Sujet Précédent Sujet Suivant

J'ai chopé un virus ..help me

Fermé
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 - 2 nov. 2014 à 18:49
 Utilisateur anonyme - 3 nov. 2014 à 14:25
Bonjour,

après un téléchargement sur un site bien connu ...mon pc est vérolé...pouvez vous m'aider pour un diag merci



28 réponses

  • 1
  • 2
Réponse 1 / 28
Utilisateur anonyme
2 nov. 2014 à 18:50
bonsoir

quels sont les symptômes?
0
Réponse 2 / 28
harry1234 Messages postés 224 Date d'inscription lundi 23 décembre 2013 Statut Membre Dernière intervention 28 mai 2017 16
2 nov. 2014 à 18:51
As-tu un antivirus ?
0
Réponse 3 / 28
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 18:54
oui avast....des pubs changement sur moteur de recherches.....
0
Réponse 4 / 28
Utilisateur anonyme
2 nov. 2014 à 18:55
Re

Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Scanner] puis patiente le temps du scan.
Une fois le scan terminé clique sur le bouton [Nettoyer]
Patiente durant le nettoyage. Lis le message qui apparaît, puis clique sur Ok . Le PC va être redémarré automatiquement et le rapport s'ouvrira à la fin du redémarrage.
Poste le rapport

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt


@+
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 19:32
Code d'erreur : ERR_SSL_PROTOCOL_ERROR.
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 19:42
# AdwCleaner v3.311 - Rapport créé le 02/11/2014 à 19:39:24
# Mis à jour le 30/09/2014 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : evrard- - EVRARD--PC
# Exécuté depuis : C:\Users\evrard-\Desktop\adwcleaner_3.311.exe
# Option : Nettoyer

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****


***** [ Tâches planifiées ] *****


***** [ Raccourcis ] *****


***** [ Registre ] *****


***** [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Google Chrome v37.0.2062.120

[ Fichier : C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [18499 octets] - [06/11/2013 23:21:20]
AdwCleaner[R1].txt - [8672 octets] - [15/11/2013 02:47:39]
AdwCleaner[R2].txt - [15131 octets] - [21/09/2014 07:41:33]
AdwCleaner[R3].txt - [51083 octets] - [02/11/2014 19:04:15]
AdwCleaner[R4].txt - [1278 octets] - [02/11/2014 19:37:27]
AdwCleaner[S0].txt - [13747 octets] - [06/11/2013 23:21:59]
AdwCleaner[S1].txt - [6368 octets] - [15/11/2013 02:48:19]
AdwCleaner[S2].txt - [48828 octets] - [02/11/2014 19:06:06]
AdwCleaner[S3].txt - [1200 octets] - [02/11/2014 19:39:24]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1260 octets] ##########
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 28
harry1234 Messages postés 224 Date d'inscription lundi 23 décembre 2013 Statut Membre Dernière intervention 28 mai 2017 16
2 nov. 2014 à 18:56
As tu fais une analyse ?
0
Réponse 6 / 28
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 18:57
je suis en train de la faire ....
0
harry1234 Messages postés 224 Date d'inscription lundi 23 décembre 2013 Statut Membre Dernière intervention 28 mai 2017 16
Modifié par harry1234 le 2/11/2014 à 19:00
Une analyse (surtout les complètes) détecte les virus. Lors des résultats trouvés, met les virus en quarantaine.
Il faut aussi mettre à jour son antivirus.
0
Réponse 7 / 28
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 18:59
les pub continue à arriver .....pfff pendant l'analyse
0
harry1234 Messages postés 224 Date d'inscription lundi 23 décembre 2013 Statut Membre Dernière intervention 28 mai 2017 16
2 nov. 2014 à 19:02
Suis le conseil de Guillaume5188, Adw Cleaner est utile !
0
harry1234 Messages postés 224 Date d'inscription lundi 23 décembre 2013 Statut Membre Dernière intervention 28 mai 2017 16
2 nov. 2014 à 19:05
Aussi : Adwcleaner ne remplace pas l'antivirus !
Il faut donc garder Avast
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 19:29
il, me faut le lien adw
please..merci
0
Réponse 8 / 28
Utilisateur anonyme
2 nov. 2014 à 19:03
Re

je peux avoir ce rapport Adwcleaner;merci
0
Réponse 9 / 28
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 19:05
je fais un scanne avec adw cc 3.3
0
Utilisateur anonyme
2 nov. 2014 à 19:07
Oui;si tu l'as téléchargé sur le lien fourni
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 19:28
oui..
0
Réponse 10 / 28
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 19:28
redonne moi le lien.....s'il te plait je l'ai eu sur un autre post
0
Réponse 11 / 28
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 19:30
c'est bon merci je post rapport ensuite
0
Réponse 12 / 28
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
2 nov. 2014 à 19:31
Erreur de connexion SSL


dés que je clic sur telecharger adw
0
Réponse 13 / 28
Utilisateur anonyme
2 nov. 2014 à 20:19
Re

Pour de plus amples informations, fait ceci stp

Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :

https://nicolascoolman.eu

Ou

https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/



Une fois le téléchargement achevé,

Double-clique sur l'icône pour lancer le programme. Sous Vista ; Seven ou Windows 8 clic droit « exécuter en tant que administrateur »


Dans la fenêtre ZHPDiag qui vient de s'ouvrir, clique sur "Configurer"

Clique sur la loupe en bas à gauche avec le signe plus pour lancer l'analyse.


Laisse l'outil travailler, il peut être assez long.

Un rapport s'ouvre. Ce rapport se trouve également sur ton bureau

Pour transmettre le rapport clique sur ce lien:
http://pjjoint.malekal.com/

Si problème utilise un des suivants

https://forums-fec.be/upload
https://www.cjoint.com/


Regarde sur le bureau

Sélectionne le fichier ZHPDiag.txt.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.com/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.

Merci

@+

0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 09:10
https://pjjoint.malekal.com/files.php?id=ZHPDiag_20141103_i125w15k8e13


le lien pour rapport ..merci
0
Réponse 14 / 28
Utilisateur anonyme
3 nov. 2014 à 09:37
Bonjour

[*] Télécharger sur le bureau RogueKiller (by tigzy) (choisir entre la version 32 et 64 bits selon ton Windows, si tu ne sais pas, demande moi!)
[*] Quitter tous les programmes
[*] Lancer RogueKiller.exe.
[*] Attendre que le Prescan ait fini ...
[*] Cliquer sur Scan. Cliquer sur Rapport et copier coller le contenu du rapport

@+
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 09:54
quand je suis le lien je clique sur quoi à telecharger
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 09:55
j'ai trouvé.......
0
Utilisateur anonyme
3 nov. 2014 à 09:56
Roguekiller X64
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 10:01
RogueKiller V10.0.4.0 [Oct 29 2014] par Adlice Software
email : https://www.adlice.com/contact/
Remontées : https://forum.adlice.com/
Site web : https://www.surlatoile.org/RogueKiller/
Blog : https://www.adlice.com/

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarré en : Mode normal
Utilisateur : evrard- [Administrateur]
Mode : Scan -- Date : 11/03/2014 10:00:43

¤¤¤ Processus : 1 ¤¤¤
[Suspicious.Path] (SVC) rcores -- C:\Windows\rcore.exe[-] -> Arrêté(e)

¤¤¤ Registre : 16 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\rcores (C:\Windows\rcore.exe) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\rcores (C:\Windows\rcore.exe) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\rcores (C:\Windows\rcore.exe) -> Trouvé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy1.babygo.fr:1234 -> Trouvé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy1.babygo.fr:1234 -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)

¤¤¤ Tâches : 21 ¤¤¤
[Suspicious.Path] FAAOU.job -- C:\Users\evrard-\AppData\Roaming\FAAOU.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] GWNXZKH.job -- C:\Users\evrard-\AppData\Roaming\GWNXZKH.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] ISRYT.job -- C:\Users\evrard-\AppData\Roaming\ISRYT.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] KEHI.job -- C:\Users\evrard-\AppData\Roaming\KEHI.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] OZBNK.job -- C:\Users\evrard-\AppData\Roaming\OZBNK.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] PRWDPYCK.job -- C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] ROZGPG.job -- C:\Users\evrard-\AppData\Roaming\ROZGPG.exe (/infocmdline=XvmIsy408lSm2h2Xed1YrtmoPYXsgSOYM5YPmKj+1YC3abaxgOB+Cs54rq8qL4YuBpr73bQROfx4UV41rME2SiSNvM7sGa7C7PrJW+Eyxqtp4hp5HpAQISmuJ5asIvz9ZqKPDrRxoGEWUBOBrKVEebcXlM2uDZAiKQH0kxigJvvHsq9rlSRPDWWL/5f0RqgpsI1aXpSZKni1rv77XrGvLtqQBN4Q4eQm4QhXhjUlsMk48yLU8ttHguFm39S/Vrf0PLkvUY3aMWGuMXqYuVlaM9K6HppodSPxrCd85PAh41Z8kcaZPixt74nuRxBjnrtzjbrHnzvWnkauWteafd5v3hNxVojK6Z4xFJ6MHrMEyfGuCu5R7Pk37VMeq14bCkiQRRg4vnuHZAMi7g78LGw4kz1JAljX1vab+xgHn8IYdWRgEPlY0vl66R7hqfm6o3piVCXWi4r8Wy/Ez4BCMlTtSH5Jv6xw4RYBonYfws446te5QAPLHhbUo6KCfBVQLMqB) -> Trouvé(e)
[Suspicious.Path] RVOYAI.job -- C:\Users\evrard-\AppData\Roaming\RVOYAI.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] TRPH.job -- C:\Users\evrard-\AppData\Roaming\TRPH.exe (/infocmdline=U7tAgUg3dc1yK1Zxw0LsnMYimfFIXAKu86fRx/SbWKNES+JqsxtsXjmOJyFjXmJUHqKLcsmu56UjmkJPIg39UKiSTC8cmXpjyQwy/XBrVY12VsFISP36Sw5CScwFBO3UjUhhqRhPicF8+ib9MUhD9F18R0l+jVlcs5Ui2Yoj9Z5wx8Mx9ym3LLd0XlXEhliFMXeslY8oU3SdjuE1GN5oWEMWOCiNMeYR3GXwHoBa2y8e+SLlXou7HPg6i2WI0O1vG+w+6/KvttOEuGvlWgNZ/VhqSPlwVSe7IeNMcvr07Xfqx61bgQf0RszOh9BpZTDX4mdlWvMNPNfzBAahDWXXUTJH/HttvfUcKnSQPzfzgvEnf91Q1QbW7buKtXsIt5bWMFeA3ndRbizLnn/xsQxLpSRkalZ0QHzBBcZuOJRSI8AMFylqdNaOXQoXp40faXokoeXvtUD8BFrsemw6sCYl1vxk9EK9hZpEIlSyeO+vjK2kOBZ8omsiMmP296V5UrCZ) -> Trouvé(e)
[Suspicious.Path] VXPL.job -- C:\Users\evrard-\AppData\Roaming\VXPL.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\FAAOU -- C:\Users\evrard-\AppData\Roaming\FAAOU.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\GWNXZKH -- C:\Users\evrard-\AppData\Roaming\GWNXZKH.exe (/infocmdline=xn+eoTrS6g4yzoyypTIAOMrF0H+oH+XaKdk8rMSYFQdbqWeVh9QfuMQcN8aglCXsCw3PGtAh0JZWTWcJkgR7ZexFI6JMAA7t3xdevMqnpTCS2B9Q7C+YwpPikoJabJPlmL8xr1vXtzwDhlmvbUJ635+mFjG+0M5Jts8L2Viq3c2HqOpEfo1uTFx4fW/z3zXU7EL8YmEFOu2vBwkVLs+/QOf8svZIHa3lhk1mbIO+LYLiLsrEZTBw3EylvGYhFkViHpBMRv34FxeqJjWnT0A6g9hf9cDCOk08vOK8NwSKhNOj2xrbOBJ2/yZxuiBD6Yvj2MygW0uqew21zLmJk26A0o+xtMNIVETgGUXqJPLVafzPKR1qBIq1QItKz558d7HY0ANJOuwDDGwCKM7ib+jZs1nHxxeS0YUdL0GNWbEpYWKZskAktUlvKaK+7xMcD6xz+4oNBbTw6X86yCv6xdGMeN8tGr75xkSxX4q1WQywIvPeZzdTCRV64IimzRhXfA+mqA5POcZgiGcz88A0D/owDv2EW28VYmjIYUpcNAfwwBd8A7nOqSIXtDw3Vqe0JeZHQr6Yp/Ves+OqMM8587Ryv2iCkwpevi6rrr9x9A4crcJfU6S+2xTNAyYBSdpWy9qW1vh9vSUNyhCrdLSjq0PfHww9PoW/hIZdMw4hjfXxM70=) -> Trouvé(e)
[Suspicious.Path] \\ISRYT -- C:\Users\evrard-\AppData\Roaming\ISRYT.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\KEHI -- C:\Users\evrard-\AppData\Roaming\KEHI.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\OZBNK -- C:\Users\evrard-\AppData\Roaming\OZBNK.exe (/infocmdline=IfblpTAjAX2JJ+HVG/EvHOe1E9/vFQRe44RvaGMNQ8mN6FFazTfZbpU5KOy5dgPAxiIXRDSD1qUiXh1syDFmpWh28czPb938vqW4Zg3ZtfZ90K7rEVKsFX6YbY2JO/PeyQn/91X3TscEsyfTOYTuWhAXy/eo+kR/5R6eoQTlegBvkyqA/9v/IXYBjrLqhCI26CtmAhfhcUcyrDic8ibZhIRrLkPq8gvpXw3sOlNZYmI24PpDkGwuAfgy1FsQBRsHMwuyn2MHxJSgLt8FGZRI6HksymxmJ0ocGuGD4LazJl26S9mXER8k22iVbuzrMLEQCKVf94fkbdXSOXbfDV965Wny5gCA3LluAsvCy9CutmY2wFSaYT3iN0ZMdd5PSjr/4NWGzGtQjEIBHQoLpXa894+wo0Ht/1dWa5m9o5IOWaC13j31PbB2tS6fHwaAwhwMxnffMbmSHSsgCw4DrHVLCSqdUrhgc5XcNl5esEBpaHdEEOyQ2Mkh42M6k+q8yPnc) -> Trouvé(e)
[Suspicious.Path] \\PRWDPYCK -- C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe (/infocmdline=Hd3mLmrA79ysZ0umRHfRZ5q14luJHFCwuqBT1rLQ7o/GWJSTFyq5SVHoFlzDAbSxoawOQMnDCLQYNbRIfZZYfDmAN6gwQtvOVWdA/PJZVCPOMRmPwvcg1zGWajt1kxyYFI3niREaSMViQNwQeRZvRhP7avzQdC5RcVzK/+wTTnWHGgfUheutaOyHpzyz5r8Ti5LTpi6O+URDNNAgZ9b0smbiXPadE36QKv2kF3Nz01uxa0HeB6TI1puxQps8hVn7Tn/tJ+o4Fl8+rbwpF727gA+/35IIc9kwrzDZgm/bl5pCroWDXaVHFAAaMtJs8zNgairB9fiQLERAIbp731mPy5YDNjdQKQ7kp5K/TbxhGEZUFD5Cog4j76cNHm2oaD247hlexeE6DvokKQNII8gsUQRQ0O/LhXmvy5XGeyuV/tb/Xrdm0yNzmCGVd4w1TaLFzEOc8HXuuciYF1dKQpa63bA77N1+d2EHbNwmQB/Sa0++rY7AuOn7vKJ7FJQF+VEFsZkLutK+wRg09MBTdV6esMVJAnVrHQ18v7KwLAnjHLQ6qygpZwcc4FRKmt288xLM80NNLghoNjL7A5LleUPNwEK91s0rHvKmd83SdnKb64/+DklNpVBvfiP1S7ufH9ZR3T06y0c1dfgiSyZsKto8dEXbr5D/fQu+D2xz3adWKyg=) -> Trouvé(e)
[Suspicious.Path] \\ROZGPG -- C:\Users\evrard-\AppData\Roaming\ROZGPG.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\RVOYAI -- C:\Users\evrard-\AppData\Roaming\RVOYAI.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\TRPH -- C:\Users\evrard-\AppData\Roaming\TRPH.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \\VXPL -- C:\Users\evrard-\AppData\Roaming\VXPL.exe (/infocmdline=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) -> Trouvé(e)
[Suspicious.Path] \Microsoft\Windows\Media Center\PeriodicScanRetry -- %windir%\ehome\MCUpdate.exe (-pscn 0) -> Trouvé(e)

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Non chargé [0xc000036b]) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: ST950032 5AS SCSI Disk Device +++++
--- User ---
[MBR] 535c3e64eddb2150bc7d79f4752e1c79
[BSP] b8e681ec20f3f51e484d81d4ade624cc : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x1c) [HIDDEN!] Offset (sectors): 63 | Size: 20002 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 40965752 | Size: 119235 MB
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 285159424 | Size: 337701 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Fonction incorrecte. )
0
Réponse 15 / 28
Utilisateur anonyme
3 nov. 2014 à 10:04
Re

Tu passes à l'option suppression et tu me ce nouveau rapport;merci
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 10:05
RogueKiller V10.0.4.0 [Oct 29 2014] par Adlice Software
email : https://www.adlice.com/contact/
Remontées : https://forum.adlice.com/
Site web : https://www.surlatoile.org/RogueKiller/
Blog : https://www.adlice.com/

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarré en : Mode normal
Utilisateur : evrard- [Administrateur]
Mode : Suppression -- Date : 11/03/2014 10:04:42

¤¤¤ Processus : 1 ¤¤¤
[Suspicious.Path] (SVC) rcores -- C:\Windows\rcore.exe[-] -> Arrêté(e)

¤¤¤ Registre : 16 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\rcores (C:\Windows\rcore.exe) -> Non sélectionné
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\rcores (C:\Windows\rcore.exe) -> Non sélectionné
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\rcores (C:\Windows\rcore.exe) -> Non sélectionné
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy1.babygo.fr:1234 -> Non sélectionné
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : proxy1.babygo.fr:1234 -> Non sélectionné
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Non sélectionné
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Non sélectionné
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{0A394E0F-5801-4DBA-8F89-6C949E953A6C} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-264416718-1721051836-252248340-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné

¤¤¤ Tâches : 21 ¤¤¤
[Suspicious.Path] FAAOU.job -- C:\Users\evrard-\AppData\Roaming\FAAOU.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] GWNXZKH.job -- C:\Users\evrard-\AppData\Roaming\GWNXZKH.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] ISRYT.job -- C:\Users\evrard-\AppData\Roaming\ISRYT.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] KEHI.job -- C:\Users\evrard-\AppData\Roaming\KEHI.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] OZBNK.job -- C:\Users\evrard-\AppData\Roaming\OZBNK.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] PRWDPYCK.job -- C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] ROZGPG.job -- C:\Users\evrard-\AppData\Roaming\ROZGPG.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] RVOYAI.job -- C:\Users\evrard-\AppData\Roaming\RVOYAI.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] TRPH.job -- C:\Users\evrard-\AppData\Roaming\TRPH.exe (/infocmdline=U7tAgUg3dc1yK1Zxw0LsnMYimfFIXAKu86fRx/SbWKNES+JqsxtsXjmOJyFjXmJUHqKLcsmu56UjmkJPIg39UKiSTC8cmXpjyQwy/XBrVY12VsFISP36Sw5CScwFBO3UjUhhqRhPicF8+ib9MUhD9F18R0l+jVlcs5Ui2Yoj9Z5wx8Mx9ym3LLd0XlXEhliFMXeslY8oU3SdjuE1GN5oWEMWOCiNMeYR3GXwHoBa2y8e+SLlXou7HPg6i2WI0O1vG+w+6/KvttOEuGvlWgNZ/VhqSPlwVSe7IeNMcvr07Xfqx61bgQf0RszOh9BpZTDX4mdlWvMNPNfzBAahDWXXUTJH/HttvfUcKnSQPzfzgvEnf91Q1QbW7buKtXsIt5bWMFeA3ndRbizLnn/xsQxLpSRkalZ0QHzBBcZuOJRSI8AMFylqdNaOXQoXp40faXokoeXvtUD8BFrsemw6sCYl1vxk9EK9hZpEIlSyeO+vjK2kOBZ8omsiMmP296V5UrCZ) -> Supprimé(e)
[Suspicious.Path] VXPL.job -- C:\Users\evrard-\AppData\Roaming\VXPL.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] \\FAAOU -- C:\Users\evrard-\AppData\Roaming\FAAOU.exe (/infocmdline=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) -> Supprimé(e)
[Suspicious.Path] \\GWNXZKH -- C:\Users\evrard-\AppData\Roaming\GWNXZKH.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\ISRYT -- C:\Users\evrard-\AppData\Roaming\ISRYT.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\KEHI -- C:\Users\evrard-\AppData\Roaming\KEHI.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\OZBNK -- C:\Users\evrard-\AppData\Roaming\OZBNK.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\PRWDPYCK -- C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\ROZGPG -- C:\Users\evrard-\AppData\Roaming\ROZGPG.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \\RVOYAI -- C:\Users\evrard-\AppData\Roaming\RVOYAI.exe (/infocmdline=cAJKPeG5ZQwtT3dETPdQDdXySgY5yPR+vrt9oLyk5flLCXiilQgzvqC6/h1U4zED/i+stbbcPKWCGbJIagr94qisDMa1ihQT1wGwX1OseGn8uyvi/VFYJmnkutRy3nHx/LxOe3pTv7oLBHkxb4kI0v2Koa/QcS3B6tRxQ1cuTGq1FSfxrWAVwU8ryEPXTGnjkjAZBjGE6FFO6e2EZaasZqj/yqolmaeY30k18NL1EY+G+n2FOv8iy06OwPSLslE7bPvzu9fQq2zYXYbc2p9weQNRWapq1kiVV6gVED/GHu+ftPHeMz/CsLtt+8nDBNzI1nS7oW1u1pYRz9M5tqrAfZbhtJ2iF6cGXWw1En+m1Xww2zt7S9McU/I87538UfbwoD5Zn6NjBgnZLFhFKZWRhXqgZeIgHtE+m0EGwg5w4ThFgGhu/VaIVlkl/gM53TidjIeQg7mvmZzKuRgGJCHTgBuf7+IQD41icNm2Us2Y0ntxqdQhRYOEK2K8YGkk+shj) -> ERROR [0]
[Suspicious.Path] \\TRPH -- C:\Users\evrard-\AppData\Roaming\TRPH.exe (/infocmdline=U7tAgUg3dc1yK1Zxw0LsnMYimfFIXAKu86fRx/SbWKNES+JqsxtsXjmOJyFjXmJUHqKLcsmu56UjmkJPIg39UKiSTC8cmXpjyQwy/XBrVY12VsFISP36Sw5CScwFBO3UjUhhqRhPicF8+ib9MUhD9F18R0l+jVlcs5Ui2Yoj9Z5wx8Mx9ym3LLd0XlXEhliFMXeslY8oU3SdjuE1GN5oWEMWOCiNMeYR3GXwHoBa2y8e+SLlXou7HPg6i2WI0O1vG+w+6/KvttOEuGvlWgNZ/VhqSPlwVSe7IeNMcvr07Xfqx61bgQf0RszOh9BpZTDX4mdlWvMNPNfzBAahDWXXUTJH/HttvfUcKnSQPzfzgvEnf91Q1QbW7buKtXsIt5bWMFeA3ndRbizLnn/xsQxLpSRkalZ0QHzBBcZuOJRSI8AMFylqdNaOXQoXp40faXokoeXvtUD8BFrsemw6sCYl1vxk9EK9hZpEIlSyeO+vjK2kOBZ8omsiMmP296V5UrCZ) -> ERROR [0]
[Suspicious.Path] \\VXPL -- C:\Users\evrard-\AppData\Roaming\VXPL.exe (/infocmdline=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) -> ERROR [0]
[Suspicious.Path] \Microsoft\Windows\Media Center\PeriodicScanRetry -- %windir%\ehome\MCUpdate.exe (-pscn 0) -> Supprimé(e)

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Non chargé [0xc000036b]) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: ST950032 5AS SCSI Disk Device +++++
--- User ---
[MBR] 535c3e64eddb2150bc7d79f4752e1c79
[BSP] b8e681ec20f3f51e484d81d4ade624cc : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x1c) [HIDDEN!] Offset (sectors): 63 | Size: 20002 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 40965752 | Size: 119235 MB
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 285159424 | Size: 337701 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Fonction incorrecte. )


============================================
RKreport_SCN_11032014_100043.log
0
Réponse 16 / 28
Utilisateur anonyme
3 nov. 2014 à 10:10
Re

Tu disposes de Malwaresbytes,mets le à jour et lances une analyse.
poste moi son rapport après suppression de tout ce qu'il a trouvé

@+


0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 10:54
ok merci
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 11:09
je n'arrive à copier le rapport
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 11:09
je supprime tout ?
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 11:09
et zhp fix ensuite
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 11:11
alwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 03/11/2014
Heure de l'examen: 10:43:19
Fichier journal: dddd.txt
Administrateur: Oui

Version: 2.00.3.1025
Base de données Malveillants: v2014.11.03.04
Base de données Rootkits: v2014.11.01.02
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: evrard-

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 327062
Temps écoulé: 21 min, 15 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Avertir
PUM: Activé(e)

Processus: 2
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdaterService.exe, 1940, , [86daa295413b65d111bf732ab1538f71]
PUP.Optional.Score.A, C:\Windows\rcore.exe, 1792, , [7be5ae89dd9f78be341d425d2fd539c7]

Modules: 0
(Aucun élément malicieux detecté)

Clés du Registre: 8
PUP.Optional.FastPlayer.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\FastPlayerUpdaterService, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\FastPlayer, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.1ClickMovieDownload.A, HKLM\SOFTWARE\ClickMovie1-Downloaderv10-nv, , [f46cf93eb8c41f17de0f34057b88dc24],
PUP.Optional.1ClickMovieDownload.A, HKLM\SOFTWARE\WOW6432NODE\ClickMovie1-Downloaderv10-nv, , [4b154ceb82fa999d6f7e54e5748feb15],
PUP.Optional.GoPhotoIT.A, HKLM\SOFTWARE\WOW6432NODE\TheGoPhoto.it V10-nv, , [61ffd265502c57dfa114edaccf35ea16],
PUP.Optional.Score.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\RCORES, , [7be5ae89dd9f78be341d425d2fd539c7],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [441c3007215b48eedf608a891be83ec2],

Valeurs du Registre: 1
PUP.Optional.Score.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\RCORES|ImagePath, C:\Windows\rcore.exe, , [7be5ae89dd9f78be341d425d2fd539c7]

Données du Registre: 0
(Aucun élément malicieux detecté)

Dossiers: 12
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph\1.0_0, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\_metadata, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQ-Video-Pro-2.1V02.11, , [bea258df314b2511ff554bd7c142d42c],

Fichiers: 137
PUP.Optional.HQVideo.A, C:\Users\evrard-\AppData\Roaming\FAAOU.exe, , [93cd47f0e29ad660881ced7cd134ad53],
PUP.Optional.GoPhotoIT.A, C:\Users\evrard-\AppData\Roaming\PRWDPYCK.exe, , [3030be7993e9fd39b72894176c956e92],
PUP.Optional.1ClickMovieDownload.A, C:\Users\evrard-\AppData\Roaming\ROZGPG.exe, , [d18f58df43394ee8f7532389eb16ef11],
PUP.Optional.GoPhotoIT.A, C:\Users\evrard-\AppData\Roaming\TRPH.exe, , [c69a0a2d7b01e650ac3312996a97c739],
PUP.Optional.HQVideo.A, C:\Users\evrard-\AppData\Roaming\KEHI.exe, , [f66a092e5329ad898a1a6ffa57aed030],
PUP.Optional.1ClickMovieDownload.A, C:\Users\evrard-\AppData\Roaming\VXPL.exe, , [f36de453b8c4b38329211f8ded14659b],
PUP.Optional.CrossRider.A, C:\Program Files (x86)\Reimageplus.com\reiextsetup.exe, , [8ed278bf314b75c19b4de5f220e12fd1],
PUP.Optional.MyPCBackup.A, C:\Users\evrard-\AppData\Local\Temp\CloudBackup8470.exe, , [065a3afd9ce016203be0b9232fd29d63],
PUP.Optional.MyPCBackup.A, C:\Users\evrard-\AppData\Local\Temp\CloudBackup8564.exe, , [a4bc66d13943a98dec2f5587a95853ad],
PUP.Optional.UniversalUpdater.A, C:\Users\evrard-\AppData\Local\Temp\updater_service_install.exe, , [342cb780a9d3d363212a1dacd72a48b8],
PUP.Optional.MyPCBackup.A, C:\Users\evrard-\AppData\Local\Temp\BackupSetup.exe, , [c7993007ceae6ec826f59d3f9869c040],
PUP.Optional.VOPackage.Gen, C:\Users\evrard-\AppData\Local\Temp\VOPackage.exe, , [6df353e4a9d3ec4aede1bb160cf5b14f],
PUP.Optional.InstallCore, C:\Users\evrard-\AppData\Local\Temp\ICReinstall_CR_Downloader_pour_mario-kart---double-dash!!.exe, , [8dd370c7bebe63d328f73ae610f5c937],
PUP.Optional.WebToolbar, C:\Users\evrard-\AppData\Local\Temp\D74Ftmp\boxoreinstaller.exe, , [154bd85f3d3f1c1a1f2dd4b513ef60a0],
PUP.Optional.BundleInstaller.A, C:\Users\evrard-\AppData\Local\Temp\is765589038\30E4230C_stp.EXE, , [b2ae221585f79e98721c5a9eb74d49b7],
PUP.Optional.VOPackage.Gen, C:\Users\evrard-\AppData\Local\Temp\C20Btmp\vopackage.exe, , [451bd661b4c876c0c10d5c758978ab55],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Temp\D73Btmp\setup.exe, , [84dc2c0bd8a40e285c8c9b3cf60bc040],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Setup (1).exe, , [65fbd265d5a71125d80d81da3fc13cc4],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Setup (3).exe, , [a1bf3cfb84f8df57c025302b43bd36ca],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Setup (4).exe, , [d0903205403c0b2b23c23c1faf51ff01],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Setup v2 1.exe, , [ef71cf68621a50e684611d3eac541ae6],
PUP.Optional.Bestop, C:\Users\evrard-\Downloads\FlvPlayerSetup.exe, , [99c741f6b9c3ca6cbf0e2dfd42c3748c],
PUP.Optional.DomaIQ, C:\Users\evrard-\Downloads\Player.exe, , [550bd661ccb0280ecae18cced12fe818],
PUP.Optional.SoftPulse, C:\Users\evrard-\Downloads\Setup.exe, , [fa6652e57efe023472479bbbb050956b],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\UninstallAddons.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\icon.ico, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\dotNetFx40_Full_setup.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\fastAddon.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayer.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\fastplayer.uidnum, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdate.xml, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdaterService.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdaterService.InstallLog, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FastPlayerUpdaterService.InstallState, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\fastUpdater.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\FrameworkControl.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\icon-uninstall.ico, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\jid1-tce47bzfSrBDXQ@jetpack.xpi, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\LTV2.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Newtonsoft.Json.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\PhotoLoader.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\policy.2.0.taglib-sharp.config, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\policy.2.0.taglib-sharp.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\taglib-sharp.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\uninstall.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph\1.0_0\contentscript.js, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph\1.0_0\manifest.json, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\flaelojgnhjgiilnmignlkamlcncclph\1.0_0\script.js, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Hindi.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Arabic.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Bulgarian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Catalan.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\ChineseS.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\ChineseT.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Czech.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Danish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Dutch.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\English.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Estonian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Finnish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\French.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\German.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Greek.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\HaitianCreole.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Hebrew.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Hungarian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Indonesian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Italian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Japanese.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Korean.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Latvian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Lithuanian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Norwegian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Polish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Portuguese.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Romanian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Russian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Slovak.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Slovenian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Spanish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Swedish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Thai.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Turkish.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Ukrainian.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\Languages\Vietnamese.ini, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\extaudio.png, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\extvideo.png, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\fastChecker.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\ffmpeg.exe, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\folder.png, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\Interop.SHDocVw.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\libreria.png, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\NDde.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\Newtonsoft.Json.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\PhotoLoader.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\policy.2.0.taglib-sharp.config, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\policy.2.0.taglib-sharp.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\taglib-sharp.dll, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.FastPlayer.A, C:\Program Files (x86)\FastPlayer\references\Thumbs.db, , [86daa295413b65d111bf732ab1538f71],
PUP.Optional.Score.A, C:\Windows\rcore.exe, , [7be5ae89dd9f78be341d425d2fd539c7],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleCrashHandler.exe, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleUpdate.exe, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleUpdateBroker.exe, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleUpdateHelper.msi, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\GoogleUpdateOnDemand.exe, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\goopdate.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\goopdateres_en.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\npGoogleUpdate4.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\psmachine.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.103307\psuser.dll, , [441c3007215b48eedf608a891be83ec2],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleCrashHandler.exe, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleUpdate.exe, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleUpdateBroker.exe, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleUpdateHelper.msi, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\GoogleUpdateOnDemand.exe, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\goopdate.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\goopdateres_en.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\npGoogleUpdate4.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\psmachine.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.279869\psuser.dll, , [4b154ceb3448cd695ee10b0835ce41bf],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleCrashHandler.exe, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleUpdate.exe, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleUpdateBroker.exe, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleUpdateHelper.msi, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\GoogleUpdateOnDemand.exe, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\goopdate.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\goopdateres_en.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\npGoogleUpdate4.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\psmachine.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.GlobalUpdate.A, C:\Users\evrard-\AppData\Local\Temp\comh.384485\psuser.dll, , [c79988af53290c2ab08f3fd459aa10f0],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\background.js, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\icon-128.png, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\icon-16.png, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\icon-48.png, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\manifest.json, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Users\evrard-\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimopelmdneikoknbgpopffpbmlhgpa\0.1_0\_metadata\verified_contents.json, , [8ad6ce696b11cf672c13839ec73c08f8],
PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQ-Video-Pro-2.1V02.11\eb38d677-5d5e-4d23-86a4-2961bc875f2c.dll, , [bea258df314b2511ff554bd7c142d42c],

Secteurs physiques: 0
(Aucun élément malicieux detecté)


(end)
0
Réponse 17 / 28
Utilisateur anonyme
3 nov. 2014 à 11:12
Re

Tu supprimes tout.
et tu me mets ce rapport
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 11:18
Vous avez déjà posté ce message !.......cela me marque ça
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 11:19
quand j'essaye de te poster le rapport , j'ai appliqué l'action requise
0
Utilisateur anonyme
3 nov. 2014 à 11:19
c'est bon il est au dessus
0
Réponse 18 / 28
Utilisateur anonyme
3 nov. 2014 à 11:20
Re

Tu n'as rien supprimé,fait le et poste ce rapport
0
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 11:40
j'ai tt supprimer mais je n'ai pas de rapport
0
Réponse 19 / 28
Utilisateur anonyme
3 nov. 2014 à 11:46
regarde dans l'onglet historique de malwaresbytes
0
Réponse 20 / 28
kasperchat Messages postés 272 Date d'inscription dimanche 16 novembre 2008 Statut Membre Dernière intervention 5 avril 2022 2
3 nov. 2014 à 11:51
ils ont étés mis en quarantaine
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses