WinYahoo
bacterie62
-
Malekal_morte- Messages postés 178136 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Malekal_morte- Messages postés 178136 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
je n'arrive pas à supprimer cet adware. j'ai trouvé l'emplacement que j'ai copié/collé (tout ou partie je ne sais pas car ça fait des km). est ce que quelqu'un peut me dire si je peux supprimer ce fichier ci-dessous ?? mercii
src 'self' chrome://resources; style-src 'unsafe-inline' *; img-src *; media-src 'self'"},"description":"User feedback extension","display_in_launcher":false,"display_in_new_tab_page":false,"icons":{"32":"images/icon32.png","64":"images/icon64.png"},"incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDMZElzFX2J1g1nRQ/8S3rg/1CjFyDltWOxQg+9M8aVgNVxbutEWFQz+oQzIP9BB67mJifULgiv12ToFKsae4NpEUR8sPZjiKDIHumc6pUdixOm8SJ5Rs16SMR6+VYxFUjlVW+5CA3IILptmNBxgpfyqoK0qRpBDIhGk1KDEZ4zqQIDAQAB","manifest_version":2,"name":"Feedback","permissions":["feedbackPrivate","chrome://resources/"],"version":"1.0"},"never_activated_since_loaded":true,"path":"C:\\Users\\beatrice\\AppData\\Local\\Google\\Chrome\\Application\\38.0.2125.101\\resources\\feedback","preferences":{},"regular_only_preferences":{},"running":false,"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"ibnjmihbbanannlbobkbmnmckjnmdnom":{"ack_prompt_count":1,"active_permissions":{"api":["bookmarks","contextMenus","cookies","history","management","notifications","storage","tabs","topSites","unlimitedStorage","webNavigation","webRequest","webRequestBlocking"],"explicit_host":["\u003Call_urls>","chrome://favicon/*"],"manifest_permissions":[],"scriptable_host":["http://*/*","https://*/*"]},"commands":{},"content_settings":[],"creation_flags":9,"events":[],"from_bookmark":false,"from_webstore":true,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13057919873372072","lastpingday":"13062758407924830","location":6,"manifest":{"author":"The Rocketeers","background":{"page":"/background.html","persistent":true},"chrome_url_overrides":{"newtab":"/newtab.html"},"content_scripts":[{"js":["/js/bootstrap.js"],"matches":["http://*/*","https://*/*"],"run_at":"document_start"},{"css":["/css/opentab_global.css"],"js":["/lib/utils.js","/lib/angular.min.js","/lib/angular-route.min.js","/lib/jquery-2.1.1.min.js","/lib/lodash.underscore.min.js","/lib/mixins.loadash.js","/lib/moment-with-langs.min.js","/lib/TweenMax.min.js","/js/opentab.js"],"matches":["http://*/*","https://*/*"],"run_at":"document_idle"}],"content_security_policy":"script-src 'self' 'unsafe-eval' https://s3.amazonaws.com https://stats.g.doubleclick.net https://*.google-analytics.com https://*.uservoice.com https://maps.googleapis.com https://maps.gstatic.com; object-src 'self' ","current_locale":"fr","default_locale":"en","description":"The best way to get to your favorite websites!","icons":{"128":"/img/icons/128.png","16":"/img/icons/16.png","48":"/img/icons/48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHGVEsw8TlUKtmdNQTZAyGHAjEoCSVVYeumBdDOc3p6XjDQeSFew3Sv1uWTBv4jSbwZF3+nGDQv6K56bEWjEdPcUadWrMc99lyHqteh60z2iZcavcVkFZ44eJJ8ApldHFsCVIs7kEE0EgGYhx1
src 'self' chrome://resources; style-src 'unsafe-inline' *; img-src *; media-src 'self'"},"description":"User feedback extension","display_in_launcher":false,"display_in_new_tab_page":false,"icons":{"32":"images/icon32.png","64":"images/icon64.png"},"incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDMZElzFX2J1g1nRQ/8S3rg/1CjFyDltWOxQg+9M8aVgNVxbutEWFQz+oQzIP9BB67mJifULgiv12ToFKsae4NpEUR8sPZjiKDIHumc6pUdixOm8SJ5Rs16SMR6+VYxFUjlVW+5CA3IILptmNBxgpfyqoK0qRpBDIhGk1KDEZ4zqQIDAQAB","manifest_version":2,"name":"Feedback","permissions":["feedbackPrivate","chrome://resources/"],"version":"1.0"},"never_activated_since_loaded":true,"path":"C:\\Users\\beatrice\\AppData\\Local\\Google\\Chrome\\Application\\38.0.2125.101\\resources\\feedback","preferences":{},"regular_only_preferences":{},"running":false,"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"ibnjmihbbanannlbobkbmnmckjnmdnom":{"ack_prompt_count":1,"active_permissions":{"api":["bookmarks","contextMenus","cookies","history","management","notifications","storage","tabs","topSites","unlimitedStorage","webNavigation","webRequest","webRequestBlocking"],"explicit_host":["\u003Call_urls>","chrome://favicon/*"],"manifest_permissions":[],"scriptable_host":["http://*/*","https://*/*"]},"commands":{},"content_settings":[],"creation_flags":9,"events":[],"from_bookmark":false,"from_webstore":true,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13057919873372072","lastpingday":"13062758407924830","location":6,"manifest":{"author":"The Rocketeers","background":{"page":"/background.html","persistent":true},"chrome_url_overrides":{"newtab":"/newtab.html"},"content_scripts":[{"js":["/js/bootstrap.js"],"matches":["http://*/*","https://*/*"],"run_at":"document_start"},{"css":["/css/opentab_global.css"],"js":["/lib/utils.js","/lib/angular.min.js","/lib/angular-route.min.js","/lib/jquery-2.1.1.min.js","/lib/lodash.underscore.min.js","/lib/mixins.loadash.js","/lib/moment-with-langs.min.js","/lib/TweenMax.min.js","/js/opentab.js"],"matches":["http://*/*","https://*/*"],"run_at":"document_idle"}],"content_security_policy":"script-src 'self' 'unsafe-eval' https://s3.amazonaws.com https://stats.g.doubleclick.net https://*.google-analytics.com https://*.uservoice.com https://maps.googleapis.com https://maps.gstatic.com; object-src 'self' ","current_locale":"fr","default_locale":"en","description":"The best way to get to your favorite websites!","icons":{"128":"/img/icons/128.png","16":"/img/icons/16.png","48":"/img/icons/48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHGVEsw8TlUKtmdNQTZAyGHAjEoCSVVYeumBdDOc3p6XjDQeSFew3Sv1uWTBv4jSbwZF3+nGDQv6K56bEWjEdPcUadWrMc99lyHqteh60z2iZcavcVkFZ44eJJ8ApldHFsCVIs7kEE0EgGYhx1
2 réponses
-
Salut,
Détecté par quel logiciel ?
Tu peux envoyer le rapport sur https://pjjoint.malekal.com
et donner ensuite le lien ici.
-
-
-
Le lien est donné, c'est pour stocker le rapport et pouvoir le visualiser.
Toute façon, l'ordi doit pas être infecté.
Pour vérifier :
Suis le tutoriel FRST. ( prends le temps de lire attentivement - tout y est bien expliqué ).
Télécharge et lance le scan FRST,
Attendre la fin du scan, un message indique que l'analyse est terminée.
Trois rapports FRST seront générés :- FRST.txt
- Shortcut.txt
- Additionnal.txt
Envoie ces 3 rapports sur le site https://pjjoint.malekal.com/ afin de les partager.
En retour donne les 3 liens pjjoint qui mènent aux rapports ici dans une nouvelle réponse afin que l'on puisse les consulter. -
https://pjjoint.malekal.com/files.php?id=FRST_20171215_u14r8g5r6u13
arghh .... j'ai pu copier que le 3è lien et je retrouve pas les autres j'ai pas pensé à les copier au fur et à mesure :/ ... j'ai eu un peu de mal à télécharger FRST que malawabytes bloquait systématiquement. j'ai eu du mal à retrouver les fichiers, il était aller me les coller dans un autre dossier sur mon bureau. dslée, j'en ai peut etre envoyé 1 deux fois. j'espère que ça ira qd meme. mercii -
il manque Addition.txt
Désinstalle :
MyWinlocker
QuickTime
Spybot
Tu as des extensions parasites sur Chrome
FromDocToPDF
Ask Web Search
Réinitialise/Répare les navigateurs WEB concernés par les problèmes :- Réparer Google Chrome (seulement le premier paragraphe).
-
-
franchement, y a que ça comme détection :
Fichier: 1
PUP.Optional.WinYahoo, C:\USERS\BEATRICE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Échec de la suppression, [58], [454790],1.0.3495
- Soit tu fais rien.
- Soit : Réinstalle proprement Google Chrome, en suivant exactement cette procédure : Réparer et réinstaller proprement Google Chrome
(Si tu as un compte synchronisé, lire le paragraphe suivant).