bonjour j'ai un trés grand problèmes de pub quand je commence a utilise google chrome et mozilla c'est la meme chose il y des onglet qui s'ouvre tous seul plein de pub bien sur je utilise malwarebytes mais sans résulta merci de m'aidé :)

Des pubs par tous [Résolu]

Réponse 1 / 5

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 658
13 avril 2015 à 13:59

Salut,

Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :

Commence par ceci :

Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= ( d'Xplode )
Télécharge le sur ton bureau ou dossier de téléchargement.
Lance AdwCleaner, clique sur [Scanner].
L'analyse peux durer plusieurs minutes, patiente.
Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer]

Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

puis :

Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
(et bien prendre le temps de lire afin d'appliquer correctement - tout y est expliqué).
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :

FRST.txt
Shortcut.txt
Additionnal.txt

Envoie, comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et en retour donne les trois liens pjjoint qui mènent à ses rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.

ahmedjsk Messages postés 99 Date d'inscription vendredi 14 février 2014 Statut Membre Dernière intervention 10 mars 2018 3
13 avril 2015 à 21:44

# AdwCleaner v4.201 - Logfile created 13/04/2015 at 21:43:11
# Updated 08/04/2015 by Xplode
# Database : 2015-04-08.1 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Utilisateur - 5D79DCF8D6C5400
# Running from : C:\Documents and Settings\Utilisateur\Bureau\adwcleaner_4.201.exe
# Option : Cleaning

- - - - [ Services ] *****

[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
[#] Service Deleted : SPBIUpd
Service Deleted : SPBIUpdd
[#] Service Deleted : dcb6c846

- - - - [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\ShopperPro
Folder Deleted : C:\Documents and Settings\All Users\Application Data\a0f754b800002dc9
Folder Deleted : C:\Program Files\cacaoweb
Folder Deleted : C:\Program Files\globalUpdate
Folder Deleted : C:\Program Files\Sense
Folder Deleted : C:\Program Files\ShopperPro
Folder Deleted : C:\Program Files\SavePass 1.1
Folder Deleted : C:\Program Files\Ge-Force
Folder Deleted : C:\Program Files\Search Plus
Folder Deleted : C:\Program Files\bestadblocker
Folder Deleted : C:\Program Files\SalePlus
Folder Deleted : C:\Program Files\SalePlUss
Folder Deleted : C:\DOCUME~1\UTILIS~1\LOCALS~1\Temp\SourceApp
Folder Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\globalUpdate
Folder Deleted : C:\Documents and Settings\Utilisateur\Application Data\cacaoweb
Folder Deleted : C:\Documents and Settings\Utilisateur\Application Data\Mozilla\Firefox\Profiles\eWBy6P0Q.default\Extensions\cacaoweb@cacaoweb.org
[!] Folder Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh
[!] Folder Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cdpohbejnbclggljmoijjcpdhbaaijfm
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_akaelkiagnbfcccfnmbimdbplecgbikh_0.localstorage
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_akaelkiagnbfcccfnmbimdbplecgbikh_0.localstorage-journal
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\databases\chrome-extension_akaelkiagnbfcccfnmbimdbplecgbikh_0
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\akaelkiagnbfcccfnmbimdbplecgbikh
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cdpohbejnbclggljmoijjcpdhbaaijfm_0.localstorage
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cdpohbejnbclggljmoijjcpdhbaaijfm_0.localstorage-journal
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\cdpohbejnbclggljmoijjcpdhbaaijfm
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lchgpdbcbebecigcoclaoebchenjbgak_0.localstorage
File Deleted : C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Extension Settings\lchgpdbcbebecigcoclaoebchenjbgak
File Deleted : C:\Documents and Settings\Utilisateur\Application Data\Mozilla\Firefox\Profiles\eWBy6P0Q.default\user.js

- - - - [ Scheduled tasks ] *****

Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : ShopperPro
Task Deleted : ShopperProJSUpd
Task Deleted : 31cc1a5e-f24c-42fd-b500-8f8e66c19fbb-1-6
Task Deleted : 31cc1a5e-f24c-42fd-b500-8f8e66c19fbb-1-7
Task Deleted : 31cc1a5e-f24c-42fd-b500-8f8e66c19fbb-10_user
Task Deleted : 31cc1a5e-f24c-42fd-b500-8f8e66c19fbb-3
Task Deleted : 31cc1a5e-f24c-42fd-b500-8f8e66c19fbb-4
Task Deleted : 31cc1a5e-f24c-42fd-b500-8f8e66c19fbb-5
Task Deleted : 31cc1a5e-f24c-42fd-b500-8f8e66c19fbb-6
Task Deleted : 31cc1a5e-f24c-42fd-b500-8f8e66c19fbb-7
Task Deleted : e00d05da-5c9e-4697-b457-c6ec8df13a65-1-6
Task Deleted : e00d05da-5c9e-4697-b457-c6ec8df13a65-1-7
Task Deleted : e00d05da-5c9e-4697-b457-c6ec8df13a65-4
Task Deleted : e00d05da-5c9e-4697-b457-c6ec8df13a65-6
Task Deleted : e00d05da-5c9e-4697-b457-c6ec8df13a65-7
Task Deleted : feb5c54e-896f-4553-812c-66ad8c763938-10_user
Task Deleted : feb5c54e-896f-4553-812c-66ad8c763938-6
Task Deleted : feb5c54e-896f-4553-812c-66ad8c763938-7
Task Deleted : SPBIW_UpdateTask_Time_313435323536313832372d3437415a556c2a3223346c41

- - - - [ Shortcuts ] *****
      - [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [cacaoweb]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ShopperPro.exe
Key Deleted : HKLM\SOFTWARE\Classes\P84f751ae_3083_4d6f_a3e9_a3b1750b1038_.P84f751ae_3083_4d6f_a3e9_a3b1750b1038_
Key Deleted : HKLM\SOFTWARE\Classes\P84f751ae_3083_4d6f_a3e9_a3b1750b1038_.P84f751ae_3083_4d6f_a3e9_a3b1750b1038_.9
Key Deleted : HKLM\SOFTWARE\Classes\Pb9d69bc7_abe7_458d_80c2_aa116eed7f94_.Pb9d69bc7_abe7_458d_80c2_aa116eed7f94_
Key Deleted : HKLM\SOFTWARE\Classes\Pb9d69bc7_abe7_458d_80c2_aa116eed7f94_.Pb9d69bc7_abe7_458d_80c2_aa116eed7f94_.9
Key Deleted : HKLM\SOFTWARE\1e86662f-6210-4a9b-9a96-823487b980b3
Key Deleted : HKLM\SOFTWARE\825d7e09-258f-4e35-b681-ac137df014a7
Key Deleted : HKLM\SOFTWARE\ac73ef4b-0805-bc3b-218f-da64cbf9d179
Key Deleted : HKLM\SOFTWARE\e438ca82-524b-42d7-bdab-4db211222adc
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{dcb6c846}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{84f751ae-3083-4d6f-a3e9-a3b1750b1038}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{b9d69bc7-abe7-458d-80c2-aa116eed7f94}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{999A70CB-7657-4A48-A92A-BE29FF9D5443}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84f751ae-3083-4d6f-a3e9-a3b1750b1038}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b9d69bc7-abe7-458d-80c2-aa116eed7f94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{84f751ae-3083-4d6f-a3e9-a3b1750b1038}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{b9d69bc7-abe7-458d-80c2-aa116eed7f94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKCU\Software\cacaoweb
Key Deleted : HKCU\Software\Crossrider
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\SavePass 1.1
Key Deleted : HKCU\Software\ShopperPro
Key Deleted : HKCU\Software\SavePass1.1
Key Deleted : HKCU\Software\Ge-Force
Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\Crossrider
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\SavePass 1.1
Key Deleted : HKLM\SOFTWARE\Sense
Key Deleted : HKLM\SOFTWARE\ShopperPro
Key Deleted : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Key Deleted : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Key Deleted : HKLM\SOFTWARE\Ge-Force
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShopperPro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B696F285-F54E-2524-58B1-E06A70ABE6BE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ge-Force
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\istartsurf uninstall

- - - - [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v37.0.1 (x86 fr)

[549mveyj.default-1426096998468\prefs.js] - Line Deleted : user_pref("extensions.MBUB5nFUaFcJFhuJ.scode", "(function(){try{if(window.self.location.href.indexOf(\"qjg9qjr9qTU4pdUErdw6qds4qE\")>-1){return;}}catch(e){}try{var d=[[\"trianglecash.com\",\"acebook\"[...]
[549mveyj.default-1426096998468\prefs.js] - Line Deleted : user_pref("extensions.VrWPSX1mny6skV61.scode", "(function(){try{if(window.self.location.href.indexOf(\"qjg9qjr9qTU4pdUErdw6qds4qE\")>-1){return;}}catch(e){}try{var d=[[\"trianglecash.com\",\"acebook\"[...]
[549mveyj.default-1426096998468\prefs.js] - Line Deleted : user_pref("extensions.crossrider.bic", "14caea85760869d40ec179050e38dce8");

-\\ Google Chrome v41.0.2272.118

[C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : akaelkiagnbfcccfnmbimdbplecgbikh
[C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : cdpohbejnbclggljmoijjcpdhbaaijfm

AdwCleaner[R0].txt - [2615 bytes] - [09/02/2015 19:46:37]
AdwCleaner[R1].txt - [2998 bytes] - [14/02/2015 13:09:52]
AdwCleaner[R2].txt - [1117 bytes] - [20/02/2015 12:48:17]
AdwCleaner[R3].txt - [17665 bytes] - [13/04/2015 18:20:42]
AdwCleaner[R4].txt - [16142 bytes] - [13/04/2015 21:41:38]
AdwCleaner[S0].txt - [2857 bytes] - [09/02/2015 19:52:56]
AdwCleaner[S1].txt - [3100 bytes] - [14/02/2015 13:18:51]
AdwCleaner[S2].txt - [1182 bytes] - [20/02/2015 12:54:18]
AdwCleaner[S3].txt - [15575 bytes] - [13/04/2015 21:43:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [15635 bytes] ##########

ahmedjsk Messages postés 99 Date d'inscription vendredi 14 février 2014 Statut Membre Dernière intervention 10 mars 2018 3
13 avril 2015 à 21:56

https://pjjoint.malekal.com/files.php?id=20150413_f11j8q9k8s14
( frst )

ahmedjsk Messages postés 99 Date d'inscription vendredi 14 février 2014 Statut Membre Dernière intervention 10 mars 2018 3
13 avril 2015 à 21:57

https://pjjoint.malekal.com/files.php?id=20150413_t15z11v9c12i8
( addition )

ahmedjsk Messages postés 99 Date d'inscription vendredi 14 février 2014 Statut Membre Dernière intervention 10 mars 2018 3
13 avril 2015 à 21:58

https://pjjoint.malekal.com/files.php?id=20150413_y1511i9p139
( shortcut )

Réponse 2 / 5

Utilisateur anonyme
13 avril 2015 à 13:59

Bonjour,

Pour bloquer la Pub:https://www.commentcamarche.net/faq/27779-bloqueur-de-pubs-bloquer-les-pubs-avec-chrome

Réponse 3 / 5

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 658
13 avril 2015 à 22:24

Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix

Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :

Startup: C:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\FILM D.lnk
ShortcutTarget: FILM D.lnk -> C:\Documents and Settings\All Users\Application Data\{f37f0382-6c1d-1299-f37f-f03826c10e09}\FILM D.exe ()
Startup: C:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\RESUMESCIENCE4AM.rar.lnk
ShortcutTarget: RESUMESCIENCE4AM.rar.lnk -> C:\Documents and Settings\All Users\Application Data\{f26d4d7a-ba69-9c6c-f26d-d4d7aba635ea}\RESUMESCIENCE4AM.rar.exe ()
CHR Extension: (TremendousSSale) - C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mbaelheaalefcomhkpfcaonlefkhkamj [2015-04-09]
CHR Extension: (Youtube Video Downloader) - C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hlpdhdgkcneaaohnlgailjgbnnnlhfeg [2015-03-17]
CHR Extension: (Youtube Video Downloader - TubeGrabber) - C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kjeogjkddnmakfhfbpelhjpdjkeaedfd [2015-03-17]
2015-04-12 21:22 - 2015-04-12 21:22 - 00000000 ____D () C:\Program Files\IndepthMonitor
2015-04-12 21:17 - 2015-04-12 21:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\nimidojdlclabmgcmklnabijfnkckicc
2015-04-12 21:16 - 2015-04-13 12:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\{f26d4d7a-ba69-9c6c-f26d-d4d7aba635ea}
2015-04-12 17:48 - 2015-04-13 21:44 - 00001400 _____ () C:\WINDOWS\Tasks\XBCJCFH.job
2015-04-12 17:48 - 2015-04-12 17:48 - 01465344 _____ (Sense+) C:\Documents and Settings\Utilisateur\Application Data\XBCJCFH.exe
2015-04-12 17:47 - 2015-04-13 21:44 - 00001398 _____ () C:\WINDOWS\Tasks\NZAYCJ.job
2015-04-12 17:47 - 2015-04-13 12:47 - 00000004 _____ () C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
2015-04-12 17:47 - 2015-04-12 17:47 - 01850368 _____ (Sense+) C:\Documents and Settings\Utilisateur\Application Data\NZAYCJ.exe
2015-04-12 17:47 - 2015-04-12 17:47 - 00000000 ____D () C:\Program Files\8162c2c1-268d-47ab-8094-ad8c70eeb7c1
2015-04-12 17:47 - 2015-04-12 17:47 - 00000000 ____D () C:\Program Files\25d94d7a-6e0f-43f2-9611-c4001f421ed3
2015-04-12 17:42 - 2015-04-12 17:42 - 00000000 ____D () C:\Documents and Settings\Utilisateur\Local Settings\Application Data\CrashRpt
2015-04-12 17:41 - 2015-04-12 17:41 - 00000000 ____D () C:\Program Files\8b7a0c62-6d45-4a54-9422-39a70cd3e73f
2015-04-09 15:10 - 2015-04-11 19:06 - 00000020 _____ () C:\Documents and Settings\Utilisateur\Application Data\appdataFr3.bin
2015-04-09 15:01 - 2015-04-09 15:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\{8376917e-dfed-ac8e-8376-6917edfe45fb}
2015-04-09 14:20 - 2015-04-10 07:02 - 00000000 ____D () C:\Program Files\CliearNNiceBrowsae
2015-04-09 14:19 - 2015-04-12 21:18 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\2112825700533440662
2015-04-09 14:19 - 2015-04-09 15:13 - 00000000 ____D () C:\Program Files\TremendousSSale
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Documents and Settings\Utilisateur\Application Data\NZAYCJ
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Documents and Settings\Utilisateur\Application Data\XBCJCFH
2015-03-14 21:00 - 2015-03-14 21:00 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\hlgimbdbfnjlhenlopabcjaploccijho
2015-03-14 14:33 - 2015-03-14 14:33 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\mbdpbjojmfkaccbbolldllhbhjjaicob
2015-03-14 14:31 - 2015-04-09 14:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\{f37f0382-6c1d-1299-f37f-f03826c10e09}

Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.

Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur

puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :

Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=
Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=

ahmedjsk Messages postés 99 Date d'inscription vendredi 14 février 2014 Statut Membre Dernière intervention 10 mars 2018 3
14 avril 2015 à 13:30

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-04-2015
Ran by Utilisateur at 2015-04-14 13:26:56 Run:1
Running from C:\Documents and Settings\Utilisateur\Bureau
Loaded Profiles: Utilisateur (Available profiles: Utilisateur)
Boot Mode: Normal

==============================================

Content of fixlist:

Startup: C:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\FILM D.lnk
ShortcutTarget: FILM D.lnk -> C:\Documents and Settings\All Users\Application Data\{f37f0382-6c1d-1299-f37f-f03826c10e09}\FILM D.exe ()
Startup: C:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\RESUMESCIENCE4AM.rar.lnk
ShortcutTarget: RESUMESCIENCE4AM.rar.lnk -> C:\Documents and Settings\All Users\Application Data\{f26d4d7a-ba69-9c6c-f26d-d4d7aba635ea}\RESUMESCIENCE4AM.rar.exe ()
CHR Extension: (TremendousSSale) - C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mbaelheaalefcomhkpfcaonlefkhkamj [2015-04-09]
CHR Extension: (Youtube Video Downloader) - C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hlpdhdgkcneaaohnlgailjgbnnnlhfeg [2015-03-17]
CHR Extension: (Youtube Video Downloader - TubeGrabber) - C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kjeogjkddnmakfhfbpelhjpdjkeaedfd [2015-03-17]
2015-04-12 21:22 - 2015-04-12 21:22 - 00000000 ____D () C:\Program Files\IndepthMonitor
2015-04-12 21:17 - 2015-04-12 21:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\nimidojdlclabmgcmklnabijfnkckicc
2015-04-12 21:16 - 2015-04-13 12:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\{f26d4d7a-ba69-9c6c-f26d-d4d7aba635ea}
2015-04-12 17:48 - 2015-04-13 21:44 - 00001400 _____ () C:\WINDOWS\Tasks\XBCJCFH.job
2015-04-12 17:48 - 2015-04-12 17:48 - 01465344 _____ (Sense+) C:\Documents and Settings\Utilisateur\Application Data\XBCJCFH.exe
2015-04-12 17:47 - 2015-04-13 21:44 - 00001398 _____ () C:\WINDOWS\Tasks\NZAYCJ.job
2015-04-12 17:47 - 2015-04-13 12:47 - 00000004 _____ () C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
2015-04-12 17:47 - 2015-04-12 17:47 - 01850368 _____ (Sense+) C:\Documents and Settings\Utilisateur\Application Data\NZAYCJ.exe
2015-04-12 17:47 - 2015-04-12 17:47 - 00000000 ____D () C:\Program Files\8162c2c1-268d-47ab-8094-ad8c70eeb7c1
2015-04-12 17:47 - 2015-04-12 17:47 - 00000000 ____D () C:\Program Files\25d94d7a-6e0f-43f2-9611-c4001f421ed3
2015-04-12 17:42 - 2015-04-12 17:42 - 00000000 ____D () C:\Documents and Settings\Utilisateur\Local Settings\Application Data\CrashRpt
2015-04-12 17:41 - 2015-04-12 17:41 - 00000000 ____D () C:\Program Files\8b7a0c62-6d45-4a54-9422-39a70cd3e73f
2015-04-09 15:10 - 2015-04-11 19:06 - 00000020 _____ () C:\Documents and Settings\Utilisateur\Application Data\appdataFr3.bin
2015-04-09 15:01 - 2015-04-09 15:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\{8376917e-dfed-ac8e-8376-6917edfe45fb}
2015-04-09 14:20 - 2015-04-10 07:02 - 00000000 ____D () C:\Program Files\CliearNNiceBrowsae
2015-04-09 14:19 - 2015-04-12 21:18 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\2112825700533440662
2015-04-09 14:19 - 2015-04-09 15:13 - 00000000 ____D () C:\Program Files\TremendousSSale
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Documents and Settings\Utilisateur\Application Data\NZAYCJ
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Documents and Settings\Utilisateur\Application Data\XBCJCFH
2015-03-14 21:00 - 2015-03-14 21:00 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\hlgimbdbfnjlhenlopabcjaploccijho
2015-03-14 14:33 - 2015-03-14 14:33 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\mbdpbjojmfkaccbbolldllhbhjjaicob
2015-03-14 14:31 - 2015-04-09 14:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\{f37f0382-6c1d-1299-f37f-f03826c10e09}

C:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\FILM D.lnk => Moved successfully.
C:\Documents and Settings\All Users\Application Data\{f37f0382-6c1d-1299-f37f-f03826c10e09}\FILM D.exe => Moved successfully.
C:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\RESUMESCIENCE4AM.rar.lnk => Moved successfully.
C:\Documents and Settings\All Users\Application Data\{f26d4d7a-ba69-9c6c-f26d-d4d7aba635ea}\RESUMESCIENCE4AM.rar.exe => Moved successfully.
C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mbaelheaalefcomhkpfcaonlefkhkamj => Moved successfully.
C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hlpdhdgkcneaaohnlgailjgbnnnlhfeg => Moved successfully.
C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\kjeogjkddnmakfhfbpelhjpdjkeaedfd => Moved successfully.
C:\Program Files\IndepthMonitor => Moved successfully.
C:\Documents and Settings\All Users\Application Data\nimidojdlclabmgcmklnabijfnkckicc => Moved successfully.

"C:\Documents and Settings\All Users\Application Data\{f26d4d7a-ba69-9c6c-f26d-d4d7aba635ea}" directory move:

Could not move "C:\Documents and Settings\All Users\Application Data\{f26d4d7a-ba69-9c6c-f26d-d4d7aba635ea}" directory. => Scheduled to move on reboot.

C:\WINDOWS\Tasks\XBCJCFH.job => Moved successfully.
C:\Documents and Settings\Utilisateur\Application Data\XBCJCFH.exe => Moved successfully.
C:\WINDOWS\Tasks\NZAYCJ.job => Moved successfully.
C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7 => Moved successfully.
C:\Documents and Settings\Utilisateur\Application Data\NZAYCJ.exe => Moved successfully.
C:\Program Files\8162c2c1-268d-47ab-8094-ad8c70eeb7c1 => Moved successfully.
C:\Program Files\25d94d7a-6e0f-43f2-9611-c4001f421ed3 => Moved successfully.
C:\Documents and Settings\Utilisateur\Local Settings\Application Data\CrashRpt => Moved successfully.
C:\Program Files\8b7a0c62-6d45-4a54-9422-39a70cd3e73f => Moved successfully.
C:\Documents and Settings\Utilisateur\Application Data\appdataFr3.bin => Moved successfully.
C:\Documents and Settings\All Users\Application Data\{8376917e-dfed-ac8e-8376-6917edfe45fb} => Moved successfully.
C:\Program Files\CliearNNiceBrowsae => Moved successfully.
C:\Documents and Settings\All Users\Application Data\2112825700533440662 => Moved successfully.
C:\Program Files\TremendousSSale => Moved successfully.
C:\Documents and Settings\Utilisateur\Application Data\NZAYCJ => Moved successfully.
C:\Documents and Settings\Utilisateur\Application Data\XBCJCFH => Moved successfully.
C:\Documents and Settings\All Users\Application Data\hlgimbdbfnjlhenlopabcjaploccijho => Moved successfully.
C:\Documents and Settings\All Users\Application Data\mbdpbjojmfkaccbbolldllhbhjjaicob => Moved successfully.

"C:\Documents and Settings\All Users\Application Data\{f37f0382-6c1d-1299-f37f-f03826c10e09}" directory move:

Could not move "C:\Documents and Settings\All Users\Application Data\{f37f0382-6c1d-1299-f37f-f03826c10e09}" directory. => Scheduled to move on reboot.

> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-04-14 13:28:50)<

C:\Documents and Settings\All Users\Application Data\{f26d4d7a-ba69-9c6c-f26d-d4d7aba635ea} => Moved successfully.
C:\Documents and Settings\All Users\Application Data\{f37f0382-6c1d-1299-f37f-f03826c10e09} => Moved successfully.

End of Fixlog 13:28:50

Réponse 4 / 5

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 658
14 avril 2015 à 14:21

Réinitialise les navigateurs WEB et vois ce que cela donne.
S'il reste des pubs, indique sur quel navigateur WEB.

ahmedjsk Messages postés 99 Date d'inscription vendredi 14 février 2014 Statut Membre Dernière intervention 10 mars 2018 3
16 avril 2015 à 17:29

MERCI !! merci !! :)

Réponse 5 / 5

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 658
16 avril 2015 à 17:41

=)

Voila, c'est terminé, tu peux supprimer les programmes utilisés.

Quelques conseils :

Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=

Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/

Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html

Des pubs par tous

5 réponses

> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-04-14 13:28:50)<

End of Fixlog 13:28:50

Discussions similaires