Bonjour à tous,
Depuis quelques semaines je reçois régulièrement un message d'avira me disant avoir détecté un virus ou un programme indésirable du nom de "TR/Dropper.Gen" je clique donc sur supprimer mais le message d'alerte revient toujours, je n'arrive pas à le supprimer définitivement.
De plus il m'est impossible de faire un scan complet avec avira car le temps de scan est anormalement long (environ 4h à 38% de scan) mais ce qui m'a vraiment rendu perplexe c'est le nombre d’avertissements inquiétant qui ne faisait qu'augmenter jusqu'à 1000 avertissements ! et 4 résultat positifs ! sachant que le scan était loin d'être finit.
J'ai fais quelques recherches et donc:
j'ai fais un nettoyage complet avec adwcleaner
scan complet de malwarebytes et effectuer le nettoyage à la fin du scan
Mais suite à ça j'ai toujours des messages d'alerte venant d'avira sur ce virus "TR/Dropper.Gen". Cependant, je ne remarque rien de bizarre sur le fonctionnement de mon ordinateur, du moins pour l'instant.
Comment puis je désinfecter mon ordinateur? Je vous remercie d'avance pour la désinfection.
aide désinfection : TR/Dropper.Gen
Modérateurs : Mods Windows, Helper
- Messages : 31847
- Inscription : 28 févr. 2008 13:58
- Localisation : Breizhilienne
Re: aide désinfection
quel est le fichier détecté ? le nom peut importe ...
Avec Gnu_Linux t'as un Noyau ... avec Ѡindows t'as que les pépins
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique
Merci.
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique
Merci.Re: aide désinfection
Bonsoir angélique,
le fichier détecté par avira est "WinUpdater.exe" comment est ce que je peux le supprimer?
le fichier détecté par avira est "WinUpdater.exe" comment est ce que je peux le supprimer?
- Messages : 31847
- Inscription : 28 févr. 2008 13:58
- Localisation : Breizhilienne
Re: aide désinfection
s'il y arrive oui, puis:
- Télécharge sur ton Bureau pas ailleurs FRST.EXE:
La page de téléchargement : http://www.bleepingcomputer.com/downloa ... scan-tool/
Le téléchargement se fait à partir des boutons bleus Download – choisissez la version 32 ou 64 bits selon l’architecture de votre système.
(Au pire si vous êtes en 64 bits et que vous prenez la version 32 bits, vous aurez un message disant que cette version ne peux fonctionner – cela n’endommage pas le système).
!! Placez le programme sur le bureau et pas ailleurs!! - Execute FRST.EXE, accepte le disclaimer , Cochez tous les options et cliquez sur le bouton Scan.
Le scan se lance, les éléments scannés apparaissent en haut. - Une fois le scan terminé, une popup vous le signale et deux rapports sont générés : FRST.txt et Addition.txt ( Ces deux rapports se trouvent sur le bureau avec le programme FRST. )
Utilise le site http://pjjoint.malekal.com/ pour envoyer ton rapport, et poste le lien dans ta prochaine réponse pour analyse.
Avec Gnu_Linux t'as un Noyau ... avec Ѡindows t'as que les pépins
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique Merci.
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique
Merci.Re: aide désinfection
Merci ! Voici les deux rapports FRST et Addition
http://pjjoint.malekal.com/files.php?id ... b9h8y7z5i6
http://pjjoint.malekal.com/files.php?id ... 5o10j13m10
http://pjjoint.malekal.com/files.php?id ... b9h8y7z5i6
http://pjjoint.malekal.com/files.php?id ... 5o10j13m10
- Messages : 31847
- Inscription : 28 févr. 2008 13:58
- Localisation : Breizhilienne
Re: aide désinfection
- Faire Adwcleaner , onglet scan puis ensuite suppression ... un redémarrage peut être demandé. , voir > , et poste le rapport.
- refait un nouveau rapport FRST
Avec Gnu_Linux t'as un Noyau ... avec Ѡindows t'as que les pépins
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique Merci.
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique
Merci.Re: aide désinfection
Rapports FRST:
http://pjjoint.malekal.com/files.php?id ... 8z13g8f6s5
http://pjjoint.malekal.com/files.php?id ... c7c7z7p7o6
Rapport Adwcleaner:
# AdwCleaner v3.213 - Rapport créé le 29/06/2014 à 17:55:31
# Mis à jour le 23/06/2014 par Xplode
# Système d'exploitation : Windows 8.1 (64 bits)
# Nom d'utilisateur : Calvin - CALVIN
# Exécuté depuis : C:\Users\Calvin\Desktop\adwcleaner_3.213.exe
# Option : Nettoyer
***** [ Services ] *****
***** [ Fichiers / Dossiers ] *****
***** [ Raccourcis ] *****
***** [ Registre ] *****
***** [ Navigateurs ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v
[ Fichier : C:\Users\Calvin\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\prefs.js ]
-\\ Google Chrome v35.0.1916.153
[ Fichier : C:\Users\Calvin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [87407 octets] - [08/06/2014 16:56:59]
AdwCleaner[R1].txt - [1111 octets] - [08/06/2014 19:04:22]
AdwCleaner[R2].txt - [2632 octets] - [21/06/2014 19:27:08]
AdwCleaner[R3].txt - [2054 octets] - [29/06/2014 17:44:39]
AdwCleaner[R4].txt - [2114 octets] - [29/06/2014 17:46:34]
AdwCleaner[R5].txt - [1459 octets] - [29/06/2014 17:50:55]
AdwCleaner[S0].txt - [81575 octets] - [08/06/2014 16:58:28]
AdwCleaner[S1].txt - [1174 octets] - [08/06/2014 19:06:12]
AdwCleaner[S2].txt - [2665 octets] - [21/06/2014 19:36:25]
AdwCleaner[S3].txt - [2192 octets] - [29/06/2014
http://pjjoint.malekal.com/files.php?id ... 8z13g8f6s5
http://pjjoint.malekal.com/files.php?id ... c7c7z7p7o6
Rapport Adwcleaner:
# AdwCleaner v3.213 - Rapport créé le 29/06/2014 à 17:55:31
# Mis à jour le 23/06/2014 par Xplode
# Système d'exploitation : Windows 8.1 (64 bits)
# Nom d'utilisateur : Calvin - CALVIN
# Exécuté depuis : C:\Users\Calvin\Desktop\adwcleaner_3.213.exe
# Option : Nettoyer
***** [ Services ] *****
***** [ Fichiers / Dossiers ] *****
***** [ Raccourcis ] *****
***** [ Registre ] *****
***** [ Navigateurs ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v
[ Fichier : C:\Users\Calvin\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\prefs.js ]
-\\ Google Chrome v35.0.1916.153
[ Fichier : C:\Users\Calvin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [87407 octets] - [08/06/2014 16:56:59]
AdwCleaner[R1].txt - [1111 octets] - [08/06/2014 19:04:22]
AdwCleaner[R2].txt - [2632 octets] - [21/06/2014 19:27:08]
AdwCleaner[R3].txt - [2054 octets] - [29/06/2014 17:44:39]
AdwCleaner[R4].txt - [2114 octets] - [29/06/2014 17:46:34]
AdwCleaner[R5].txt - [1459 octets] - [29/06/2014 17:50:55]
AdwCleaner[S0].txt - [81575 octets] - [08/06/2014 16:58:28]
AdwCleaner[S1].txt - [1174 octets] - [08/06/2014 19:06:12]
AdwCleaner[S2].txt - [2665 octets] - [21/06/2014 19:36:25]
AdwCleaner[S3].txt - [2192 octets] - [29/06/2014
- Messages : 31847
- Inscription : 28 févr. 2008 13:58
- Localisation : Breizhilienne
Re: aide désinfection
- Désinstalle si tu peux , sinon continue:
- File Opener Pro
- Lollipop - Télécharge à coté de FRST.EXE , PAS AILLEURS !!!!! le fichier fixlist.txt en pièce jointe en bas du message.
Relance FRST et clic sur le bouton fix
Un redémarrage peut être nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.
Vous ne pouvez pas consulter les pièces jointes insérées à ce message.
Avec Gnu_Linux t'as un Noyau ... avec Ѡindows t'as que les pépins
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique Merci.
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique
Merci.Re: aide désinfection
Edit: Ah enfin ! Après avoir refait un scan d'Avira je n'ai plus aucun résultat positif et je n'ai plus ce message d'erreur concernant le fichier WinUpdater, bon débarras. Cette manœuvre résout mon problème ! Merci beaucoup angélique, un vrai travail de professionnel 
Par la même occasion, durant le scan, Avira a détecté un avertissement sur un fichier "swapfile.sys" ( [AVERTISSEMENT] Impossible d'ouvrir le fichier! ) Après des recherches, j'ai compris que c'était un fichier important pour étendre la mémoire vive du système en cas de surcharge du disque dur. Mais j'ai lu également que ça posait quelques problèmes pour certains. Qu'est ce que vous en pensez, devrais je le supprimer ou le garder?
Désinstallation de File Opener Pro et Lollipop OK
J'ai téléchargé le fichier fixlist.txt en pièce jointe à coté de FRST et j'ai relancer FRST en cliquant sur fix et donc j'ai obtenu un fichier texte "Fixlog", voici son contenu:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 28-06-2014 02
Ran by Calvin at 2014-06-29 19:46:11 Run:1
Running from C:\Users\Calvin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
start
File Opener Pro (HKLM-x32\...\fileopenerpro) (Version: - FileOpenerPro) <==== ATTENTION
Lollipop (HKCU\...\lollipop_11271304) (Version: - Lollipop Network, S.L.) <==== ATTENTION
Task: {0C17F8AD-82BC-45B6-8954-FD798F8C21FC} - \312c474e-8a45-4195-9195-174106f0db7c-5 No Task File <==== ATTENTION
Task: {15D8754D-7F2D-4DD2-AB12-14AC224063EE} - \SoftwareUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {16F04205-9E0F-4465-9B0B-427B5A7DEB60} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {1F1AB6D8-25B4-41F1-9DCA-08BADC745A11} - \d8bdc85a-54c9-4e5e-acbd-993384dcfc01-5 No Task File <==== ATTENTION
Task: {214FF403-3803-4FA1-A474-742134A217A9} - \Plus-HD-3.5-codedownloader No Task File <==== ATTENTION
Task: {32CDEF6A-F646-4D3A-BE24-8F3D21D71FB5} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {3E84DAD4-ED86-4A56-A51F-56E767501206} - \EPUpdater No Task File <==== ATTENTION
Task: {592AC327-363B-4176-8C93-5A1CD36C1377} - \SpeedUpMyPC No Task File <==== ATTENTION
Task: {6AC2866D-1C22-4EC3-9350-C7EC995FD513} - \Plus-HD-3.5-updater No Task File <==== ATTENTION
Task: {7735D345-4BA3-41E9-AB6A-2142EC7E0E45} - \MySearchDial No Task File <==== ATTENTION
Task: {7C7D682E-FC1B-40DE-9BAA-AF7B5B763C70} - \Plus-HD-3.5-chromeinstaller No Task File <==== ATTENTION
Task: {81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D} - \SaveSenseLiveUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D} - \SaveSenseLiveUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {8498B84C-8B86-4F5B-9C5D-6750273F5050} - \OnlineHD V6.0-enabler No Task File <==== ATTENTION
Task: {9AB35BF6-1538-41A1-990D-B9B33291307B} - \spmonitor No Task File <==== ATTENTION
Task: {A777E569-AD82-4C50-AEDB-749232D9B895} - \OnlineHD V6.0-updater No Task File <==== ATTENTION
Task: {AC7C45B2-AEDD-44D0-A571-0551F7B8694A} - \System Speedup_DEFAULT No Task File <==== ATTENTION
Task: {B0A99816-0CE3-487C-A2DB-2B256E5E8F51} - \d8bdc85a-54c9-4e5e-acbd-993384dcfc01-3 No Task File <==== ATTENTION
Task: {D61BCF79-0481-42C4-8000-F0324BE9F180} - \OnlineHD V6.0-firefoxinstaller No Task File <==== ATTENTION
Task: {D88AC2B5-E6E9-46B3-9258-6DF98CB3D5BD} - \Plus-HD-3.5-enabler No Task File <==== ATTENTION
Task: {DA0430E3-B1EC-42D8-B269-0C88332B689E} - System32\Tasks\System Speedup => C:\Program Files (x86)\System Speedup\SystemSpeedup.exe
Task: {DA25E147-AD01-4A60-9F7B-A414A103CFBD} - \Plus-HD-3.5-firefoxinstaller No Task File <==== ATTENTION
Task: {DA8D5B67-87E4-4ADC-8DE7-0B916730BB64} - \System Speedup_UPDATES No Task File <==== ATTENTION
Task: {E5A21DC9-FF11-44D8-BE81-59B7D8620939} - \OnlineHD V6.0-codedownloader No Task File <==== ATTENTION
Task: {EE09BED6-12E7-48E8-B7B4-8FE242F889F0} - \SaveSense No Task File <==== ATTENTION
Task: {F370D9F5-E0F8-482E-9D08-32CCC3FFD5BA} - \SoftwareUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {FF36E0C7-3A94-47FF-A9FD-B2F399E0E24C} - \SaveSenseLiveUpdateTaskMachineCore No Task File <==== ATTENTION
() C:\Program Files (x86)\WinUpd\WinUpd.exe
R2 WinUpd; C:\Program Files (x86)\WinUpd\WinUpd.exe [59904 2014-05-14] () [File not signed]
R1 {16d667ee-6782-4b21-81df-8ded8ebc3868}w64; C:\Windows\System32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys [61112 2014-06-09] (StdLib)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
2014-06-28 15:48 - 2014-06-28 15:48 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-06-14 13:28 - 2014-06-09 12:20 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys
2014-06-14 01:30 - 2014-06-14 01:30 - 00000000 ____D () C:\Users\Calvin\AppData\Local\DownBooster
2014-06-14 01:30 - 2014-06-14 01:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DownBooster
2014-06-14 01:30 - 2014-06-14 01:30 - 00000000 ____D () C:\Program Files (x86)\WinUpd
2014-06-14 01:30 - 2014-06-14 01:30 - 00000000 ____D () C:\Program Files (x86)\DownBooster
*****************
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0C17F8AD-82BC-45B6-8954-FD798F8C21FC}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C17F8AD-82BC-45B6-8954-FD798F8C21FC}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\312c474e-8a45-4195-9195-174106f0db7c-5' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{15D8754D-7F2D-4DD2-AB12-14AC224063EE}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15D8754D-7F2D-4DD2-AB12-14AC224063EE}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoftwareUpdateTaskMachineCore' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{16F04205-9E0F-4465-9B0B-427B5A7DEB60}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{16F04205-9E0F-4465-9B0B-427B5A7DEB60}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1F1AB6D8-25B4-41F1-9DCA-08BADC745A11}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1F1AB6D8-25B4-41F1-9DCA-08BADC745A11}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\d8bdc85a-54c9-4e5e-acbd-993384dcfc01-5' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{214FF403-3803-4FA1-A474-742134A217A9}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{214FF403-3803-4FA1-A474-742134A217A9}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-codedownloader' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{32CDEF6A-F646-4D3A-BE24-8F3D21D71FB5}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32CDEF6A-F646-4D3A-BE24-8F3D21D71FB5}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E84DAD4-ED86-4A56-A51F-56E767501206}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E84DAD4-ED86-4A56-A51F-56E767501206}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{592AC327-363B-4176-8C93-5A1CD36C1377}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{592AC327-363B-4176-8C93-5A1CD36C1377}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SpeedUpMyPC' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6AC2866D-1C22-4EC3-9350-C7EC995FD513}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AC2866D-1C22-4EC3-9350-C7EC995FD513}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-updater' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7735D345-4BA3-41E9-AB6A-2142EC7E0E45}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7735D345-4BA3-41E9-AB6A-2142EC7E0E45}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MySearchDial' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7C7D682E-FC1B-40DE-9BAA-AF7B5B763C70}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C7D682E-FC1B-40DE-9BAA-AF7B5B763C70}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-chromeinstaller' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SaveSenseLiveUpdateTaskMachineUA' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D}'=> Key not found.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SaveSenseLiveUpdateTaskMachineUA'=> Key not found.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8498B84C-8B86-4F5B-9C5D-6750273F5050}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8498B84C-8B86-4F5B-9C5D-6750273F5050}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OnlineHD V6.0-enabler' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9AB35BF6-1538-41A1-990D-B9B33291307B}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9AB35BF6-1538-41A1-990D-B9B33291307B}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\spmonitor' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A777E569-AD82-4C50-AEDB-749232D9B895}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A777E569-AD82-4C50-AEDB-749232D9B895}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OnlineHD V6.0-updater' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC7C45B2-AEDD-44D0-A571-0551F7B8694A}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC7C45B2-AEDD-44D0-A571-0551F7B8694A}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Speedup_DEFAULT' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B0A99816-0CE3-487C-A2DB-2B256E5E8F51}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0A99816-0CE3-487C-A2DB-2B256E5E8F51}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\d8bdc85a-54c9-4e5e-acbd-993384dcfc01-3' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D61BCF79-0481-42C4-8000-F0324BE9F180}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D61BCF79-0481-42C4-8000-F0324BE9F180}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OnlineHD V6.0-firefoxinstaller' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D88AC2B5-E6E9-46B3-9258-6DF98CB3D5BD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D88AC2B5-E6E9-46B3-9258-6DF98CB3D5BD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-enabler' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DA0430E3-B1EC-42D8-B269-0C88332B689E}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA0430E3-B1EC-42D8-B269-0C88332B689E}' => Key deleted successfully.
C:\Windows\System32\Tasks\System Speedup => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Speedup' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DA25E147-AD01-4A60-9F7B-A414A103CFBD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA25E147-AD01-4A60-9F7B-A414A103CFBD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-firefoxinstaller' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DA8D5B67-87E4-4ADC-8DE7-0B916730BB64}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA8D5B67-87E4-4ADC-8DE7-0B916730BB64}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Speedup_UPDATES' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E5A21DC9-FF11-44D8-BE81-59B7D8620939}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5A21DC9-FF11-44D8-BE81-59B7D8620939}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OnlineHD V6.0-codedownloader' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE09BED6-12E7-48E8-B7B4-8FE242F889F0}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE09BED6-12E7-48E8-B7B4-8FE242F889F0}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SaveSense' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F370D9F5-E0F8-482E-9D08-32CCC3FFD5BA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F370D9F5-E0F8-482E-9D08-32CCC3FFD5BA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoftwareUpdateTaskMachineUA' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FF36E0C7-3A94-47FF-A9FD-B2F399E0E24C}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF36E0C7-3A94-47FF-A9FD-B2F399E0E24C}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SaveSenseLiveUpdateTaskMachineCore' => Key deleted successfully.
[2268] C:\Program Files (x86)\WinUpd\WinUpd.exe => Process closed successfully.
WinUpd => Service stopped successfully.
WinUpd => Service deleted successfully.
{16d667ee-6782-4b21-81df-8ded8ebc3868}w64 => Unable to stop service
{16d667ee-6782-4b21-81df-8ded8ebc3868}w64 => Service deleted successfully.
esgiguard => Service deleted successfully.
C:\Program Files\Enigma Software Group => Moved successfully.
C:\WINDOWS\system32\Drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys => Moved successfully.
C:\Users\Calvin\AppData\Local\DownBooster => Moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DownBooster => Moved successfully.
C:\Program Files (x86)\WinUpd => Moved successfully.
C:\Program Files (x86)\DownBooster => Moved successfully.
The system needed a reboot.
==== End of Fixlog ====
Par la même occasion, durant le scan, Avira a détecté un avertissement sur un fichier "swapfile.sys" ( [AVERTISSEMENT] Impossible d'ouvrir le fichier! ) Après des recherches, j'ai compris que c'était un fichier important pour étendre la mémoire vive du système en cas de surcharge du disque dur. Mais j'ai lu également que ça posait quelques problèmes pour certains. Qu'est ce que vous en pensez, devrais je le supprimer ou le garder?
Désinstallation de File Opener Pro et Lollipop OK
J'ai téléchargé le fichier fixlist.txt en pièce jointe à coté de FRST et j'ai relancer FRST en cliquant sur fix et donc j'ai obtenu un fichier texte "Fixlog", voici son contenu:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 28-06-2014 02
Ran by Calvin at 2014-06-29 19:46:11 Run:1
Running from C:\Users\Calvin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
start
File Opener Pro (HKLM-x32\...\fileopenerpro) (Version: - FileOpenerPro) <==== ATTENTION
Lollipop (HKCU\...\lollipop_11271304) (Version: - Lollipop Network, S.L.) <==== ATTENTION
Task: {0C17F8AD-82BC-45B6-8954-FD798F8C21FC} - \312c474e-8a45-4195-9195-174106f0db7c-5 No Task File <==== ATTENTION
Task: {15D8754D-7F2D-4DD2-AB12-14AC224063EE} - \SoftwareUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {16F04205-9E0F-4465-9B0B-427B5A7DEB60} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {1F1AB6D8-25B4-41F1-9DCA-08BADC745A11} - \d8bdc85a-54c9-4e5e-acbd-993384dcfc01-5 No Task File <==== ATTENTION
Task: {214FF403-3803-4FA1-A474-742134A217A9} - \Plus-HD-3.5-codedownloader No Task File <==== ATTENTION
Task: {32CDEF6A-F646-4D3A-BE24-8F3D21D71FB5} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {3E84DAD4-ED86-4A56-A51F-56E767501206} - \EPUpdater No Task File <==== ATTENTION
Task: {592AC327-363B-4176-8C93-5A1CD36C1377} - \SpeedUpMyPC No Task File <==== ATTENTION
Task: {6AC2866D-1C22-4EC3-9350-C7EC995FD513} - \Plus-HD-3.5-updater No Task File <==== ATTENTION
Task: {7735D345-4BA3-41E9-AB6A-2142EC7E0E45} - \MySearchDial No Task File <==== ATTENTION
Task: {7C7D682E-FC1B-40DE-9BAA-AF7B5B763C70} - \Plus-HD-3.5-chromeinstaller No Task File <==== ATTENTION
Task: {81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D} - \SaveSenseLiveUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D} - \SaveSenseLiveUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {8498B84C-8B86-4F5B-9C5D-6750273F5050} - \OnlineHD V6.0-enabler No Task File <==== ATTENTION
Task: {9AB35BF6-1538-41A1-990D-B9B33291307B} - \spmonitor No Task File <==== ATTENTION
Task: {A777E569-AD82-4C50-AEDB-749232D9B895} - \OnlineHD V6.0-updater No Task File <==== ATTENTION
Task: {AC7C45B2-AEDD-44D0-A571-0551F7B8694A} - \System Speedup_DEFAULT No Task File <==== ATTENTION
Task: {B0A99816-0CE3-487C-A2DB-2B256E5E8F51} - \d8bdc85a-54c9-4e5e-acbd-993384dcfc01-3 No Task File <==== ATTENTION
Task: {D61BCF79-0481-42C4-8000-F0324BE9F180} - \OnlineHD V6.0-firefoxinstaller No Task File <==== ATTENTION
Task: {D88AC2B5-E6E9-46B3-9258-6DF98CB3D5BD} - \Plus-HD-3.5-enabler No Task File <==== ATTENTION
Task: {DA0430E3-B1EC-42D8-B269-0C88332B689E} - System32\Tasks\System Speedup => C:\Program Files (x86)\System Speedup\SystemSpeedup.exe
Task: {DA25E147-AD01-4A60-9F7B-A414A103CFBD} - \Plus-HD-3.5-firefoxinstaller No Task File <==== ATTENTION
Task: {DA8D5B67-87E4-4ADC-8DE7-0B916730BB64} - \System Speedup_UPDATES No Task File <==== ATTENTION
Task: {E5A21DC9-FF11-44D8-BE81-59B7D8620939} - \OnlineHD V6.0-codedownloader No Task File <==== ATTENTION
Task: {EE09BED6-12E7-48E8-B7B4-8FE242F889F0} - \SaveSense No Task File <==== ATTENTION
Task: {F370D9F5-E0F8-482E-9D08-32CCC3FFD5BA} - \SoftwareUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {FF36E0C7-3A94-47FF-A9FD-B2F399E0E24C} - \SaveSenseLiveUpdateTaskMachineCore No Task File <==== ATTENTION
() C:\Program Files (x86)\WinUpd\WinUpd.exe
R2 WinUpd; C:\Program Files (x86)\WinUpd\WinUpd.exe [59904 2014-05-14] () [File not signed]
R1 {16d667ee-6782-4b21-81df-8ded8ebc3868}w64; C:\Windows\System32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys [61112 2014-06-09] (StdLib)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
2014-06-28 15:48 - 2014-06-28 15:48 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-06-14 13:28 - 2014-06-09 12:20 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys
2014-06-14 01:30 - 2014-06-14 01:30 - 00000000 ____D () C:\Users\Calvin\AppData\Local\DownBooster
2014-06-14 01:30 - 2014-06-14 01:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DownBooster
2014-06-14 01:30 - 2014-06-14 01:30 - 00000000 ____D () C:\Program Files (x86)\WinUpd
2014-06-14 01:30 - 2014-06-14 01:30 - 00000000 ____D () C:\Program Files (x86)\DownBooster
*****************
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0C17F8AD-82BC-45B6-8954-FD798F8C21FC}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C17F8AD-82BC-45B6-8954-FD798F8C21FC}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\312c474e-8a45-4195-9195-174106f0db7c-5' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{15D8754D-7F2D-4DD2-AB12-14AC224063EE}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15D8754D-7F2D-4DD2-AB12-14AC224063EE}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoftwareUpdateTaskMachineCore' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{16F04205-9E0F-4465-9B0B-427B5A7DEB60}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{16F04205-9E0F-4465-9B0B-427B5A7DEB60}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1F1AB6D8-25B4-41F1-9DCA-08BADC745A11}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1F1AB6D8-25B4-41F1-9DCA-08BADC745A11}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\d8bdc85a-54c9-4e5e-acbd-993384dcfc01-5' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{214FF403-3803-4FA1-A474-742134A217A9}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{214FF403-3803-4FA1-A474-742134A217A9}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-codedownloader' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{32CDEF6A-F646-4D3A-BE24-8F3D21D71FB5}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32CDEF6A-F646-4D3A-BE24-8F3D21D71FB5}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E84DAD4-ED86-4A56-A51F-56E767501206}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E84DAD4-ED86-4A56-A51F-56E767501206}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{592AC327-363B-4176-8C93-5A1CD36C1377}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{592AC327-363B-4176-8C93-5A1CD36C1377}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SpeedUpMyPC' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6AC2866D-1C22-4EC3-9350-C7EC995FD513}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AC2866D-1C22-4EC3-9350-C7EC995FD513}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-updater' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7735D345-4BA3-41E9-AB6A-2142EC7E0E45}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7735D345-4BA3-41E9-AB6A-2142EC7E0E45}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MySearchDial' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7C7D682E-FC1B-40DE-9BAA-AF7B5B763C70}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C7D682E-FC1B-40DE-9BAA-AF7B5B763C70}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-chromeinstaller' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SaveSenseLiveUpdateTaskMachineUA' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{81B2731D-6ED9-47FD-BB8C-16B7E0A8BB9D}'=> Key not found.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SaveSenseLiveUpdateTaskMachineUA'=> Key not found.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8498B84C-8B86-4F5B-9C5D-6750273F5050}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8498B84C-8B86-4F5B-9C5D-6750273F5050}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OnlineHD V6.0-enabler' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9AB35BF6-1538-41A1-990D-B9B33291307B}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9AB35BF6-1538-41A1-990D-B9B33291307B}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\spmonitor' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A777E569-AD82-4C50-AEDB-749232D9B895}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A777E569-AD82-4C50-AEDB-749232D9B895}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OnlineHD V6.0-updater' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC7C45B2-AEDD-44D0-A571-0551F7B8694A}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC7C45B2-AEDD-44D0-A571-0551F7B8694A}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Speedup_DEFAULT' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B0A99816-0CE3-487C-A2DB-2B256E5E8F51}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0A99816-0CE3-487C-A2DB-2B256E5E8F51}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\d8bdc85a-54c9-4e5e-acbd-993384dcfc01-3' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D61BCF79-0481-42C4-8000-F0324BE9F180}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D61BCF79-0481-42C4-8000-F0324BE9F180}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OnlineHD V6.0-firefoxinstaller' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D88AC2B5-E6E9-46B3-9258-6DF98CB3D5BD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D88AC2B5-E6E9-46B3-9258-6DF98CB3D5BD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-enabler' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DA0430E3-B1EC-42D8-B269-0C88332B689E}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA0430E3-B1EC-42D8-B269-0C88332B689E}' => Key deleted successfully.
C:\Windows\System32\Tasks\System Speedup => Moved successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Speedup' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DA25E147-AD01-4A60-9F7B-A414A103CFBD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA25E147-AD01-4A60-9F7B-A414A103CFBD}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-3.5-firefoxinstaller' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DA8D5B67-87E4-4ADC-8DE7-0B916730BB64}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA8D5B67-87E4-4ADC-8DE7-0B916730BB64}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Speedup_UPDATES' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E5A21DC9-FF11-44D8-BE81-59B7D8620939}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5A21DC9-FF11-44D8-BE81-59B7D8620939}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OnlineHD V6.0-codedownloader' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE09BED6-12E7-48E8-B7B4-8FE242F889F0}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE09BED6-12E7-48E8-B7B4-8FE242F889F0}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SaveSense' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F370D9F5-E0F8-482E-9D08-32CCC3FFD5BA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F370D9F5-E0F8-482E-9D08-32CCC3FFD5BA}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoftwareUpdateTaskMachineUA' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FF36E0C7-3A94-47FF-A9FD-B2F399E0E24C}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF36E0C7-3A94-47FF-A9FD-B2F399E0E24C}' => Key deleted successfully.
'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SaveSenseLiveUpdateTaskMachineCore' => Key deleted successfully.
[2268] C:\Program Files (x86)\WinUpd\WinUpd.exe => Process closed successfully.
WinUpd => Service stopped successfully.
WinUpd => Service deleted successfully.
{16d667ee-6782-4b21-81df-8ded8ebc3868}w64 => Unable to stop service
{16d667ee-6782-4b21-81df-8ded8ebc3868}w64 => Service deleted successfully.
esgiguard => Service deleted successfully.
C:\Program Files\Enigma Software Group => Moved successfully.
C:\WINDOWS\system32\Drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys => Moved successfully.
C:\Users\Calvin\AppData\Local\DownBooster => Moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DownBooster => Moved successfully.
C:\Program Files (x86)\WinUpd => Moved successfully.
C:\Program Files (x86)\DownBooster => Moved successfully.
The system needed a reboot.
==== End of Fixlog ====
- Messages : 31847
- Inscription : 28 févr. 2008 13:58
- Localisation : Breizhilienne
Re: aide désinfection
pour swapfile , c'est bien en relation avec le swap , En informatique le swap sert à étendre la mémoire utilisable par un système d'exploitation, par un fichier d'échange ou une partition dédiée , donc tu laisses , c'est rien.
. relance adwcleaner et clic desinstaller
. supprime FRST.EXE, ses rapports et c:\FRST
Il est important de surfer avec un navigateur non propriétaire, pour encore une fois des questions de fiabilité, de sécurité et pour que celui ci ne transmette pas directement un ensemble de données que vous utilisez/visualisez (comme c’est le cas de Chrome avec Google). Il est fortement recommandé d’utiliser Firefox, pour ces raisons et pour son aspect modulable, fonctionnant avec des modules comme Ad-block ( comme son nom l’indique, bloquer les publicités ), NoScript pour gérer flash ( voir 3 - Le format SWF (Flash) et les risques liés à son utilisation - http://www.cert.ssi.gouv.fr/site/CERTFR ... index.html - ), JavaScript, et\ou Iframe pourries sur sites compromis potentiellement générateur d'infections ( - http://forum.malekal.com/les-exploits-s ... t3563.html - )!!
Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
Donc FireFox + Adblock + Noscript
Firefox: http://www.mozilla.org/fr/firefox/new/ < https://download.mozilla.org/?product=f ... in&lang=fr > ou setup d'installation hors ligne > http://www.mozilla.org/en-US/firefox/all/
Adblock: https://addons.mozilla.org/en-US/firefo ... lock-plus/
Mettre "actif" d'un clic les modules ci dessous qui apparraissent apres installation de ADBlock : chrome://adblockplus/content/ui/firstRun.html
List FR + EasyList << à mettre à jour regulièrement ainsi que les autres
NOTE POUR Adblock :
Certains sites abusent des publicités, dont leurs pages peuvent en être inondées (cela ralentit la navigation etc). Mais notez que les publicités sont parfois le seul revenus des sites WEB.
Filtrer toutes les publicités peuvent, par exemple, pénaliser ces sites, c’est notamment le cas de malekal.com
Si vous pensez que certains sites le méritent, vous pouvez les ajouter en liste blanche.
Noscript: https://addons.mozilla.org/en-US/firefo ... /noscript/ : http://www.commentcamarche.net/faq/1567 ... -obeissant
Lire sécuriser FireFox:: https://www.malekal.com/securiser-le-na ... firefox-2/
. relance adwcleaner et clic desinstaller
. supprime FRST.EXE, ses rapports et c:\FRST
Il est important de surfer avec un navigateur non propriétaire, pour encore une fois des questions de fiabilité, de sécurité et pour que celui ci ne transmette pas directement un ensemble de données que vous utilisez/visualisez (comme c’est le cas de Chrome avec Google). Il est fortement recommandé d’utiliser Firefox, pour ces raisons et pour son aspect modulable, fonctionnant avec des modules comme Ad-block ( comme son nom l’indique, bloquer les publicités ), NoScript pour gérer flash ( voir 3 - Le format SWF (Flash) et les risques liés à son utilisation - http://www.cert.ssi.gouv.fr/site/CERTFR ... index.html - ), JavaScript, et\ou Iframe pourries sur sites compromis potentiellement générateur d'infections ( - http://forum.malekal.com/les-exploits-s ... t3563.html - )!!
Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
Donc FireFox + Adblock + Noscript
Firefox: http://www.mozilla.org/fr/firefox/new/ < https://download.mozilla.org/?product=f ... in&lang=fr > ou setup d'installation hors ligne > http://www.mozilla.org/en-US/firefox/all/
Adblock: https://addons.mozilla.org/en-US/firefo ... lock-plus/
Mettre "actif" d'un clic les modules ci dessous qui apparraissent apres installation de ADBlock : chrome://adblockplus/content/ui/firstRun.html
List FR + EasyList << à mettre à jour regulièrement ainsi que les autres
NOTE POUR Adblock :
Certains sites abusent des publicités, dont leurs pages peuvent en être inondées (cela ralentit la navigation etc). Mais notez que les publicités sont parfois le seul revenus des sites WEB.
Filtrer toutes les publicités peuvent, par exemple, pénaliser ces sites, c’est notamment le cas de malekal.com
Si vous pensez que certains sites le méritent, vous pouvez les ajouter en liste blanche.
Noscript: https://addons.mozilla.org/en-US/firefo ... /noscript/ : http://www.commentcamarche.net/faq/1567 ... -obeissant
Lire sécuriser FireFox:: https://www.malekal.com/securiser-le-na ... firefox-2/Avec Gnu_Linux t'as un Noyau ... avec Ѡindows t'as que les pépins
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique Merci.
https://helicium.altervista.org/
Supprimer les "virus" gratuitement http://www.supprimer-trojan.com/
Un p'tit Don à Angélique
Merci.-
- Sujets similaires
- Réponses
- Vues
- Dernier message
-
- 2 Réponses
- 81 Vues
-
Dernier message par Malekal_morte
-
- 4 Réponses
- 46 Vues
-
Dernier message par angelique
-
- 1 Réponses
- 72 Vues
-
Dernier message par angelique
-
- 8 Réponses
- 168 Vues
-
Dernier message par Malekal_morte
-
-
Désinfection Android
par LOeil_Du_Phenix » » dans Supprimer/Desinfecter les virus (Trojan, Adwares, Ransomwares, Backdoor, Spywares) - 1 Réponses
- 74 Vues
-
Dernier message par Parisien_entraide
-