Virus Infection
Solved
bazfile Posted messages 58480 Registration date Status Moderator Last intervention -
Hello,
I am a victim of an infection following my visit to an unknown and likely harmful site.
This is manifested by a "McAfee Security Alert" window opening on the screen and rapidly refreshing while increasing the number of detected viruses.
e.g.: d2ff7ibc6074bc738olhdg.allowtoproceed.com
FRST is done, here are the links:
https://pjjoint.malekal.com/files.php?id=FRST_20250815_e15w7i9j9z8
https://pjjoint.malekal.com/files.php?id=20250815_v11q11w9b13i12
Thank you in advance for your help, I remain available for any further information.
Best regards
5 answers
Hello,
What you are explaining seems to indicate simple browser notifications.
We have an article on this subject here:
https://www.commentcamarche.net/applis-sites/applications/28917-desactiver-les-notifications-des-sites-web-dans-un-navigateur/
Hello,
indeed I found the answer in the cited article, applied the given instructions and the notification windows have disappeared.
However, when I try to log into CCM from Edge, which was used when the problem occurred, there are no results. Attempts to log into 4 other regularly used sites also resulted in connection failures.
Is there still a step to be taken to regain this functionality, or is this a consequence of this infection?
From a distance, I am not 100% capable and qualified to use FRST, but if someone has time and passes by here.
I would recommend a method if you want to check for yourself:
https://forums.commentcamarche.net/forum/affich-38206831-alors-vous-voulez-supprimer-les-virus-vous-meme-comment
Then there is the possibility of resetting browsers.
But it wasn't really an infection. Notifications can be legitimate, depending on our needs and the sites that offer them (if necessary).
@Sloubi58 StatusMember
Is there not another step to carry out to regain this functionality, or is this a consequence of this infection?
As long as the notifications are no longer present, there is nothing more to do.
The FRST report shows that these were just unwanted notifications in Edge, nothing serious; if you have removed these notifications in Edge, there is no longer any problem.
If you are not sure you have removed them all, do the following.
Procedure to follow in the indicated order:
1- Open FRST as an administrator; to do this, right-click on FRST and choose run as administrator
2 - Copy the entire script that is in the box below:
Start:: CreateRestorePoint: CloseProcesses: GroupPolicy: Restriction ? Policies: C:\ProgramData\NTUSER.pol: Restriction Edge Notifications: Default -> hxxps://d2ff7i6071bc738olhdg.allowtoproceed.co.in; hxxps://gjgijkipe5e6ka.allowtoproceed.co.in; hxxps://iec6mmn9vjgxmq.allowtoproceed.co.in End::
3- Once the script is copied, click on Fix, FRST will automatically take the script that is in the clipboard.
Let the correction take place; once it is finished, you will be asked to restart your PC, do so as soon as requested, see below.
Then once your computer has restarted:
4- You will have a Fixlog file on your desktop; then send this fixlog report to https://pjjoint.malekal.com/ or https://www.catupload.com/.
Then provide the link generated by https://pjjoint.malekal.com/ or https://www.catupload.com/ in your response.
5- CHECK AND LET ME KNOW IF YOUR PROBLEM IS STILL PRESENT.
Hello,
the manipulation proposed by Bazfile has been completed, here is the report link:
https://pjjoint.malekal.com/files.php?id=20250820_p6j6g15q5x8
I no longer have a window opening on my browser.
Thank you
@Sloubi58 StatusMember .
The fixlog is OK, the notifications were still present, they have been deleted, the problem is resolved.
In the future, be more careful before clicking, here are two examples of popups that record notifications in the browser. If you click on allow, they will be saved in the internet browser:
Uninstall FRST, rename the FRST file you downloaded to uninstall, then once the file is renamed, open it, the uninstallation will be done automatically via a PC restart.
