Au secours j'ai plein de virus
Fermé
Tinette74
Messages postés
15
Date d'inscription
samedi 15 mars 2014
Statut
Membre
Dernière intervention
8 mai 2015
-
8 mai 2015 à 11:18
ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 - 8 mai 2015 à 13:25
ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 - 8 mai 2015 à 13:25
A voir également:
- Au secours j'ai plein de virus
- Youtu.be virus - Accueil - Guide virus
- Svchost.exe virus - Guide
- Faux message virus ordinateur - Accueil - Arnaque
- Softonic virus ✓ - Forum Virus
- Mcafee alerte de virus critique - Accueil - Piratage
4 réponses
ArnaudLy6
Messages postés
4412
Date d'inscription
samedi 22 mai 2010
Statut
Membre
Dernière intervention
13 février 2016
189
8 mai 2015 à 11:21
8 mai 2015 à 11:21
Salut,
Ton Pc est infecté par des logiciels publicitaires, voici les étapes à suivre :
Télécharge AdwCleaner
Ensuite suis ces étapes :
Une fois que c'est fait,
Télécharge maintenant Malwarebytes Anti-Malware
Une fois que ton ordinateur a redémarré, relance Malwarebytes Anti-Malware et cette fois-ci rends toi dans l'onglet " Historique ",
puis " Journaux de l'application ".
Sélectionne le rapport le plus récent, il devrait s'appeler ScanLog, ouvre-le et clique en bas sur Coller dans le presse-papier.
Il ne te reste plus qu'à coller le rapport dans ton prochain message.
Ton Pc est infecté par des logiciels publicitaires, voici les étapes à suivre :
Télécharge AdwCleaner
Ensuite suis ces étapes :
- Lance le logiciel
- Clique sur "Scanner"
- Une fois le scan terminé, clique sur "Nettoyer"
- Le logiciel va redémarrer ton ordinateur
- Une fois ta session ouverte, tu devrais avoir un rapport de nettoyage
- Colle ce rapport dans ton prochain message
Une fois que c'est fait,
Télécharge maintenant Malwarebytes Anti-Malware
- Décoche "Activer l'essai gratuit de Malwarebytes Anti-Malware Premium"
- Lance MalwareBytes
- Dans l'onglet Tableau de Bord, clique sur Mettre à jour
- Clique ensuite sur l'onglet " Examen "
- Coche " Examen Menaces "
- Clique sur " Examiner maintenant "
- Attends la fin de l'analyse
- Une fois l'analyse terminée, clique sur " Supprimer la sélection "
- Accepte le redémarrage du PC si demandé
Une fois que ton ordinateur a redémarré, relance Malwarebytes Anti-Malware et cette fois-ci rends toi dans l'onglet " Historique ",
puis " Journaux de l'application ".
Sélectionne le rapport le plus récent, il devrait s'appeler ScanLog, ouvre-le et clique en bas sur Coller dans le presse-papier.
Il ne te reste plus qu'à coller le rapport dans ton prochain message.
Tinette74
Messages postés
15
Date d'inscription
samedi 15 mars 2014
Statut
Membre
Dernière intervention
8 mai 2015
8 mai 2015 à 12:33
8 mai 2015 à 12:33
Bonjour voici le rapport d'Awcleaner
# AdwCleaner v4.203 - Rapport créé le 08/05/2015 à 12:28:30
# Mis à jour le 30/04/2015 par Xplode
# Base de données : 2015-05-08.1 [Serveur]
# Système d'exploitation : Windows 8.1 (x64)
# Nom d'utilisateur : Tina - TINA
# Exécuté depuis : C:\Users\Tina\Downloads\Nettoyeurs\adwcleaner_4.203.exe
# Option : Nettoyer
[#] Service Supprimé : scxy
Service Supprimé : syschkrm
Service Supprimé : syschkrs
Service Supprimé : scjrtf
Service Supprimé : scjrtr
[!] Dossier Supprimé : C:\Program Files (x86)\System-Checker
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_pdjjjmnacfjnmgckbhldbekckfldeolk_0
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pdjjjmnacfjnmgckbhldbekckfldeolk
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_edjkooiccbgjhlpfhkknkjhfpmjkmelk_0
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\edjkooiccbgjhlpfhkknkjhfpmjkmelk
Fichier Supprimé : C:\WINDOWS\SysWOW64\scxy.dll
Fichier Supprimé : C:\WINDOWS\System32\scxy64.dll
Fichier Supprimé : C:\WINDOWS\System32\drivers\scjrtf.sys
Fichier Supprimé : C:\WINDOWS\System32\drivers\scjrtr.sys
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.selectgo00.selectgo.net_0.localstorage
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.selectgo00.selectgo.net_0.localstorage-journal
Donnée Supprimée : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] -
Donnée Supprimée : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] -
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v35.0.1916.153
AdwCleaner[R0].txt - [8137 octets] - [15/06/2014 18:40:46]
AdwCleaner[R1].txt - [1030 octets] - [15/06/2014 19:04:08]
AdwCleaner[R2].txt - [28364 octets] - [01/11/2014 22:08:26]
AdwCleaner[R3].txt - [17535 octets] - [08/05/2015 12:04:12]
AdwCleaner[R4].txt - [2953 octets] - [08/05/2015 12:26:36]
AdwCleaner[S0].txt - [6754 octets] - [15/06/2014 18:41:31]
AdwCleaner[S1].txt - [1094 octets] - [15/06/2014 19:04:41]
AdwCleaner[S2].txt - [24201 octets] - [01/11/2014 22:11:10]
AdwCleaner[S3].txt - [14012 octets] - [08/05/2015 12:07:29]
AdwCleaner[S4].txt - [2686 octets] - [08/05/2015 12:28:30]
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [2746 octets] ##########
# AdwCleaner v4.203 - Rapport créé le 08/05/2015 à 12:28:30
# Mis à jour le 30/04/2015 par Xplode
# Base de données : 2015-05-08.1 [Serveur]
# Système d'exploitation : Windows 8.1 (x64)
# Nom d'utilisateur : Tina - TINA
# Exécuté depuis : C:\Users\Tina\Downloads\Nettoyeurs\adwcleaner_4.203.exe
# Option : Nettoyer
- [ Services ] *****
[#] Service Supprimé : scxy
Service Supprimé : syschkrm
Service Supprimé : syschkrs
Service Supprimé : scjrtf
Service Supprimé : scjrtr
- [ Fichiers / Dossiers ] *****
[!] Dossier Supprimé : C:\Program Files (x86)\System-Checker
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_pdjjjmnacfjnmgckbhldbekckfldeolk_0
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pdjjjmnacfjnmgckbhldbekckfldeolk
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_edjkooiccbgjhlpfhkknkjhfpmjkmelk_0
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\edjkooiccbgjhlpfhkknkjhfpmjkmelk
Fichier Supprimé : C:\WINDOWS\SysWOW64\scxy.dll
Fichier Supprimé : C:\WINDOWS\System32\scxy64.dll
Fichier Supprimé : C:\WINDOWS\System32\drivers\scjrtf.sys
Fichier Supprimé : C:\WINDOWS\System32\drivers\scjrtr.sys
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.selectgo00.selectgo.net_0.localstorage
Fichier Supprimé : C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.selectgo00.selectgo.net_0.localstorage-journal
- [ Tâches planifiées ] *****
- [ Raccourcis ] *****
- [ Registre ] *****
Donnée Supprimée : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] -
Donnée Supprimée : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] -
- [ Navigateurs ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v35.0.1916.153
AdwCleaner[R0].txt - [8137 octets] - [15/06/2014 18:40:46]
AdwCleaner[R1].txt - [1030 octets] - [15/06/2014 19:04:08]
AdwCleaner[R2].txt - [28364 octets] - [01/11/2014 22:08:26]
AdwCleaner[R3].txt - [17535 octets] - [08/05/2015 12:04:12]
AdwCleaner[R4].txt - [2953 octets] - [08/05/2015 12:26:36]
AdwCleaner[S0].txt - [6754 octets] - [15/06/2014 18:41:31]
AdwCleaner[S1].txt - [1094 octets] - [15/06/2014 19:04:41]
AdwCleaner[S2].txt - [24201 octets] - [01/11/2014 22:11:10]
AdwCleaner[S3].txt - [14012 octets] - [08/05/2015 12:07:29]
AdwCleaner[S4].txt - [2686 octets] - [08/05/2015 12:28:30]
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [2746 octets] ##########
Tinette74
Messages postés
15
Date d'inscription
samedi 15 mars 2014
Statut
Membre
Dernière intervention
8 mai 2015
8 mai 2015 à 13:16
8 mai 2015 à 13:16
voici le rapport de Malwarebytes
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'examen: 08/05/2015
Heure de l'examen: 12:38:34
Fichier journal: man.txt
Administrateur: Oui
Version: 2.01.6.1022
Base de données Malveillants: v2015.05.08.03
Base de données Rootkits: v2015.04.21.01
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Tina
Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 430407
Temps écoulé: 17 min, 26 sec
Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)
Processus: 3
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\scxy.exe, 1668, Supprimé-au-redémarrage, [47ec59388bff46f00ecb74dccb3b936d]
PUP.Optional.SystemChecker.A, C:\Program Files (x86)\System-Checker\syschkrm.exe, 2964, Supprimé-au-redémarrage, [51e2bbd64a4053e3b005755961a2a858]
PUP.Optional.SystemChecker.A, C:\Program Files (x86)\System-Checker\syschkrs.exe, 2992, Supprimé-au-redémarrage, [9c973b564446f73fc7ef923c14ef8d73]
Modules: 7
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\certsc.dll, Supprimé-au-redémarrage, [be756031b0dab4827861d17f828423dd],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libnspr4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libplc4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libplds4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nss3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nssutil3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\smime3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
Clés du Registre: 59
PUP.Optional.Winsock.HijackBoot, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\scxy, Supprimé-au-redémarrage, [47ec59388bff46f00ecb74dccb3b936d],
PUP.Optional.Winsock.HijackBoot, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\scjrtr, Supprimé-au-redémarrage, [122189084e3ca1952aafe66a2bdb60a0],
PUP.Optional.Winsock.HijackBoot, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\scjrtf, Supprimé-au-redémarrage, [91a24d44cac08caaffda7fd10cfafc04],
PUP.Optional.Yawtix.A, HKU\S-1-5-21-2966991898-3599612516-2177771990-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{f9c8ce1b-66a0-4f45-af10-5f24ef19bc4e}, Mis en quarantaine, [cf644f42d0ba86b03bdeec63669df907],
PUP.Optional.Snapdo.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{006ee092-9658-4fd6-bd8e-a21a348e59f5}, Mis en quarantaine, [60d3fe93b2d80f273d680e7d7b88a55b],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\HQuality-v3V31.10-nv, Mis en quarantaine, [d0633c5547436fc7e814f9e056adcc34],
PUP.Optional.WordProser.A, HKLM\SOFTWARE\WOW6432NODE\WordProser_1.10.0.2, Mis en quarantaine, [181b38593654cc6a52fc9258887baa56],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, Mis en quarantaine, [e64d276a3258cd690352cb0441c2f709],
PUP.Optional.WordProser.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wpnfd_1_10_0_2, Mis en quarantaine, [f04388094842ce68fd50f9f1887bb14f],
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSCHKRM, Supprimé-au-redémarrage, [51e2bbd64a4053e3b005755961a2a858],
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSCHKRS, Supprimé-au-redémarrage, [9c973b564446f73fc7ef923c14ef8d73],
PUP.Optional.OfferBoulevard.A, HKU\S-1-5-18\SOFTWARE\OfferBLVD, Mis en quarantaine, [949fc5cc6822ea4cdab7f5fa56ad966a],
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\CinemaPlus Pro 1.3V11.11, Mis en quarantaine, [1b180889711966d09bb80ade16ed49b7],
PUP.Optional.HDQuality.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\HD-Quality-v3, Mis en quarantaine, [3201f69b3e4c999de4ee6d8c867dc13f],
PUP.Optional.MediaPlayer.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\videos MediaPlay-Air, Mis en quarantaine, [47ec78194c3e64d200da084a81845ea2],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, Mis en quarantaine, [38fb434e1575201624a025402bda60a0],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-2966991898-3599612516-2177771990-500\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\21636, Mis en quarantaine, [d0632e63fe8c280e72a732bec34043bd],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\TYPELIB\{ABC5B680-35F1-42E6-BAD8-E0DF5545C957}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{04C7D782-D896-4B7C-8216-5A7AE5DC7736}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{31AA0616-1339-48A7-9AC1-6129D6B4A1FE}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{5C37FA58-CD9E-42FD-B395-FDA1A84C4369}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{7787831C-551E-4FF5-9C6A-A5684183EB3F}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{9DAD1C60-3749-44D6-86B6-A5F5C573C350}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{A6EE8EFB-0085-4B8A-871F-96DF2BC0D180}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{AD8140BF-6355-4051-A0B1-2E69C0FF765C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{B2572374-DE97-4360-8F70-C7C4B281EA9E}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{B4D03774-A43E-4A12-94F2-2AEF5AC4E945}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{D3FC56E7-BB9F-4281-B8BE-5CFF5F65C1DC}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{D7D7E6DA-A99C-4E09-BDCC-4509E669A95C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{EDA21FDA-6107-43FA-A938-959955ADF842}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{FCF8D7AC-579A-4023-94C9-F15342FACBBA}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{04C7D782-D896-4B7C-8216-5A7AE5DC7736}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{31AA0616-1339-48A7-9AC1-6129D6B4A1FE}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5C37FA58-CD9E-42FD-B395-FDA1A84C4369}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{7787831C-551E-4FF5-9C6A-A5684183EB3F}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9DAD1C60-3749-44D6-86B6-A5F5C573C350}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A6EE8EFB-0085-4B8A-871F-96DF2BC0D180}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{AD8140BF-6355-4051-A0B1-2E69C0FF765C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B2572374-DE97-4360-8F70-C7C4B281EA9E}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B4D03774-A43E-4A12-94F2-2AEF5AC4E945}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D3FC56E7-BB9F-4281-B8BE-5CFF5F65C1DC}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D7D7E6DA-A99C-4E09-BDCC-4509E669A95C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EDA21FDA-6107-43FA-A938-959955ADF842}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FCF8D7AC-579A-4023-94C9-F15342FACBBA}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{04C7D782-D896-4B7C-8216-5A7AE5DC7736}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{31AA0616-1339-48A7-9AC1-6129D6B4A1FE}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{5C37FA58-CD9E-42FD-B395-FDA1A84C4369}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{7787831C-551E-4FF5-9C6A-A5684183EB3F}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9DAD1C60-3749-44D6-86B6-A5F5C573C350}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A6EE8EFB-0085-4B8A-871F-96DF2BC0D180}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{AD8140BF-6355-4051-A0B1-2E69C0FF765C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B2572374-DE97-4360-8F70-C7C4B281EA9E}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B4D03774-A43E-4A12-94F2-2AEF5AC4E945}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D3FC56E7-BB9F-4281-B8BE-5CFF5F65C1DC}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D7D7E6DA-A99C-4E09-BDCC-4509E669A95C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EDA21FDA-6107-43FA-A938-959955ADF842}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{FCF8D7AC-579A-4023-94C9-F15342FACBBA}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{ABC5B680-35F1-42E6-BAD8-E0DF5545C957}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{ABC5B680-35F1-42E6-BAD8-E0DF5545C957}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
Valeurs du Registre: 4
PUP.Optional.Astromenda.C, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\WSE_Astromenda\\, Mis en quarantaine, [be757f12a4e691a5c887eee1778cd42c]
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SCXY|ImagePath, C:\Program Files (x86)\System-Checker\Files\scxy.exe, Supprimé-au-redémarrage, [66cdeda4c0ca6fc7595bb717ee15b24e]
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSCHKRM|ImagePath, C:\Program Files (x86)\System-Checker\syschkrm.exe, Supprimé-au-redémarrage, [51e2bbd64a4053e3b005755961a2a858]
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSCHKRS|ImagePath, C:\Program Files (x86)\System-Checker\syschkrs.exe, Supprimé-au-redémarrage, [9c973b564446f73fc7ef923c14ef8d73]
Données du Registre: 0
(Aucun élément malicieux détecté)
Dossiers: 26
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config, Mis en quarantaine, [c86b1180ff8bfa3cb27687743dc642be],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
Rogue.Multiple, C:\ProgramData\374311380, Mis en quarantaine, [a88b95fc2a603402b8835e2f05fea858],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pdjjjmnacfjnmgckbhldbekckfldeolk, Mis en quarantaine, [7cb72b665e2c979f7982bcf7a1625ca4],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_pdjjjmnacfjnmgckbhldbekckfldeolk_0, Mis en quarantaine, [ef443160ee9cae88817baa0963a0827e],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\edjkooiccbgjhlpfhkknkjhfpmjkmelk, Mis en quarantaine, [072c058c9cee0d2910c6803931d2f20e],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_edjkooiccbgjhlpfhkknkjhfpmjkmelk_0, Mis en quarantaine, [90a3731ea7e3d3633e995366f40f4ab6],
PUP.Optional.CouponFactor.A, C:\ProgramData\CouponFactor, Mis en quarantaine, [a88b058c0981aa8c31dc8a31b251758b],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.2, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.3, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.AdPeak.A, C:\Program Files (x86)\23BD2FDA-B46A-4A13-853B-2785D8E0BA56, Mis en quarantaine, [052e127fef9b191d5959d5f014ef0ef2],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
Fichiers: 85
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\scxy.exe, Supprimé-au-redémarrage, [47ec59388bff46f00ecb74dccb3b936d],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\certsc.dll, Supprimé-au-redémarrage, [be756031b0dab4827861d17f828423dd],
PUP.Optional.Winsock.HijackBoot, c:\windows\system32\drivers\scjrtr.sys, Supprimé-au-redémarrage, [122189084e3ca1952aafe66a2bdb60a0],
PUP.Optional.Winsock.HijackBoot, c:\windows\system32\drivers\scjrtf.sys, Supprimé-au-redémarrage, [91a24d44cac08caaffda7fd10cfafc04],
PUP.Optional.MultiPlug.Uns, C:\ProgramData\CouponFactor\CouponFactor.exe, Mis en quarantaine, [f73cade46525cc6a0079331335ce3fc1],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Roaming\HRZYQ.exe, Mis en quarantaine, [e74cd0c138522610d6366bdd759140c0],
PUP.Optional.BrowserApp.A, C:\Users\Tina\AppData\Roaming\IM.exe, Mis en quarantaine, [2a090a877c0e3ef81c0fa41e9d646e92],
PUP.Optional.MediaPlayerVideo.A, C:\Users\Tina\AppData\Roaming\LTITPC.exe, Mis en quarantaine, [a98a830e7c0e71c528a2dc6f9274b54b],
PUP.Optional.CinemaProGo.A, C:\Users\Tina\AppData\Roaming\VMDSI.exe, Mis en quarantaine, [999aace54a40e4529b5351f7b65013ed],
PUP.Optional.BrowserApp.A, C:\Users\Tina\AppData\Roaming\WJOV.exe, Mis en quarantaine, [64cf147d028860d672b9d4eee31e7f81],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Roaming\WVNPDC.exe, Mis en quarantaine, [b77c9df4eb9f171f380852f852b4847c],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Roaming\XOIRMX.exe, Mis en quarantaine, [dd56632ee1a9f046e15fcd7d0105aa56],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Roaming\ZXMLEZH.exe, Mis en quarantaine, [4be8a2ef02887eb8818b13358d794ab6],
PUP.Optional.Winsock.HijackBoot, C:\Windows\System32\scxy64.dll, Supprimé-au-redémarrage, [75bea5ec68220036538668e8957160a0],
PUP.Optional.Winsock.HijackBoot, C:\Windows\SysWOW64\scxy.dll, Supprimé-au-redémarrage, [4ce7b5dc6d1db97de8588bc714eea759],
PUP.Optional.Plugin, C:\Users\Tina\Documents\Setup.exe, Mis en quarantaine, [2b08068b0a8053e30f94050c966c50b0],
PUP.Optional.Pinwid.A, C:\Windows\Installer\140e8c.msi, Mis en quarantaine, [a58ec7ca860454e2d47ca949d72e857b],
PUP.Optional.SmartBar, C:\Windows\Installer\MSIB625.tmp, Mis en quarantaine, [89aa49481e6c66d03d2c63cdda26bd43],
PUP.Optional.SmartBar, C:\Windows\Installer\MSID6F.tmp, Mis en quarantaine, [41f2eea352381b1bdc8d72befb056b95],
PUP.Optional.SmartBar, C:\Windows\Installer\MSID6F.tmp-\Smartbar.Installer.CustomActions.dll, Mis en quarantaine, [999a8011a3e744f2acbd4be5e11fac54],
PUP.Optional.Winsock.HijackBoot, C:\Windows\System32\29xyOff.ini, Mis en quarantaine, [270cc6cb117942f47b3c23abcd36a759],
PUP.Optional.Winsock.HijackBoot, C:\Windows\SysWOW64\29xyOff.ini, Mis en quarantaine, [92a1bfd2b9d168ced0e7f7d782819a66],
PUP.Optional.WebInstr.A, C:\Windows\System32\drivers\Msft_Kernel_webinstrNewH_01009.Wdf, Mis en quarantaine, [79ba81101674ce689863419d35cea759],
PUP.Optional.WebInstr.A, C:\Windows\System32\drivers\Msft_Kernel_webinstrNew_01009.Wdf, Mis en quarantaine, [1122afe238525cda5e9d8d5113f0b54b],
PUP.Optional.WebInstr.A, C:\Windows\System32\drivers\Msft_Kernel_webinstr_01009.Wdf, Mis en quarantaine, [52e1d0c1791141f5dc1fd608cd36c63a],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\ver.xml, Mis en quarantaine, [c86b1180ff8bfa3cb27687743dc642be],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\uninstinethnfd.exe, Mis en quarantaine, [c86b1180ff8bfa3cb27687743dc642be],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\temp_65f6b686-6ca2-4ded-b663-9a6e8236b79b-2, Mis en quarantaine, [2b08efa20486ca6c66e9c19bcf3659a7],
PUP.Optional.ReMarkable.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Supprimé-au-redémarrage, [d3607c15cbbfbc7a1b826001f80d7e82],
PUP.Optional.ReMarkable.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Supprimé-au-redémarrage, [a58e444d4e3cc373405d560b93723dc3],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\lsdb.js, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\background.html, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\content.js, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\manifest.json, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\q.js, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\lsdb.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\background.html, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\c.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\content.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\Cw.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\hgtahqG.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\manifest.json, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\lsdb.js, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\background.html, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\content.js, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\manifest.json, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\s.js, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\lsdb.js, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\background.html, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\content.js, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\manifest.json, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\mcrt.js, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\lsdb.js, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\background.html, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\content.js, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\EB8A.js, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\manifest.json, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\lsdb.js, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\background.html, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\content.js, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\fuqkMNg.js, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\manifest.json, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona\lsdb.js, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona\background.html, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona\content.js, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona\manifest.json, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
PUP.Optional.SystemChecker.A, C:\Windows\Temp\scxy.log, Supprimé-au-redémarrage, [b083f59c0f7bfe385eef6501d82d6e92],
PUP.Optional.SystemChecker.A, C:\Windows\Temp\scxyr.log, Mis en quarantaine, [cb68e8a9bcce1f1769e5de8861a47a86],
PUP.Optional.SystemChecker.A, C:\Program Files (x86)\System-Checker\syschkrm.exe, Supprimé-au-redémarrage, [51e2bbd64a4053e3b005755961a2a858],
PUP.Optional.SystemChecker.A, C:\Program Files (x86)\System-Checker\syschkrs.exe, Supprimé-au-redémarrage, [9c973b564446f73fc7ef923c14ef8d73],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.2\user.config, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.3\user.config, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\syschkr.dat, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\freebl3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libnspr4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libplc4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libplds4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nss3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nssckbi.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nssdbm3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nssutil3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\scxy.tlb, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\smime3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\softokn3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\sqlite3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
Secteurs physiques: 0
(Aucun élément malicieux détecté)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'examen: 08/05/2015
Heure de l'examen: 12:38:34
Fichier journal: man.txt
Administrateur: Oui
Version: 2.01.6.1022
Base de données Malveillants: v2015.05.08.03
Base de données Rootkits: v2015.04.21.01
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Tina
Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 430407
Temps écoulé: 17 min, 26 sec
Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)
Processus: 3
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\scxy.exe, 1668, Supprimé-au-redémarrage, [47ec59388bff46f00ecb74dccb3b936d]
PUP.Optional.SystemChecker.A, C:\Program Files (x86)\System-Checker\syschkrm.exe, 2964, Supprimé-au-redémarrage, [51e2bbd64a4053e3b005755961a2a858]
PUP.Optional.SystemChecker.A, C:\Program Files (x86)\System-Checker\syschkrs.exe, 2992, Supprimé-au-redémarrage, [9c973b564446f73fc7ef923c14ef8d73]
Modules: 7
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\certsc.dll, Supprimé-au-redémarrage, [be756031b0dab4827861d17f828423dd],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libnspr4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libplc4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libplds4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nss3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nssutil3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\smime3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
Clés du Registre: 59
PUP.Optional.Winsock.HijackBoot, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\scxy, Supprimé-au-redémarrage, [47ec59388bff46f00ecb74dccb3b936d],
PUP.Optional.Winsock.HijackBoot, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\scjrtr, Supprimé-au-redémarrage, [122189084e3ca1952aafe66a2bdb60a0],
PUP.Optional.Winsock.HijackBoot, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\scjrtf, Supprimé-au-redémarrage, [91a24d44cac08caaffda7fd10cfafc04],
PUP.Optional.Yawtix.A, HKU\S-1-5-21-2966991898-3599612516-2177771990-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{f9c8ce1b-66a0-4f45-af10-5f24ef19bc4e}, Mis en quarantaine, [cf644f42d0ba86b03bdeec63669df907],
PUP.Optional.Snapdo.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{006ee092-9658-4fd6-bd8e-a21a348e59f5}, Mis en quarantaine, [60d3fe93b2d80f273d680e7d7b88a55b],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\HQuality-v3V31.10-nv, Mis en quarantaine, [d0633c5547436fc7e814f9e056adcc34],
PUP.Optional.WordProser.A, HKLM\SOFTWARE\WOW6432NODE\WordProser_1.10.0.2, Mis en quarantaine, [181b38593654cc6a52fc9258887baa56],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, Mis en quarantaine, [e64d276a3258cd690352cb0441c2f709],
PUP.Optional.WordProser.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wpnfd_1_10_0_2, Mis en quarantaine, [f04388094842ce68fd50f9f1887bb14f],
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSCHKRM, Supprimé-au-redémarrage, [51e2bbd64a4053e3b005755961a2a858],
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSCHKRS, Supprimé-au-redémarrage, [9c973b564446f73fc7ef923c14ef8d73],
PUP.Optional.OfferBoulevard.A, HKU\S-1-5-18\SOFTWARE\OfferBLVD, Mis en quarantaine, [949fc5cc6822ea4cdab7f5fa56ad966a],
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\CinemaPlus Pro 1.3V11.11, Mis en quarantaine, [1b180889711966d09bb80ade16ed49b7],
PUP.Optional.HDQuality.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\HD-Quality-v3, Mis en quarantaine, [3201f69b3e4c999de4ee6d8c867dc13f],
PUP.Optional.MediaPlayer.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\videos MediaPlay-Air, Mis en quarantaine, [47ec78194c3e64d200da084a81845ea2],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, Mis en quarantaine, [38fb434e1575201624a025402bda60a0],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-2966991898-3599612516-2177771990-500\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\21636, Mis en quarantaine, [d0632e63fe8c280e72a732bec34043bd],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\TYPELIB\{ABC5B680-35F1-42E6-BAD8-E0DF5545C957}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{04C7D782-D896-4B7C-8216-5A7AE5DC7736}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{31AA0616-1339-48A7-9AC1-6129D6B4A1FE}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{5C37FA58-CD9E-42FD-B395-FDA1A84C4369}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{7787831C-551E-4FF5-9C6A-A5684183EB3F}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{9DAD1C60-3749-44D6-86B6-A5F5C573C350}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{A6EE8EFB-0085-4B8A-871F-96DF2BC0D180}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{AD8140BF-6355-4051-A0B1-2E69C0FF765C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{B2572374-DE97-4360-8F70-C7C4B281EA9E}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{B4D03774-A43E-4A12-94F2-2AEF5AC4E945}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{D3FC56E7-BB9F-4281-B8BE-5CFF5F65C1DC}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{D7D7E6DA-A99C-4E09-BDCC-4509E669A95C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{EDA21FDA-6107-43FA-A938-959955ADF842}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\INTERFACE\{FCF8D7AC-579A-4023-94C9-F15342FACBBA}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{04C7D782-D896-4B7C-8216-5A7AE5DC7736}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{31AA0616-1339-48A7-9AC1-6129D6B4A1FE}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5C37FA58-CD9E-42FD-B395-FDA1A84C4369}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{7787831C-551E-4FF5-9C6A-A5684183EB3F}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9DAD1C60-3749-44D6-86B6-A5F5C573C350}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A6EE8EFB-0085-4B8A-871F-96DF2BC0D180}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{AD8140BF-6355-4051-A0B1-2E69C0FF765C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B2572374-DE97-4360-8F70-C7C4B281EA9E}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B4D03774-A43E-4A12-94F2-2AEF5AC4E945}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D3FC56E7-BB9F-4281-B8BE-5CFF5F65C1DC}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D7D7E6DA-A99C-4E09-BDCC-4509E669A95C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EDA21FDA-6107-43FA-A938-959955ADF842}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FCF8D7AC-579A-4023-94C9-F15342FACBBA}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{04C7D782-D896-4B7C-8216-5A7AE5DC7736}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{31AA0616-1339-48A7-9AC1-6129D6B4A1FE}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{5C37FA58-CD9E-42FD-B395-FDA1A84C4369}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{7787831C-551E-4FF5-9C6A-A5684183EB3F}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9DAD1C60-3749-44D6-86B6-A5F5C573C350}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A6EE8EFB-0085-4B8A-871F-96DF2BC0D180}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{AD8140BF-6355-4051-A0B1-2E69C0FF765C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B2572374-DE97-4360-8F70-C7C4B281EA9E}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B4D03774-A43E-4A12-94F2-2AEF5AC4E945}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D3FC56E7-BB9F-4281-B8BE-5CFF5F65C1DC}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D7D7E6DA-A99C-4E09-BDCC-4509E669A95C}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EDA21FDA-6107-43FA-A938-959955ADF842}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{FCF8D7AC-579A-4023-94C9-F15342FACBBA}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{ABC5B680-35F1-42E6-BAD8-E0DF5545C957}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{ABC5B680-35F1-42E6-BAD8-E0DF5545C957}, Mis en quarantaine, [e64d721fdeac9f974e970ebf748fcc34],
Valeurs du Registre: 4
PUP.Optional.Astromenda.C, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\WSE_Astromenda\\, Mis en quarantaine, [be757f12a4e691a5c887eee1778cd42c]
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SCXY|ImagePath, C:\Program Files (x86)\System-Checker\Files\scxy.exe, Supprimé-au-redémarrage, [66cdeda4c0ca6fc7595bb717ee15b24e]
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSCHKRM|ImagePath, C:\Program Files (x86)\System-Checker\syschkrm.exe, Supprimé-au-redémarrage, [51e2bbd64a4053e3b005755961a2a858]
PUP.Optional.SystemChecker.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSCHKRS|ImagePath, C:\Program Files (x86)\System-Checker\syschkrs.exe, Supprimé-au-redémarrage, [9c973b564446f73fc7ef923c14ef8d73]
Données du Registre: 0
(Aucun élément malicieux détecté)
Dossiers: 26
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config, Mis en quarantaine, [c86b1180ff8bfa3cb27687743dc642be],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
Rogue.Multiple, C:\ProgramData\374311380, Mis en quarantaine, [a88b95fc2a603402b8835e2f05fea858],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pdjjjmnacfjnmgckbhldbekckfldeolk, Mis en quarantaine, [7cb72b665e2c979f7982bcf7a1625ca4],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_pdjjjmnacfjnmgckbhldbekckfldeolk_0, Mis en quarantaine, [ef443160ee9cae88817baa0963a0827e],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\edjkooiccbgjhlpfhkknkjhfpmjkmelk, Mis en quarantaine, [072c058c9cee0d2910c6803931d2f20e],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_edjkooiccbgjhlpfhkknkjhfpmjkmelk_0, Mis en quarantaine, [90a3731ea7e3d3633e995366f40f4ab6],
PUP.Optional.CouponFactor.A, C:\ProgramData\CouponFactor, Mis en quarantaine, [a88b058c0981aa8c31dc8a31b251758b],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.2, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.3, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.AdPeak.A, C:\Program Files (x86)\23BD2FDA-B46A-4A13-853B-2785D8E0BA56, Mis en quarantaine, [052e127fef9b191d5959d5f014ef0ef2],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
Fichiers: 85
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\scxy.exe, Supprimé-au-redémarrage, [47ec59388bff46f00ecb74dccb3b936d],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\certsc.dll, Supprimé-au-redémarrage, [be756031b0dab4827861d17f828423dd],
PUP.Optional.Winsock.HijackBoot, c:\windows\system32\drivers\scjrtr.sys, Supprimé-au-redémarrage, [122189084e3ca1952aafe66a2bdb60a0],
PUP.Optional.Winsock.HijackBoot, c:\windows\system32\drivers\scjrtf.sys, Supprimé-au-redémarrage, [91a24d44cac08caaffda7fd10cfafc04],
PUP.Optional.MultiPlug.Uns, C:\ProgramData\CouponFactor\CouponFactor.exe, Mis en quarantaine, [f73cade46525cc6a0079331335ce3fc1],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Roaming\HRZYQ.exe, Mis en quarantaine, [e74cd0c138522610d6366bdd759140c0],
PUP.Optional.BrowserApp.A, C:\Users\Tina\AppData\Roaming\IM.exe, Mis en quarantaine, [2a090a877c0e3ef81c0fa41e9d646e92],
PUP.Optional.MediaPlayerVideo.A, C:\Users\Tina\AppData\Roaming\LTITPC.exe, Mis en quarantaine, [a98a830e7c0e71c528a2dc6f9274b54b],
PUP.Optional.CinemaProGo.A, C:\Users\Tina\AppData\Roaming\VMDSI.exe, Mis en quarantaine, [999aace54a40e4529b5351f7b65013ed],
PUP.Optional.BrowserApp.A, C:\Users\Tina\AppData\Roaming\WJOV.exe, Mis en quarantaine, [64cf147d028860d672b9d4eee31e7f81],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Roaming\WVNPDC.exe, Mis en quarantaine, [b77c9df4eb9f171f380852f852b4847c],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Roaming\XOIRMX.exe, Mis en quarantaine, [dd56632ee1a9f046e15fcd7d0105aa56],
PUP.Optional.CrossRider.A, C:\Users\Tina\AppData\Roaming\ZXMLEZH.exe, Mis en quarantaine, [4be8a2ef02887eb8818b13358d794ab6],
PUP.Optional.Winsock.HijackBoot, C:\Windows\System32\scxy64.dll, Supprimé-au-redémarrage, [75bea5ec68220036538668e8957160a0],
PUP.Optional.Winsock.HijackBoot, C:\Windows\SysWOW64\scxy.dll, Supprimé-au-redémarrage, [4ce7b5dc6d1db97de8588bc714eea759],
PUP.Optional.Plugin, C:\Users\Tina\Documents\Setup.exe, Mis en quarantaine, [2b08068b0a8053e30f94050c966c50b0],
PUP.Optional.Pinwid.A, C:\Windows\Installer\140e8c.msi, Mis en quarantaine, [a58ec7ca860454e2d47ca949d72e857b],
PUP.Optional.SmartBar, C:\Windows\Installer\MSIB625.tmp, Mis en quarantaine, [89aa49481e6c66d03d2c63cdda26bd43],
PUP.Optional.SmartBar, C:\Windows\Installer\MSID6F.tmp, Mis en quarantaine, [41f2eea352381b1bdc8d72befb056b95],
PUP.Optional.SmartBar, C:\Windows\Installer\MSID6F.tmp-\Smartbar.Installer.CustomActions.dll, Mis en quarantaine, [999a8011a3e744f2acbd4be5e11fac54],
PUP.Optional.Winsock.HijackBoot, C:\Windows\System32\29xyOff.ini, Mis en quarantaine, [270cc6cb117942f47b3c23abcd36a759],
PUP.Optional.Winsock.HijackBoot, C:\Windows\SysWOW64\29xyOff.ini, Mis en quarantaine, [92a1bfd2b9d168ced0e7f7d782819a66],
PUP.Optional.WebInstr.A, C:\Windows\System32\drivers\Msft_Kernel_webinstrNewH_01009.Wdf, Mis en quarantaine, [79ba81101674ce689863419d35cea759],
PUP.Optional.WebInstr.A, C:\Windows\System32\drivers\Msft_Kernel_webinstrNew_01009.Wdf, Mis en quarantaine, [1122afe238525cda5e9d8d5113f0b54b],
PUP.Optional.WebInstr.A, C:\Windows\System32\drivers\Msft_Kernel_webinstr_01009.Wdf, Mis en quarantaine, [52e1d0c1791141f5dc1fd608cd36c63a],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\ver.xml, Mis en quarantaine, [c86b1180ff8bfa3cb27687743dc642be],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\uninstinethnfd.exe, Mis en quarantaine, [c86b1180ff8bfa3cb27687743dc642be],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\temp_65f6b686-6ca2-4ded-b663-9a6e8236b79b-2, Mis en quarantaine, [2b08efa20486ca6c66e9c19bcf3659a7],
PUP.Optional.ReMarkable.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Supprimé-au-redémarrage, [d3607c15cbbfbc7a1b826001f80d7e82],
PUP.Optional.ReMarkable.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Supprimé-au-redémarrage, [a58e444d4e3cc373405d560b93723dc3],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\lsdb.js, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\background.html, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\content.js, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\manifest.json, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailjojnhpfgoacmgnjmpifinkilfcbfj\110\q.js, Mis en quarantaine, [0e25157ca9e1c3735f1ab3af7e871ee2],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\lsdb.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\background.html, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\c.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\content.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\Cw.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\hgtahqG.js, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcckpoladnboalokmkldjabamjpkafo\244\manifest.json, Mis en quarantaine, [73c05938c9c195a16019b4aeee1718e8],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\lsdb.js, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\background.html, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\content.js, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\manifest.json, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfdepldelkjiaidnlfgbffbnbljjddfh\102\s.js, Mis en quarantaine, [171c8c05d4b6aa8cff7a5909f80d5ca4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\lsdb.js, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\background.html, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\content.js, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\manifest.json, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijfnifaophpooekkminfbekpgmanjlcf\225\mcrt.js, Mis en quarantaine, [ee45563b1a700e285425a4bef411b64a],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\lsdb.js, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\background.html, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\content.js, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\EB8A.js, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhflamheoandbibgflojkjccnenjbda\172\manifest.json, Mis en quarantaine, [79ba5c35c2c8c571a6d3bfa35ea72cd4],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\lsdb.js, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\background.html, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\content.js, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\fuqkMNg.js, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug.A, C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\niojpmjocabemdookjinpjacjgclkhmo\205\manifest.json, Mis en quarantaine, [1f148f02f7933cfa7603e87a17ee03fd],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona\lsdb.js, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona\background.html, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona\content.js, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
PUP.Optional.MultiPlug, C:\ProgramData\njpeffbokpphfohniceckobddlmlaona\manifest.json, Mis en quarantaine, [1e1594fd88029a9c4883abb87a8bd927],
PUP.Optional.SystemChecker.A, C:\Windows\Temp\scxy.log, Supprimé-au-redémarrage, [b083f59c0f7bfe385eef6501d82d6e92],
PUP.Optional.SystemChecker.A, C:\Windows\Temp\scxyr.log, Mis en quarantaine, [cb68e8a9bcce1f1769e5de8861a47a86],
PUP.Optional.SystemChecker.A, C:\Program Files (x86)\System-Checker\syschkrm.exe, Supprimé-au-redémarrage, [51e2bbd64a4053e3b005755961a2a858],
PUP.Optional.SystemChecker.A, C:\Program Files (x86)\System-Checker\syschkrs.exe, Supprimé-au-redémarrage, [9c973b564446f73fc7ef923c14ef8d73],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.2\user.config, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.FastPlayer.A, C:\Users\Tina\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.3\user.config, Mis en quarantaine, [0c27eea303871125d2267a4ad42f56aa],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\syschkr.dat, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\freebl3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libnspr4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libplc4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\libplds4.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nss3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nssckbi.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nssdbm3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\nssutil3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\scxy.tlb, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\smime3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\softokn3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
PUP.Optional.Winsock.HijackBoot, C:\Program Files (x86)\System-Checker\Files\sqlite3.dll, Supprimé-au-redémarrage, [e64d721fdeac9f974e970ebf748fcc34],
Secteurs physiques: 0
(Aucun élément malicieux détecté)
(end)
ArnaudLy6
Messages postés
4412
Date d'inscription
samedi 22 mai 2010
Statut
Membre
Dernière intervention
13 février 2016
189
8 mai 2015 à 13:25
8 mai 2015 à 13:25
Ok ...
- Télécharge ZHPDiag : https://nicolascoolman.eu (Si Avast! bloque le fichier, désactive-le )
- Lance-le (icone avec un parchemin)
- Clique sur "Complet"
- Attends la fin de l'analyse
- Une fois l'analyse terminée, un fichier bloc note devrait se créer sur ton bureau (il devrait s'appeler ZHPDiag)
- Rends-toi sur ce site : https://www.cjoint.com/
- Clique sur "Choisir un fichier" et choisis le bloc note ZHPDiag qui est sur ton bureau
- Dans le type de diffusion choisis "Privée"
- Dans le champ "Pour quelle durée" choisis 4 jours
- Remplis ensuite la suite du formulaire
- Enfin, donne-nous le lien du fichier que tu viens de mettre sur le site
RKoz
Messages postés
10
Date d'inscription
vendredi 8 mai 2015
Statut
Membre
Dernière intervention
8 mai 2015
1
8 mai 2015 à 11:21
8 mai 2015 à 11:21
Bonjour,
Pour un nettoyage radicale, essayer : CCleaner par la suite pour les virus: AdwCleaner, et puis facultatif : ComboFix.
Pour un nettoyage radicale, essayer : CCleaner par la suite pour les virus: AdwCleaner, et puis facultatif : ComboFix.
