J'ai chopé un virus ..help me

kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   -  
 Utilisateur anonyme -
Bonjour,

après un téléchargement sur un site bien connu ...mon pc est vérolé...pouvez vous m'aider pour un diag merci



A voir également:

28 réponses

  • 1
  • 2
Réponse 1 / 28
Utilisateur anonyme
 
bonsoir

quels sont les symptômes?
0
Réponse 2 / 28
harry1234 Messages postés 225 Date d'inscription   Statut Membre Dernière intervention   16
 
As-tu un antivirus ?
0
Réponse 3 / 28
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
oui avast....des pubs changement sur moteur de recherches.....
0
Réponse 4 / 28
Utilisateur anonyme
 
Re

Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Scanner] puis patiente le temps du scan.
Une fois le scan terminé clique sur le bouton [Nettoyer]
Patiente durant le nettoyage. Lis le message qui apparaît, puis clique sur Ok . Le PC va être redémarré automatiquement et le rapport s'ouvrira à la fin du redémarrage.
Poste le rapport

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt


@+
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
Code d'erreur : ERR_SSL_PROTOCOL_ERROR.
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
# AdwCleaner v3.311 - Rapport créé le 02/11/2014 à 19:39:24
# Mis à jour le 30/09/2014 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : evrard- - EVRARD--PC
# Exécuté depuis : C:\Users\evrard-\Desktop\adwcleaner_3.311.exe
# Option : Nettoyer

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****


***** [ Tâches planifiées ] *****


***** [ Raccourcis ] *****


***** [ Registre ] *****


***** [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Google Chrome v37.0.2062.120

[ Fichier : C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [18499 octets] - [06/11/2013 23:21:20]
AdwCleaner[R1].txt - [8672 octets] - [15/11/2013 02:47:39]
AdwCleaner[R2].txt - [15131 octets] - [21/09/2014 07:41:33]
AdwCleaner[R3].txt - [51083 octets] - [02/11/2014 19:04:15]
AdwCleaner[R4].txt - [1278 octets] - [02/11/2014 19:37:27]
AdwCleaner[S0].txt - [13747 octets] - [06/11/2013 23:21:59]
AdwCleaner[S1].txt - [6368 octets] - [15/11/2013 02:48:19]
AdwCleaner[S2].txt - [48828 octets] - [02/11/2014 19:06:06]
AdwCleaner[S3].txt - [1200 octets] - [02/11/2014 19:39:24]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1260 octets] ##########
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 28
harry1234 Messages postés 225 Date d'inscription   Statut Membre Dernière intervention   16
 
As tu fais une analyse ?
0
Réponse 6 / 28
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
je suis en train de la faire ....
0
harry1234 Messages postés 225 Date d'inscription   Statut Membre Dernière intervention   16
 
Une analyse (surtout les complètes) détecte les virus. Lors des résultats trouvés, met les virus en quarantaine.
Il faut aussi mettre à jour son antivirus.
0
Réponse 7 / 28
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
les pub continue à arriver .....pfff pendant l'analyse
0
harry1234 Messages postés 225 Date d'inscription   Statut Membre Dernière intervention   16
 
Suis le conseil de Guillaume5188, Adw Cleaner est utile !
0
harry1234 Messages postés 225 Date d'inscription   Statut Membre Dernière intervention   16
 
Aussi : Adwcleaner ne remplace pas l'antivirus !
Il faut donc garder Avast
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
il, me faut le lien adw
please..merci
0
Réponse 8 / 28
Utilisateur anonyme
 
Re

je peux avoir ce rapport Adwcleaner;merci
0
Réponse 9 / 28
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
je fais un scanne avec adw cc 3.3
0
Utilisateur anonyme
 
Oui;si tu l'as téléchargé sur le lien fourni
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
oui..
0
Réponse 10 / 28
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
redonne moi le lien.....s'il te plait je l'ai eu sur un autre post
0
Réponse 11 / 28
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
c'est bon merci je post rapport ensuite
0
Réponse 12 / 28
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
Erreur de connexion SSL


dés que je clic sur telecharger adw
0
Réponse 13 / 28
Utilisateur anonyme
 
Re

Pour de plus amples informations, fait ceci stp

Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :

https://nicolascoolman.eu

Ou

https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/



Une fois le téléchargement achevé,

Double-clique sur l'icône pour lancer le programme. Sous Vista ; Seven ou Windows 8 clic droit « exécuter en tant que administrateur »


Dans la fenêtre ZHPDiag qui vient de s'ouvrir, clique sur "Configurer"

Clique sur la loupe en bas à gauche avec le signe plus pour lancer l'analyse.


Laisse l'outil travailler, il peut être assez long.

Un rapport s'ouvre. Ce rapport se trouve également sur ton bureau

Pour transmettre le rapport clique sur ce lien:
http://pjjoint.malekal.com/

Si problème utilise un des suivants

https://forums-fec.be/upload
https://www.cjoint.com/


Regarde sur le bureau

Sélectionne le fichier ZHPDiag.txt.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.com/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.

Merci

@+

0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
https://pjjoint.malekal.com/files.php?id=ZHPDiag_20141103_i125w15k8e13


le lien pour rapport ..merci
0
Réponse 14 / 28
Utilisateur anonyme
 
Bonjour

[*] Télécharger sur le bureau RogueKiller (by tigzy) (choisir entre la version 32 et 64 bits selon ton Windows, si tu ne sais pas, demande moi!)
[*] Quitter tous les programmes
[*] Lancer RogueKiller.exe.
[*] Attendre que le Prescan ait fini ...
[*] Cliquer sur Scan. Cliquer sur Rapport et copier coller le contenu du rapport

@+
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
quand je suis le lien je clique sur quoi à telecharger
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
j'ai trouvé.......
0
Utilisateur anonyme
 
Roguekiller X64
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
RogueKiller V10.0.4.0 [Oct 29 2014] par Adlice Software
email : https://www.adlice.com/contact/
Remontées : https://forum.adlice.com/
Site web : https://www.surlatoile.org/RogueKiller/
Blog : https://www.adlice.com/

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarré en : Mode normal
Utilisateur : evrard- [Administrateur]
Mode : Scan -- Date : 11/03/2014 10:00:43

¤¤¤ Processus : 1 ¤¤¤
[Suspicious.Path] (SVC) rcores -- C:\Windows\rcore.exe[-] -> Arrêté(e)

¤¤¤ Registre : 16 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\rcores (C:\Windows\rcore.exe) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\rcores (C:\Windows\rcore.exe) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\rcores (C:\Windows\rcore.exe) -> Trouvé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy1.babygo.fr:1234 -> Trouvé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy1.babygo.fr:1234 -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)

¤¤¤ Tâches : 21 ¤¤¤
[Suspicious.Path] FAAOU.job -- C:\Users\evrard-\AppData\Roaming\FAAOU.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] GWNXZKH.job -- C:\Users\evrard-\AppData\Roaming\GWNXZKH.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] ISRYT.job -- C:\Users\evrard-\AppData\Roaming\ISRYT.exe (/infocmdline=b7umFI+XGBC/lQUnrmGQP5juEQvqD3uBemiNsMK3CAAi1ZMThrgp7sLit1wOc7HTrq/iAMUOxJ+YBRg3WbKOWuln2chpdOVww8U7DdhwYukkR9ah80qq1crOGfTCOcgx5KhQAJ1CvTO7v+RrSRlAgst2ceii2v0FgSXB7qTpMoQ7EBJfuOZnezA2E2iB2SoaiOqwtcQkyKILG49XWAGlU5/oqXtkw20LdWIBNxLq5QMyK0V1IJYj+3Mqz45into1pxs5PndTXLdB/pCWLoYh7YopENLUqEwhFNnCXQ1v/xhMmcR4R1mZIarPlSUiqMm7E86jl4m3MlJFs4PSkxz49m0nPHPyLsWdYyXNGeHjwMeTShVI2giYvTyAVKsCGuNELPsQt6wnjdVsx/wt1ossy9c59dCqqMv9XeYRPUZ2FKDMyz/Ge7+XImVPcKQIHDBsQeuoqNXmDdZ2zl+9D31zpezJKnNxQgKRM4F8Tzk8sXFCYUa5GvLQ7/IgigXGeJCq) -> Trouvé(e)
[Suspicious.Path] KEHI.job -- C:\Users\evrard-\AppData\Roaming\KEHI.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] OZBNK.job -- C:\Users\evrard-\AppData\Roaming\OZBNK.exe (/infocmdline=IfblpTAjAX2JJ+HVG/EvHOe1E9/vFQRe44RvaGMNQ8mN6FFazTfZbpU5KOy5dgPAxiIXRDSD1qUiXh1syDFmpWh28czPb938vqW4Zg3ZtfZ90K7rEVKsFX6YbY2JO/PeyQn/91X3TscEsyfTOYTuWhAXy/eo+kR/5R6eoQTlegBvkyqA/9v/IXYBjrLqhCI26CtmAhfhcUcyrDic8ibZhIRrLkPq8gvpXw3sOlNZYmI24PpDkGwuAfgy1FsQBRsHMwuyn2MHxJSgLt8FGZRI6HksymxmJ0ocGuGD4LazJl26S9mXER8k22iVbuzrMLEQCKVf94fkbdXSOXbfDV965Wny5gCA3LluAsvCy9CutmY2wFSaYT3iN0ZMdd5PSjr/4NWGzGtQjEIBHQoLpXa894+wo0Ht/1dWa5m9o5IOWaC13j31PbB2tS6fHwaAwhwMxnffMbmSHSsgCw4DrHVLCSqdUrhgc5XcNl5esEBpaHdEEOyQ2Mkh42M6k+q8yPnc) -> Trouvé(e)
[Suspicious.Path] PRWDPYCK.job -- C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] ROZGPG.job -- C:\Users\evrard-\AppData\Roaming\ROZGPG.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] RVOYAI.job -- C:\Users\evrard-\AppData\Roaming\RVOYAI.exe (/infocmdline=cAJKPeG5ZQwtT3dETPdQDdXySgY5yPR+vrt9oLyk5flLCXiilQgzvqC6/h1U4zED/i+stbbcPKWCGbJIagr94qisDMa1ihQT1wGwX1OseGn8uyvi/VFYJmnkutRy3nHx/LxOe3pTv7oLBHkxb4kI0v2Koa/QcS3B6tRxQ1cuTGq1FSfxrWAVwU8ryEPXTGnjkjAZBjGE6FFO6e2EZaasZqj/yqolmaeY30k18NL1EY+G+n2FOv8iy06OwPSLslE7bPvzu9fQq2zYXYbc2p9weQNRWapq1kiVV6gVED/GHu+ftPHeMz/CsLtt+8nDBNzI1nS7oW1u1pYRz9M5tqrAfZbhtJ2iF6cGXWw1En+m1Xww2zt7S9McU/I87538UfbwoD5Zn6NjBgnZLFhFKZWRhXqgZeIgHtE+m0EGwg5w4ThFgGhu/VaIVlkl/gM53TidjIeQg7mvmZzKuRgGJCHTgBuf7+IQD41icNm2Us2Y0ntxqdQhRYOEK2K8YGkk+shj) -> Trouvé(e)
[Suspicious.Path] TRPH.job -- C:\Users\evrard-\AppData\Roaming\TRPH.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] VXPL.job -- C:\Users\evrard-\AppData\Roaming\VXPL.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\FAAOU -- C:\Users\evrard-\AppData\Roaming\FAAOU.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\GWNXZKH -- C:\Users\evrard-\AppData\Roaming\GWNXZKH.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\ISRYT -- C:\Users\evrard-\AppData\Roaming\ISRYT.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\KEHI -- C:\Users\evrard-\AppData\Roaming\KEHI.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\OZBNK -- C:\Users\evrard-\AppData\Roaming\OZBNK.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\PRWDPYCK -- C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe (/infocmdline=Hd3mLmrA79ysZ0umRHfRZ5q14luJHFCwuqBT1rLQ7o/GWJSTFyq5SVHoFlzDAbSxoawOQMnDCLQYNbRIfZZYfDmAN6gwQtvOVWdA/PJZVCPOMRmPwvcg1zGWajt1kxyYFI3niREaSMViQNwQeRZvRhP7avzQdC5RcVzK/+wTTnWHGgfUheutaOyHpzyz5r8Ti5LTpi6O+URDNNAgZ9b0smbiXPadE36QKv2kF3Nz01uxa0HeB6TI1puxQps8hVn7Tn/tJ+o4Fl8+rbwpF727gA+/35IIc9kwrzDZgm/bl5pCroWDXaVHFAAaMtJs8zNgairB9fiQLERAIbp731mPy5YDNjdQKQ7kp5K/TbxhGEZUFD5Cog4j76cNHm2oaD247hlexeE6DvokKQNII8gsUQRQ0O/LhXmvy5XGeyuV/tb/Xrdm0yNzmCGVd4w1TaLFzEOc8HXuuciYF1dKQpa63bA77N1+d2EHbNwmQB/Sa0++rY7AuOn7vKJ7FJQF+VEFsZkLutK+wRg09MBTdV6esMVJAnVrHQ18v7KwLAnjHLQ6qygpZwcc4FRKmt288xLM80NNLghoNjL7A5LleUPNwEK91s0rHvKmd83SdnKb64/+DklNpVBvfiP1S7ufH9ZR3T06y0c1dfgiSyZsKto8dEXbr5D/fQu+D2xz3adWKyg=) -> Trouvé(e)
[Suspicious.Path] \\ROZGPG -- C:\Users\evrard-\AppData\Roaming\ROZGPG.exe (/infocmdline=XvmIsy408lSm2h2Xed1YrtmoPYXsgSOYM5YPmKj+1YC3abaxgOB+Cs54rq8qL4YuBpr73bQROfx4UV41rME2SiSNvM7sGa7C7PrJW+Eyxqtp4hp5HpAQISmuJ5asIvz9ZqKPDrRxoGEWUBOBrKVEebcXlM2uDZAiKQH0kxigJvvHsq9rlSRPDWWL/5f0RqgpsI1aXpSZKni1rv77XrGvLtqQBN4Q4eQm4QhXhjUlsMk48yLU8ttHguFm39S/Vrf0PLkvUY3aMWGuMXqYuVlaM9K6HppodSPxrCd85PAh41Z8kcaZPixt74nuRxBjnrtzjbrHnzvWnkauWteafd5v3hNxVojK6Z4xFJ6MHrMEyfGuCu5R7Pk37VMeq14bCkiQRRg4vnuHZAMi7g78LGw4kz1JAljX1vab+xgHn8IYdWRgEPlY0vl66R7hqfm6o3piVCXWi4r8Wy/Ez4BCMlTtSH5Jv6xw4RYBonYfws446te5QAPLHhbUo6KCfBVQLMqB) -> Trouvé(e)
[Suspicious.Path] \\RVOYAI -- C:\Users\evrard-\AppData\Roaming\RVOYAI.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\TRPH -- C:\Users\evrard-\AppData\Roaming\TRPH.exe (/infocmdline=U7tAgUg3dc1yK1Zxw0LsnMYimfFIXAKu86fRx/SbWKNES+JqsxtsXjmOJyFjXmJUHqKLcsmu56UjmkJPIg39UKiSTC8cmXpjyQwy/XBrVY12VsFISP36Sw5CScwFBO3UjUhhqRhPicF8+ib9MUhD9F18R0l+jVlcs5Ui2Yoj9Z5wx8Mx9ym3LLd0XlXEhliFMXeslY8oU3SdjuE1GN5oWEMWOCiNMeYR3GXwHoBa2y8e+SLlXou7HPg6i2WI0O1vG+w+6/KvttOEuGvlWgNZ/VhqSPlwVSe7IeNMcvr07Xfqx61bgQf0RszOh9BpZTDX4mdlWvMNPNfzBAahDWXXUTJH/HttvfUcKnSQPzfzgvEnf91Q1QbW7buKtXsIt5bWMFeA3ndRbizLnn/xsQxLpSRkalZ0QHzBBcZuOJRSI8AMFylqdNaOXQoXp40faXokoeXvtUD8BFrsemw6sCYl1vxk9EK9hZpEIlSyeO+vjK2kOBZ8omsiMmP296V5UrCZ) -> Trouvé(e)
[Suspicious.Path] \\VXPL -- C:\Users\evrard-\AppData\Roaming\VXPL.exe (/infocmdline=jVgnyzPaKCZ1xNhitqSCaFaW1h/D8XHHKVuUaJn2vZReXremvauzX7byIQRFOPZ+A0XDAh0KtJBro2eKR56tMZgjI/hhYrdZGgqNV+lv4M+qmx4/Rftda3TSznp4YRhXAtR/HpH7T/Dn2IDK0pYAyQbrSZA86GTO+AjULjjmD5dwx8Mx9ym3LLd0XlXEhliFMXeslY8oU3SdjuE1GN5oWEMWOCiNMeYR3GXwHoBa2y8e+SLlXou7HPg6i2WI0O1vG+w+6/KvttOEuGvlWgNZ/VhqSPlwVSe7IeNMcvr07Xfqx61bgQf0RszOh9BpZTDX4mdlWvMNPNfzBAahDWXXUbdgJYLwctQ2C4WpcRqnla3c7ZKQ6e8PbRhjTKP1j3LnNkwJ46fF3g31OJewUuV6/Q+1zDHfAxX6LqcbytmJAgCxZZdZQnshCj0hj3SCju8RCsjE5IyZAcCbTYndpICT8oUZ6oTG4U8Wa9f3vOvv8OzGIQlmRnuDz+LvnJpJdbHH) -> Trouvé(e)
[Suspicious.Path] \Microsoft\Windows\Media Center\PeriodicScanRetry -- %windir%\ehome\MCUpdate.exe (-pscn 0) -> Trouvé(e)

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Non chargé [0xc000036b]) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: ST950032 5AS SCSI Disk Device +++++
--- User ---
[MBR] 535c3e64eddb2150bc7d79f4752e1c79
[BSP] b8e681ec20f3f51e484d81d4ade624cc : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x1c) [HIDDEN!] Offset (sectors): 63 | Size: 20002 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 40965752 | Size: 119235 MB
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 285159424 | Size: 337701 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Fonction incorrecte. )
0
Réponse 15 / 28
Utilisateur anonyme
 
Re

Tu passes à l'option suppression et tu me ce nouveau rapport;merci
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
RogueKiller V10.0.4.0 [Oct 29 2014] par Adlice Software
email : https://www.adlice.com/contact/
Remontées : https://forum.adlice.com/
Site web : https://www.surlatoile.org/RogueKiller/
Blog : https://www.adlice.com/

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarré en : Mode normal
Utilisateur : evrard- [Administrateur]
Mode : Suppression -- Date : 11/03/2014 10:04:42

¤¤¤ Processus : 1 ¤¤¤
[Suspicious.Path] (SVC) rcores -- C:\Windows\rcore.exe[-] -> Arrêté(e)

¤¤¤ Registre : 16 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\rcores (C:\Windows\rcore.exe) -> Non sélectionné
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\rcores (C:\Windows\rcore.exe) -> Non sélectionné
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\rcores (C:\Windows\rcore.exe) -> Non sélectionné
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy1.babygo.fr:1234 -> Non sélectionné
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy1.babygo.fr:1234 -> Non sélectionné
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Non sélectionné
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Non sélectionné
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné

¤¤¤ Tâches : 21 ¤¤¤
[Suspicious.Path] FAAOU.job -- C:\Users\evrard-\AppData\Roaming\FAAOU.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] GWNXZKH.job -- C:\Users\evrard-\AppData\Roaming\GWNXZKH.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] ISRYT.job -- C:\Users\evrard-\AppData\Roaming\ISRYT.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] KEHI.job -- C:\Users\evrard-\AppData\Roaming\KEHI.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] OZBNK.job -- C:\Users\evrard-\AppData\Roaming\OZBNK.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] PRWDPYCK.job -- C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] ROZGPG.job -- C:\Users\evrard-\AppData\Roaming\ROZGPG.exe (/infocmdline=XvmIsy408lSm2h2Xed1YrtmoPYXsgSOYM5YPmKj+1YC3abaxgOB+Cs54rq8qL4YuBpr73bQROfx4UV41rME2SiSNvM7sGa7C7PrJW+Eyxqtp4hp5HpAQISmuJ5asIvz9ZqKPDrRxoGEWUBOBrKVEebcXlM2uDZAiKQH0kxigJvvHsq9rlSRPDWWL/5f0RqgpsI1aXpSZKni1rv77XrGvLtqQBN4Q4eQm4QhXhjUlsMk48yLU8ttHguFm39S/Vrf0PLkvUY3aMWGuMXqYuVlaM9K6HppodSPxrCd85PAh41Z8kcaZPixt74nuRxBjnrtzjbrHnzvWnkauWteafd5v3hNxVojK6Z4xFJ6MHrMEyfGuCu5R7Pk37VMeq14bCkiQRRg4vnuHZAMi7g78LGw4kz1JAljX1vab+xgHn8IYdWRgEPlY0vl66R7hqfm6o3piVCXWi4r8Wy/Ez4BCMlTtSH5Jv6xw4RYBonYfws446te5QAPLHhbUo6KCfBVQLMqB) -> Supprimé(e)
[Suspicious.Path] RVOYAI.job -- C:\Users\evrard-\AppData\Roaming\RVOYAI.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] TRPH.job -- C:\Users\evrard-\AppData\Roaming\TRPH.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] VXPL.job -- C:\Users\evrard-\AppData\Roaming\VXPL.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] \\FAAOU -- C:\Users\evrard-\AppData\Roaming\FAAOU.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] \\GWNXZKH -- C:\Users\evrard-\AppData\Roaming\GWNXZKH.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\ISRYT -- C:\Users\evrard-\AppData\Roaming\ISRYT.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\KEHI -- C:\Users\evrard-\AppData\Roaming\KEHI.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\OZBNK -- C:\Users\evrard-\AppData\Roaming\OZBNK.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\PRWDPYCK -- C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\ROZGPG -- C:\Users\evrard-\AppData\Roaming\ROZGPG.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\RVOYAI -- C:\Users\evrard-\AppData\Roaming\RVOYAI.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\TRPH -- C:\Users\evrard-\AppData\Roaming\TRPH.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\VXPL -- C:\Users\evrard-\AppData\Roaming\VXPL.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \Microsoft\Windows\Media Center\PeriodicScanRetry -- %windir%\ehome\MCUpdate.exe (-pscn 0) -> Supprimé(e)

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Non chargé [0xc000036b]) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: ST950032 5AS SCSI Disk Device +++++
--- User ---
[MBR] 535c3e64eddb2150bc7d79f4752e1c79
[BSP] b8e681ec20f3f51e484d81d4ade624cc : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x1c) [HIDDEN!] Offset (sectors): 63 | Size: 20002 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 40965752 | Size: 119235 MB
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 285159424 | Size: 337701 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Fonction incorrecte. )


============================================
RKreport_SCN_11032014_100043.log
0
Réponse 16 / 28
Utilisateur anonyme
 
Re

Tu disposes de Malwaresbytes,mets le à jour et lances une analyse.
poste moi son rapport après suppression de tout ce qu'il a trouvé

@+


0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
ok merci
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
je n'arrive à copier le rapport
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
je supprime tout ?
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
et zhp fix ensuite
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
alwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 03/11/2014
Heure de l'examen: 10:43:19
Fichier journal: dddd.txt
Administrateur: Oui

Version: 2.00.3.1025
Base de données Malveillants: v2014.11.03.04
Base de données Rootkits: v2014.11.01.02
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: evrard-

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 327062
Temps écoulé: 21 min, 15 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Avertir
PUM: Activé(e)

Processus: 2
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdaterService.exe, 1940, , [86daa295413b65d111bf732ab1538f71]
PUP.Optional.Score.A, C:\Windows\rcore.exe, 1792, , [7be5ae89dd9f78be341d425d2fd539c7]

Modules: 0
(Aucun élément malicieux detecté)

Clés du Registre: 8
PUP.Optional.FastPlayer.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\FastPlayerUpdaterService, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\FastPlayer, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.1ClickMovieDownload.A, HKLM\SOFTWARE\ClickMovie1-Downloaderv10-nv, , [f46cf93eb8c41f17de0f34057b88dc24],
PUP.Optional.1ClickMovieDownload.A, HKLM\SOFTWARE\WOW6432NODE\ClickMovie1-Downloaderv10-nv, , [4b154ceb82fa999d6f7e54e5748feb15],
PUP.Optional.GoPhotoIT.A, HKLM\SOFTWARE\WOW6432NODE\TheGoPhoto.it V10-nv, , [61ffd265502c57dfa114edaccf35ea16],
PUP.Optional.Score.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\RCORES, , [7be5ae89dd9f78be341d425d2fd539c7],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [441c3007215b48eedf608a891be83ec2],

Valeurs du Registre: 1
PUP.Optional.Score.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\RCORES|ImagePath, C:\Windows\rcore.exe, , [7be5ae89dd9f78be341d425d2fd539c7]

Données du Registre: 0
(Aucun élément malicieux detecté)

Dossiers: 12
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph\1.0_0, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\_metadata, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQ-Video-Pro-2.1V02.11, , [bea258df314b2511ff554bd7c142d42c],

Fichiers: 137
PUP.Optional.HQVideo.A, C:\Users\evrard-\AppData\Roaming\FAAOU.exe, , [93cd47f0e29ad660881ced7cd134ad53],
PUP.Optional.GoPhotoIT.A, C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe, , [3030be7993e9fd39b72894176c956e92],
PUP.Optional.1ClickMovieDownload.A, C:\Users\evrard-\AppData\Roaming\ROZGPG.exe, , [d18f58df43394ee8f7532389eb16ef11],
PUP.Optional.GoPhotoIT.A, C:\Users\evrard-\AppData\Roaming\TRPH.exe, , [c69a0a2d7b01e650ac3312996a97c739],
PUP.Optional.HQVideo.A, C:\Users\evrard-\AppData\Roaming\KEHI.exe, , [f66a092e5329ad898a1a6ffa57aed030],
PUP.Optional.1ClickMovieDownload.A, C:\Users\evrard-\AppData\Roaming\VXPL.exe, , [f36de453b8c4b38329211f8ded14659b],
PUP.Optional.CrossRider.A, C:\Program Files (x86)\Reimageplus.com\reiextsetup.exe, , [8ed278bf314b75c19b4de5f220e12fd1],
PUP.Optional.MyPCBackup.A, C:\Users\evrard-\AppData\Local\Temp\CloudBackup8470.exe, , [065a3afd9ce016203be0b9232fd29d63],
PUP.Optional.MyPCBackup.A, C:\Users\evrard-\AppData\Local\Temp\CloudBackup8564.exe, , [a4bc66d13943a98dec2f5587a95853ad],
PUP.Optional.UniversalUpdater.A, C:\Users\evrard-\AppData\Local\Temp\updater_service_install.exe, , [342cb780a9d3d363212a1dacd72a48b8],
PUP.Optional.MyPCBackup.A, C:\Users\evrard-\AppData\Local\Temp\BackupSetup.exe, , [c7993007ceae6ec826f59d3f9869c040],
PUP.Optional.VOPackage.Gen, C:\Users\evrard-\AppData\Local\Temp\VOPackage.exe, , [6df353e4a9d3ec4aede1bb160cf5b14f],
PUP.Optional.InstallCore, C:\Users\evrard-\AppData\Local\Temp\ICReinstall_CR_Downloader_pour_mario-kart---double-dash!!.exe, , [8dd370c7bebe63d328f73ae610f5c937],
PUP.Optional.WebToolbar, C:\Users\evrard-\AppData\Local\Temp\D74Ftmp\boxoreinstaller.exe, , [154bd85f3d3f1c1a1f2dd4b513ef60a0],
PUP.Optional.BundleInstaller.A, C:\Users\evrard-\AppData\Local\Temp\is765589038\30E4230C_stp.EXE, , [b2ae221585f79e98721c5a9eb74d49b7],
PUP.Optional.VOPackage.Gen, C:\Users\evrard-\AppData\Local\Temp\C20Btmp\vopackage.exe, , [451bd661b4c876c0c10d5c758978ab55],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Temp\D73Btmp\setup.exe, , [84dc2c0bd8a40e285c8c9b3cf60bc040],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Setup (1).exe, , [65fbd265d5a71125d80d81da3fc13cc4],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Setup (3).exe, , [a1bf3cfb84f8df57c025302b43bd36ca],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Setup (4).exe, , [d0903205403c0b2b23c23c1faf51ff01],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Setup v2 1.exe, , [ef71cf68621a50e684611d3eac541ae6],
PUP.Optional.Bestop, C:\Users\evrard-\Downloads\FlvPlayerSetup.exe, , [99c741f6b9c3ca6cbf0e2dfd42c3748c],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Player.exe, , [550bd661ccb0280ecae18cced12fe818],
PUP.Optional.SoftPulse, C:\Users\evrard-\Downloads\Setup.exe, , [fa6652e57efe023472479bbbb050956b],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\UninstallAddons.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\icon.ico, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\dotNetFx40_Full_setup.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\fastAddon.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayer.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\fastplayer.uidnum, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdate.xml, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdaterService.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdaterService.InstallLog, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdaterService.InstallState, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\fastUpdater.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FrameworkControl.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\icon-uninstall.ico, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\jid1-tce47bzfSrBDXQ@jetpack.xpi, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\LTV2.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Newtonsoft.Json.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\PhotoLoader.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\policy.2.0.taglib-sharp.config, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\policy.2.0.taglib-sharp.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\taglib-sharp.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\uninstall.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph\1.0_0\contentscript.js, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph\1.0_0\manifest.json, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph\1.0_0\script.js, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Hindi.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Arabic.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Bulgarian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Catalan.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\ChineseS.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\ChineseT.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Czech.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Danish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Dutch.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\English.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Estonian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Finnish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\French.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\German.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Greek.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\HaitianCreole.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Hebrew.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Hungarian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Indonesian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Italian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Japanese.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Korean.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Latvian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Lithuanian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Norwegian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Polish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Portuguese.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Romanian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Russian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Slovak.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Slovenian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Spanish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Swedish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Thai.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Turkish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Ukrainian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Vietnamese.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\extaudio.png, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\extvideo.png, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\fastChecker.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\ffmpeg.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\folder.png, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\Interop.SHDocVw.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\libreria.png, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\NDde.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\Newtonsoft.Json.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\PhotoLoader.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\policy.2.0.taglib-sharp.config, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\policy.2.0.taglib-sharp.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\taglib-sharp.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\Thumbs.db, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.Score.A, C:\Windows\rcore.exe, , [7be5ae89dd9f78be341d425d2fd539c7],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleCrashHandler.exe, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleUpdate.exe, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleUpdateBroker.exe, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleUpdateHelper.msi, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleUpdateOnDemand.exe, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\goopdate.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\goopdateres_en.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\npGoogleUpdate4.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\psmachine.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\psuser.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleCrashHandler.exe, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleUpdate.exe, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleUpdateBroker.exe, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleUpdateHelper.msi, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleUpdateOnDemand.exe, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\goopdate.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\goopdateres_en.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\npGoogleUpdate4.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\psmachine.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\psuser.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleCrashHandler.exe, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleUpdate.exe, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleUpdateBroker.exe, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleUpdateHelper.msi, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleUpdateOnDemand.exe, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\goopdate.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\goopdateres_en.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\npGoogleUpdate4.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\psmachine.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\psuser.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\background.js, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\icon-128.png, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\icon-16.png, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\icon-48.png, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\manifest.json, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\_metadata\verified_contents.json, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQ-Video-Pro-2.1V02.11\eb38d677-5d5e-4d23-86a4-2961bc875f2c.dll, , [bea258df314b2511ff554bd7c142d42c],

Secteurs physiques: 0
(Aucun élément malicieux detecté)


(end)
0
Réponse 17 / 28
Utilisateur anonyme
 
Re

Tu supprimes tout.
et tu me mets ce rapport
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
Vous avez déjà posté ce message !.......cela me marque ça
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
quand j'essaye de te poster le rapport , j'ai appliqué l'action requise
0
Utilisateur anonyme
 
c'est bon il est au dessus
0
Réponse 18 / 28
Utilisateur anonyme
 
Re

Tu n'as rien supprimé,fait le et poste ce rapport
0
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
j'ai tt supprimer mais je n'ai pas de rapport
0
Réponse 19 / 28
Utilisateur anonyme
 
regarde dans l'onglet historique de malwaresbytes
0
Réponse 20 / 28
kasperchat Messages postés 276 Date d'inscription   Statut Membre Dernière intervention   2
 
ils ont étés mis en quarantaine
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
message de postmaster incessant !
wasap -
wasap -

9 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses