cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by hervé at 2015-03-22 16:59:44 Run:1
Running from C:\Users\hervé\Desktop
Loaded Profiles: hervé (Available profiles: hervé & Invité)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
closeprocesses:
emptytemp:
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKU\S-1-5-21-4248809901-4284284755-3010921018-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = ?type=hppp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = ?type=hppp
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = ?type=hppp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = ?type=hppp
HKU\S-1-5-21-4248809901-4284284755-3010921018-1000\Software\Microsoft\Internet Explorer\Main,Start Page = ?type=hppp
Toolbar: HKU\S-1-5-21-4248809901-4284284755-3010921018-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-4248809901-4284284755-3010921018-1000 -> No Name - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
Winsock: Catalog9 01 C:\Windows\system32\abengine.dll File Not found ()
Winsock: Catalog9 02 C:\Windows\system32\abengine.dll File Not found ()
Winsock: Catalog9 03 C:\Windows\system32\abengine.dll File Not found ()
Winsock: Catalog9 04 C:\Windows\system32\abengine.dll File Not found ()
Winsock: Catalog9 15 C:\Windows\system32\abengine.dll File Not found ()
Winsock: Catalog9-x64 01 C:\Windows\system32\abengine64.dll File Not found ()
Winsock: Catalog9-x64 02 C:\Windows\system32\abengine64.dll File Not found ()
Winsock: Catalog9-x64 03 C:\Windows\system32\abengine64.dll File Not found ()
Winsock: Catalog9-x64 04 C:\Windows\system32\abengine64.dll File Not found ()
Winsock: Catalog9-x64 15 C:\Windows\system32\abengine64.dll File Not found ()
CHR Extension: (Google Wallet) - C:\Users\hervé\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-14]
Task: {226015ED-54DC-4675-9E7A-46975802B86B} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe
C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {370B6691-C278-470E-B086-1F42D86329F9} - System32\Tasks\WIN-statsAdmin
C:\Users\hervé\AppData\Local\Microsoft\WinU\~tdrzmnc.exe <==== ATTENTION
Task: {705E0BD2-C5EF-4FA0-A8F1-B7C2A8D7F7A4} - System32\Tasks\{CFCAFF1E-82E0-4EF8-9F4B-6E3F74962846} => pcalua.exe -a
C:\Users\hervé\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {7857273A-D6A7-4C54-89C0-DC42C8A16EA1} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe
C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: C:\Windows\Tasks\GJOHHMO.job
C:\Users\hervýÿ\AppData\Roaming\GJOHHMO.exe <==== ATTENTION
Task: C:\Windows\Tasks\IGPFTRQ.job
C:\Users\hervýÿ\AppData\Roaming\IGPFTRQ.exe <==== ATTENTION
Task: C:\Windows\Tasks\IVYS.job
C:\Users\hervýÿ\AppData\Roaming\IVYS.exe <==== ATTENTION
Task: C:\Windows\Tasks\KIDGV.job
C:\Users\hervýÿ\AppData\Roaming\KIDGV.exe <==== ATTENTION
Task: C:\Windows\Tasks\LGPAHB.job
C:\Users\hervýÿ\AppData\Roaming\LGPAHB.exe <==== ATTENTION
Task: C:\Windows\Tasks\LODYLH.job
C:\Users\hervýÿ\AppData\Roaming\LODYLH.exe <==== ATTENTION
Task: C:\Windows\Tasks\LQOTVBI.job
C:\Users\hervýÿ\AppData\Roaming\LQOTVBI.exe <==== ATTENTION
Task: C:\Windows\Tasks\OWBPVXL.job
C:\Users\hervýÿ\AppData\Roaming\OWBPVXL.exe <==== ATTENTION
Task: C:\Windows\Tasks\PSLXBAG.job
C:\Users\hervýÿ\AppData\Roaming\PSLXBAG.exe <==== ATTENTION
Task: C:\Windows\Tasks\XB.job
C:\Users\hervýÿ\AppData\Roaming\XB.exe <==== ATTENTION
Task: C:\Windows\Tasks\YYJKP.job
C:\Users\hervýÿ\AppData\Roaming\YYJKP.exe <==== ATTENTION
Task: C:\Windows\Tasks\ZFIS.job
C:\Users\hervýÿ\AppData\Roaming\ZFIS.exe <==== ATTENTION

hosts:
createrestorepoint:
end
*****************

Processes closed successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKU\S-1-5-21-4248809901-4284284755-3010921018-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKU\S-1-5-21-4248809901-4284284755-3010921018-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-4248809901-4284284755-3010921018-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
HKU\S-1-5-21-4248809901-4284284755-3010921018-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{1017A80C-6F09-4548-A84D-EDD6AC9525F0} => value deleted successfully.
HKCR\CLSID\{1017A80C-6F09-4548-A84D-EDD6AC9525F0} => Key not found.
"HKCR\PROTOCOLS\Handler\livecall" => Key deleted successfully.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => Key not found.
"HKCR\PROTOCOLS\Handler\msnim" => Key deleted successfully.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => Key not found.
Winsock: Catalog entry 000000000001 => Deleted successfully.
Winsock: Catalog entry 000000000002 => Deleted successfully.
Winsock: Catalog entry 000000000003 => Deleted successfully.
Winsock: Catalog entry 000000000004 => Deleted successfully.
Winsock: Catalog entry 000000000015 => Not found.
Winsock: Catalog entry 000000000001 => Deleted successfully.
Winsock: Catalog entry 000000000002 => Deleted successfully.
Winsock: Catalog entry 000000000003 => Deleted successfully.
Winsock: Catalog entry 000000000004 => Deleted successfully.
Winsock: Catalog entry 000000000015 => Deleted successfully.
C:\Users\hervé\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{226015ED-54DC-4675-9E7A-46975802B86B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{226015ED-54DC-4675-9E7A-46975802B86B}" => Key deleted successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Multimedia\SMupdate3" => Key deleted successfully.
"C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION" => File/Directory not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{370B6691-C278-470E-B086-1F42D86329F9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{370B6691-C278-470E-B086-1F42D86329F9}" => Key deleted successfully.
C:\Windows\System32\Tasks\WIN-statsAdmin => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsAdmin" => Key deleted successfully.
"C:\Users\hervé\AppData\Local\Microsoft\WinU\~tdrzmnc.exe <==== ATTENTION" => File/Directory not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{705E0BD2-C5EF-4FA0-A8F1-B7C2A8D7F7A4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{705E0BD2-C5EF-4FA0-A8F1-B7C2A8D7F7A4}" => Key deleted successfully.
C:\Windows\System32\Tasks\{CFCAFF1E-82E0-4EF8-9F4B-6E3F74962846} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CFCAFF1E-82E0-4EF8-9F4B-6E3F74962846}" => Key deleted successfully.
"C:\Users\hervé\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=ill <==== ATTENTION" => File/Directory not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7857273A-D6A7-4C54-89C0-DC42C8A16EA1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7857273A-D6A7-4C54-89C0-DC42C8A16EA1}" => Key deleted successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Maintenance\SMupdate2" => Key deleted successfully.
"C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\GJOHHMO.job not found.
"C:\Users\hervýÿ\AppData\Roaming\GJOHHMO.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\IGPFTRQ.job not found.
"C:\Users\hervýÿ\AppData\Roaming\IGPFTRQ.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\IVYS.job not found.
"C:\Users\hervýÿ\AppData\Roaming\IVYS.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\KIDGV.job not found.
"C:\Users\hervýÿ\AppData\Roaming\KIDGV.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\LGPAHB.job not found.
"C:\Users\hervýÿ\AppData\Roaming\LGPAHB.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\LODYLH.job not found.
"C:\Users\hervýÿ\AppData\Roaming\LODYLH.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\LQOTVBI.job not found.
"C:\Users\hervýÿ\AppData\Roaming\LQOTVBI.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\OWBPVXL.job not found.
"C:\Users\hervýÿ\AppData\Roaming\OWBPVXL.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\PSLXBAG.job not found.
"C:\Users\hervýÿ\AppData\Roaming\PSLXBAG.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\XB.job not found.
"C:\Users\hervýÿ\AppData\Roaming\XB.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\YYJKP.job not found.
"C:\Users\hervýÿ\AppData\Roaming\YYJKP.exe <==== ATTENTION" => File/Directory not found.
Task: C:\Windows\Tasks\ZFIS.job not found.
"C:\Users\hervýÿ\AppData\Roaming\ZFIS.exe <==== ATTENTION" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
Restore point was successfully created.
EmptyTemp: => Removed 491.9 MB temporary data.


The system needed a reboot.

==== End of Fixlog 17:00:42 ====

Publicité


Signaler le contenu de ce document

Publicité