Qvo6
bendebs
Messages postés
68
Statut
Membre
-
H.A.W.X Messages postés 1275 Statut Membre -
H.A.W.X Messages postés 1275 Statut Membre -
Bonjour,
J'ai depuis ce matin lorsque j'ouvre une page internet, Qvo6 comme page d'accueil et comme moteur de recherche.
J'ai d'abord essayé de le supprimer via les options, directement sur Chrome, puis j'ai vu un peu plus tard dans la journée qu'il était impossible de supprimer ce "virus" de cette façon.
J'ai alors essayé avec adwcleaner que j'avais déjà utilisé, seulement, ca n'a pas fonctionné ... Avez vous une solution ?
Merci d'avance
J'ai depuis ce matin lorsque j'ouvre une page internet, Qvo6 comme page d'accueil et comme moteur de recherche.
J'ai d'abord essayé de le supprimer via les options, directement sur Chrome, puis j'ai vu un peu plus tard dans la journée qu'il était impossible de supprimer ce "virus" de cette façon.
J'ai alors essayé avec adwcleaner que j'avais déjà utilisé, seulement, ca n'a pas fonctionné ... Avez vous une solution ?
Merci d'avance
18 réponses
Bonjour, :)
Je voudrais cependant que tu appliques ses deux règles :
TOUT LES OUTILS DOIVENT ETRE LANCES DEPUIS LE BUREAU !!!
TOUT LES RAPPORTS SONT A METTRE SUR http://upload.sosvirus.net/
---------------
Fais ceci :
~ http://sosvirus.net/viewtopic.php?f=281&t=546
Puis :
~ https://www.sosvirus.net/#p4943
J'attends donc 2 rapports :
~ Adwcleaner.txt ( sur http://upload.sosvirus.net/ )
~ ZHPscan.txt ( sur http://upload.sosvirus.net/ )
Je voudrais cependant que tu appliques ses deux règles :
TOUT LES OUTILS DOIVENT ETRE LANCES DEPUIS LE BUREAU !!!
TOUT LES RAPPORTS SONT A METTRE SUR http://upload.sosvirus.net/
---------------
Fais ceci :
~ http://sosvirus.net/viewtopic.php?f=281&t=546
Puis :
~ https://www.sosvirus.net/#p4943
J'attends donc 2 rapports :
~ Adwcleaner.txt ( sur http://upload.sosvirus.net/ )
~ ZHPscan.txt ( sur http://upload.sosvirus.net/ )
Salut à toi !
D'abord, désolé pour le délai de réponse.
Voici donc mes rapports :
Adwcleaner : http://upload.sosvirus.net/log/SosUpload.439b85a6ba2074872d1ea29191881214.txt
ZPHscan : http://upload.sosvirus.net/log/SosUpload.ac53883a6cc7d4d2d4322d0fbf03995a.txt
D'abord, désolé pour le délai de réponse.
Voici donc mes rapports :
Adwcleaner : http://upload.sosvirus.net/log/SosUpload.439b85a6ba2074872d1ea29191881214.txt
ZPHscan : http://upload.sosvirus.net/log/SosUpload.ac53883a6cc7d4d2d4322d0fbf03995a.txt
Bonjour,
A oui la effectivement je comprends que tu es quelques soucis ! ^^
Vu le nombres je te conseils de lire ceci :
~ https://forum.malekal.com/viewtopic.php?t=6173&start=
Comme ça ça ne reviendra plus ;)
================================================
Copie les lignes en gras ci dessous :
SysRestore
[HKLM\Software\Classes\TypeLib\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SnapDo_RASAPI32] =>Hijacker.SmartBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SnapDo_RASMANCS] =>Hijacker.SmartBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
[HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader.1] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\niogeckbkdcabhnapjbkeiklablhjoca] =>Adware.IncrediBar
[HKLM\Software\Classes\Installer\Features\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\HssSrv] =>Toolbar.Agent
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater] =>Toolbar.Wajam
[HKLM\Software\Wow6432Node\iLividSRTB] =>Adware.Bandoo
[HKCU\Software\Tuto4pc] =>PUP.Eorezo
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKCU\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FDE58148-57E7-43BF-879A-29CCE818C078}] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Penwes] =>PUP.Penwes
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WNLT] =>Adware.IncrediBar
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxHTTPProxy_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxHTTPProxy_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Classes\AppID\priam_bho.DLL] =>Toolbar.Wajam
[HKLM\Software\Classes\Installer\Features\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\SYSTEM\CurrentControlSet\Services\IB Updater] =>Adware.IncrediBar
[HKLM\Software\Classes\Installer\Features\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Products\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Features\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Products\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Features\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Classes\Installer\Products\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Classes\Installer\Features\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Classes\Installer\Products\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Classes\Installer\Features\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Classes\Installer\Products\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Classes\Installer\Features\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Classes\Installer\Products\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
[HKLM\Software\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{9FF9AE6F-4553-41a7-B645-B0E88850EABF}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{CE4DB5A3-58E6-41f1-8761-47238DF4F468}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{8DEC3C75-9A5D-446C-B7B5-E4AB4FDD6309}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{8DEC3C75-9A5D-446C-B7B5-E4AB4FDD6309}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASAPI32] =>Adware.GamePlayLabs
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASMANCS] =>Adware.GamePlayLabs
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc] =>Hijacker.22find
[HKLM\Software\Wow6432Node\qvo6Software] =>Hijacker.Qvo6
[HKLM\Software\Wow6432Node\Savings Wave] =>PUP.CrossRider
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{377E5D4D-77E5-476A-8716-7E70A9272DA0}] =>PUP.Datamngr
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{377E5D4D-77E5-476A-8716-7E70A9272DA0}] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377E5D4D-77E5-476A-8716-7E70A9272DA0}] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{377E5D4D-77E5-476A-8716-7E70A9272DA0}] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASMANCS] =>Toolbar.Conduit
[HKLM\SYSTEM\CurrentControlSet\Services\WebCake Desktop Updater] =>Adware.WebCake
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}] =>Adware.WebCake
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh] =>Adware.WebCake
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836] =>PUP.SweetIM^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:WebCake Desktop
C:\Program Files (x86)\PenWes =>PUP.Penwes
C:\Program Files (x86)\Search Results Toolbar =>Adware.Bandoo
C:\Program Files (x86)\WebCake =>Adware.WebCake
C:\ProgramData\BrowserDefender =>Hijacker.Eazel
C:\Users\Benjamin\AppData\Roaming\eIntaller =>PUP.eSafeSecurity
C:\Users\Benjamin\AppData\Roaming\WebCake =>Adware.WebCake
C:\Users\Benjamin\AppData\Local\Temp\Desk365 =>Hijacker.22find
C:\Users\Benjamin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh =>Adware.WebCake
C:\Users\Benjamin\Downloads\cacaoweb.exe =>PUP.CacaoWeb
C:\Users\Benjamin\AppData\Local\Temp\OB.exe =>PUP.OfferBox
C:\Users\Benjamin\AppData\Local\Temp\instloffer.exe =>PUP.OfferBox
C:\Users\Benjamin\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon
C:\Users\Benjamin\AppData\Local\Temp\BundleSweetIMSetup.exe =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\square_sweetim.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\toolbar_sweetim.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\toolbar_vit_sweetim.exe =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\YontooIEClient.dll =>Adware.Yontoo
C:\Users\Benjamin\AppData\Local\Temp\YontooLayers.crx =>Adware.Yontoo
C:\Users\Benjamin\AppData\Local\Temp\YontooSetup-S.exe =>Adware.Yontoo
C:\Users\Benjamin\AppData\Local\Temp\MybabylonTB.exe =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.0 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.1 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.2 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.3 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.4 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.5 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.6 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.7 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\square_babylon.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\square_babylonv2.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\square_babylonv3.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\BabylonToolbar.exe =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\IminentSetup.exe =>Adware.IMBooster
C:\Users\Benjamin\AppData\Local\Temp\cacaonew20e754.exe =>Adware.PriceGong
C:\Users\Benjamin\AppData\Local\Temp\cacaonew512eb7.exe =>Adware.PriceGong
C:\Users\Benjamin\AppData\Local\Temp\square_lollipop.bmp =>Adware.Lollipop
C:\Users\Benjamin\AppData\Local\Temp\ToolbarInstaller.exe =>Toolbar.Babylon
C:\Users\Benjamin\AppData\Local\Temp\conduitinstaller.exe =>Toolbar.Conduit
C:\Users\Benjamin\AppData\Local\Temp\CT3128284_ie.exe =>Toolbar.Conduit
C:\Users\Benjamin\AppData\Local\Temp\dealply.exe =>PUP.DealPly
FirewallRaz
EmptyFlash
Emptytemp
Puis fais ceci :
~ http://sosvirus.net/viewtopic.php?f=281&t=579
J'attends donc 1 rapport :
¤ ZHPFixReport.txt ( sur http://upload.sosvirus.net/ )
Après ça cela devrait aller beaucoup mieux, mais ce n'est pas terminé ! ;)
A oui la effectivement je comprends que tu es quelques soucis ! ^^
Vu le nombres je te conseils de lire ceci :
~ https://forum.malekal.com/viewtopic.php?t=6173&start=
Comme ça ça ne reviendra plus ;)
================================================
Copie les lignes en gras ci dessous :
SysRestore
[HKLM\Software\Classes\TypeLib\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SnapDo_RASAPI32] =>Hijacker.SmartBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SnapDo_RASMANCS] =>Hijacker.SmartBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
[HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader.1] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\niogeckbkdcabhnapjbkeiklablhjoca] =>Adware.IncrediBar
[HKLM\Software\Classes\Installer\Features\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\16FE85B52F587794795A481CF9295697] =>PUP.SweetIM
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\HssSrv] =>Toolbar.Agent
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater] =>Toolbar.Wajam
[HKLM\Software\Wow6432Node\iLividSRTB] =>Adware.Bandoo
[HKCU\Software\Tuto4pc] =>PUP.Eorezo
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKCU\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FDE58148-57E7-43BF-879A-29CCE818C078}] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Penwes] =>PUP.Penwes
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WNLT] =>Adware.IncrediBar
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxHTTPProxy_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxHTTPProxy_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Classes\AppID\priam_bho.DLL] =>Toolbar.Wajam
[HKLM\Software\Classes\Installer\Features\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\254796BF4AC84B64891B61C529A2E23F] =>PUP.SweetIM
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\SYSTEM\CurrentControlSet\Services\IB Updater] =>Adware.IncrediBar
[HKLM\Software\Classes\Installer\Features\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Products\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Features\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Products\25BD30E1BC5D83343A835E62DDD4D41B] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Features\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Classes\Installer\Products\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Classes\Installer\Features\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Classes\Installer\Products\521D59DC299285843BFEF5F65BF2AB6D] =>Toolbar.Skype
[HKLM\Software\Classes\Installer\Features\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Classes\Installer\Products\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Classes\Installer\Features\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Wow6432Node\Classes\Installer\Products\84185EDF7E75FB3478A992CC8E810C87] =>Toolbar.eBay
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
[HKLM\Software\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{9FF9AE6F-4553-41a7-B645-B0E88850EABF}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{CE4DB5A3-58E6-41f1-8761-47238DF4F468}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{8DEC3C75-9A5D-446C-B7B5-E4AB4FDD6309}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{8DEC3C75-9A5D-446C-B7B5-E4AB4FDD6309}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASAPI32] =>Adware.GamePlayLabs
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASMANCS] =>Adware.GamePlayLabs
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc] =>Hijacker.22find
[HKLM\Software\Wow6432Node\qvo6Software] =>Hijacker.Qvo6
[HKLM\Software\Wow6432Node\Savings Wave] =>PUP.CrossRider
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{377E5D4D-77E5-476A-8716-7E70A9272DA0}] =>PUP.Datamngr
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{377E5D4D-77E5-476A-8716-7E70A9272DA0}] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377E5D4D-77E5-476A-8716-7E70A9272DA0}] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{377E5D4D-77E5-476A-8716-7E70A9272DA0}] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASMANCS] =>Toolbar.Conduit
[HKLM\SYSTEM\CurrentControlSet\Services\WebCake Desktop Updater] =>Adware.WebCake
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}] =>Adware.WebCake
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh] =>Adware.WebCake
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836] =>PUP.SweetIM^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:WebCake Desktop
C:\Program Files (x86)\PenWes =>PUP.Penwes
C:\Program Files (x86)\Search Results Toolbar =>Adware.Bandoo
C:\Program Files (x86)\WebCake =>Adware.WebCake
C:\ProgramData\BrowserDefender =>Hijacker.Eazel
C:\Users\Benjamin\AppData\Roaming\eIntaller =>PUP.eSafeSecurity
C:\Users\Benjamin\AppData\Roaming\WebCake =>Adware.WebCake
C:\Users\Benjamin\AppData\Local\Temp\Desk365 =>Hijacker.22find
C:\Users\Benjamin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh =>Adware.WebCake
C:\Users\Benjamin\Downloads\cacaoweb.exe =>PUP.CacaoWeb
C:\Users\Benjamin\AppData\Local\Temp\OB.exe =>PUP.OfferBox
C:\Users\Benjamin\AppData\Local\Temp\instloffer.exe =>PUP.OfferBox
C:\Users\Benjamin\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon
C:\Users\Benjamin\AppData\Local\Temp\BundleSweetIMSetup.exe =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\square_sweetim.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\toolbar_sweetim.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\toolbar_vit_sweetim.exe =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\YontooIEClient.dll =>Adware.Yontoo
C:\Users\Benjamin\AppData\Local\Temp\YontooLayers.crx =>Adware.Yontoo
C:\Users\Benjamin\AppData\Local\Temp\YontooSetup-S.exe =>Adware.Yontoo
C:\Users\Benjamin\AppData\Local\Temp\MybabylonTB.exe =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.0 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.1 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.2 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.3 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.4 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.5 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.6 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\MyBabylonTB.exe.7 =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\square_babylon.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\square_babylonv2.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\square_babylonv3.bmp =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\BabylonToolbar.exe =>PUP.SweetIM
C:\Users\Benjamin\AppData\Local\Temp\IminentSetup.exe =>Adware.IMBooster
C:\Users\Benjamin\AppData\Local\Temp\cacaonew20e754.exe =>Adware.PriceGong
C:\Users\Benjamin\AppData\Local\Temp\cacaonew512eb7.exe =>Adware.PriceGong
C:\Users\Benjamin\AppData\Local\Temp\square_lollipop.bmp =>Adware.Lollipop
C:\Users\Benjamin\AppData\Local\Temp\ToolbarInstaller.exe =>Toolbar.Babylon
C:\Users\Benjamin\AppData\Local\Temp\conduitinstaller.exe =>Toolbar.Conduit
C:\Users\Benjamin\AppData\Local\Temp\CT3128284_ie.exe =>Toolbar.Conduit
C:\Users\Benjamin\AppData\Local\Temp\dealply.exe =>PUP.DealPly
FirewallRaz
EmptyFlash
Emptytemp
Puis fais ceci :
~ http://sosvirus.net/viewtopic.php?f=281&t=579
J'attends donc 1 rapport :
¤ ZHPFixReport.txt ( sur http://upload.sosvirus.net/ )
Après ça cela devrait aller beaucoup mieux, mais ce n'est pas terminé ! ;)
Voilà déjà le rapport !
http://upload.sosvirus.net/log/SosUpload.8fb7c38932a1656b06b13d4aabf6383e.txt
En effet j'espère que ca n'est pas terminé car je tombe toujours sur la page Qvo6 :/
Moi qui croyais être prudent x)
http://upload.sosvirus.net/log/SosUpload.8fb7c38932a1656b06b13d4aabf6383e.txt
En effet j'espère que ca n'est pas terminé car je tombe toujours sur la page Qvo6 :/
Moi qui croyais être prudent x)
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Ok, la suite ;)
~ http://sosvirus.net/viewtopic.php?f=281&t=615
J'attends donc 1 rapport :
¤ JRT.txt ( sur http://upload.sosvirus.net/ )
~ http://sosvirus.net/viewtopic.php?f=281&t=615
J'attends donc 1 rapport :
¤ JRT.txt ( sur http://upload.sosvirus.net/ )
Bonjour,
Ok on agrandi le scan pour voir ce qui se passe :)
Suis ceci :
~ http://sosvirus.net/post4583.html#p4583
J'attends donc 1 rapport :
¤ ZHPDiag.txt ( sur http://upload.sosvirus.net/ )
Ok on agrandi le scan pour voir ce qui se passe :)
Suis ceci :
~ http://sosvirus.net/post4583.html#p4583
J'attends donc 1 rapport :
¤ ZHPDiag.txt ( sur http://upload.sosvirus.net/ )
Je me permets d'intervenir:
Dans le cas de find22 / Portaldosites / QVO6.com : il faut nettoyer les raccourcis (icônes) de lancement des navigateurs Internet.
Fais un clic droit sur les icônes de raccourcis de lancement des navigateurs puis propriétés.
Dans cible, à la fin, une adresse http a été ajoutée pour que le site s'ouvre au démarrage du navigateur, supprimer cette adresse http ET SEULEMENT cette adresse http
Comme le montre l'image ci-dessous:
Smart
Dans le cas de find22 / Portaldosites / QVO6.com : il faut nettoyer les raccourcis (icônes) de lancement des navigateurs Internet.
Fais un clic droit sur les icônes de raccourcis de lancement des navigateurs puis propriétés.
Dans cible, à la fin, une adresse http a été ajoutée pour que le site s'ouvre au démarrage du navigateur, supprimer cette adresse http ET SEULEMENT cette adresse http
Comme le montre l'image ci-dessous:
Smart
Effectivement j'ai fais ce que Smart m'a dit et ca a fonctionné.
Veux tu quand même, HAWX, que je fasse ce que tu m'as demandé ?
En tout cas merci à vous deux
Cordialement
Veux tu quand même, HAWX, que je fasse ce que tu m'as demandé ?
En tout cas merci à vous deux
Cordialement
Bonjour,
Si tout es rentré dans l'ordre je ne pense pas que ça soit la peine sauf si tu le souhaites.
Merci à Smart91.
Si tout es rentré dans l'ordre je ne pense pas que ça soit la peine sauf si tu le souhaites.
Merci à Smart91.
Bonsoir,
Oui je pense qu'il serait en effet préférable d'approfondir l'analyse vu que que ZHPScan à trouvé ;)
Oui je pense qu'il serait en effet préférable d'approfondir l'analyse vu que que ZHPScan à trouvé ;)
Bonsoir,
Si si tu as bien fait de revenir ;)
Attention !!! : Seuls ces liens sont officiels ne pas telecharger l'outil sur d'autres liens !!
Attention !!! : cet outil peut etre détecté à tort comme virus
Attention !!! : cet outil est puissant suivre scrupuleusement les instructions ci-dessous
tous les processus "non vitaux de windows" vont être coupés , enregistre ton travail. Il y aura une extinction du bureau pendant le scan --> pas de panique.
Désactive toutes tes protections si possible , antivirus , sandbox , pare-feux , etc....: https://forum.pcastuces.com/default.asp
telecharge et enregistre Pre_Scan sur ton bureau :
http://services.service-webmaster.fr/cpt-clics/clics-30453-6820.html (renommé winlogon)
ou , si le lien n'est pas fonctionnel :
http://www.archive-host.com (renommé winlogon)
http://www.security-helpzone.com/Tools/g3n/winlogon.exe (renommé winlogon)
si l'outil est relancé plusieurs fois , il te proposera un menu et qu'aucune option n'est demandée, lance l'option "Scan|Kill"
si l'outil est bloqué par l'infection utilise cette version avec ces autres extensions :
http://www.security-helpzone.com/Tools/g3n/Pre_Scan.scr
http://www.security-helpzone.com/Tools/g3n/Pre_Scan.pif
http://www.security-helpzone.com/Tools/g3n/Pre_Scan.com
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
Il se peut que des fenêtres noires clignotent , laisse-le travailler.
l'outil va envoyer sur un serveur les virus qu'il a mis en quarantaine afin que je puisse l'ameliorer et etudier ces infections plus en profondeur.
Laisse l'outil redemarrer ton pc.
Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra à la racine de ton disque système ( généralement C:\ )
NE LE POSTE PAS SUR LE FORUM !!! (il est trop long)
Heberge le rapport sur https://www.cjoint.com/ puis donne le lien obtenu en echange sur le forum où tu te fais aider
Si si tu as bien fait de revenir ;)
Attention !!! : Seuls ces liens sont officiels ne pas telecharger l'outil sur d'autres liens !!
Attention !!! : cet outil peut etre détecté à tort comme virus
Attention !!! : cet outil est puissant suivre scrupuleusement les instructions ci-dessous
tous les processus "non vitaux de windows" vont être coupés , enregistre ton travail. Il y aura une extinction du bureau pendant le scan --> pas de panique.
Désactive toutes tes protections si possible , antivirus , sandbox , pare-feux , etc....: https://forum.pcastuces.com/default.asp
telecharge et enregistre Pre_Scan sur ton bureau :
http://services.service-webmaster.fr/cpt-clics/clics-30453-6820.html (renommé winlogon)
ou , si le lien n'est pas fonctionnel :
http://www.archive-host.com (renommé winlogon)
http://www.security-helpzone.com/Tools/g3n/winlogon.exe (renommé winlogon)
si l'outil est relancé plusieurs fois , il te proposera un menu et qu'aucune option n'est demandée, lance l'option "Scan|Kill"
si l'outil est bloqué par l'infection utilise cette version avec ces autres extensions :
http://www.security-helpzone.com/Tools/g3n/Pre_Scan.scr
http://www.security-helpzone.com/Tools/g3n/Pre_Scan.pif
http://www.security-helpzone.com/Tools/g3n/Pre_Scan.com
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
Il se peut que des fenêtres noires clignotent , laisse-le travailler.
l'outil va envoyer sur un serveur les virus qu'il a mis en quarantaine afin que je puisse l'ameliorer et etudier ces infections plus en profondeur.
Laisse l'outil redemarrer ton pc.
Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra à la racine de ton disque système ( généralement C:\ )
NE LE POSTE PAS SUR LE FORUM !!! (il est trop long)
Heberge le rapport sur https://www.cjoint.com/ puis donne le lien obtenu en echange sur le forum où tu te fais aider
