Sujet Précédent Sujet Suivant

Virus introuvable

Fermé
CIDCRAZY - 23 août 2014 à 16:20
 Utilisateur anonyme - 3 sept. 2014 à 06:31
Bonjour,

Je ne sais pas si c est un virus ou autre chose mais cela s'attaque surtout lorsque je vais sur le net : ça ouvre des pop-up a ne plus finir sinon coté PC c'est bon. J'ai déjà fait des manipe de malware et adware j'ai fait roulé des antivirus différent un après l'autre et le problème y est toujours ... j'ai suivi les conseil des gens sur les différent post mais je ne sais pas lire les logs je vais posté ce que j'ai



19 réponses

Réponse 1 / 19
Utilisateur anonyme
23 août 2014 à 16:28
Bonjour

Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Scanner] puis patiente le temps du scan.
Une fois le scan terminé clique sur le bouton [Nettoyer]
Patiente durant le nettoyage. Lis le message qui apparaît, puis clique sur Ok . Le PC va être redémarré automatiquement et le rapport s'ouvrira à la fin du redémarrage.
Poste le rapport

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

A lire :
Les programmes potentiellement indésirables :
https://www.malekal.com/adwares-pup-protection/

Les toolbars, c'est pas obligatoire ( par Malekal ) :https://forum.malekal.com/viewtopic.php?t=6173&start=


@+

0
Réponse 2 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
23 août 2014 à 22:51
info.txt logfile of random's system information tool 1.10 2014-08-23 09:49:43

======MBR======

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

======Uninstall list======

AVG Web TuneUp-->C:\Program Files (x86)\AVG Web TuneUp\UNINSTALL.exe /PROMPT /UNINSTALL
Malwarebytes Anti-Malware version 2.0.2.1012-->"X:\Malwarebytes Anti-Malware\unins000.exe"
Visual Studio 2012 x86 Redistributables-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}

======System event log======

Computer Name: CID-PC
Event Code: 1014
Message: Name resolution for the name dns.msftncsi.com timed out after none of the configured DNS servers responded.
Record Number: 108654
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20131020214138.897333-000
Event Type: Warning
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: CID-PC
Event Code: 1014
Message: Name resolution for the name toolbar.skype.com timed out after none of the configured DNS servers responded.
Record Number: 108653
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20131020214133.546523-000
Event Type: Warning
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: CID-PC
Event Code: 1014
Message: Name resolution for the name secure.logmein.com timed out after none of the configured DNS servers responded.
Record Number: 108623
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20131020213859.754841-000
Event Type: Warning
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: CID-PC
Event Code: 27
Message: Intel(R) 82579V Gigabit Network Connection
Network link is disconnected.

Record Number: 108591
Source Name: e1cexpress
Time Written: 20131020213847.406020-000
Event Type: Warning
User:

Computer Name: CID-PC
Event Code: 4001
Message: WLAN AutoConfig service has successfully stopped.

Record Number: 108527
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20131020213807.901137-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: CID-PC
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 322
Source Name: Microsoft-Windows-WMI
Time Written: 20120830144154.000000-000
Event Type: Error
User:

Computer Name: CID-PC
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 277
Source Name: Microsoft-Windows-WMI
Time Written: 20120830143633.000000-000
Event Type: Error
User:

Computer Name: CID-PC
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-2116826974-4148180175-445609433-1000:
Process 472 (\Device\HarddiskVolume1\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-2116826974-4148180175-445609433-1000

Record Number: 226
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20120830143150.756232-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: CID-PC
Event Code: 1008
Message:
Record Number: 142
Source Name: Microsoft-Windows-Search
Time Written: 20120831015930.000000-000
Event Type: Warning
User:

Computer Name: CID-PC
Event Code: 10
Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Record Number: 141
Source Name: Microsoft-Windows-WMI
Time Written: 20120831015854.000000-000
Event Type: Error
User:

=====Security event log=====
0
Réponse 3 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
23 août 2014 à 22:52
Logfile of random's system information tool 1.10 (written by random/random)
Run by CID at 2014-08-23 09:49:30
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 13 GB (21%) free of 60 GB
Total RAM: 16339 MB (84% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 09:49:41, on 2014-08-23
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
X:\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\CID\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Logitech\G35\G35.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
X:\iTunesHelper.exe
X:\AVG\avgui.exe
C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Users\CID\Downloads\RSIT.exe
X:\AVG\avgcfgex.exe
C:\Program Files (x86)\trend micro\CID.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:23868
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *origin.com;*ea.com;*akamaihd.net;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Logitech G35] C:\Program Files (x86)\Logitech\G35\G35.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "X:\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "X:\AVG\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\CID\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "X:\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\CID\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5D98C43-DB16-11CF-8ECA-0000C0FD59C7} (ActiveCGM Control) - https://gestim.mines.gouv.qc.ca/acgm/acgm.cab
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\3.2.0\ViProtocol.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: AddonControlWiget.exe - Unknown owner - C:\Users\CID\AppData\Local\AddonControlWiget\AddonControlWiget.exe (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Pare-feu AVG (avgfws) - AVG Technologies CZ, s.r.o. - X:\AVG\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - X:\AVG\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - X:\AVG\avgwdsvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - X:\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - X:\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TunngleService - Tunngle.net GmbH - X:\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater3.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
0
Réponse 4 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
25 août 2014 à 18:35
Salut Guillaume5188 Désoler je n'avais pas vue ton message j'ai fait ce que tu as dit et voici le rapport :

# AdwCleaner v3.308 - Report created 25/08/2014 at 12:31:47
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : CID - CID-PC
# Running from : C:\Users\CID\Downloads\adwcleaner_3.308.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : netfilter64

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\predm
Folder Deleted : C:\Program Files (x86)\SweetIM
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Windows\SysWOW64\SearchProtect
Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\CID\AppData\Local\Bundled software uninstaller
Folder Deleted : C:\Users\CID\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\CID\AppData\Local\Conduit
Folder Deleted : C:\Users\CID\AppData\Local\globalUpdate
Folder Deleted : C:\Users\CID\AppData\Local\torch
Folder Deleted : C:\Users\CID\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\CID\AppData\Roaming\SecureSearch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\Public\Documents\ShopperPro
Folder Deleted : C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\Extensions\Avg@toolbar
Folder Deleted : C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\Extensions\joluoea@lgvkuukar-.com
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
Folder Deleted : C:\Users\CID\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\CID\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\CID\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\CID\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
[!] Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfccbellnkmcibanknlfmgaooleidpch
File Deleted : C:\END
File Deleted : C:\Windows\System32\drivers\netfilter64.sys
File Deleted : C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\searchplugins\avg-secure-search.xml
File Deleted : C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\user.js

***** [ Scheduled Tasks ] *****

Task Deleted : ASP

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.bandobjectattribute
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.dockingpanel
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbar
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.iesmartbarbandobject
Key Deleted : HKLM\SOFTWARE\Classes\iesmartbar.smartbarmenuform
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hamachi_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hamachi_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322282250}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322282250}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0E1FE4D8-70CE-417E-8FF4-C2B17FF3DD07}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{13B8FF9D-DEB0-4070-B846-D049218307B3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1E877590-30B7-400E-A835-B942489EB7BC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{36B445BF-1B84-466A-A623-A360A8CFF8C3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6CBF5C01-C876-481B-867E-111CB1D2A7D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D97143C2-4282-496B-BDC4-7EC852F1497C}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\Object Browser
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\TBID
Key Deleted : HKLM\SOFTWARE\Tutorials
Key Deleted : HKLM\SOFTWARE\Upt
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : [x64] HKLM\SOFTWARE\TBID
Key Deleted : [x64] HKLM\SOFTWARE\Upt

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]

-\\ Mozilla Firefox v31.0 (x86 fr)

[ File : C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\prefs.js ]

Line Deleted : user_pref("avg.wtu.ext.Revert_DSP", "Conduit Search");
Line Deleted : user_pref("avg.wtu.ext.setting_hp_list", "[{\"name\":\"AVG Secure Search\",\"value\":\"hxxp://mysearch.avg.com\"},{\"name\":\"Google\",\"value\":\"hxxp://www.google.com\"},{\"name\":\"Yahoo\",\"value\[...]
Line Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Line Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search");
Line Deleted : user_pref("extensions.Qiqx_w8JT4w.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumo[...]
Line Deleted : user_pref("extensions.Qiqx_w8JT4w.url", "hxxp://syncerjpi.info/sync2/?q=hfZ9oeqLC6nHtNbPhd98qjkErShTB6lKDzt4okqbtNtVh7n0rjnEpdw9rjn8qdn9tMFHhd9Fqda5rjYGrjwHrTgMDMlGojUMAe4UojsErTYEpdnGqTYMC6qUojaMWy4Z[...]
Line Deleted : user_pref("extensions.a9321b2762c2e4c5fbd04b8118e512707c0c8a2d632754caca0b252e936311db9com32850.32850.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Deleted : user_pref("extensions.crossrider.bic", "147dbba7a980b1da9758a1fdd8ff39b8");
Line Deleted : user_pref("{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}.ScriptData_whiteListSearch", "{\"isearch.babylon.com\":\"q\",\"search.imesh.net\":\"q\",\"www.search-results.com\":\"q\",\"home.mywebsearch.com\":\"se[...]

-\\ Google Chrome v

[ File : C:\Users\CID\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [17608 octets] - [25/08/2014 12:31:01]
AdwCleaner[S0].txt - [17121 octets] - [25/08/2014 12:31:47]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [17182 octets] ##########
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 19
Utilisateur anonyme
25 août 2014 à 18:37
Bonjour

Télécharge Malwaresbytes anti malware ici
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/

--->> Installe le (choisis bien français ); ne modifie pas les paramètres d'installe
--->> Décoche la case Activer l'essai gratuit de Malwarebytes Anti-Malware Premium à la fin de l'installation
--->> /!\ Utilisateurs de Vista/7/8/8.1 : faire un clic droit sur le raccourci de MalwareBytes' Anti-Malware et choisir Exécuter en tant qu'administrateur
--->> Clique sur Mettre à jour dans le Tableau de bord afin de mettre à jour la base de données.
--->> Dans l'onglet Examen, sélectionnez Examen Menaces puis clique sur Examiner maintenant.
--->> Une fois le scan terminé, clique sur Tout mettre en quarantaine puis sur Appliquez les actions

--->> (Si un message demande de redémarrer le PC pour terminer la suppression, accepte)

--->> Le rapport est disponible dans Historique > Journaux de l'application. (Choisis bien le dernier en date
Tu sélectionnes le fichier et tu demandes l'affichage
En bas à gauche un bouton exporter ; tu cliques dessus et tu choisis fichier texte et tu choisis ensuite ou l'enregistrer pour ensuite pouvoir le poster dans ta prochaine réponse

Merci

@+
0
Réponse 6 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
25 août 2014 à 18:37
Je fais le ménage en continu dans le PC et ça supprime toujours quelque chose ... je crois que le vilain qui fait cela ce cache et ouvre la porte a tout les autres merde qui peut y avoir sur le net ... alors disons que mes déplacement sur le net ce limite a ICI
0
Réponse 7 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
25 août 2014 à 18:41
Ah oui et si ca peu aidé il me confine il block mon control panel/programs/programs and features je ne vois que le strick minimum (driver video et autre) ma liste etait 3 fois longue comme celle que j'ai maintenant
0
Réponse 8 / 19
Utilisateur anonyme
25 août 2014 à 19:41
Cela se passe >>>ici<<<

merci
0
Réponse 9 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
28 août 2014 à 03:00
Ok j'avais déjà fait le scan avec ce programme je t envoie ce qu'il avait trouvé au tout début car la il n'a plus rien

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 2014-08-22
Scan Time: 22:56:49
Logfile: Virus.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.08.22.10
Rootkit Database: v2014.08.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: CID

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 357339
Time Elapsed: 4 min, 20 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 1
PUP.Optional.InstallMonetizer, C:\Windows\SysWOW64\DirectXDLCOpen\DirectXDLCOpen.exe, 5584, Delete-on-Reboot, [3072e9e0ee8d46f041949716e021c23e]

Modules: 0
(No malicious items detected)

Registry Keys: 72
PUP.Optional.InstallMonetizer, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\DirectXDLCOpen, Quarantined, [3072e9e0ee8d46f041949716e021c23e],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\cosstminn.cosstminn, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\cosstminn.cosstminn.2.0, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\cosstminn.cosstminn, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\cosstminn.cosstminn.2.0, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.Preload, HKLM\SOFTWARE\CLASSES\CLSID\{16E680D8-6A18-77A6-43A9-C2CD276A7FD0}\INPROCSERVER32, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.QuickShare.A, HKLM\SOFTWARE\CLASSES\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}, Quarantined, [faa83f8acab15cda0f8b51580bf707f9],
PUP.Optional.QuickShare.A, HKLM\SOFTWARE\CLASSES\IESmartBar.BHO, Quarantined, [faa83f8acab15cda0f8b51580bf707f9],
PUP.Optional.QuickShare.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}, Quarantined, [faa83f8acab15cda0f8b51580bf707f9],
PUP.Optional.QuickShare.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}, Quarantined, [faa83f8acab15cda0f8b51580bf707f9],
PUP.Optional.QuickShare.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\IESmartBar.BHO, Quarantined, [faa83f8acab15cda0f8b51580bf707f9],
PUP.Optional.QuickShare.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}, Quarantined, [faa83f8acab15cda0f8b51580bf707f9],
PUP.Optional.QuickShare.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}, Quarantined, [faa83f8acab15cda0f8b51580bf707f9],
PUP.Optional.QuickShare.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}, Quarantined, [faa83f8acab15cda0f8b51580bf707f9],
PUP.Optional.DynConIE.A, HKLM\SOFTWARE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, Quarantined, [782a68614635d561d4e1d3a2e81a738d],
PUP.Optional.DynConIE.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}, Quarantined, [782a68614635d561d4e1d3a2e81a738d],
PUP.Optional.Snapdo.T, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{006ee092-9658-4fd6-bd8e-a21a348e59f5}, Quarantined, [02a0a128b6c5c76f5d275c51b0528977],
PUP.Optional.Snapdo.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{006EE092-9658-4FD6-BD8E-A21A348E59F5}, Quarantined, [02a0a128b6c5c76f5d275c51b0528977],
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, Quarantined, [32704683176496a0f5d3442c0bf78080],
PUP.Optional.SearchProtect.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, Quarantined, [32704683176496a0f5d3442c0bf78080],
PUP.Optional.MyScrapNook.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{23119123-0854-469D-807A-171568457991}, Quarantined, [039fa326087326107be81d8ebe447d83],
PUP.Optional.MyScrapNook.A, HKLM\SOFTWARE\CLASSES\TypeLib\{03119103-0854-469D-807A-171568457991}, Quarantined, [7e24fdcc17640630f46fdad106fcb34d],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0032850.Sandbox, Quarantined, [8b17537643381e184107e60636ccac54],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0032850.Sandbox.1, Quarantined, [7c26b316dba0da5c5aee1ad27c866d93],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\20891, Quarantined, [8121be0bd5a666d0ad7c9c6db74c0ef2],
PUP.Optional.Adpeak.A, HKLM\SOFTWARE\WOW6432NODE\AllDaySavings, Quarantined, [c1e1d6f36615a690502746a63ec48e72],
Adware.EoRezo, HKLM\SOFTWARE\WOW6432NODE\FREESOFTTODAY, Quarantined, [7e24a920bfbcd363cdf488a9c73db54b],
PUP.Optional.ObjectBrowser.A, HKLM\SOFTWARE\WOW6432NODE\Object Browser, Quarantined, [1b87e6e3ed8e0333eda9e350c04439c7],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0032850.Sandbox, Quarantined, [178bbc0d116ae94d0e3afcf035cd8a76],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0032850.Sandbox.1, Quarantined, [cad843863c3f42f41e2a18d4ae54af51],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE, Quarantined, [495937925328bb7b5e9f06e7768c49b7],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\20891, Quarantined, [c1e157723942072fc66311f8c83b08f8],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, Quarantined, [cdd56366f9821422a271f45b7c88e21e],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, Quarantined, [9e0445849cdf3afc4aca9cb3669e38c8],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM, Quarantined, [e9b9c80187f46bcb189bc5674bb912ee],
PUP.Optional.SystemSpeedup, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\ssd, Quarantined, [673b5d6c97e4a98dea38ed038a7857a9],
PUP.Optional.Adpeak.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\vulsrsebjh64, Quarantined, [346e5e6ba6d5ea4c63f0db11976ba55b],
PUP.Optional.iWebar.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, Quarantined, [aaf89e2b3a415cda1dca3bd5ce355ca4],
PUP.Optional.Tuto4PC.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\TutoTag, Quarantined, [a9f94a7f0a71fc3a242466e9a95b738d],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [703203c60a713006f3262d1350b4a759],
PUP.Optional.MultiIE.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\DynConIE, Quarantined, [f2b04b7ed1aa082ea0a64cfd9d6705fb],
PUP.Optional.Conduit.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\FF, Quarantined, [a7fb3396097260d665dc1120996b46ba],
PUP.Optional.ValueApps.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\ValueApps, Quarantined, [2c7607c26912fb3b92655cb951b28c74],
PUP.Optional.SuperFish.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, Quarantined, [6a38eadfb3c80333785cf7fa9969966a],
PUP.Optional.Softonic.A, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, Quarantined, [d4ce9534a7d41d19c8dd778dee1550b0],
PUP.Optional.SystemSpeedup, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\ssd, Quarantined, [bde5e1e8fb8092a46fb2df11ac5620e0],
PUP.Optional.GlobalUpdate.T, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\globalUpdate, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\globalUpdatem, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickCtrl.10, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\globalUpdate.OneClickCtrl.10, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\globalUpdate.Update3WebControl.4, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\globalUpdate.Update3WebControl.4, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.ShopperPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}, Quarantined, [b0f2903907742d09f43951927b896e92],
PUP.Optional.ShopperPro, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}, Quarantined, [b0f2903907742d09f43951927b896e92],

Registry Values: 8
PUP.Optional.VBates, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}, Quarantined, [9c064e7b0a71a2944f4a383e9f6304fc],
PUP.Optional.VBates, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}, C:\Program Files\V-bates\Firefox, Quarantined, [9c064e7b0a71a2944f4a383e9f6304fc]
PUP.Optional.VBates, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}, C:\Program Files\V-bates\Firefox, Quarantined, [9c064e7b0a71a2944f4a383e9f6304fc]
PUP.Optional.VBates, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}, Quarantined, [624017b2afccd264f6a3f581f70b5aa6],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE|path, C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe, Quarantined, [495937925328bb7b5e9f06e7768c49b7]
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_ca_219, Quarantined, [6b37745596e573c385be09f923e08f71],
PUP.Optional.SearchProtection.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Search Protection, C:\ProgramData\Search Protection\SearchProtection.exe, Quarantined, [e9b9fbcea6d51a1c5d959382986be51b]
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM|simapp_id, {EBF79D5A-E431-11E2-8B66-C86000C646EF}, Quarantined, [e9b9c80187f46bcb189bc5674bb912ee]

Registry Data: 3
PUP.Optional.Snapdo, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, https://search.safefinder.com/?st=ds&q={searchTerms}, Good: (www.google.com), Bad: (https://search.safefinder.com/?st=ds&q={searchTerms}),Replaced,[6e34ccfd304b8bab3c2a14c8bf45d42c]
PUP.Optional.Snapdo, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, https://search.safefinder.com/?st=ds&q={searchTerms}, Good: (www.google.com), Bad: (https://search.safefinder.com/?st=ds&q={searchTerms}),Replaced,[5d45c603aecd5cda9acf8d4fe3210ff1]
PUP.Optional.Snapdo, HKU\S-1-5-21-2116826974-4148180175-445609433-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, https://search.safefinder.com/?st=ds&q={searchTerms}, Good: (www.google.com), Bad: (https://search.safefinder.com/?st=ds&q={searchTerms}),Replaced,[2979ad1ccbb0fd39e189efedc44005fb]

Folders: 38
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
Rogue.Multiple, C:\ProgramData\374311380, Quarantined, [257d8445166586b022a21499d82a42be],
PUP.Optional.OpenCandy, C:\Users\CID\AppData\Roaming\OpenCandy, Quarantined, [435f6267a7d4d6604024ead35ca6aa56],
PUP.Optional.OpenCandy, C:\Users\CID\AppData\Roaming\OpenCandy\8CF509EDB46E46EDAEAF56D92534F9F9, Quarantined, [435f6267a7d4d6604024ead35ca6aa56],
PUP.Optional.OpenCandy, C:\Users\CID\AppData\Roaming\OpenCandy\OpenCandy_8CF509EDB46E46EDAEAF56D92534F9F9, Quarantined, [435f6267a7d4d6604024ead35ca6aa56],
PUP.Optional.Conduit.A, C:\ProgramData\Conduit\IE, Quarantined, [1d858f3a205beb4bda14a11cca3827d9],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\defaults, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\defaults\preferences, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\userCode, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\locale, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\locale\en-US, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.SystemSpeedup, C:\Users\CID\AppData\Roaming\Systweak\ssd, Quarantined, [079b8b3e4635bf77fb46a333ff03e719],
PUP.Optional.Vbates.A, C:\Program Files\V-bates, Quarantined, [c6dc77521a61162063a40bcceb17956b],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\Download, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\Install, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\Offline, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\Offline\{E669F89E-BC5F-4684-808A-B1717797CE3F}, Quarantined, [01a1577281faec4aafc85c7bec1614ec],
PUP.Optional.MultiPlug.A, C:\ProgramData\cosstminn, Quarantined, [564cdbeeadce41f5615030a7b25028d8],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\cosstminn, Quarantined, [20827d4c7dfe24126052d2057092cb35],
PUP.Optional.Adpeak.A, C:\Program Files\AllDaySavings, Quarantined, [90129435c2b9fa3caf761abf9a68a858],
PUP.Optional.Adpeak.A, C:\Program Files\AllDaySavings\SSL, Quarantined, [90129435c2b9fa3caf761abf9a68a858],
PUP.Optional.AdvancedSystemProtector.A, C:\ProgramData\Systweak\Advanced-System-Protector, Quarantined, [4f5309c048337db9b137db00d72b13ed],
PUP.Optional.AdvancedSystemProtector.A, C:\ProgramData\Systweak\Advanced-System-Protector\2.1.1000.13665, Quarantined, [4f5309c048337db9b137db00d72b13ed],
PUP.Optional.AdvancedSystemProtector.A, C:\ProgramData\Systweak\Advanced-System-Protector\signatures, Quarantined, [4f5309c048337db9b137db00d72b13ed],
PUP.Optional.AdvancedSystemProtector.A, C:\ProgramData\Systweak\Advanced-System-Protector\updates, Quarantined, [4f5309c048337db9b137db00d72b13ed],
PUP.Optional.AdvancedSystemProtector.A, C:\Users\CID\AppData\Roaming\Systweak\Advanced-System-Protector, Quarantined, [8b1725a4730867cf06e27665c93937c9],
PUP.Optional.AdvancedSystemProtector.A, C:\Users\CID\AppData\Roaming\Systweak\Advanced-System-Protector\2.1.1000.13665, Quarantined, [8b1725a4730867cf06e27665c93937c9],
PUP.Optional.FLVMPlayer, C:\Program Files (x86)\FLVM Player, Quarantined, [1290a0291665082ee452b92b6a98966a],

Files: 187
PUP.Optional.InstallMonetizer, C:\Windows\SysWOW64\DirectXDLCOpen\DirectXDLCOpen.exe, Delete-on-Reboot, [3072e9e0ee8d46f041949716e021c23e],
PUP.Optional.Preload, C:\Program Files (x86)\cosstminn\oaqzC4Cz8.x64.dll, Quarantined, [5e447f4a5e1d41f57635009fc43df60a],
PUP.Optional.RegCleanPro, C:\Windows\System32\roboot64.exe, Quarantined, [841e3495e299d1659a73cfda0af77e82],
PUP.Optional.RegCleanerPro, C:\Windows\System32\Tasks\ASP, Quarantined, [703284455a214aeca3c47276b44e2dd3],
PUP.Optional.VBates, C:\Windows\System32\Tasks\FF Watcher {3AF2B861-6AB7-47C9-B7AF-D84C030FF521}, Quarantined, [b1f1705993e8cb6b75f3b73157ab2fd1],
PUP.Optional.VBates, C:\Windows\Tasks\FF Watcher {3AF2B861-6AB7-47C9-B7AF-D84C030FF521}.job, Quarantined, [00a23a8f96e566d084e5a840af5355ab],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-1, Quarantined, [c9d907c22358c6703bbd7578b74bff01],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-11, Quarantined, [0e94e0e9562578beab4d47a634ce9c64],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-2, Quarantined, [d6ccf5d4cbb01521b93fb7367a88b848],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-3, Quarantined, [782a824795e688ae8e6ac726f111cd33],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-4, Quarantined, [4a58e5e4116a50e68a6ecf1e7191b050],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-5, Quarantined, [a101e7e285f65bdbb840638af40e34cc],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-5_user, Quarantined, [ced46267512a30066197b736e0228c74],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\background.html, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\d3ed873d-1aa9-403d-865a-bf86cc28ae02.xpi, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\1293297481.mxaddon, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\2e7ada7c-c1d1-4b17-89b0-c1df5cfd7b8e.crx, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\5abb3e65-dcc4-4203-9024-f429ae1a8f15.crx, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\d3ed873d-1aa9-403d-865a-bf86cc28ae02-11.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\d3ed873d-1aa9-403d-865a-bf86cc28ae02-2.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\d3ed873d-1aa9-403d-865a-bf86cc28ae02-3.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\d3ed873d-1aa9-403d-865a-bf86cc28ae02.crx, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\d3ed873d-1aa9-403d-865a-bf86cc28ae02_.xpi, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\Object Browser-bg.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\Object Browser-buttonutil.dll, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\Object Browser-buttonutil.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\Object Browser-buttonutil64.dll, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\Object Browser-buttonutil64.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\Object Browser-codedownloader.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\Object Browser.ico, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\Uninstall.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.ObjectBrowser.A, C:\Program Files (x86)\Object Browser\utils.exe, Quarantined, [0b97f4d5ea91bd79821151e2f014ed13],
PUP.Optional.Conduit.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\searchplugins\conduit-search.xml, Quarantined, [1b878d3ce49768ce2667440751b37888],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-1.job, Quarantined, [208206c390eb93a38dfb3f0d07fdc13f],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-11.job, Quarantined, [c8da6465a7d4bf7711778ebe10f454ac],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-2.job, Quarantined, [3171c306c6b57eb88206d27aaa5a44bc],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-3.job, Quarantined, [0e948148314a2b0bd4b44c0017eda060],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-4.job, Quarantined, [bfe3bf0ab6c50e284b3d69e38d771ce4],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-5.job, Quarantined, [960cb11854276acc6622bd8fc93b619f],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\d3ed873d-1aa9-403d-865a-bf86cc28ae02-5_user.job, Quarantined, [277b8049ea9148ee98f0440806fe04fc],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job, Quarantined, [8f13c108c0bbbb7bfca2cb81996baa56],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore, Quarantined, [72307356e19a3ff72877f854ac580000],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job, Quarantined, [8f136861255689adcfd154f857add729],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA, Quarantined, [455d824775062511cfd29cb033d14db3],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\1484eeef-9477-479b-aab2-817cd41839f7.job, Quarantined, [e2c086436a11a88ecf42b09f7391ae52],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\1484eeef-9477-479b-aab2-817cd41839f7, Quarantined, [188a38915b208ea82de581ce54b02ed2],
Rogue.Multiple, C:\ProgramData\374311380\BIT3034.tmp, Quarantined, [257d8445166586b022a21499d82a42be],
PUP.Optional.OpenCandy, C:\Users\CID\AppData\Roaming\OpenCandy\8CF509EDB46E46EDAEAF56D92534F9F9\3402.ico, Quarantined, [435f6267a7d4d6604024ead35ca6aa56],
PUP.Optional.OpenCandy, C:\Users\CID\AppData\Roaming\OpenCandy\8CF509EDB46E46EDAEAF56D92534F9F9\EBB77268-338F-4C6A-8590-AD88FED26F4A, Quarantined, [435f6267a7d4d6604024ead35ca6aa56],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome.manifest, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\install.rdf, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\3519b7a2b2626975736015513a7db976.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\38ca43eda9d5f9a03f98e3231d3c770e.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\63e997f298f55576adc9f9bc6560652a.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\78e70a5070ff894642a62da0f6b28591.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\a0696322afb767d9998af95ed5e81cfa.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\background.html, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\browser.xul, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\dialog.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\e185c990f64713256f45c7e6d4329eeb.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\ffCoreFilesIndex.txt, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\options.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\options.xul, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\search_dialog.xul, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\09cadb005fdba30653ed9596b7e41ae3.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\1d363a24247e1cf98c05035316f12338.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\1ed0b19a6a98b38e90719af6f8ab0984.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\59a96815070019a61656a39bc658805a.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\61254eecde248d5550044026b4bd0124.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\6bf9dbba060ace47dcb527245d9ecd09.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\6d54dfd9acab91f17ac5f74836e33a57.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\72d31a83fed65d38819f26b9b3732015.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\7711bb73d9c456e2885e7c0b3d26d820.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\8a1d30c1ea2ec292280a6b347d90daa0.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\934b37c1d6da8808f6f01b354a6b409b.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\cb9eaadd5023dfb10740f20197185396.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\d60a906430b08356ef1625194bb89240.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\dbd580d5123420d245bc6c84f967ba99.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\def5a6269a8d93a1f1fa04fcb2f202c8.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\api\f33b01cd279cd371e46384de82a72e7d.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\0a4efe52cde60b024817d4578639a3e4.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\14d273866d0997998e236180a15b8131.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\157f9a80cdd3d64d3143cc42c35a4157.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\35d26468b0c8fd8b2f3b1b21a29aba86.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\40662bd7f3a0d8e7993e1f8d585c5895.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\589351123b9a088193bd31f35c72103c.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\5a9f99a107be1888007d19ac9436c9f9.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\60a78bbc9e007af4f08fddeed78b3d59.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\74e9d24604f6f73fe0f645d1db28bc29.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\76ca38b7ffe64b03260a1a47c6e28dcc.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\7bcf4a74a8be3bc8402ac1ea2ab23dd9.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\98be0cc1d653c209bae63c8c167a44ab.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\a247079601f7204fdf8242befe36b0d4.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\a9c2f4db3884580c6d4b8bace93e5bdb.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\aa38c5b08089861afc7ecf32c1058ba0.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\aefe8a6365df3a9d5d99ab3dc6bb7047.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\c72440aa32fa80ac561f35cd9a5cfa1f.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\c9915f8e223463975f109cfef9690673.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\dd11682d70e521e2601b8d3e2ad8c787.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\f490359a42be3adc81e38daa41fd963c.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\chrome\content\core\installer.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\defaults\preferences\prefs.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\manifest.xml, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins.json, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\230.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\1.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\102.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\104.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\123.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\13.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\14.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\16.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\17.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\177.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\180.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\182.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\183.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\184.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\191.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\207.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\21.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\211.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\22.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\220.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\221.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\223.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\226.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\233.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\242.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\244.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\246.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\260.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\263.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\268.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\275.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\28.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\281.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\286.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\4.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\47.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\64.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\7.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\72.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\78.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\9.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\91.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\93.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\plugins\98.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\userCode\background.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\extensionData\userCode\extension.js, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\locale\en-US\translations.dtd, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\button1.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\button2.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\button3.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\button4.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\button5.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\crossrider_statusbar.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\icon128.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\icon16.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5f-bd04-b8118e512707@c0c8a2d6-3275-4cac-a0b2-52e936311db9.com\skin\icon24.png, Quarantined, [455d5277f78473c36187962c0ff3718f],
PUP.Optional.CrossRider.A, C:\Users\CID\AppData\Roaming\Mozilla\Firefox\Profiles\cophj54g.default-1385170536480\extensions\9321b276-2c2e-4c5
0
Réponse 10 / 19
Utilisateur anonyme
28 août 2014 à 07:20
Bonjour

Pour de plus amples informations, fait ceci stp

Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :

https://nicolascoolman.eu

Ou

https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/



Une fois le téléchargement achevé,

Double-clique sur l'icône pour lancer le programme. Sous Vista ; Seven ou Windows 8 clic droit « exécuter en tant que administrateur »


Dans la fenêtre ZHPDiag qui vient de s'ouvrir, clique sur "Configurer"

Clique sur la loupe en bas à gauche avec le signe plus pour lancer l'analyse.


Laisse l'outil travailler, il peut être assez long.

Un rapport s'ouvre. Ce rapport se trouve également sur ton bureau

Pour transmettre le rapport clique sur ce lien:
http://pjjoint.malekal.com/

Si problème utilise un des suivants

https://forums-fec.be/upload
https://www.cjoint.com/


Regarde sur le bureau

Sélectionne le fichier ZHPDiag.txt.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.com/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.

Merci

@+

0
Réponse 11 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
29 août 2014 à 01:45
Merci Guillaume de prendre le temps de faire tout ça je te suis très reconnaissant

https://pjjoint.malekal.com/files.php?id=ZHPDiag_20140829_c11b15r14b11v6
0
Réponse 12 / 19
Utilisateur anonyme
29 août 2014 à 07:26
Bonjour

Utilisation de l'outil ZHPFix :

* Copie tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )

Script ZHPFix
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *origin.com;*ea.com;*akamaihd.net;<local>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:23868
[HKLM\Software\AllDaySavings ]
[HKLM\Software\RST]
[HKLM\Software\ShopperPro]
[HKLM\Software\Wow6432Node\RST]
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DesktopWeatherAlertsApp_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DesktopWeatherAlertsApp_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-Silent-11E4_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-Silent-11E4_RASMANCS
C:\Users\CID\AppData\Local\Installer
[HKLM\Software\AllDaySavings ]
[HKLM\Software\ShopperPro]
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{2FB62F95-8B88-47B2-97C1-6B483AF41098}] (...) -- D:\WoT\WOTLauncher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{84F03E20-CF23-4A4E-91E9-F09EA28D5F74}] (...) -- C:\Users\CID\AppData\Local\Temp\Temp1_ISCT_V2113470_Win7.zip\ISCT_V2113470_Win7\Setup.exe (.not file.) [0]
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Clé orpheline
O23 - Service: (vToolbarUpdater3.2.0) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe (.not file.)
SS - | Auto 1658-07-10 0 | (vToolbarUpdater3.2.0) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe
[HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater3.2.0]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6c97a91e-4524-4019-86af-2aa2d567bf5c}]
ShortcutFix
EmptyPrefetch
FirewallRAZ
Emptytemp
EmptyCLSID

--------------------------------------------------------------------------------------------
Lance ZHPFix à partir du raccourci sur ton Bureau (si tu es sous Windows Vista ou Windows 7 ou 8, fais le par un clic-droit --> Exécuter en tant qu'administrateur)

Cliquer sur le bouton Importer. Le contenu du Presse-papier vient se coller dans la zone de saisie de ZHPFix

NB (W8) : Dans certains cas le script se colle automatiquement dans la zone de script et ne nécessite pas de cliquer sur le bouton "IMPORTER".

* Clique sur le bouton GO pour lancer le nettoyage.

-> laisse travailler l'outil et ne touche à rien ...
-> S'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le !


Une fois terminé, un nouveau rapport s'affiche : poste le contenu de ce dernier dans ta prochaine réponse ...
Ce rapport est copié sur le bureau

( ce rapport est en outre sauvegardé dans ce dossier :
- Pour XP : C:\Documents and Settings\username\Local Settings\Application Data\ZHP
- Depuis Vista : C:\Users\username\AppData\Roaming\ZHP\ZHPFix [R1].txt)



@+
0
Réponse 13 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
29 août 2014 à 23:39
Tien guillaume présentement je viens de tomber en vacance pour 4 jours alors je vais pouvoir te répondre plus rapidement

Rapport de ZHPFix 2014.8.3.6 par Nicolas Coolman, Update du 03/08/2014
Fichier d'export Registre :
Run by CID at 2014-08-29 17:36:38
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Corbeille vidée (00mn 03s)
Dossier Prefetcher vidé
Réparation des raccourcis navigateur

========== Clés du Registre ==========
SUPPRIMÉ:* HKLM\Software\AllDaySavings
SUPPRIMÉ:* HKLM\Software\RST
SUPPRIMÉ:* HKLM\Software\ShopperPro
SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DesktopWeatherAlertsApp_RASAPI32
SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DesktopWeatherAlertsApp_RASMANCS
SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-Silent-11E4_RASAPI32
SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-Silent-11E4_RASMANCS
SUPPRIMÉ: Service: vToolbarUpdater3.2.0
SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6c97a91e-4524-4019-86af-2aa2d567bf5c}

========== Valeurs du Registre ==========
SUPPRIMÉ: Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F}
SUPPRIMÉ: Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
Aucune Valeur Standard Profile: FirewallRaz :
Aucune Valeur Domain Profile: FirewallRaz :
SUPPRIMÉ: FirewallRaz (Domain) : NetPres-In-TCP-NoScope
SUPPRIMÉ: FirewallRaz (Domain) : NetPres-Out-TCP-NoScope
SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-In-UDP
SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-Out-UDP
SUPPRIMÉ: FirewallRaz (Public) : NetPres-In-TCP
SUPPRIMÉ: FirewallRaz (Public) : NetPres-Out-TCP
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{BBC06CC7-7683-4EDA-909E-890B6F801A57}D:\eve\bin\exefile.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{5A7720F3-D786-4610-AED1-66356AB02D5D}D:\eve\bin\exefile.exe
SUPPRIMÉ: FirewallRaz (Private) : {3D4865DD-AEA3-49E5-AC3D-0145C25623E8}
SUPPRIMÉ: FirewallRaz (Private) : {B7A4DD95-6677-4AB5-9EEA-46401CA4B6AD}
SUPPRIMÉ: FirewallRaz (Private) : {2DDCE7DC-CE94-4FA2-88CA-4838DA08F1ED}
SUPPRIMÉ: FirewallRaz (Private) : {CFBB7D97-A008-4FBD-9735-166CEB07235A}
SUPPRIMÉ: FirewallRaz (Private) : {309546FE-3D61-4C5A-9694-D09C740A7D63}
SUPPRIMÉ: FirewallRaz (Private) : {063F069A-0640-4ABC-A45D-AA25457E1202}
SUPPRIMÉ: FirewallRaz (Private) : {50BD9646-5D52-4198-A3EA-5DE3F45771A9}
SUPPRIMÉ: FirewallRaz (Private) : {7C807698-861C-4491-BE23-D68FF449B487}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{7A965CFB-F929-4BE2-8AE4-1EE8D31B5DE8}D:\six\tools\bin\rsync.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{5AD29434-B85F-43F3-AF08-24BB245A8D61}D:\six\tools\bin\rsync.exe
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{E486B8E4-68BA-4C1D-8DB7-69E51DB5DCBB}C:\users\cid\documents\arma 2\expansion\beta\arma2oa.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{0A12F8D6-709D-42C0-8DAE-0C1138721F91}C:\users\cid\documents\arma 2\expansion\beta\arma2oa.exe
SUPPRIMÉ: FirewallRaz (Private) : {41DCF85A-F9C0-4C23-909B-0A54A9D20073}
SUPPRIMÉ: FirewallRaz (Private) : {7915BAC7-4C6E-4726-A72D-09EDD63D923C}
SUPPRIMÉ: FirewallRaz (Private) : {69CC6FCA-6FD9-4501-97B5-FD3F85786FA7}
SUPPRIMÉ: FirewallRaz (Private) : {BB3DF87C-6CD9-4F46-B9EA-031EFF4C5186}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{4611719B-93AF-4EA0-8C3A-D057B4B8DB8E}D:\six\expansion\beta\arma2oa.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{1310C42B-D2E7-40DB-BF0C-4BB1740A91E4}D:\six\expansion\beta\arma2oa.exe
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{5F6A6DB8-B0CF-4A2F-AD1B-53BB7809E33B}D:\borderlands 2\binaries\win32\borderlands2.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{DFC9C4A8-6675-4A23-84D1-264C3BC8FDC0}D:\borderlands 2\binaries\win32\borderlands2.exe
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{AD7A3DB0-B22A-45F6-BF4E-E6BD182F51DD}D:\dishonored\binaries\win32\dishonored.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{27A13D4C-0D0F-4E11-A71E-2DF0A6D7C904}D:\dishonored\binaries\win32\dishonored.exe
SUPPRIMÉ: FirewallRaz (Private) : {850EFC2B-2F2C-4775-8872-15D2ADBB2ED2}
SUPPRIMÉ: FirewallRaz (Private) : {8D9B75C2-B76F-4E90-9B90-827AC4E8378A}
SUPPRIMÉ: FirewallRaz (Private) : {DB23BC45-3B1D-4566-A3E0-84A0DE600CEF}
SUPPRIMÉ: FirewallRaz (Private) : {76AAABD3-7B91-4D65-9E83-97FAAF6F437D}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{E177A91C-B7AE-49F6-B62E-9B78D5CB49D5}D:\wot\wotlauncher.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{48888A6C-B653-4009-A83E-04ED5F68D417}D:\wot\wotlauncher.exe
SUPPRIMÉ: FirewallRaz (Public) : {C60A44DB-9260-4278-8BF7-D89223521B2E}
SUPPRIMÉ: FirewallRaz (Public) : {F2722D9D-9B12-4680-9073-C88DBA93F611}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{AE69FA73-9394-4210-AD1E-B4D7C229C52F}D:\wot\worldoftanks.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{187B2FFA-A900-45C5-BC99-861C52500D47}D:\wot\worldoftanks.exe
SUPPRIMÉ: FirewallRaz (Public) : {00C040AF-E378-4B62-B10F-F6343400858D}
SUPPRIMÉ: FirewallRaz (Public) : {FF7A6276-6323-4E0C-93D4-BD7462572A61}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{BCF7C8EA-44A6-452E-88A7-0130188313D7}D:\firefall\firefall\system\bin\firefallclient.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{2FCA8A81-D717-45B4-9C65-7DF623D6DC07}D:\firefall\firefall\system\bin\firefallclient.exe
SUPPRIMÉ: FirewallRaz (Public) : {2F425B9B-2D37-4C2F-8179-93BE32D79F9A}
SUPPRIMÉ: FirewallRaz (Public) : {545D7857-5BC9-4D9A-AD31-40061D510764}
SUPPRIMÉ: FirewallRaz (Public) : TCP Query User{4F542CB8-4184-4771-8266-AE72EEE8A0AE}D:\eve\bin\exefile.exe
SUPPRIMÉ: FirewallRaz (Public) : UDP Query User{EB75F836-1C79-4D0C-8D33-B1D3C7535FC8}D:\eve\bin\exefile.exe
SUPPRIMÉ: FirewallRaz (Public) : {3E5A44E3-0F34-4293-91D5-DD9AC81878D8}
SUPPRIMÉ: FirewallRaz (Public) : {28FFB694-7C3C-4511-B9AE-F15D8B9D6741}
SUPPRIMÉ: FirewallRaz (Public) : TCP Query User{A7BB6467-DF4F-4134-8238-6307ED36D943}D:\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe
SUPPRIMÉ: FirewallRaz (Public) : UDP Query User{A8BF4136-F5F6-4139-BEAD-8858366B2983}D:\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe
SUPPRIMÉ: FirewallRaz (Public) : {8527EAE9-D58B-4703-8ADC-804178404C4A}
SUPPRIMÉ: FirewallRaz (Public) : {22612BED-B39F-476E-9CB8-0975A78772D8}
SUPPRIMÉ: FirewallRaz (Public) : {1ECB56B8-C840-48FB-BB1F-422B0F641910}
SUPPRIMÉ: FirewallRaz (Public) : {31173B4B-9461-41C3-BF99-7B2FCD46DDE9}
SUPPRIMÉ: FirewallRaz (Public) : {7318BEC5-58F7-42F6-935D-1FCBA67A1E1A}
SUPPRIMÉ: FirewallRaz (Public) : {37AD6E73-C764-4D00-A216-E1DA5568D351}
SUPPRIMÉ: FirewallRaz (Public) : {310CC152-0F13-4508-B114-6230816EF2F4}
SUPPRIMÉ: FirewallRaz (Public) : {51E84169-0519-439F-9E13-F2C7CFABCD0C}
SUPPRIMÉ: FirewallRaz (Public) : {80E49DA0-61D8-4461-89F2-64B4D8D11825}
SUPPRIMÉ: FirewallRaz (Public) : TCP Query User{BE13ABC5-BED1-43DC-885F-9F6E155AE064}D:\downloaded\public\warframe.x64.exe
SUPPRIMÉ: FirewallRaz (Public) : UDP Query User{DF08AF54-D8C2-440B-A137-B4E30D2D5BF9}D:\downloaded\public\warframe.x64.exe
SUPPRIMÉ: FirewallRaz (Private) : {93020325-044E-45B4-8445-FDE9B9205E92}
SUPPRIMÉ: FirewallRaz (Private) : {B315FB63-090C-41FF-9F4D-3A650B27F34D}
SUPPRIMÉ: FirewallRaz (Private) : {8E1D9534-D393-42FF-BF4E-B404BE509474}
SUPPRIMÉ: FirewallRaz (Private) : {77A6231F-4AC1-432D-94A1-09FA0DA407BD}
SUPPRIMÉ: FirewallRaz (Private) : {510F906A-2F47-4C9E-9C7C-F01373223EDB}
SUPPRIMÉ: FirewallRaz (Private) : {F5804F62-EE70-4B83-A068-CCE8F8A52BFD}
SUPPRIMÉ: FirewallRaz (Private) : {977855C1-FA43-4F00-B317-B52942078402}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{705D188F-2CF6-4514-BA7D-6EEF86014A0E}D:\downloaded\public\warframe.x64.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{70329B44-3CA7-4FD0-85C6-7791DE411A03}D:\downloaded\public\warframe.x64.exe
SUPPRIMÉ: FirewallRaz (Private) : {C30F3D26-30FD-485D-810D-85977CD49636}
SUPPRIMÉ: FirewallRaz (Private) : {E0481637-CDBD-4514-8AB1-A2BFEABE9EC3}
SUPPRIMÉ: FirewallRaz (Private) : {41A120DF-E5AD-4096-BE1D-46967F6733D4}
SUPPRIMÉ: FirewallRaz (Private) : {4AF83634-EA5D-4F1D-AB31-5FC52D9B4E77}
SUPPRIMÉ: FirewallRaz (Private) : {23859B74-4911-4F81-AE17-C6A33959F604}
SUPPRIMÉ: FirewallRaz (Private) : {A16BE393-B819-49FD-A349-B30B1A93AC94}
SUPPRIMÉ: FirewallRaz (Public) : TCP Query User{902B5465-A651-4276-BDDF-71B85541F8D7}D:\shadowrun returns\shadowrun.exe
SUPPRIMÉ: FirewallRaz (Public) : UDP Query User{7B001CE3-0E47-40EA-B77D-A0EE7B90B490}D:\shadowrun returns\shadowrun.exe
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{84A4E284-8C96-47A0-98C5-DE816FC6496C}D:\entropia\bin32\entropia.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{69076FA8-F627-4782-8995-EDF1586610FF}D:\entropia\bin32\entropia.exe
SUPPRIMÉ: FirewallRaz (Public) : {D54F9C96-DDA7-49AE-92F3-3E11DE4B3B48}
SUPPRIMÉ: FirewallRaz (Public) : {FF423919-747F-415E-BC42-F7F766029080}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{24A46781-54FB-4366-AE2E-718A44B727EC}C:\users\cid\desktop\server\bfs.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{EE9BFC06-29B5-4600-9366-F017F1B08EA6}C:\users\cid\desktop\server\bfs.exe
SUPPRIMÉ: FirewallRaz (Public) : {CEFB7D4E-9869-4790-B7EB-A942970AEF68}
SUPPRIMÉ: FirewallRaz (Public) : {8DDC06DB-7215-4A04-88DE-2A5A8909593F}
SUPPRIMÉ: FirewallRaz (Public) : {107DD0AC-103A-40B5-9F90-D2AC0E57CAAE}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{56F1B13E-23C2-4715-9183-97688BF3C2EA}C:\users\cid\appdata\local\warframe\downloaded\public\warframe.x64.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{166F4EFF-945C-44D5-8D9A-7C4C6D868702}C:\users\cid\appdata\local\warframe\downloaded\public\warframe.x64.exe
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{74464108-14D1-4FA7-B0A7-7C2A0D73672B}E:\divinity os\shipping\eocapp.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{3EFF4039-C8F3-41D0-91BD-196571781988}E:\divinity os\shipping\eocapp.exe
SUPPRIMÉ: FirewallRaz (Private) : {5703C063-4F1D-4B30-B5A1-525EE7F83C79}
SUPPRIMÉ: FirewallRaz (Private) : {F1B4A9CD-010B-459F-8BA2-E49F33E49B70}
SUPPRIMÉ: FirewallRaz (Private) : {45F0A0A5-7736-4BBB-85E8-A5DACF61F8E8}
SUPPRIMÉ: FirewallRaz (Private) : {1B339225-9AB2-4142-8E67-5B6C3A491B5A}
SUPPRIMÉ: FirewallRaz (Private) : {0CAA5F21-CC30-46BB-941C-D9E11CBCE927}
SUPPRIMÉ: FirewallRaz (Private) : {1BEA118F-2544-482B-AE3B-201557C62241}
SUPPRIMÉ: FirewallRaz (Private) : TCP Query User{5A417507-EE5B-48B6-A203-EBE21F3CD05B}C:\programdata\battle.net\agent\agent.2880\agent.exe
SUPPRIMÉ: FirewallRaz (Private) : UDP Query User{F3035CE5-4D4B-445D-A0CD-2DC57A266D01}C:\programdata\battle.net\agent\agent.2880\agent.exe

========== Eléments de donnée du Registre ==========
SUPPRIMÉ: R1 Search Page = *origin.com;*ea.com;*akamaihd.net;<local>
SUPPRIMÉ: R1 Search Page = http=127.0.0.1:23868

========== Dossiers ==========
Aucun dossiers CLSID Local utilisateur vide

========== Fichiers ==========
SUPPRIMÉS Temporaires Windows (26) (1 806 192 octets)

========== Tache planifiée ==========
SUPPRIMÉ: Ad-Aware Update (Weekly)
SUPPRIMÉ: {2FB62F95-8B88-47B2-97C1-6B483AF41098}
SUPPRIMÉ: {84F03E20-CF23-4A4E-91E9-F09EA28D5F74}


========== Récapitulatif ==========
9 : Clés du Registre
105 : Valeurs du Registre
2 : Eléments de donnée du Registre
1 : Dossiers
1 : Fichiers
3 : Tache planifiée


End of clean in 00mn 06s

========== Chemin de fichier rapport ==========
C:\Users\CID\AppData\Roaming\ZHP\ZHPFix[R1].txt - 2014-08-29 17:36:41 [11324]
0
Réponse 14 / 19
Utilisateur anonyme
29 août 2014 à 23:43
Bonsoir

As tu noté une amélioration?

@+
0
Réponse 15 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
30 août 2014 à 00:32
non je suis toujours au même point des fenêtre ouvre un peu partout me proposant des trucs ou des pubs c'est très dure de naviguer sur le net avec cela
0
Réponse 16 / 19
Utilisateur anonyme
Modifié par Guillaume5188 le 30/08/2014 à 09:08
Bonjour


Si tu utilises bien Firefox,installe Adblock.
et donne moi des nouvelles
@+

***-----------------------Contributeur Sécurité-------------------------***
On a tous été un jour débutant dans quelque chose.
Mais le savoir est la récompense de l'assiduité.
0
Réponse 17 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
1 sept. 2014 à 01:05
non ça ne bloque pas les page qui s'ouvre et AVG supprime des menace 3-4 fois par jour et je crois que c'est la même a chaque fois
0
Utilisateur anonyme
1 sept. 2014 à 01:07
Bonjour ;bonsoir chez moi !!!
0
Réponse 18 / 19
CIDCRAZY Messages postés 11 Date d'inscription samedi 23 août 2014 Statut Membre Dernière intervention 2 septembre 2014
2 sept. 2014 à 22:40
Ok la je n'ai plus de pub ni rien aujourd'hui je crois que le ad don que tu ma donné fonctionne je crois qu'il ne me reste qu'a attendre que AVG trouve le remède pour mon intrus .... merci guillaume au moins la je peux navigué sans me faire chi..
0
Réponse 19 / 19
Utilisateur anonyme
3 sept. 2014 à 06:31
Bonjour

On nettoie et finalise.

1) Vide la quarantaine de Malwaresbytes

2)Télécharge DelFix de Xplode

Lance le.
Tu as 5 choix :

Réactiver l'UAC
Supprimer les outils de désinfection (cocher par défaut)
Effectuer une sauvegarde du registre
Purger la restauration de système
Réinitialisation des paramètres usine

Tu coches ceux qui sont en gras ci-dessus
et tu exécutes
Le rapport se trouve ici généralement
C:\DelFix.txt



Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html

@+
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Python introuvable
DeepMaze -
mamiemando -

3 réponses
erreur McUICnt.exe
Nanou -
pablito -

7 réponses
Facebook rencontre introuvable
Gourami -
vinz -

7 réponses
Point d'entrée introuvable
sam -
Riri41 -

9 réponses