Virus crossbowser
Résolu/Fermé
steeve7
-
13 mai 2015 à 09:47
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 13 mai 2015 à 11:05
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 13 mai 2015 à 11:05
A voir également:
- Virus crossbowser
- Youtu.be virus - Accueil - Guide virus
- Svchost.exe virus - Guide
- Faux message virus ordinateur - Accueil - Arnaque
- Softonic virus ✓ - Forum Virus
- Virus mcafee - Accueil - Piratage
3 réponses
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 660
13 mai 2015 à 09:51
13 mai 2015 à 09:51
Salut,
Je regarde les rapports =)
Je regarde les rapports =)
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 660
13 mai 2015 à 09:58
13 mai 2015 à 09:58
Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix
Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :
HKU\S-1-5-21-1796802383-181925880-165530892-1001\...\Run: [GoogleChromeAutoLaunch_23F9AC33A95C8109FCB85B1788ECEDD8] => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440 2015-03-16] (Crossbrowse) BHO: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx64.dll [2014-04-02] (SIEN)
BHO-x32: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll [2014-04-02] (SIEN)
2015-05-12 04:13 - 2015-05-12 04:13 - 00000000 ____D () C:\Program Files (x86)\predm
2015-05-12 04:12 - 2015-05-12 04:23 - 00003432 _____ () C:\Windows\System32\Tasks\NetEngine
2015-05-12 04:12 - 2015-05-12 04:12 - 00000000 ____D () C:\ProgramData\NetEngine
2015-05-12 04:09 - 2015-05-12 04:28 - 00000007 _____ () C:\Users\STEEVE\AppData\Roaming\Syshandle.txt
2015-05-12 04:08 - 2015-05-12 05:08 - 00002462 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job
2015-05-12 04:08 - 2015-05-12 05:08 - 00002462 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job
2015-05-12 04:08 - 2015-05-12 05:08 - 00002128 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job
2015-05-12 04:08 - 2015-05-12 04:08 - 00005460 _____ () C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Users\STEEVE\AppData\Local\Crossbrowse
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\System NotifierV11.05
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\Iminent
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\Crossbrowse
2015-05-12 04:07 - 2015-05-12 04:13 - 00000000 ____D () C:\Users\STEEVE\AppData\Local\gmsd_fr_515
2015-05-12 04:07 - 2015-05-12 04:07 - 00631296 _____ () C:\Windows\kol.dat
2015-05-12 04:07 - 2015-05-12 04:07 - 00000000 ____D () C:\Users\STEEVE\AppData\Roaming\SystClean
2015-05-12 04:06 - 2015-05-12 04:06 - 00000000 ____D () C:\ProgramData\LolliScan
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {53AD5FDA-C868-4BEA-8055-A0EF0DBD677F} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5 => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {88E351DC-83C1-45B0-969A-908C69BFC718} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-10.exe <==== ATTENTION
Task: {9B24BE60-4639-4130-B7C7-34128E695C29} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {E52E1832-72F6-458E-B8DD-C9732C00AAC5} - System32\Tasks\NetEngine => C:\ProgramData\NetEngine\bin\D10\netengine.exe [2015-05-12] () <==== ATTENTION
Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.
Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.
Redémarre l'ordinateur
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix
Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :
HKU\S-1-5-21-1796802383-181925880-165530892-1001\...\Run: [GoogleChromeAutoLaunch_23F9AC33A95C8109FCB85B1788ECEDD8] => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440 2015-03-16] (Crossbrowse) BHO: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx64.dll [2014-04-02] (SIEN)
BHO-x32: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll [2014-04-02] (SIEN)
2015-05-12 04:13 - 2015-05-12 04:13 - 00000000 ____D () C:\Program Files (x86)\predm
2015-05-12 04:12 - 2015-05-12 04:23 - 00003432 _____ () C:\Windows\System32\Tasks\NetEngine
2015-05-12 04:12 - 2015-05-12 04:12 - 00000000 ____D () C:\ProgramData\NetEngine
2015-05-12 04:09 - 2015-05-12 04:28 - 00000007 _____ () C:\Users\STEEVE\AppData\Roaming\Syshandle.txt
2015-05-12 04:08 - 2015-05-12 05:08 - 00002462 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job
2015-05-12 04:08 - 2015-05-12 05:08 - 00002462 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job
2015-05-12 04:08 - 2015-05-12 05:08 - 00002128 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job
2015-05-12 04:08 - 2015-05-12 04:08 - 00005460 _____ () C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Users\STEEVE\AppData\Local\Crossbrowse
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\System NotifierV11.05
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\Iminent
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\Crossbrowse
2015-05-12 04:07 - 2015-05-12 04:13 - 00000000 ____D () C:\Users\STEEVE\AppData\Local\gmsd_fr_515
2015-05-12 04:07 - 2015-05-12 04:07 - 00631296 _____ () C:\Windows\kol.dat
2015-05-12 04:07 - 2015-05-12 04:07 - 00000000 ____D () C:\Users\STEEVE\AppData\Roaming\SystClean
2015-05-12 04:06 - 2015-05-12 04:06 - 00000000 ____D () C:\ProgramData\LolliScan
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {53AD5FDA-C868-4BEA-8055-A0EF0DBD677F} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5 => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {88E351DC-83C1-45B0-969A-908C69BFC718} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-10.exe <==== ATTENTION
Task: {9B24BE60-4639-4130-B7C7-34128E695C29} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {E52E1832-72F6-458E-B8DD-C9732C00AAC5} - System32\Tasks\NetEngine => C:\ProgramData\NetEngine\bin\D10\netengine.exe [2015-05-12] () <==== ATTENTION
Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.
Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.
Relance FRST et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.
Redémarre l'ordinateur
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
- Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
- Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=
- Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-05-2015
Ran by STEEVE at 2015-05-13 10:08:19 Run:1
Running from C:\Users\STEEVE\Desktop
Loaded Profiles: STEEVE (Available profiles: STEEVE)
Boot Mode: Normal
==============================================
Content of fixlist:
HKU\S-1-5-21-1796802383-181925880-165530892-1001\...\Run: [GoogleChromeAutoLaunch_23F9AC33A95C8109FCB85B1788ECEDD8] => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440 2015-03-16] (Crossbrowse) BHO: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx64.dll [2014-04-02] (SIEN)
BHO-x32: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll [2014-04-02] (SIEN)
2015-05-12 04:13 - 2015-05-12 04:13 - 00000000 ____D () C:\Program Files (x86)\predm
2015-05-12 04:12 - 2015-05-12 04:23 - 00003432 _____ () C:\Windows\System32\Tasks\NetEngine
2015-05-12 04:12 - 2015-05-12 04:12 - 00000000 ____D () C:\ProgramData\NetEngine
2015-05-12 04:09 - 2015-05-12 04:28 - 00000007 _____ () C:\Users\STEEVE\AppData\Roaming\Syshandle.txt
2015-05-12 04:08 - 2015-05-12 05:08 - 00002462 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job
2015-05-12 04:08 - 2015-05-12 05:08 - 00002462 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job
2015-05-12 04:08 - 2015-05-12 05:08 - 00002128 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job
2015-05-12 04:08 - 2015-05-12 04:08 - 00005460 _____ () C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Users\STEEVE\AppData\Local\Crossbrowse
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\System NotifierV11.05
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\Iminent
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\Crossbrowse
2015-05-12 04:07 - 2015-05-12 04:13 - 00000000 ____D () C:\Users\STEEVE\AppData\Local\gmsd_fr_515
2015-05-12 04:07 - 2015-05-12 04:07 - 00631296 _____ () C:\Windows\kol.dat
2015-05-12 04:07 - 2015-05-12 04:07 - 00000000 ____D () C:\Users\STEEVE\AppData\Roaming\SystClean
2015-05-12 04:06 - 2015-05-12 04:06 - 00000000 ____D () C:\ProgramData\LolliScan
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {53AD5FDA-C868-4BEA-8055-A0EF0DBD677F} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5 => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {88E351DC-83C1-45B0-969A-908C69BFC718} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-10.exe <==== ATTENTION
Task: {9B24BE60-4639-4130-B7C7-34128E695C29} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {E52E1832-72F6-458E-B8DD-C9732C00AAC5} - System32\Tasks\NetEngine => C:\ProgramData\NetEngine\bin\D10\netengine.exe [2015-05-12] () <==== ATTENTION
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}" => Key deleted successfully.
"HKCR\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}" => Key deleted successfully.
C:\Program Files (x86)\predm => Moved successfully.
C:\Windows\System32\Tasks\NetEngine => Moved successfully.
C:\ProgramData\NetEngine => Moved successfully.
C:\Users\STEEVE\AppData\Roaming\Syshandle.txt => Moved successfully.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job => Moved successfully.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job => Moved successfully.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job => Moved successfully.
C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5 => Moved successfully.
"C:\Users\STEEVE\AppData\Local\Crossbrowse" directory move:
Could not move "C:\Users\STEEVE\AppData\Local\Crossbrowse" directory. => Scheduled to move on reboot.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse => Moved successfully.
C:\Program Files (x86)\System NotifierV11.05 => Moved successfully.
C:\Program Files (x86)\Iminent => Moved successfully.
"C:\Program Files (x86)\Crossbrowse" directory move:
Could not move "C:\Program Files (x86)\Crossbrowse" directory. => Scheduled to move on reboot.
C:\Users\STEEVE\AppData\Local\gmsd_fr_515 => Moved successfully.
C:\Windows\kol.dat => Moved successfully.
C:\Users\STEEVE\AppData\Roaming\SystClean => Moved successfully.
C:\ProgramData\LolliScan => Moved successfully.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job not found.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job not found.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{53AD5FDA-C868-4BEA-8055-A0EF0DBD677F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53AD5FDA-C868-4BEA-8055-A0EF0DBD677F}" => Key deleted successfully.
C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5 not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a35ed67d-e5d0-4c33-8616-9c85196826d4-5" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{88E351DC-83C1-45B0-969A-908C69BFC718}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88E351DC-83C1-45B0-969A-908C69BFC718}" => Key deleted successfully.
C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9B24BE60-4639-4130-B7C7-34128E695C29}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9B24BE60-4639-4130-B7C7-34128E695C29}" => Key deleted successfully.
C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{E52E1832-72F6-458E-B8DD-C9732C00AAC5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E52E1832-72F6-458E-B8DD-C9732C00AAC5}" => Key deleted successfully.
C:\Windows\System32\Tasks\NetEngine not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NetEngine" => Key deleted successfully.
C:\Program Files (x86)\Crossbrowse => Is moved successfully.
IL EST DESINSTALLE
MERCI BCP
Ran by STEEVE at 2015-05-13 10:08:19 Run:1
Running from C:\Users\STEEVE\Desktop
Loaded Profiles: STEEVE (Available profiles: STEEVE)
Boot Mode: Normal
==============================================
Content of fixlist:
HKU\S-1-5-21-1796802383-181925880-165530892-1001\...\Run: [GoogleChromeAutoLaunch_23F9AC33A95C8109FCB85B1788ECEDD8] => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440 2015-03-16] (Crossbrowse) BHO: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx64.dll [2014-04-02] (SIEN)
BHO-x32: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll [2014-04-02] (SIEN)
2015-05-12 04:13 - 2015-05-12 04:13 - 00000000 ____D () C:\Program Files (x86)\predm
2015-05-12 04:12 - 2015-05-12 04:23 - 00003432 _____ () C:\Windows\System32\Tasks\NetEngine
2015-05-12 04:12 - 2015-05-12 04:12 - 00000000 ____D () C:\ProgramData\NetEngine
2015-05-12 04:09 - 2015-05-12 04:28 - 00000007 _____ () C:\Users\STEEVE\AppData\Roaming\Syshandle.txt
2015-05-12 04:08 - 2015-05-12 05:08 - 00002462 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job
2015-05-12 04:08 - 2015-05-12 05:08 - 00002462 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job
2015-05-12 04:08 - 2015-05-12 05:08 - 00002128 _____ () C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job
2015-05-12 04:08 - 2015-05-12 04:08 - 00005460 _____ () C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Users\STEEVE\AppData\Local\Crossbrowse
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\System NotifierV11.05
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\Iminent
2015-05-12 04:08 - 2015-05-12 04:08 - 00000000 ____D () C:\Program Files (x86)\Crossbrowse
2015-05-12 04:07 - 2015-05-12 04:13 - 00000000 ____D () C:\Users\STEEVE\AppData\Local\gmsd_fr_515
2015-05-12 04:07 - 2015-05-12 04:07 - 00631296 _____ () C:\Windows\kol.dat
2015-05-12 04:07 - 2015-05-12 04:07 - 00000000 ____D () C:\Users\STEEVE\AppData\Roaming\SystClean
2015-05-12 04:06 - 2015-05-12 04:06 - 00000000 ____D () C:\ProgramData\LolliScan
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {53AD5FDA-C868-4BEA-8055-A0EF0DBD677F} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5 => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {88E351DC-83C1-45B0-969A-908C69BFC718} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-10.exe <==== ATTENTION
Task: {9B24BE60-4639-4130-B7C7-34128E695C29} - System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user => C:\Program Files (x86)\System NotifierV11.05\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.exe <==== ATTENTION
Task: {E52E1832-72F6-458E-B8DD-C9732C00AAC5} - System32\Tasks\NetEngine => C:\ProgramData\NetEngine\bin\D10\netengine.exe [2015-05-12] () <==== ATTENTION
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}" => Key deleted successfully.
"HKCR\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}" => Key deleted successfully.
C:\Program Files (x86)\predm => Moved successfully.
C:\Windows\System32\Tasks\NetEngine => Moved successfully.
C:\ProgramData\NetEngine => Moved successfully.
C:\Users\STEEVE\AppData\Roaming\Syshandle.txt => Moved successfully.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job => Moved successfully.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job => Moved successfully.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job => Moved successfully.
C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5 => Moved successfully.
"C:\Users\STEEVE\AppData\Local\Crossbrowse" directory move:
Could not move "C:\Users\STEEVE\AppData\Local\Crossbrowse" directory. => Scheduled to move on reboot.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse => Moved successfully.
C:\Program Files (x86)\System NotifierV11.05 => Moved successfully.
C:\Program Files (x86)\Iminent => Moved successfully.
"C:\Program Files (x86)\Crossbrowse" directory move:
Could not move "C:\Program Files (x86)\Crossbrowse" directory. => Scheduled to move on reboot.
C:\Users\STEEVE\AppData\Local\gmsd_fr_515 => Moved successfully.
C:\Windows\kol.dat => Moved successfully.
C:\Users\STEEVE\AppData\Roaming\SystClean => Moved successfully.
C:\ProgramData\LolliScan => Moved successfully.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user.job not found.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5.job not found.
C:\Windows\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user.job not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{53AD5FDA-C868-4BEA-8055-A0EF0DBD677F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53AD5FDA-C868-4BEA-8055-A0EF0DBD677F}" => Key deleted successfully.
C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5 not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a35ed67d-e5d0-4c33-8616-9c85196826d4-5" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{88E351DC-83C1-45B0-969A-908C69BFC718}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88E351DC-83C1-45B0-969A-908C69BFC718}" => Key deleted successfully.
C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a35ed67d-e5d0-4c33-8616-9c85196826d4-10_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9B24BE60-4639-4130-B7C7-34128E695C29}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9B24BE60-4639-4130-B7C7-34128E695C29}" => Key deleted successfully.
C:\Windows\System32\Tasks\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a35ed67d-e5d0-4c33-8616-9c85196826d4-5_user" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{E52E1832-72F6-458E-B8DD-C9732C00AAC5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E52E1832-72F6-458E-B8DD-C9732C00AAC5}" => Key deleted successfully.
C:\Windows\System32\Tasks\NetEngine not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NetEngine" => Key deleted successfully.
> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-05-13 10:10:18)<
C:\Users\STEEVE\AppData\Local\Crossbrowse => Is moved successfully.C:\Program Files (x86)\Crossbrowse => Is moved successfully.
IL EST DESINSTALLE
MERCI BCP
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 660
13 mai 2015 à 11:05
13 mai 2015 à 11:05
=)
Voila, c'est terminé, tu peux supprimer les programmes utilisés.
Quelques conseils :
Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=
Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
(Surtout active les détections LPIs pour détecter les programmes parasites et publicitaires)
Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html
Voila, c'est terminé, tu peux supprimer les programmes utilisés.
Quelques conseils :
Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=
Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/
(Surtout active les détections LPIs pour détecter les programmes parasites et publicitaires)
Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html
13 mai 2015 à 09:56