: 1.0.1904)
    Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.97)
    VLC media player 2.0.4 (Version: 2.0.4)
    Wedding Dash (Version: 2.2.0.95)
    Welcome Center (Version: 1.02.3503)
    WildTangent Games App (Packard Bell Games) (Version: 4.0.5.14)
    Windows Live Argazki Galeria (Version: 15.4.3502.0922)
    Windows Live Communications Platform (Version: 15.4.3502.0922)
    Windows Live Essentials (Version: 15.4.3502.0922)
    Windows Live Essentials (Version: 15.4.3538.0513)
    Windows Live Fotogaléria (Version: 15.4.3502.0922)
    Windows Live Fotogalerie (Version: 15.4.3502.0922)
    Windows Live Fotogalleri (Version: 15.4.3502.0922)
    Windows Live Fotoğraf Galerisi (Version: 15.4.3502.0922)
    Windows Live Fotótár (Version: 15.4.3502.0922)
    Windows Live Galeria de Fotos (Version: 15.4.3502.0922)
    Windows Live Galerija fotografija (Version: 15.4.3502.0922)
    Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
    Windows Live Installer (Version: 15.4.3502.0922)
    Windows Live Mail (Version: 15.4.3502.0922)
    Windows Live Mesh (Version: 15.4.3502.0922)
    Windows Live MIME IFilter (Version: 15.4.3502.0922)
    Windows Live Movie Maker (Version: 15.4.3502.0922)
    Windows Live Photo Common (Version: 15.4.3502.0922)
    Windows Live Photo Gallery (Version: 15.4.3502.0922)
    Windows Live PIMT Platform (Version: 15.4.3508.1109)
    Windows Live Remote Client (Version: 15.4.5722.2)
    Windows Live Remote Client Resources (Version: 15.4.5722.2)
    Windows Live Remote Service (Version: 15.4.5722.2)
    Windows Live Remote Service Resources (Version: 15.4.5722.2)
    Windows Live SOXE (Version: 15.4.3502.0922)
    Windows Live SOXE Definitions (Version: 15.4.3502.0922)
    Windows Live Temel Parçalar (Version: 15.4.3502.0922)
    Windows Live UX Platform (Version: 15.4.3502.0922)
    Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
    Windows Live Writer (Version: 15.4.3502.0922)
    Windows Live Writer Resources (Version: 15.4.3502.0922)
    Windows Live 影像中心 (Version: 15.4.3502.0922)
    Windows Live 程式集 (Version: 15.4.3502.0922)
    Windows Liven asennustyökalu (Version: 15.4.3502.0922)
    Windows Liven sähköposti (Version: 15.4.3502.0922)
    Windows Liven valokuvavalikoima (Version: 15.4.3502.0922)
    Zuma Deluxe (Version: 2.2.0.95)
    Συλλογή φωτογραφιών του Windows Live (Version: 15.4.3502.0922)
    Основные компоненты Windows Live (Version: 15.4.3502.0922)
    Почта Windows Live (Version: 15.4.3502.0922)
    Фотоальбом Windows Live (Version: 15.4.3502.0922)
    Фотогалерия на Windows Live (Version: 15.4.3502.0922)
    גלריית התמונות של Windows Live (Version: 15.4.3502.0922)
    بريد Windows Live (Version: 15.4.3502.0922)
    معرض صور Windows Live (Version: 15.4.3502.0922)

    ==================== Restore Points =========================

    07-10-2013 11:30:43 Windows Update
    10-10-2013 18:44:05 Windows Update
    15-10-2013 07:04:47 Windows Update
    18-10-2013 11:49:40 Windows Update
    19-10-2013 12:15:29 Windows Update
    23-10-2013 21:10:03 Windows Update
    03-11-2013 16:02:43 Windows Update
    06-11-2013 16:43:00 Windows Update
    07-11-2013 17:18:28 Installed SpyHunter
    08-11-2013 14:22:22 Removed SpyHunter
    08-11-2013 14:23:30 Removed SpyHunter
    08-11-2013 14:25:54 Removed SpyHunter
    08-11-2013 14:26:26 Removed SpyHunter
    08-11-2013 14:30:15 Removed SpyHunter

    ==================== Hosts content: ==========================

    2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

    ==================== Scheduled Tasks (whitelisted) =============

    Task: {0B3E579D-8C9E-4C3D-A285-A10F06E5ECDA} - System32\Tasks\4723 => C:\Users\PBELL~1\AppData\Local\Temp\launchie.vbsC:\Users\PBELL~1\AppData\Local\Temp\launchie.vbs //B
    Task: {14914AED-E7D9-4863-9536-A3969EC537BF} - System32\Tasks\Adobe Reader Speed Launcher => C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe
    Task: {149C6E44-A7F3-4BAF-8906-D992CDBAFF3B} - System32\Tasks\Plus-HD-3.5-codedownloader => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe [2013-10-05] (Plus HD)
    Task: {1A0080E6-7BEC-41CC-ADD7-D7F66FB59075} - System32\Tasks\0 => Iexplore.exe
    Task: {1BFF2F35-4C96-4042-A281-E55625E8E1E8} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-11] (Microsoft Corporation)
    Task: {1ED190B6-F91F-4FDB-B7CD-75223E5C28F0} - System32\Tasks\{447D7DD8-8FBA-4282-BB82-A9B562B96637} => C:\Program Files\VideoLAN\VLC\vlc.exe [2012-10-15] (VideoLAN)
    Task: {32167B88-3666-4D8C-9313-8E91258170F5} - \AdobeFlashPlayerUpdate 2 No Task File
    Task: {37A91F6E-E7DF-4414-A7A0-0EBEB2A32A47} - System32\Tasks\Plus-HD-3.5-chromeinstaller => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe [2013-10-05] (Plus HD)
    Task: {3BA325EC-FEEC-41A5-997F-75FF1628C1CF} - System32\Tasks\DealPly => C:\Users\P bell\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe [2013-03-19] ()
    Task: {56E72C48-B4C8-4810-A9FD-84C99EA440AD} - System32\Tasks\Plus-HD-3.5-updater => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-updater.exe [2013-10-05] (Plus HD)
    Task: {5B6FC7A1-2604-46B9-AA90-842EA6E536CE} - System32\Tasks\AdobeAAMUpdater-1.0-Pbell-PC-P bell => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2010-07-29] (Adobe Systems Incorporated)
    Task: {60E35FAD-4978-4EAE-8524-ADC9F7AD7973} - System32\Tasks\Adobe ARM => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
    Task: {6A4C3124-8BF8-48F9-B456-A8E5062C96E5} - System32\Tasks\EPUpdater => C:\Users\P bell\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-09-01] ()
    Task: {7A540928-17DE-4CD3-966D-9A51C6140DD1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {860B4C3A-5414-4AAF-BA75-389BC0789666} - System32\Tasks\SoftwareUpdateTaskMachineCore => C:\Program Files\Software\Update\SoftwareUpdate.exe [2013-04-16] (The Software Group)
    Task: {8983BD8B-0199-4F4A-BFC0-527FE9CFA833} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
    Task: {92B94316-1F68-4DF3-99CD-519552FF3FB0} - System32\Tasks\Updater12765.exe => C:\Users\P
    Task: {ACECAA7C-A70C-4636-9747-36893BF95C8A} - \AdobeFlashPlayerUpdate No Task File
    Task: {C955A702-60E0-49C1-B38B-6CE428702702} - System32\Tasks\SoftwareUpdateTaskMachineUA => C:\Program Files\Software\Update\SoftwareUpdate.exe [2013-04-16] (The Software Group)
    Task: {D770CBB5-BDBB-4DCB-85DB-90804E4F14CF} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe [2013-10-18] (Enigma Software Group USA, LLC.)
    Task: {DFEEF48E-CC16-4F63-ACC4-A9F70352119B} - System32\Tasks\{A9FB77FE-678C-4B1F-B89C-10794E15642B} => C:\Program Files\VideoLAN\VLC\vlc.exe [2012-10-15] (VideoLAN)
    Task: {E980F3F1-45AE-41CC-89FD-105218872F78} - System32\Tasks\AmiUpdXp => C:\Users\P bell\AppData\Local\SwvUpdater\Updater.exe
    Task: {FAD013E4-A107-4CE9-A773-40FFEB2A390C} - System32\Tasks\Plus-HD-3.5-enabler => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-enabler.exe [2013-10-16] (Plus HD)
    Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\P bell\AppData\Local\SwvUpdater\Updater.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-enabler.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-enabler.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-updater.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-updater.exe
    Task: C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job => C:\Program Files\Software\Update\SoftwareUpdate.exe
    Task: C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job => C:\Program Files\Software\Update\SoftwareUpdate.exe

    ==================== Loaded Modules (whitelisted) =============

    2013-05-11 17:20 - 2013-05-11 17:20 - 00012288 _____ () C:\Program Files\MyPC Backup\GetText.dll
    2013-04-30 14:15 - 2013-04-30 14:15 - 00911432 _____ () C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.66.0__db937bc2d44ff139\System.Data.SQLite.dll

    ==================== Alternate Data Streams (whitelisted) =========

    AlternateDataStreams: C:\ProgramData\Temp:430C6D84
    AlternateDataStreams: C:\ProgramData\Temp:D FC5A2B2

    ==================== Safe Mode (whitelisted) ===================


    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (11/11/2013 06:09:45 PM) (Source: WinMgmt) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/11/2013 06:03:29 PM) (Source: ESENT) (User: )
    Description: wuaueng.dll (1104) SUS20ClientDataStore: La lecture de pages de base de données à partir du fichier « C:\Windows\SoftwareDistribution\DataStore\DataStore.edb » à l’adresse relative 181698560 (0x000000000ad48000) (page de base de données wuaueng.dll0) de 32768 (0x00008000) octets a échoué à la vérification à cause d’une non-concordance de total de contrôle. Le total de contrôle attendu était [fd2402db546557ba:ef2def2d34f4158a:9ffd9ffd2a1b15e2:0f51f0ae7fce15f3] tandis que le total de contrôle réel était [fd3002cf531750d6:ef2def2d34f4158a:98a998a92a3d15da:0f51f0ae7fce15f3]. L’opération de lecture échouera en indiquant l’erreur -1018 (0xfffffc06). Si le problème persiste, restaurez la base de données à partir d’une version de sauvegarde antérieure. Ce problème est probablement dû à un matériel défectueux. Contactez votre fournisseur de matériel afin d’obtenir une assistance complémentaire pour diagnostiquer le problème.

    Error: (11/11/2013 05:59:13 PM) (Source: WinMgmt) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/08/2013 09:28:01 PM) (Source: WinMgmt) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/08/2013 09:13:29 PM) (Source: Application Error) (User: )
    Description: Nom de l’application défaillante iexplore.exe, version : 10.0.9200.16720, horodatage : 0x523cf127
    Nom du module défaillant : ntdll.dll, version : 6.1.7601.18247, horodatage : 0x521ea91c
    Code d’exception : 0xc0000005
    Décalage d’erreur : 0x0001f9d3
    ID du processus défaillant : 0xf90
    Heure de début de l’application défaillante : 0xiexplore.exe0
    Chemin d’accès de l’application défaillante : iexplore.exe1
    Chemin d’accès du module défaillant: iexplore.exe2
    ID de rapport : iexplore.exe3

    Error: (11/08/2013 09:02:51 PM) (Source: WinMgmt) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/08/2013 07:05:38 PM) (Source: WinMgmt) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/08/2013 03:59:09 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: m->NextScheduledSPRetry 811517

    Error: (11/08/2013 03:59:09 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: m->NextScheduledEvent 811517

    Error: (11/08/2013 03:59:09 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: Continuously busy for more than a second


    System errors:
    =============
    Error: (11/11/2013 06:19:33 PM) (Source: Microsoft Antimalware) (User: )
    Description: %AUTORITE NT60 a rencontré une erreur lors de la tentative de mise à jour des signatures.

    Nouvelle version des signatures :

    Version précédente des signatures : 1.161.1716.0

    Source de la mise à jour : %AUTORITE NT59

    Étape de la mise à jour : 4.3.0219.00

    Chemin d'accès source : 4.3.0219.01

    Type de signature : %AUTORITE NT602

    Type de la mise à jour : %AUTORITE NT604

    Utilisateur : AUTORITE NT\Système

    Version actuelle du moteur : %AUTORITE NT605

    Version précédente du moteur : %AUTORITE NT606

    Code d'erreur : %AUTORITE NT607

    Description de l'erreur : %AUTORITE NT608

    Error: (11/11/2013 06:12:02 PM) (Source: Service Control Manager) (User: )
    Description: Le service Intel(R) Rapid Storage Technology n’a pas pu démarrer en raison de l’erreur :
    %%1053

    Error: (11/11/2013 06:12:02 PM) (Source: Service Control Manager) (User: )
    Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Intel(R) Rapid Storage Technology.

    Error: (11/11/2013 06:09:30 PM) (Source: Service Control Manager) (User: )
    Description: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger :
    cdrom

    Error: (11/11/2013 05:59:01 PM) (Source: Service Control Manager) (User: )
    Description: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger :
    cdrom

    Error: (11/11/2013 05:58:59 PM) (Source: Service Control Manager) (User: )
    Description: Le service Computer Backup (MyPC Backup) n’a pas pu démarrer en raison de l’erreur :
    %%1053

    Error: (11/11/2013 05:58:59 PM) (Source: Service Control Manager) (User: )
    Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Computer Backup (MyPC Backup).

    Error: (11/08/2013 09:30:24 PM) (Source: Service Control Manager) (User: )
    Description: Le service Intel(R) Rapid Storage Technology n’a pas pu démarrer en raison de l’erreur :
    %%1053

    Error: (11/08/2013 09:30:24 PM) (Source: Service Control Manager) (User: )
    Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Intel(R) Rapid Storage Technology.

    Error: (11/08/2013 09:27:50 PM) (Source: Service Control Manager) (User: )
    Description: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger :
    cdrom


    Microsoft Office Sessions:
    =========================
    Error: (11/11/2013 06:09:45 PM) (Source: WinMgmt)(User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/11/2013 06:03:29 PM) (Source: ESENT)(User: )
    Description: wuaueng.dll1104SUS20ClientDataStore: C:\Windows\SoftwareDistribution\DataStore\DataStore.edb181698560 (0x000000000ad48000)32768 (0x00008000)-1018 (0xfffffc06)[fd2402db546557ba:ef2def2d34f4158a:9ffd9ffd2a1b15e2:0f51f0ae7fce15f3][fd3002cf531750d6:ef2def2d34f4158a:98a998a92a3d15da:0f51f0ae7fce15f3]5544 (0x15A8)

    Error: (11/11/2013 05:59:13 PM) (Source: WinMgmt)(User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/08/2013 09:28:01 PM) (Source: WinMgmt)(User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/08/2013 09:13:29 PM) (Source: Application Error)(User: )
    Description: iexplore.exe10.0.9200.16720523cf127ntdll.dll6.1.7601.18247521ea91cc00000050001f9d3f9001cedcbebcf392beC:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dll3b5d4b4c-48b2-11e3-9881-e89a8fec822f

    Error: (11/08/2013 09:02:51 PM) (Source: WinMgmt)(User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/08/2013 07:05:38 PM) (Source: WinMgmt)(User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

    Error: (11/08/2013 03:59:09 PM) (Source: Bonjour Service)(User: )
    Description: Task Scheduling Error: m->NextScheduledSPRetry 811517

    Error: (11/08/2013 03:59:09 PM) (Source: Bonjour Service)(User: )
    Description: Task Scheduling Error: m->NextScheduledEvent 811517

    Error: (11/08/2013 03:59:09 PM) (Source: Bonjour Service)(User: )
    Description: Task Scheduling Error: Continuously busy for more than a second


    ==================== Memory info ===========================

    Percentage of memory in use: 62%
    Total physical RAM: 1011.87 MB
    Available physical RAM: 377.75 MB
    Total Pagefile: 2035.87 MB
    Available Pagefile: 1048.63 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1900.3 MB

    ==================== Drives ================================

    Drive c: (Packard Bell) (Fixed) (Total:284.99 GB) (Free:242.94 GB) NTFS
    Drive d: (USB DISK) (Removable) (Total:7.45 GB) (Free:7.38 GB) FAT32

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: DF3AD910)
    Partition 1: (Not Active) - (Size=13 GB) - (Type=27)
    Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 3: (Not Active) - (Size=285 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 1 (MBR Code: Windows XP) (Size: 7 GB) (Disk ID: C3072E18)
    Partition 1: (Not Active) - (Size=7 GB) - (Type=0C)

    ==================== End Of Log ============================
    m
    0
    l
    a c 639 8 Sécurité
    a b 2 Internet
    a b Ē Google Chrome
    a b È Firefox
    a b $ Windows 7
    11 Novembre 2013 19:04:58

    hello

    ah , ok tu m'as répondu

    je te prépare un script pour soulager un peu ton pc
    m
    0
    l
    11 Novembre 2013 19:14:02

    j'espère que c'est bon, sinon je refais pas de pb...
    m
    0
    l
    a c 639 8 Sécurité
    a b 2 Internet
    a b Ē Google Chrome
    a b È Firefox
    a b $ Windows 7
    11 Novembre 2013 19:30:21

    hello

    on va commencer par soulager un peu ton pc ensuite, on entrera dans le vif du sujet

    £££££££££££££££££££££££££££££££££££


    £££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££
    FRST - Correctif :

    /!\ Créer un point de restauration manuel avant d'appliquer le correctif -
    Tutoriel en images
    /!\


    • Ouvre le Bloc-notes (Démarrer => Tous les programmes => Accessoires => Bloc-notes)
    • Copie/colle la totalité du contenu de la zone Code ci-dessous dans le Bloc-notes


      start
      Task: {149C6E44-A7F3-4BAF-8906-D992CDBAFF3B} - System32\Tasks\Plus-HD-3.5-codedownloader => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe [2013-10-05] (Plus HD)
      Task: {1A0080E6-7BEC-41CC-ADD7-D7F66FB59075} - System32\Tasks\0 => Iexplore.exe
      Task: {0B3E579D-8C9E-4C3D-A285-A10F06E5ECDA} - System32\Tasks\4723 => C:\Users\PBELL~1\AppData\Local\Temp\launchie.vbsC:\Users\PBELL~1\AppData\Local\Temp\launchie.vbs //B
      Task: {32167B88-3666-4D8C-9313-8E91258170F5} - \AdobeFlashPlayerUpdate 2 No Task File
      Task: {37A91F6E-E7DF-4414-A7A0-0EBEB2A32A47} - System32\Tasks\Plus-HD-3.5-chromeinstaller => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe [2013-10-05] (Plus HD)
      Task: {3BA325EC-FEEC-41A5-997F-75FF1628C1CF} - System32\Tasks\DealPly => C:\Users\P bell\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe [2013-03-19] ()
      Task: {56E72C48-B4C8-4810-A9FD-84C99EA440AD} - System32\Tasks\Plus-HD-3.5-updater => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-updater.exe [2013-10-05] (Plus HD)
      Task: {6A4C3124-8BF8-48F9-B456-A8E5062C96E5} - System32\Tasks\EPUpdater => C:\Users\P bell\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-09-01] ()
      Task: {92B94316-1F68-4DF3-99CD-519552FF3FB0} - System32\Tasks\Updater12765.exe => C:\Users\P
      Task: {ACECAA7C-A70C-4636-9747-36893BF95C8A} - \AdobeFlashPlayerUpdate No Task File
      Task: {C955A702-60E0-49C1-B38B-6CE428702702} - System32\Tasks\SoftwareUpdateTaskMachineUA => C:\Program Files\Software\Update\SoftwareUpdate.exe [2013-04-16] (The Software Group)
      Task: {D770CBB5-BDBB-4DCB-85DB-90804E4F14CF} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe [2013-10-18] (Enigma Software Group USA, LLC.)
      Task: {E980F3F1-45AE-41CC-89FD-105218872F78} - System32\Tasks\AmiUpdXp => C:\Users\P bell\AppData\Local\SwvUpdater\Updater.exe
      Task: {FAD013E4-A107-4CE9-A773-40FFEB2A390C} - System32\Tasks\Plus-HD-3.5-enabler => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-enabler.exe [2013-10-16] (Plus HD)
      Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\P bell\AppData\Local\SwvUpdater\Updater.exe
      Task: C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe
      Task: C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe
      Task: C:\Windows\Tasks\Plus-HD-3.5-enabler.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-enabler.exe
      Task: C:\Windows\Tasks\Plus-HD-3.5-updater.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-updater.exe
      Task: C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job => C:\Program Files\Software\Update\SoftwareUpdate.exe
      Task: C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job => C:\Program Files\Software\Update\SoftwareUpdate.exe
      AlternateDataStreams: C:\ProgramData\Temp:430C6D84
      AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2
      (SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Messenger\SweetIM.exe
      (SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
      (MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe
      HKLM\...\Run: [SweetIM] - C:\Program Files\SweetIM\Messenger\SweetIM.exe [114992 2012-02-16] (SweetIM Technologies Ltd.)
      HKLM\...\Run: [Sweetpacks Communicator] - C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [295728 2012-02-26] (SweetIM Technologies Ltd.)
      HKLM\...\Run: [Boxore Client] - C:\Program Files\Boxore\BoxoreClient\boxore.exe [606496 2013-03-15] (Boxore OU)
      HKCU\...\Run: [Bubble Dock] - "C:\Users\P bell\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup
      HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
      Startup: C:\Users\P bell\Desktop\Startup\MyPC Backup.lnk
      ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
      SearchScopes: HKCU - BrowserMngrDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
      SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=B4DC16DE2BE6E184&affID=125035&tsp=5026
      BHO: Savings Wave - {11111111-1111-1111-1111-110111271165} - C:\Program Files\Savings Wave\Savings Wave-bho.dll (Innovative Apps)
      BHO: Plus-HD-3.5 - {11111111-1111-1111-1111-110311711180} - C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-bho.dll (Plus HD)
      BHO: No Name - {2EECD738-5844-4a99-B4B6-146BF802613B} - No File
      BHO: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
      Toolbar: HKLM - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
      Toolbar: HKLM - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
      CHR Extension: (Iminent) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.16.5.1
      CHR Extension: (Wajam) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0
      CHR Extension: (Bubble Dock ) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp\1.0.0.130
      CHR Extension: (Plus-HD-3.5) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldikpdnngdmeceeameoaannjilbjppnm\1.23.31_0
      CHR Extension: (Savings Wave) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lglkfgcmohcdajpldlnhjjiojjgkbmhm\1.23.65_0
      CHR Extension: (Helper extension) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchpfiddbhbdnagofhkjlaiaejmkdcla\2.0_0
      CHR HKLM\...\Chrome\Extension: [aipfmkinhleccnodemkoofnnofpbbpac] - C:\Users\P bell\AppData\Roaming\BabSolution\CR\searchgol.crx
      CHR HKLM\...\Chrome\Extension: [jpmbfleldcgkldadpdinhjjopdfpjfjp] - C:\Users\P bell\AppData\Local\Wajam\Chrome\wajam.crx
      CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
      R2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [32808 2013-05-11] (Just Develop It)
      2013-11-07 18:20 - 2013-11-07 18:20 - 00002260 _____ C:\Users\P bell\Desktop\SpyHunter.lnk
      2013-11-07 18:20 - 2013-11-07 18:20 - 00000000 ____D C:\Users\P bell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
      2013-11-07 18:19 - 2013-11-07 18:20 - 00000000 ____D C:\sh4ldr
      2013-11-07 18:19 - 2013-11-07 18:19 - 00000000 ____D C:\Program Files\Enigma Software Group
      2013-11-07 18:17 - 2013-11-08 15:31 - 00000000 ____D C:\Windows\220FB0354744483A9A0B41DF77061583.TMP
      2013-11-11 18:29 - 2013-04-16 09:24 - 00000906 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job
      2013-11-11 18:09 - 2013-10-05 18:02 - 00001280 _____ C:\Windows\Tasks\Plus-HD-3.5-updater.job
      2013-11-11 18:09 - 2013-10-05 18:02 - 00001184 _____ C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job
      2013-11-11 18:09 - 2013-10-05 18:02 - 00001084 _____ C:\Windows\Tasks\Plus-HD-3.5-enabler.job
      2013-11-11 18:09 - 2013-10-05 18:01 - 00001880 _____ C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job
      2013-11-11 18:09 - 2013-04-30 14:12 - 00000360 _____ C:\Windows\Tasks\AmiUpdXp.job
      2013-11-11 18:09 - 2013-04-16 09:24 - 00000902 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
      2013-11-08 15:31 - 2013-11-07 18:17 - 00000000 ____D C:\Windows\220FB0354744483A9A0B41DF77061583.TMP
      C:\Users\Public\AlexaNSISPlugin.6856.dll
      C:\Users\P bell\AppData\Local\Temp\84962-658111-microsoft-office-2010-professional.exe
      C:\Users\P bell\AppData\Local\Temp\avguidx.dll
      C:\Users\P bell\AppData\Local\Temp\BackupSetup.exe
      C:\Users\P bell\AppData\Local\Temp\boxore.exe
      C:\Users\P bell\AppData\Local\Temp\CommonInstaller.exe
      C:\Users\P bell\AppData\Local\Temp\FrameFoxSetup.exe
      C:\Users\P bell\AppData\Local\Temp\fs_health_check.exe
      C:\Users\P bell\AppData\Local\Temp\GC_PCTOOLS.exe
      C:\Users\P bell\AppData\Local\Temp\iGearedHelper.dll
      C:\Users\P bell\AppData\Local\Temp\instloffer.exe
      C:\Users\P bell\AppData\Local\Temp\jre-6u32-windows-i586-iftw.exe
      C:\Users\P bell\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
      C:\Users\P bell\AppData\Local\Temp\MachineIdCreator.exe
      C:\Users\P bell\AppData\Local\Temp\oi_{66267116-D51A-4156-A0EB-750E18B28EB8}.exe
      C:\Users\P bell\AppData\Local\Temp\setup__1492.exe
      C:\Users\P bell\AppData\Local\Temp\setup__1830.exe
      C:\Users\P bell\AppData\Local\Temp\setup__1935.exe
      C:\Users\P bell\AppData\Local\Temp\setup__2011.exe
      C:\Users\P bell\AppData\Local\Temp\Shortcut_SweetImSetup.exe
      C:\Users\P bell\AppData\Local\Temp\SHSetup.exe
      C:\Users\P bell\AppData\Local\Temp\simbo.exe
      C:\Users\P bell\AppData\Local\Temp\SIMEEIInstaller.exe
      C:\Users\P bell\AppData\Local\Temp\tbbabylonv3.exe
      C:\Users\P bell\AppData\Local\Temp\ToolbarInstaller.exe
      C:\Users\P bell\AppData\Local\Temp\uninst1.exe
      C:\Users\P bell\AppData\Local\Temp\UNINSTALL.EXE
      end


    • Enregistre le fichier sur ton Bureau (au même endroit que FRST) sous le nom fixlist.txt
    • Ferme toutes les applications, y compris ton navigateur
    • Double-clique sur FRST.exe
      /!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
    • Sur le menu principal, clique une seule fois sur Fix et patiente le temps de la correction



    • L'outil va créer un rapport de correction Fixlog.txt.

  • (clique sur lien vert et souligné , ceci va t'ouvrir une fenêtre): Tu hébergeras le rapport ici, tu m'indiqueras le lien dans ta prochaine réponse.

    /!\ Ce script a été établi pour cet utilisateur, il ne doit, en aucun cas, être appliqué sur un autre système, au risque de provoquer de graves dysfonctionnement et endommager Windows /!\

    £££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££










    m
    0
    l
    15 Novembre 2013 18:44:15

    bonjour, de retour quand je trouve 5 min de répit après le boulot.
    impeccable les explications pour créer le point de restauration; pour le fixlog, faut jongler avec la clé usb et l'ordi qui se connecte à internet mais je pense que ça a marché: le lien:

    http://up.security-x.fr/file.php?h=R8b83a2bf2cf13259f9e...

    pour plus de sécurité, je copie colle l'ensemble:


    Spoiler
    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 10-11-2013 01
    Ran by P bell at 2013-11-15 18:38:44 Run:1
    Running from C:\Users\P bell\Desktop
    Boot Mode: Normal

    ==============================================

    Content of fixlist:
    *****************
    start
    Task: {149C6E44-A7F3-4BAF-8906-D992CDBAFF3B} - System32\Tasks\Plus-HD-3.5-codedownloader => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe [2013-10-05] (Plus HD)
    Task: {1A0080E6-7BEC-41CC-ADD7-D7F66FB59075} - System32\Tasks\0 => Iexplore.exe
    Task: {0B3E579D-8C9E-4C3D-A285-A10F06E5ECDA} - System32\Tasks\4723 => C:\Users\PBELL~1\AppData\Local\Temp\launchie.vbsC:\Users\PBELL~1\AppData\Local\Temp\launchie.vbs //B
    Task: {32167B88-3666-4D8C-9313-8E91258170F5} - \AdobeFlashPlayerUpdate 2 No Task File
    Task: {37A91F6E-E7DF-4414-A7A0-0EBEB2A32A47} - System32\Tasks\Plus-HD-3.5-chromeinstaller => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe [2013-10-05] (Plus HD)
    Task: {3BA325EC-FEEC-41A5-997F-75FF1628C1CF} - System32\Tasks\DealPly => C:\Users\P bell\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe [2013-03-19] ()
    Task: {56E72C48-B4C8-4810-A9FD-84C99EA440AD} - System32\Tasks\Plus-HD-3.5-updater => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-updater.exe [2013-10-05] (Plus HD)
    Task: {6A4C3124-8BF8-48F9-B456-A8E5062C96E5} - System32\Tasks\EPUpdater => C:\Users\P bell\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-09-01] ()
    Task: {92B94316-1F68-4DF3-99CD-519552FF3FB0} - System32\Tasks\Updater12765.exe => C:\Users\P
    Task: {ACECAA7C-A70C-4636-9747-36893BF95C8A} - \AdobeFlashPlayerUpdate No Task File
    Task: {C955A702-60E0-49C1-B38B-6CE428702702} - System32\Tasks\SoftwareUpdateTaskMachineUA => C:\Program Files\Software\Update\SoftwareUpdate.exe [2013-04-16] (The Software Group)
    Task: {D770CBB5-BDBB-4DCB-85DB-90804E4F14CF} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe [2013-10-18] (Enigma Software Group USA, LLC.)
    Task: {E980F3F1-45AE-41CC-89FD-105218872F78} - System32\Tasks\AmiUpdXp => C:\Users\P bell\AppData\Local\SwvUpdater\Updater.exe
    Task: {FAD013E4-A107-4CE9-A773-40FFEB2A390C} - System32\Tasks\Plus-HD-3.5-enabler => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-enabler.exe [2013-10-16] (Plus HD)
    Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\P bell\AppData\Local\SwvUpdater\Updater.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-enabler.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-enabler.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-updater.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-updater.exe
    Task: C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job => C:\Program Files\Software\Update\SoftwareUpdate.exe
    Task: C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job => C:\Program Files\Software\Update\SoftwareUpdate.exe
    AlternateDataStreams: C:\ProgramData\Temp:430C6D84
    AlternateDataStreams: C:\ProgramData\Temp:D FC5A2B2
    (SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Messenger\SweetIM.exe
    (SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
    (MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe
    HKLM\...\Run: [SweetIM] - C:\Program Files\SweetIM\Messenger\SweetIM.exe [114992 2012-02-16] (SweetIM Technologies Ltd.)
    HKLM\...\Run: [Sweetpacks Communicator] - C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [295728 2012-02-26] (SweetIM Technologies Ltd.)
    HKLM\...\Run: [Boxore Client] - C:\Program Files\Boxore\BoxoreClient\boxore.exe [606496 2013-03-15] (Boxore OU)
    HKCU\...\Run: [Bubble Dock] - "C:\Users\P bell\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup
    HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
    Startup: C:\Users\P bell\Desktop\Startup\MyPC Backup.lnk
    ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
    SearchScopes: HKCU - BrowserMngrDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
    SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=B4DC16DE2BE6E184&affID=125035&tsp=5026
    BHO: Savings Wave - {11111111-1111-1111-1111-110111271165} - C:\Program Files\Savings Wave\Savings Wave-bho.dll (Innovative Apps)
    BHO: Plus-HD-3.5 - {11111111-1111-1111-1111-110311711180} - C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-bho.dll (Plus HD)
    BHO: No Name - {2EECD738-5844-4a99-B4B6-146BF802613B} - No File
    BHO: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    Toolbar: HKLM - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    Toolbar: HKLM - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
    CHR Extension: (Iminent) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.16.5.1
    CHR Extension: (Wajam) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0
    CHR Extension: (Bubble Dock ) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp\1.0.0.130
    CHR Extension: (Plus-HD-3.5) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldikpdnngdmeceeameoaannjilbjppnm\1.23.31_0
    CHR Extension: (Savings Wave) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lglkfgcmohcdajpldlnhjjiojjgkbmhm\1.23.65_0
    CHR Extension: (Helper extension) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchpfiddbhbdnagofhkjlaiaejmkdcla\2.0_0
    CHR HKLM\...\Chrome\Extension: [aipfmkinhleccnodemkoofnnofpbbpac] - C:\Users\P bell\AppData\Roaming\BabSolution\CR\searchgol.crx
    CHR HKLM\...\Chrome\Extension: [jpmbfleldcgkldadpdinhjjopdfpjfjp] - C:\Users\P bell\AppData\Local\Wajam\Chrome\wajam.crx
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    R2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [32808 2013-05-11] (Just Develop It)
    2013-11-07 18:20 - 2013-11-07 18:20 - 00002260 _____ C:\Users\P bell\Desktop\SpyHunter.lnk
    2013-11-07 18:20 - 2013-11-07 18:20 - 00000000 ____D C:\Users\P bell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
    2013-11-07 18:19 - 2013-11-07 18:20 - 00000000 ____D C:\sh4ldr
    2013-11-07 18:19 - 2013-11-07 18:19 - 00000000 ____D C:\Program Files\Enigma Software Group
    2013-11-07 18:17 - 2013-11-08 15:31 - 00000000 ____D C:\Windows\220FB0354744483A9A0B41DF77061583.TMP
    2013-11-11 18:29 - 2013-04-16 09:24 - 00000906 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001280 _____ C:\Windows\Tasks\Plus-HD-3.5-updater.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001184 _____ C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001084 _____ C:\Windows\Tasks\Plus-HD-3.5-enabler.job
    2013-11-11 18:09 - 2013-10-05 18:01 - 00001880 _____ C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job
    2013-11-11 18:09 - 2013-04-30 14:12 - 00000360 _____ C:\Windows\Tasks\AmiUpdXp.job
    2013-11-11 18:09 - 2013-04-16 09:24 - 00000902 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
    2013-11-08 15:31 - 2013-11-07 18:17 - 00000000 ____D C:\Windows\220FB0354744483A9A0B41DF77061583.TMP
    C:\Users\Public\AlexaNSISPlugin.6856.dll
    C:\Users\P bell\AppData\Local\Temp\84962-658111-microsoft-office-2010-professional.exe
    C:\Users\P bell\AppData\Local\Temp\avguidx.dll
    C:\Users\P bell\AppData\Local\Temp\BackupSetup.exe
    C:\Users\P bell\AppData\Local\Temp\boxore.exe
    C:\Users\P bell\AppData\Local\Temp\CommonInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\FrameFoxSetup.exe
    C:\Users\P bell\AppData\Local\Temp\fs_health_check.exe
    C:\Users\P bell\AppData\Local\Temp\GC_PCTOOLS.exe
    C:\Users\P bell\AppData\Local\Temp\iGearedHelper.dll
    C:\Users\P bell\AppData\Local\Temp\instloffer.exe
    C:\Users\P bell\AppData\Local\Temp\jre-6u32-windows-i586-iftw.exe
    C:\Users\P bell\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
    C:\Users\P bell\AppData\Local\Temp\MachineIdCreator.exe
    C:\Users\P bell\AppData\Local\Temp\oi_{66267116-D51A-4156-A0EB-750E18B28EB8}.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1492.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1830.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1935.exe
    C:\Users\P bell\AppData\Local\Temp\setup__2011.exe
    C:\Users\P bell\AppData\Local\Temp\Shortcut_SweetImSetup.exe
    C:\Users\P bell\AppData\Local\Temp\SHSetup.exe
    C:\Users\P bell\AppData\Local\Temp\simbo.exe
    C:\Users\P bell\AppData\Local\Temp\SIMEEIInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\tbbabylonv3.exe
    C:\Users\P bell\AppData\Local\Temp\ToolbarInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\uninst1.exe
    C:\Users\P bell\AppData\Local\Temp\UNINSTALL.EXE
    end


    *****************

    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{149C6E44-A7F3-4BAF-8906-D992CDBAFF3B} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{149C6E44-A7F3-4BAF-8906-D992CDBAFF3B} => Key deleted successfully.
    C:\Windows\System32\Tasks\Plus-HD-3.5-codedownloader => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-codedownloader => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A0080E6-7BEC-41CC-ADD7-D7F66FB59075} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A0080E6-7BEC-41CC-ADD7-D7F66FB59075} => Key deleted successfully.
    C:\Windows\System32\Tasks\0 => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\0 => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0B3E579D-8C9E-4C3D-A285-A10F06E5ECDA} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B3E579D-8C9E-4C3D-A285-A10F06E5ECDA} => Key deleted successfully.
    C:\Windows\System32\Tasks\4723 => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\4723 => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{32167B88-3666-4D8C-9313-8E91258170F5} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32167B88-3666-4D8C-9313-8E91258170F5} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate 2 => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{37A91F6E-E7DF-4414-A7A0-0EBEB2A32A47} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37A91F6E-E7DF-4414-A7A0-0EBEB2A32A47} => Key deleted successfully.
    C:\Windows\System32\Tasks\Plus-HD-3.5-chromeinstaller => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-chromeinstaller => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3BA325EC-FEEC-41A5-997F-75FF1628C1CF} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BA325EC-FEEC-41A5-997F-75FF1628C1CF} => Key deleted successfully.
    C:\Windows\System32\Tasks\DealPly => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{56E72C48-B4C8-4810-A9FD-84C99EA440AD} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{56E72C48-B4C8-4810-A9FD-84C99EA440AD} => Key deleted successfully.
    C:\Windows\System32\Tasks\Plus-HD-3.5-updater => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-updater => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A4C3124-8BF8-48F9-B456-A8E5062C96E5} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A4C3124-8BF8-48F9-B456-A8E5062C96E5} => Key deleted successfully.
    C:\Windows\System32\Tasks\EPUpdater => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{92B94316-1F68-4DF3-99CD-519552FF3FB0} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92B94316-1F68-4DF3-99CD-519552FF3FB0} => Key deleted successfully.
    C:\Windows\System32\Tasks\Updater12765.exe => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Updater12765.exe => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ACECAA7C-A70C-4636-9747-36893BF95C8A} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ACECAA7C-A70C-4636-9747-36893BF95C8A} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C955A702-60E0-49C1-B38B-6CE428702702} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C955A702-60E0-49C1-B38B-6CE428702702} => Key deleted successfully.
    C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoftwareUpdateTaskMachineUA => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D770CBB5-BDBB-4DCB-85DB-90804E4F14CF} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D770CBB5-BDBB-4DCB-85DB-90804E4F14CF} => Key deleted successfully.
    C:\Windows\System32\Tasks\SpyHunter4Startup => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SpyHunter4Startup => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E980F3F1-45AE-41CC-89FD-105218872F78} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E980F3F1-45AE-41CC-89FD-105218872F78} => Key deleted successfully.
    C:\Windows\System32\Tasks\AmiUpdXp => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FAD013E4-A107-4CE9-A773-40FFEB2A390C} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FAD013E4-A107-4CE9-A773-40FFEB2A390C} => Key deleted successfully.
    C:\Windows\System32\Tasks\Plus-HD-3.5-enabler => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-enabler => Key deleted successfully.
    C:\Windows\Tasks\AmiUpdXp.job => Moved successfully.
    C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job => Moved successfully.
    C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job => Moved successfully.
    C:\Windows\Tasks\Plus-HD-3.5-enabler.job => Moved successfully.
    C:\Windows\Tasks\Plus-HD-3.5-updater.job => Moved successfully.
    C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job => Moved successfully.
    C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job => Moved successfully.
    C:\ProgramData\Temp => ":430C6D84" ADS removed successfully.
    C:\ProgramData\Temp => ":D FC5A2B2 " ADS removed successfully.
    [2072] C:\Program Files\SweetIM\Messenger\SweetIM.exe => Process closed successfully.
    C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe => No running process found
    C:\Program Files\MyPC Backup\MyPC Backup.exe => No running process found
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SweetIM => Value deleted successfully.
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Sweetpacks Communicator => Value deleted successfully.
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Boxore Client => Value deleted successfully.
    HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Bubble Dock => Value deleted successfully.
    HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value deleted successfully.
    C:\Users\P bell\Desktop\Startup\MyPC Backup.lnk => Moved successfully.
    C:\Program Files\MyPC Backup\MyPC Backup.exe => Moved successfully.
    HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\BrowserMngrDefaultScope => Value deleted successfully.
    HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
    HKCR\Wow6432Node\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110111271165} => Key deleted successfully.
    HKCR\CLSID\{11111111-1111-1111-1111-110111271165} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311711180} => Key deleted successfully.
    HKCR\CLSID\{11111111-1111-1111-1111-110311711180} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B} => Key deleted successfully.
    HKCR\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B} => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} => Key deleted successfully.
    HKCR\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{EEE6C35B-6118-11DC-9C72-001320C79847} => Value deleted successfully.
    HKCR\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} => Value deleted successfully.
    HKCR\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC} => Key not found.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldikpdnngdmeceeameoaannjilbjppnm => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lglkfgcmohcdajpldlnhjjiojjgkbmhm => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchpfiddbhbdnagofhkjlaiaejmkdcla => Moved successfully.
    HKLM\SOFTWARE\Google\Chrome\Extensions\aipfmkinhleccnodemkoofnnofpbbpac => Key deleted successfully.
    C:\Users\P bell\AppData\Roaming\BabSolution\CR\searchgol.crx => Moved successfully.
    HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp => Key deleted successfully.
    C:\Users\P bell\AppData\Local\Wajam\Chrome\wajam.crx => Moved successfully.
    HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
    BackupStack => Service deleted successfully.
    C:\Users\P bell\Desktop\SpyHunter.lnk => Moved successfully.
    C:\Users\P bell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter => Moved successfully.
    C:\sh4ldr => Moved successfully.
    C:\Program Files\Enigma Software Group => Moved successfully.
    C:\Windows\220FB0354744483A9A0B41DF77061583.TMP => Moved successfully.
    "C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job" => File/Directory not found.
    "C:\Windows\Tasks\Plus-HD-3.5-updater.job" => File/Directory not found.
    "C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job" => File/Directory not found.
    "C:\Windows\Tasks\Plus-HD-3.5-enabler.job" => File/Directory not found.
    "C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job" => File/Directory not found.
    "C:\Windows\Tasks\AmiUpdXp.job" => File/Directory not found.
    "C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job " => File/Directory not found.
    "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP " => File/Directory not found.
    C:\Users\Public\AlexaNSISPlugin.6856.dll => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\84962-658111-microsoft-office-2010-professional.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\avguidx.dll => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\BackupSetup.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\boxore.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\CommonInstaller.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\FrameFoxSetup.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\fs_health_check.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\GC_PCTOOLS.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\iGearedHelper.dll => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\instloffer.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\jre-6u32-windows-i586-iftw.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\MachineIdCreator.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\oi_{66267116-D51A-4156-A0EB-750E18B28EB8}.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\setup__1492.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\setup__1830.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\setup__1935.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\setup__2011.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\Shortcut_SweetImSetup.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\SHSetup.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\simbo.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\SIMEEIInstaller.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\tbbabylonv3.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\ToolbarInstaller.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\uninst1.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\UNINSTALL.EXE => Moved successfully.


    The system needs a manual reboot.

    ==== End of Fixlog ====

    merci encore de votre aide précieuse, dans l'attente de vous lire, bonne soirée, thierry
    m
    0
    l
    15 Novembre 2013 18:45:13

    bonjour, de retour quand je trouve 5 min de répit après le boulot.
    impeccable les explications pour créer le point de restauration; pour le fixlog, faut jongler avec la clé usb et l'ordi qui se connecte à internet mais je pense que ça a marché: le lien:

    http://up.security-x.fr/file.php?h=R8b83a2bf2cf13259f9e...

    pour plus de sécurité, je copie colle l'ensemble:


    Spoiler
    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 10-11-2013 01
    Ran by P bell at 2013-11-15 18:38:44 Run:1
    Running from C:\Users\P bell\Desktop
    Boot Mode: Normal

    ==============================================

    Content of fixlist:
    *****************
    start
    Task: {149C6E44-A7F3-4BAF-8906-D992CDBAFF3B} - System32\Tasks\Plus-HD-3.5-codedownloader => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe [2013-10-05] (Plus HD)
    Task: {1A0080E6-7BEC-41CC-ADD7-D7F66FB59075} - System32\Tasks\0 => Iexplore.exe
    Task: {0B3E579D-8C9E-4C3D-A285-A10F06E5ECDA} - System32\Tasks\4723 => C:\Users\PBELL~1\AppData\Local\Temp\launchie.vbsC:\Users\PBELL~1\AppData\Local\Temp\launchie.vbs //B
    Task: {32167B88-3666-4D8C-9313-8E91258170F5} - \AdobeFlashPlayerUpdate 2 No Task File
    Task: {37A91F6E-E7DF-4414-A7A0-0EBEB2A32A47} - System32\Tasks\Plus-HD-3.5-chromeinstaller => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe [2013-10-05] (Plus HD)
    Task: {3BA325EC-FEEC-41A5-997F-75FF1628C1CF} - System32\Tasks\DealPly => C:\Users\P bell\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe [2013-03-19] ()
    Task: {56E72C48-B4C8-4810-A9FD-84C99EA440AD} - System32\Tasks\Plus-HD-3.5-updater => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-updater.exe [2013-10-05] (Plus HD)
    Task: {6A4C3124-8BF8-48F9-B456-A8E5062C96E5} - System32\Tasks\EPUpdater => C:\Users\P bell\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-09-01] ()
    Task: {92B94316-1F68-4DF3-99CD-519552FF3FB0} - System32\Tasks\Updater12765.exe => C:\Users\P
    Task: {ACECAA7C-A70C-4636-9747-36893BF95C8A} - \AdobeFlashPlayerUpdate No Task File
    Task: {C955A702-60E0-49C1-B38B-6CE428702702} - System32\Tasks\SoftwareUpdateTaskMachineUA => C:\Program Files\Software\Update\SoftwareUpdate.exe [2013-04-16] (The Software Group)
    Task: {D770CBB5-BDBB-4DCB-85DB-90804E4F14CF} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe [2013-10-18] (Enigma Software Group USA, LLC.)
    Task: {E980F3F1-45AE-41CC-89FD-105218872F78} - System32\Tasks\AmiUpdXp => C:\Users\P bell\AppData\Local\SwvUpdater\Updater.exe
    Task: {FAD013E4-A107-4CE9-A773-40FFEB2A390C} - System32\Tasks\Plus-HD-3.5-enabler => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-enabler.exe [2013-10-16] (Plus HD)
    Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\P bell\AppData\Local\SwvUpdater\Updater.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-enabler.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-enabler.exe
    Task: C:\Windows\Tasks\Plus-HD-3.5-updater.job => C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-updater.exe
    Task: C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job => C:\Program Files\Software\Update\SoftwareUpdate.exe
    Task: C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job => C:\Program Files\Software\Update\SoftwareUpdate.exe
    AlternateDataStreams: C:\ProgramData\Temp:430C6D84
    AlternateDataStreams: C:\ProgramData\Temp:D FC5A2B2
    (SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Messenger\SweetIM.exe
    (SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
    (MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe
    HKLM\...\Run: [SweetIM] - C:\Program Files\SweetIM\Messenger\SweetIM.exe [114992 2012-02-16] (SweetIM Technologies Ltd.)
    HKLM\...\Run: [Sweetpacks Communicator] - C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [295728 2012-02-26] (SweetIM Technologies Ltd.)
    HKLM\...\Run: [Boxore Client] - C:\Program Files\Boxore\BoxoreClient\boxore.exe [606496 2013-03-15] (Boxore OU)
    HKCU\...\Run: [Bubble Dock] - "C:\Users\P bell\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup
    HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
    Startup: C:\Users\P bell\Desktop\Startup\MyPC Backup.lnk
    ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
    SearchScopes: HKCU - BrowserMngrDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
    SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=B4DC16DE2BE6E184&affID=125035&tsp=5026
    BHO: Savings Wave - {11111111-1111-1111-1111-110111271165} - C:\Program Files\Savings Wave\Savings Wave-bho.dll (Innovative Apps)
    BHO: Plus-HD-3.5 - {11111111-1111-1111-1111-110311711180} - C:\Program Files\Plus-HD-3.5\Plus-HD-3.5-bho.dll (Plus HD)
    BHO: No Name - {2EECD738-5844-4a99-B4B6-146BF802613B} - No File
    BHO: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    Toolbar: HKLM - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
    Toolbar: HKLM - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
    CHR Extension: (Iminent) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.16.5.1
    CHR Extension: (Wajam) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0
    CHR Extension: (Bubble Dock ) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp\1.0.0.130
    CHR Extension: (Plus-HD-3.5) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldikpdnngdmeceeameoaannjilbjppnm\1.23.31_0
    CHR Extension: (Savings Wave) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lglkfgcmohcdajpldlnhjjiojjgkbmhm\1.23.65_0
    CHR Extension: (Helper extension) - C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchpfiddbhbdnagofhkjlaiaejmkdcla\2.0_0
    CHR HKLM\...\Chrome\Extension: [aipfmkinhleccnodemkoofnnofpbbpac] - C:\Users\P bell\AppData\Roaming\BabSolution\CR\searchgol.crx
    CHR HKLM\...\Chrome\Extension: [jpmbfleldcgkldadpdinhjjopdfpjfjp] - C:\Users\P bell\AppData\Local\Wajam\Chrome\wajam.crx
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
    R2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [32808 2013-05-11] (Just Develop It)
    2013-11-07 18:20 - 2013-11-07 18:20 - 00002260 _____ C:\Users\P bell\Desktop\SpyHunter.lnk
    2013-11-07 18:20 - 2013-11-07 18:20 - 00000000 ____D C:\Users\P bell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
    2013-11-07 18:19 - 2013-11-07 18:20 - 00000000 ____D C:\sh4ldr
    2013-11-07 18:19 - 2013-11-07 18:19 - 00000000 ____D C:\Program Files\Enigma Software Group
    2013-11-07 18:17 - 2013-11-08 15:31 - 00000000 ____D C:\Windows\220FB0354744483A9A0B41DF77061583.TMP
    2013-11-11 18:29 - 2013-04-16 09:24 - 00000906 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001280 _____ C:\Windows\Tasks\Plus-HD-3.5-updater.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001184 _____ C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job
    2013-11-11 18:09 - 2013-10-05 18:02 - 00001084 _____ C:\Windows\Tasks\Plus-HD-3.5-enabler.job
    2013-11-11 18:09 - 2013-10-05 18:01 - 00001880 _____ C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job
    2013-11-11 18:09 - 2013-04-30 14:12 - 00000360 _____ C:\Windows\Tasks\AmiUpdXp.job
    2013-11-11 18:09 - 2013-04-16 09:24 - 00000902 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
    2013-11-08 15:31 - 2013-11-07 18:17 - 00000000 ____D C:\Windows\220FB0354744483A9A0B41DF77061583.TMP
    C:\Users\Public\AlexaNSISPlugin.6856.dll
    C:\Users\P bell\AppData\Local\Temp\84962-658111-microsoft-office-2010-professional.exe
    C:\Users\P bell\AppData\Local\Temp\avguidx.dll
    C:\Users\P bell\AppData\Local\Temp\BackupSetup.exe
    C:\Users\P bell\AppData\Local\Temp\boxore.exe
    C:\Users\P bell\AppData\Local\Temp\CommonInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\FrameFoxSetup.exe
    C:\Users\P bell\AppData\Local\Temp\fs_health_check.exe
    C:\Users\P bell\AppData\Local\Temp\GC_PCTOOLS.exe
    C:\Users\P bell\AppData\Local\Temp\iGearedHelper.dll
    C:\Users\P bell\AppData\Local\Temp\instloffer.exe
    C:\Users\P bell\AppData\Local\Temp\jre-6u32-windows-i586-iftw.exe
    C:\Users\P bell\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
    C:\Users\P bell\AppData\Local\Temp\MachineIdCreator.exe
    C:\Users\P bell\AppData\Local\Temp\oi_{66267116-D51A-4156-A0EB-750E18B28EB8}.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1492.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1830.exe
    C:\Users\P bell\AppData\Local\Temp\setup__1935.exe
    C:\Users\P bell\AppData\Local\Temp\setup__2011.exe
    C:\Users\P bell\AppData\Local\Temp\Shortcut_SweetImSetup.exe
    C:\Users\P bell\AppData\Local\Temp\SHSetup.exe
    C:\Users\P bell\AppData\Local\Temp\simbo.exe
    C:\Users\P bell\AppData\Local\Temp\SIMEEIInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\tbbabylonv3.exe
    C:\Users\P bell\AppData\Local\Temp\ToolbarInstaller.exe
    C:\Users\P bell\AppData\Local\Temp\uninst1.exe
    C:\Users\P bell\AppData\Local\Temp\UNINSTALL.EXE
    end


    *****************

    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{149C6E44-A7F3-4BAF-8906-D992CDBAFF3B} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{149C6E44-A7F3-4BAF-8906-D992CDBAFF3B} => Key deleted successfully.
    C:\Windows\System32\Tasks\Plus-HD-3.5-codedownloader => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-codedownloader => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A0080E6-7BEC-41CC-ADD7-D7F66FB59075} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A0080E6-7BEC-41CC-ADD7-D7F66FB59075} => Key deleted successfully.
    C:\Windows\System32\Tasks\0 => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\0 => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0B3E579D-8C9E-4C3D-A285-A10F06E5ECDA} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0B3E579D-8C9E-4C3D-A285-A10F06E5ECDA} => Key deleted successfully.
    C:\Windows\System32\Tasks\4723 => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\4723 => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{32167B88-3666-4D8C-9313-8E91258170F5} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32167B88-3666-4D8C-9313-8E91258170F5} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate 2 => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{37A91F6E-E7DF-4414-A7A0-0EBEB2A32A47} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37A91F6E-E7DF-4414-A7A0-0EBEB2A32A47} => Key deleted successfully.
    C:\Windows\System32\Tasks\Plus-HD-3.5-chromeinstaller => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-chromeinstaller => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3BA325EC-FEEC-41A5-997F-75FF1628C1CF} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BA325EC-FEEC-41A5-997F-75FF1628C1CF} => Key deleted successfully.
    C:\Windows\System32\Tasks\DealPly => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{56E72C48-B4C8-4810-A9FD-84C99EA440AD} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{56E72C48-B4C8-4810-A9FD-84C99EA440AD} => Key deleted successfully.
    C:\Windows\System32\Tasks\Plus-HD-3.5-updater => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-updater => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A4C3124-8BF8-48F9-B456-A8E5062C96E5} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A4C3124-8BF8-48F9-B456-A8E5062C96E5} => Key deleted successfully.
    C:\Windows\System32\Tasks\EPUpdater => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{92B94316-1F68-4DF3-99CD-519552FF3FB0} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92B94316-1F68-4DF3-99CD-519552FF3FB0} => Key deleted successfully.
    C:\Windows\System32\Tasks\Updater12765.exe => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Updater12765.exe => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ACECAA7C-A70C-4636-9747-36893BF95C8A} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ACECAA7C-A70C-4636-9747-36893BF95C8A} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C955A702-60E0-49C1-B38B-6CE428702702} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C955A702-60E0-49C1-B38B-6CE428702702} => Key deleted successfully.
    C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoftwareUpdateTaskMachineUA => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D770CBB5-BDBB-4DCB-85DB-90804E4F14CF} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D770CBB5-BDBB-4DCB-85DB-90804E4F14CF} => Key deleted successfully.
    C:\Windows\System32\Tasks\SpyHunter4Startup => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SpyHunter4Startup => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E980F3F1-45AE-41CC-89FD-105218872F78} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E980F3F1-45AE-41CC-89FD-105218872F78} => Key deleted successfully.
    C:\Windows\System32\Tasks\AmiUpdXp => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FAD013E4-A107-4CE9-A773-40FFEB2A390C} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FAD013E4-A107-4CE9-A773-40FFEB2A390C} => Key deleted successfully.
    C:\Windows\System32\Tasks\Plus-HD-3.5-enabler => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-enabler => Key deleted successfully.
    C:\Windows\Tasks\AmiUpdXp.job => Moved successfully.
    C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job => Moved successfully.
    C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job => Moved successfully.
    C:\Windows\Tasks\Plus-HD-3.5-enabler.job => Moved successfully.
    C:\Windows\Tasks\Plus-HD-3.5-updater.job => Moved successfully.
    C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job => Moved successfully.
    C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job => Moved successfully.
    C:\ProgramData\Temp => ":430C6D84" ADS removed successfully.
    C:\ProgramData\Temp => ":D FC5A2B2 " ADS removed successfully.
    [2072] C:\Program Files\SweetIM\Messenger\SweetIM.exe => Process closed successfully.
    C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe => No running process found
    C:\Program Files\MyPC Backup\MyPC Backup.exe => No running process found
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SweetIM => Value deleted successfully.
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Sweetpacks Communicator => Value deleted successfully.
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Boxore Client => Value deleted successfully.
    HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Bubble Dock => Value deleted successfully.
    HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value deleted successfully.
    C:\Users\P bell\Desktop\Startup\MyPC Backup.lnk => Moved successfully.
    C:\Program Files\MyPC Backup\MyPC Backup.exe => Moved successfully.
    HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\BrowserMngrDefaultScope => Value deleted successfully.
    HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
    HKCR\Wow6432Node\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110111271165} => Key deleted successfully.
    HKCR\CLSID\{11111111-1111-1111-1111-110111271165} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311711180} => Key deleted successfully.
    HKCR\CLSID\{11111111-1111-1111-1111-110311711180} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B} => Key deleted successfully.
    HKCR\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B} => Key not found.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} => Key deleted successfully.
    HKCR\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{EEE6C35B-6118-11DC-9C72-001320C79847} => Value deleted successfully.
    HKCR\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} => Value deleted successfully.
    HKCR\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC} => Key not found.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbjlipmgfoamgjaogmbihaffnpkpjajp => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldikpdnngdmeceeameoaannjilbjppnm => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lglkfgcmohcdajpldlnhjjiojjgkbmhm => Moved successfully.
    C:\Users\PBELL~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nchpfiddbhbdnagofhkjlaiaejmkdcla => Moved successfully.
    HKLM\SOFTWARE\Google\Chrome\Extensions\aipfmkinhleccnodemkoofnnofpbbpac => Key deleted successfully.
    C:\Users\P bell\AppData\Roaming\BabSolution\CR\searchgol.crx => Moved successfully.
    HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp => Key deleted successfully.
    C:\Users\P bell\AppData\Local\Wajam\Chrome\wajam.crx => Moved successfully.
    HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
    BackupStack => Service deleted successfully.
    C:\Users\P bell\Desktop\SpyHunter.lnk => Moved successfully.
    C:\Users\P bell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter => Moved successfully.
    C:\sh4ldr => Moved successfully.
    C:\Program Files\Enigma Software Group => Moved successfully.
    C:\Windows\220FB0354744483A9A0B41DF77061583.TMP => Moved successfully.
    "C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job" => File/Directory not found.
    "C:\Windows\Tasks\Plus-HD-3.5-updater.job" => File/Directory not found.
    "C:\Windows\Tasks\Plus-HD-3.5-codedownloader.job" => File/Directory not found.
    "C:\Windows\Tasks\Plus-HD-3.5-enabler.job" => File/Directory not found.
    "C:\Windows\Tasks\Plus-HD-3.5-chromeinstaller.job" => File/Directory not found.
    "C:\Windows\Tasks\AmiUpdXp.job" => File/Directory not found.
    "C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job " => File/Directory not found.
    "C:\Windows\220FB0354744483A9A0B41DF77061583.TMP " => File/Directory not found.
    C:\Users\Public\AlexaNSISPlugin.6856.dll => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\84962-658111-microsoft-office-2010-professional.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\avguidx.dll => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\BackupSetup.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\boxore.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\CommonInstaller.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\FrameFoxSetup.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\fs_health_check.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\GC_PCTOOLS.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\iGearedHelper.dll => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\instloffer.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\jre-6u32-windows-i586-iftw.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\MachineIdCreator.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\oi_{66267116-D51A-4156-A0EB-750E18B28EB8}.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\setup__1492.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\setup__1830.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\setup__1935.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\setup__2011.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\Shortcut_SweetImSetup.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\SHSetup.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\simbo.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\SIMEEIInstaller.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\tbbabylonv3.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\ToolbarInstaller.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\uninst1.exe => Moved successfully.
    C:\Users\P bell\AppData\Local\Temp\UNINSTALL.EXE => Moved successfully.


    The system needs a manual reboot.

    ==== End of Fixlog ====

    merci encore de votre aide précieuse, dans l'attente de vous lire, bonne soirée, thierry
    m
    0
    l
    a c 639 8 Sécurité
    a b 2 Internet
    a b Ē Google Chrome
    a b È Firefox
    a b $ Windows 7
    15 Novembre 2013 19:08:08

    hello

    fais un effort heberger les rapports et me donner que les liens

    j'espère que ça a soulagé un peu ton pc

    la suite

    £££££££££££££££££££££££££££££££££££££££££££££



    £££££££££££££££££££££££££££££££££££££££££££££££££££££££££££
    AdwCleaner - Nettoyer :
    • Télécharge AdwCleaner de Xplode et enregistre le fichier sur ton Bureau
    • Ferme toutes les applications, y compris ton navigateur
    • Double-clique sur l'icône AdwCleaner.exe pour lancer l'installation
      /!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
    • Sur le menu principal, clique sur Scanner
    • Les éléments détectés s'affichent dans les différents onglets.
    • Clique sur Nettoyer
    • et valide par OK la fermeture des programmes

    • Patiente le temps de l'analyse et valide le message d'informations
    • Un redémarrage est demandé, valider par OK
    • Au redémarrage, un rapport AdwCleaner(S).txt s'ouvre.
    • Poste ce rapport dans ta prochaine réponse
      Le rapport se trouve sous C:\AdwCleaner(S).txt



  • (clique sur lien vert et souligné , ceci va t'ouvrir une fenête): Tu hébergeras le rapport ici
    et indique dans ta prochaine réponse le lien du rapport.

    £££££££££££££££££££££££££££££££££££££££££££££££££££££££

    ££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££

    Malwarebytes Anti-Malware :

    • Télécharge Malwarebytes Anti-Malware et enregistre le sur le Bureau
    • Double-clique sur le fichier mbam-setup.exe pour lancer l'installation
      /!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
    • A la fin de l'installation, veille à ce que l'option Mettre à jour Malwarebytes' Anti-Malware soit cochée
    • Clique sur Terminer
    • Lance Malwarebyte's en double-cliquant sur l'icône sur le bureau
      /!\ Sous Vista et Windows 7, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
    • Les Mises à jour se téléchargent, puis ouvre Malwarebyte's
    • Dans l'onglet Paramètres, puis Paramètres d'examen,
    • sélectionne Afficher dans les résultats, pré-coché pour suppression pour les 2 actions
    • Programmes potentiellement indésirables (PUP)
    • et Modifications potentiellement indésirables (PUM)
    • Dans l'onglet Recherche, coche Exécuter un examen complet puis clique sur Rechercher
    • Sélectionne ton disque dur, puis clique sur Lancer l'examen

    • A la fin du scan, clique sur Afficher les résultats
    • Pour supprimer les éléments détectés, clique sur Supprimer la sélection

    • Si un redémarrage est demandé, clique sur Yes
    • Le rapport mbam-log[date-heure].txt s'ouvre. Poste ce rapport dans ta prochaine réponse
    • (clique sur lien vert et souligné , ceci va t'ouvrir une fenête): Tu hébergeras le rapport ici
      et indique dans ta prochaine réponse le lien du rapport.



  • Tutoriel d'utilisation Malwarebytes en images

    ££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££
    m
    0
    l
    a c 639 8 Sécurité
    a b 2 Internet
    a b Ē Google Chrome
    a b È Firefox
    a b $ Windows 7
    16 Novembre 2013 18:37:51

    ok, j'attends de tes nouvelles dès que tu peux
    m
    0
    l

    Meilleure solution

    a c 639 8 Sécurité
    a b 2 Internet
    a b Ē Google Chrome
    a b È Firefox
    a b $ Windows 7
    16 Novembre 2013 19:07:32

    hello

    on a pris la désinfection à l'envers, c'était pour soulager ton pc sinon, je crois que les outils ne seraient pas passer

    on continue

    £££££££££££££££££££££££

    tu feras les mises à jour si besoin


    ===================================


    ===================================

    SX Check&Update :

    • Télécharge SX Check&Update de igor51 et enregistre-le sur ton Bureau

    • Ferme toutes les applications, y compris ton navigateur et désactive ton antivirus le temps de l'opération

    • Double-clique sur SXC&U.exe pour lancer l'application



      /!\ Sous Vista et Windows 7, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur


    • *_* Au menu principal *_*

    • clique sur le bouton scan

    • clic sur rapport , celui ci s'ouvre dans le bloc notes, en fonction du résultat du rapport , faire les mises à jours

      NB==>> désinstalle toutes les versions java obsolètes




      http://www.secuser.com/vulnerabilite/index.htm


      =============================================================

      ] Installe la dernière version de Java:


      ==>> A titre indicatif, la page de téléchargement==>> Java sun

      ==>> désinstalle toutes les autres versions plus anciennes

      ------------------------------------------------------------------------------------

      [i Installe la dernière version Adobe Flash Player


      Ouvre Internet Explorer, télécharge et installe cette dernière version :

      Adobe Flash Player

      Ouvre Firefox, télécharge et installe cette dernière version :

      Adobe Flash Player

      Pense à décocher les options proposées en même temps , du genre la Barre d'outils Google gratuite (facultatif)

      Il faut installer et tenir à jour Flash Player sous chaque navigateur présent sur le système

      ---------------------------------------------------------------------------------------------

      ] Mets à jour ta version d'Adobe Reader :

      Télécharge et installe cette dernière version :

      Adobe - Téléchargement d'Adobe Reader

      N'oublie pas de décocher la case Google Chrome et McAfee Sécurity Scan

      ================================================

      --> Utilise ce programme pour nettoyer les fichiers temporaires et les cookies :

      • Télécharger SFTGC.exe sur le Bureau >>>> il ne doit pas être ailleurs.

      • Fais un clic droit sur le fichier et choisir Exécuter en tant qu'administrateur.
      • Patiente le temps du nettoyage...plus ou moins long selon la quantité de fichiers temporaires



      • Un rapport va s'ouvrir à la fin
      • (clique sur lien vert souligné , une fenêtre va s'ouvrir: Tu hébergeras le rapport ici
        Le rapport se trouve sur le bureau (SFT.txt)




    • £££££££££££££££££££££££££

      Suppression des TOOLS de désinfection

      Télécharger Delfix sur ton bureau


      • Télécharge DelFix (d'Xplode) sur ton bureau.
      • Lance le, puis coche les cases suivantes :





    • Note : Le rapport se trouve également sous C:\DelFix.txt


      • (clique sur lien vert souligné , une fenêtre va s'ouvrir: Tu hébergeras le rapport ici
      • Clique sur Parcourir pour rechercher le rapport C:\DelFix.txt
      • puis clique sur : Cliquez ici pour déposer le fichier
      • Indique ensuite dans ta prochaine réponse, l'adresse d'hébergement de ce rapport
      • par un clic droit copier le raccourci
      • clic droit coller dans ton prochain message


    • ££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££££


    partage
    22 Novembre 2013 12:26:50

    Bonjour, de retour parmi vous:
    j'ai lancé le SXCU.exe et la rapport indique 2 programmes qui ne sont pas à jour: Flashplayer ActiveX et Java 7 Update 17.
    Le problème a lieu quand je veux désinstaller les programmes: panneau de configuration, desinstaller un programme, Java 7 Update 17 et quand je clique un message me demande une autorisation au programme d'apporter une modification à l'ordinateur et non une confirmation de suppression de programmes. Le résultat est le même avec spyhunter que je ne peux desinstaller.
    Je suis donc coincé au stade de desinstallation des pilotes obsolètes ou alors j'ai loupé quelque chose. NB: j'ai bien momentanément desactiver l'antivirus microsoft security essential (j'ai pas touché à adwcleaner ou malwarebytes).
    merci de votre aide. à bientôt , thierry
    m
    0
    l
    a c 639 8 Sécurité
    a b 2 Internet
    a b Ē Google Chrome
    a b È Firefox
    a b $ Windows 7
    22 Novembre 2013 13:13:00

    titi_ponpon a dit :
    Bonjour, de retour parmi vous:

    Le problème a lieu quand je veux désinstaller les programmes: panneau de configuration, desinstaller un programme, Java 7 Update 17 et quand je clique

    un message me demande une autorisation au programme d'apporter une modification à l'ordinateur


    il faut accepter, c'est l'UAC qui se déclenche , en acceptant tu t'octroies les droit administrateur

    un peu de lecture sur l'UAC

    http://forum.malekal.com/uac-pourquoi-pas-desactiver-t2...



    m
    0
    l
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS