ciko_59

toujours aussi lente désolé tout se charge d'une lenteur.... merci pour votre aide

voila le rapport, que faire ensuite ? Rapport de ZHPFix 2017.06.13.1 par Nicolas Coolman, Update du 13/06/2017 Fichier d'export Registre : Run by angel at 21/12/2017 16:54:25 High Elevated Privileges : OK Windows 8 Home Premium Edition, 64-bit Service Pack 1 (16299) Corbeille vidée (00mn 05s) Dossier Prefetcher vidé ========== Processus mémoire ========== SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easydocmerge.dl.myway.com_0.localstorage SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easydocmerge.dl.myway.com_0.localstorage-journal SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easydocmerge.dl.tb.ask.com_0.localstorage SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easydocmerge.dl.tb.ask.com_0.localstorage-journal SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easypdfcombine.dl.myway.com_0.localstorage SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easypdfcombine.dl.myway.com_0.localstorage-journal SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easypdfcombine.dl.tb.ask.com_0.localstorage SUPPRIMÉ: Memory Process: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easypdfcombine.dl.tb.ask.com_0.localstorage-journal ========== Clés du Registre ========== SUPPRIMÉ: HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui Branche de Base de Registres IFEO non infectée ! ========== Valeurs du Registre ========== ProxyFix : Configuration proxy supprimée avec succès SUPPRIMÉ ProxyServer Value SUPPRIMÉ ProxyEnable Value SUPPRIMÉ EnableHttp1_1 Value SUPPRIMÉ ProxyHttp1.1 Value SUPPRIMÉ ProxyOverride Value Aucune Valeur Standard Profile: FirewallRaz : Aucune Valeur Domain Profile: FirewallRaz : SUPPRIMÉ: FirewallRaz (None) : MCX-Prov-Out-TCP SUPPRIMÉ: FirewallRaz (None) : MCX-McrMgr-Out-TCP SUPPRIMÉ: FirewallRaz (None) : {87CDF6F7-9EEE-4F8F-BAB1-2C9CAE197BF0} ========== Dossiers ========== Aucun dossiers CLSID Local utilisateur vide SUPPRIMÉS Temporaires Windows ( SUPPRIMÉS Flash Cookies (0) ========== Fichiers ========== SUPPRIMÉ: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage SUPPRIMÉ: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage-journal SUPPRIMÉ: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage SUPPRIMÉ: C:\Users\angel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal SUPPRIMÉS Temporaires Windows (83) (811 043 octets) SUPPRIMÉS Flash Cookies (0) (0 octets) ========== Restauration Système ========== Point de restauration du système créé avec succès ========== Récapitulatif ========== 10 : Processus mémoire 2 : Clés du Registre 11 : Valeurs du Registre 3 : Dossiers 6 : Fichiers 1 : Restauration Système End of clean in 01mn 05s ========== Chemin de fichier rapport ========== C:\Users\angel\AppData\Roaming\ZHP\ZHPFix[R1].txt - 21/12/2017 16:54:33 [3713]

merci beaucoup voici le lien du rapport, que dois je faire à présent ? https://www.cjoint.com/c/GLutbYoiCVA

PC portable Lenovo hyper lent de ma femme sous windows 10 les maj. prennent une plombe je n'arrive plus à rien utiliser elle est infirmière et dois teletransmettre et elle ne peut plus rien utiliser merci pour votre aide

ca va mieux merci

http://www.cjoint.com/c/EIisenhRfkA desole pas vu qu'il fallait poster le rapport

http://www.cjoint.com/c/EIirry6IDeA

Rapport de ZHPFix 2015.8.24.7 par Nicolas Coolman, Update du 24/08/2015 Fichier d'export Registre : Run by pierre at 08/09/2015 10:11:17 High Elevated Privileges : OK Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Corbeille vidée (00mn 02s) Dossier Prefetcher vidé Réparation des raccourcis navigateur ========== Clés du Registre ========== SUPPRIMÉ: HKCU\SOFTWARE\InstallCore SUPPRIMÉ: SearchScopes :{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Branche de Base de Registres IFEO non infectée ! ========== Valeurs du Registre ========== Aucune Valeur Standard Profile: FirewallRaz : Aucune Valeur Domain Profile: FirewallRaz : SUPPRIMÉ: FirewallRaz (Public) : NetPres-Out-TCP SUPPRIMÉ: FirewallRaz (Public) : NetPres-In-TCP SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-Out-UDP SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-In-UDP SUPPRIMÉ: FirewallRaz (Domain) : NetPres-Out-TCP-NoScope SUPPRIMÉ: FirewallRaz (Domain) : NetPres-In-TCP-NoScope ProxyFix : Configuration proxy supprimée avec succès SUPPRIMÉ ProxyServer Value SUPPRIMÉ ProxyEnable Value SUPPRIMÉ EnableHttp1_1 Value SUPPRIMÉ ProxyHttp1.1 Value SUPPRIMÉ ProxyOverride Value ========== Eléments de donnée du Registre ========== SUPPRIMÉ: R0 - Main,Start Page = KCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page SUPPRIMÉ: R0 - Main,Start Page = KLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page SUPPRIMÉ: R0 - Main,Start Page = KLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page ========== Préférences navigateur ========== SUPPRIMÉ Folder Chrome: C:\Users\pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\mallpejgeafdahhflmliiahjdpgbegpk ========== Dossiers ========== Aucun dossiers CLSID Local utilisateur vide SUPPRIMÉS Flash Cookies (0) ========== Fichiers ========== SUPPRIMÉS Flash Cookies (0) (0 octets) ========== Tache planifiée ========== SUPPRIMÉ: FacebookUpdateTaskUserS-1-5-21-1089817030-1797515023-3791333392-1000Core SUPPRIMÉ: FacebookUpdateTaskUserS-1-5-21-1089817030-1797515023-3791333392-1000UA ========== Restauration Système ========== Point de restauration du système créé avec succès ========== Récapitulatif ========== 3 : Clés du Registre 14 : Valeurs du Registre 3 : Eléments de donnée du Registre 2 : Dossiers 1 : Fichiers 1 : Préférences navigateur 2 : Tache planifiée 1 : Restauration Système End of clean in 02mn 33s ========== Chemin de fichier rapport ========== C:\Users\pierre\AppData\Roaming\ZHP\ZHPFix[R1].txt - 08/09/2015 10:11:20 [2496]

http://www.cjoint.com/c/EIihRCihACA

Bonjour PC sous windows 7 tres lent, avec pub et blocage pages internet Pour l'instant je n'ai rien fait j'attends vos consignes svp Merci

c bon j'ai utilisé un autre lien bonne soirée A++

un grand merci bonne soirée desole ton lien delfix ne fonctionne pas

http://www.cjoint.com/15ma/ECwwKjcqYn0.htm

oui j'ai corrigé ZHPCleaner

http://www.cjoint.com/15ma/ECwwvbzzMnE.htm désolé on avait pas encore utilisé ZHPDiag j'ai confondu

http://www.cjoint.com/15ma/ECwvbuAp3KA.htm

oui ca va beaucoup mieux l'ecran ZHP montre encore 18 menaces on dirait

Malwarebytes Anti-Malware www.malwarebytes.org Date de l'examen: 22/03/2015 Heure de l'examen: 17:37:03 Fichier journal: b.txt Administrateur: Oui Version: 2.00.4.1028 Base de données Malveillants: v2015.03.22.03 Base de données Rootkits: v2015.02.25.01 Licence: Essai Protection contre les malveillants: Activé(e) Protection contre les sites Web malveillants: Activé(e) Auto-protection: Désactivé(e) Système d'exploitation: Windows 8.1 Processeur: x64 Système de fichiers: NTFS Utilisateur: christiane Type d'examen: Examen "Menaces" Résultat: Terminé Objets analysés: 378889 Temps écoulé: 38 min, 38 sec Mémoire: Activé(e) Démarrage: Activé(e) Système de fichiers: Activé(e) Archives: Activé(e) Rootkits: Activé(e) Heuristique: Activé(e) PUP: Activé(e) PUM: Activé(e) Processus: 4 PUP.Optional.BreakingNewsAlert.A, C:\ProgramData\DXKrMgx\qBdpWqe.exe, 1384, Supprimé-au-redémarrage, [8e1b160c8208132395a429d016ebbb45] PUP.Optional.MultiPlug.A, C:\Users\christiane\AppData\Roaming\FF10D580-1426537858-815C-30F0-0C54A52059F9\nsy1427.tmpfs, 1912, Supprimé-au-redémarrage, [03a6ff23afdb39fd5311624e857efe02] PUP.Optional.Shopperz.A, C:\Program Files\shopperz\csrcc.exe, 1464, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e] PUP.Optional.Shopperz.A, C:\Program Files\shopperz\grunt.exe, 1348, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e] Modules: 0 (Aucun élément malicieux detecté) Clés du Registre: 56 PUP.Optional.BreakingNewsAlert.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\qBdpWqe, Mis en quarantaine, [8e1b160c8208132395a429d016ebbb45], PUP.Optional.Shopperz.A, HKU\S-1-5-21-2766308116-2510081639-848604313-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{5081D2D4-1637-404C-B74F-50526718257D}, Mis en quarantaine, [d8d13de528629f97f528ee3232d17789], PUP.Optional.Shopperz.A, HKU\S-1-5-21-2766308116-2510081639-848604313-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{5081D2D4-1637-404C-B74F-50526718257D}, Mis en quarantaine, [d8d13de528629f97f528ee3232d17789], PUP.Optional.WebTInst.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\webTinstMKTN, Mis en quarantaine, [3178b1718604a393f301526350b35fa1], PUP.Optional.cherimoya.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\cherimoya, Mis en quarantaine, [cddc2cf6434753e38677d3e908fb0df3], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\shopperz, Supprimé-au-redémarrage, [53569b876a20251109e32598649f14ec], PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, Mis en quarantaine, [40692200acde22145730cd6f8e778977], PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, Mis en quarantaine, [b0f93de50b7f8aacf5911e1ed134669a], PUP.Optional.Cinema.A, HKLM\SOFTWARE\WOW6432NODE\CinemaP-1.9cV04.02, Mis en quarantaine, [fcad150d96f492a4a0d88152ce354ab6], PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\HQCinema Pro 2.1V16.03, Mis en quarantaine, [8227948e5b2ffa3cabb241875ea5e917], PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\HQCinema Pro 2.1V16.03-nv, Mis en quarantaine, [c7e22df5cdbd2a0c6cf19d2bb74cbd43], PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\HQCinema Pro 2.1V16.03-nv-ie, Mis en quarantaine, [affa26fceb9f9b9b9bc2be0a1de610f0], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\shopperz, Supprimé-au-redémarrage, [73362002a3e7fd39c12b05b84db639c7], PUP.Optional.Shopperz.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\70F4EEDB-1367-4b4f-8247-3133551A7415, Supprimé-au-redémarrage, [e6c3988a1d6de45269447b4480838779], PUP.Optional.MultiPlug.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\sirynysu, Mis en quarantaine, [03a6ff23afdb39fd5311624e857efe02], PUP.Optional.Cinema.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CinemaP-1.9cV04.02-nv-ie, Mis en quarantaine, [3b6e49d9f496092dd1a81db6b74cd729], PUP.Optional.GoHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GoHD-nv-ie, Mis en quarantaine, [3277f929d4b645f1f5a83d0832d39b65], PUP.Optional.ICinema.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\I - Cinema-nv-ie, Mis en quarantaine, [62475ac8ddad21151b8f686ec14250b0], PUP.Optional.OfferBoulevard.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\OfferBLVD, Mis en quarantaine, [8326ec3629615fd7779019b7ee156a96], PUP.Optional.SmartSaver.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SmartSaver+ 3-nv-ie, Mis en quarantaine, [7e2b9f831278c07644feb14c30d38878], PUP.Optional.Shopperz.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\{4E7638A1-6962-4e44-A6B9-F40E84FD6D09}, Mis en quarantaine, [7336d74b9dedb77f0ac3fab8f90a26da], PUP.Optional.Shopperz.A, HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\{4E7638A1-6962-4e44-A6B9-F40E84FD6D09}, Mis en quarantaine, [6e3b34ee6822db5b96378d25f013629e], PUP.Optional.Shopperz.A, HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\{4E7638A1-6962-4e44-A6B9-F40E84FD6D09}, Mis en quarantaine, [298034eea7e374c2d4f9743e63a0649c], PUP.Optional.Cinema.A, HKU\S-1-5-21-2766308116-2510081639-848604313-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CinemaP-1.9cV04.02, Mis en quarantaine, [b7f2ed350981a39392e76172897aff01], PUP.Optional.CrossRider.A, HKU\S-1-5-21-2766308116-2510081639-848604313-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\HQCinema Pro 2.1V16.03-nv, Mis en quarantaine, [c3e6b66c72188caab5a913b5c53e0000], PUP.Optional.CrossRider.A, HKU\S-1-5-21-2766308116-2510081639-848604313-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\HQCinema Pro 2.1V16.03-nv-ie, Mis en quarantaine, [1891f82a276384b2f26c02c69d6644bc], PUP.Optional.OfferBoulevard.A, HKU\S-1-5-21-2766308116-2510081639-848604313-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\OfferBLVD, Mis en quarantaine, [9613b072a5e53afc28df10c005fe4bb5], PUP.Optional.Shopperz.A, HKU\S-1-5-21-2766308116-2510081639-848604313-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\{4E7638A1-6962-4e44-A6B9-F40E84FD6D09}, Mis en quarantaine, [b3f62af84b3f59dd8449bef4689b33cd], PUP.Optional.CrossRider.A, HKU\S-1-5-21-2766308116-2510081639-848604313-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\13641, Mis en quarantaine, [07a2ce540c7ed165bfd2319f867d33cd], PUP.Optional.CrossRider.A, HKU\S-1-5-21-2766308116-2510081639-848604313-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\26549, Mis en quarantaine, [29806db57911fe383f52706056adb34d], PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\HQCinema Pro 2.1V16.03, Mis en quarantaine, [dccde53db4d69e98ae5a415e9e656b95], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{14EF423E-3EE8-44AE-9337-07AC3F27B744}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A9582D7B-F24A-441D-9D26-450D58F3CD17}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EE0D8859-2ED4-4B0D-9812-16865B9AFD65}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A9582D7B-F24A-441D-9D26-450D58F3CD17}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EE0D8859-2ED4-4B0D-9812-16865B9AFD65}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{14EF423E-3EE8-44AE-9337-07AC3F27B744}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{B5C4833B-847B-49CD-8EBE-CDD9B43C882F}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{D1661A59-E9D3-4603-8822-2FBEADA5E097}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E309D526-009C-490B-9BB1-CF9D525F6854}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D1661A59-E9D3-4603-8822-2FBEADA5E097}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{E309D526-009C-490B-9BB1-CF9D525F6854}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{B5C4833B-847B-49CD-8EBE-CDD9B43C882F}, Mis en quarantaine, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.BrowserSupport.A, HKLM\SOFTWARE\CLASSES\CLSID\{B5147546-9359-4D9B-8B36-F54C54555799}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{68b59731-bfff-46f7-88d6-676d492f4f81}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{68b59731-bfff-46f7-88d6-676d492f4f81}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B5147546-9359-4D9B-8B36-F54C54555799}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B5147546-9359-4D9B-8B36-F54C54555799}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B5147546-9359-4D9B-8B36-F54C54555799}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKU\S-1-5-21-2766308116-2510081639-848604313-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{B5147546-9359-4D9B-8B36-F54C54555799}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKU\S-1-5-21-2766308116-2510081639-848604313-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{B5147546-9359-4D9B-8B36-F54C54555799}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKU\S-1-5-21-2766308116-2510081639-848604313-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{B5147546-9359-4D9B-8B36-F54C54555799}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKU\S-1-5-21-2766308116-2510081639-848604313-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{B5147546-9359-4D9B-8B36-F54C54555799}, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKLM\SOFTWARE\CLASSES\CLSID\{B5147546-9359-4D9B-8B36-F54C54555799}\INPROCSERVER32, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKU\S-1-5-21-2766308116-2510081639-848604313-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\browsersupport, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, HKU\S-1-5-21-2766308116-2510081639-848604313-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\browsersupport, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], Valeurs du Registre: 0 (Aucun élément malicieux detecté) Données du Registre: 0 (Aucun élément malicieux detecté) Dossiers: 15 PUP.Optional.ICinema.A, C:\Program Files (x86)\I - Cinema, Mis en quarantaine, [139664be04860b2b80464250dc27c43c], PUP.Optional.Cinema.A, C:\Program Files (x86)\CinemaP-1.9cV04.02, Mis en quarantaine, [1891e042aedcf93d8a4f395c8b782dd3], PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03, Mis en quarantaine, [dccde53db4d69e98ae5a415e9e656b95], PUP.Optional.Shopperz.A, C:\Program Files\shopperz, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.BrowserSupport.A, C:\Program Files (x86)\browsersupport, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\userCode, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\icons, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\icons\actions, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\api, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\popupResource, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], Fichiers: 163 PUP.Optional.Shopperz.A, C:\WINDOWS\SYSTEM32\drivers\bsdriver.sys, Supprimé-au-redémarrage, [74c0861a954b95f74412f460b752d617], PUP.Optional.WebTInst.A, C:\Windows\System32\drivers\Msft_Kernel_webTinstMKTN_01009.Wdf, Supprimé-au-redémarrage, , PUP.Optional.WebTInst.A, C:\Windows\System32\drivers\webTinstMKTN.sys, Supprimé-au-redémarrage, [545b5ddae4305cbd52b8909806e5517e], PUP.Optional.cherimoya.A, C:\Windows\System32\drivers\cherimoya.sys, Supprimé-au-redémarrage, [8153e8ad27ba4625368231e62592f8d2], PUP.Optional.BreakingNewsAlert.A, C:\ProgramData\DXKrMgx\qBdpWqe.exe, Supprimé-au-redémarrage, [8e1b160c8208132395a429d016ebbb45], PUP.Optional.BreakingNewsAlert.A, C:\ProgramData\DXKrMgx\dat\cxwtedRloi.exe, Mis en quarantaine, [b4f5ff235931a3933ffafaffaa573ec2], PUP.Optional.ZombieInvasion.A, C:\ProgramData\DXKrMgx\dat\MtlLvWJuyu.dll, Mis en quarantaine, [1d8c75ade6a440f609b7865ab4517090], PUP.Optional.BreakingNewsAlert.A, C:\ProgramData\DXKrMgx\dat\uAKLhtPvQNf.exe, Mis en quarantaine, [d5d425fd19711c1aef4a45b4dd24629e], PUP.Optional.Clara.A, C:\Users\christiane\AppData\Roaming\ZHP\Quarantine\2dc5634e-dffe-4d43-a419-8c920578f600.exe, Mis en quarantaine, [08a123ff068442f4df90ac32d9284fb1], PUP.Optional.ICinema.A, C:\Users\christiane\AppData\Roaming\ZHP\Quarantine\47e26a51-313e-4f6e-bfba-76003377a4c5-1-6.exe, Mis en quarantaine, [c8e1a082a8e24ee80d52874338c9db25], PUP.Optional.ICinema.A, C:\Users\christiane\AppData\Roaming\ZHP\Quarantine\47e26a51-313e-4f6e-bfba-76003377a4c5-1-7.exe, Mis en quarantaine, [c7e2eb37cbbfb38348179535f110e020], PUP.Optional.ICinema.A, C:\Users\christiane\AppData\Roaming\ZHP\Quarantine\47e26a51-313e-4f6e-bfba-76003377a4c5-10.exe, Mis en quarantaine, [7336c45ee7a33ff76cf3ffcb877a52ae], PUP.Optional.ICinema.A, C:\Users\christiane\AppData\Roaming\ZHP\Quarantine\47e26a51-313e-4f6e-bfba-76003377a4c5-11.exe, Mis en quarantaine, [4960170b1b6f76c01c438743fe03659b], PUP.Optional.ICinema.A, C:\Users\christiane\AppData\Roaming\ZHP\Quarantine\47e26a51-313e-4f6e-bfba-76003377a4c5-5.exe, Mis en quarantaine, [8920958d652580b6f36c9b2f24dd12ee], PUP.Optional.Shopperz.A, C:\Users\christiane\AppData\Roaming\ZHP\Quarantine\setup_496.exe, Mis en quarantaine, [57525ac8eaa0aa8c1c22141811f53fc1], Trojan.Dropper.NS, C:\Users\christiane\Documents\Desktop\PlayerStubWrapper1.exe, Mis en quarantaine, [c6e3b56df09ab3836be4c07e37cbfb05], PUP.Optional.Nova.A, C:\Program Files (x86)\AMD AVT\915691aa-0025-42be-91d8-3d89da28c7d7.dll, Mis en quarantaine, [7d2cc35f8703a195a6cc1bf160a26e92], PUP.Optional.Nova.A, C:\Program Files (x86)\d60c18b8-ada9-4eb9-89f3-c33d2880135d\398a0a64-962b-4e95-8143-58d5e8de91bf.dll, Mis en quarantaine, [228724fef09a69cd036fe626ac560af6], PUP.Optional.Nova.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03\92eca77c-fc53-4595-8315-0307b03c95a2.dll, Mis en quarantaine, [ddcc869cdcaec472b8ba29e3cb37bd43], PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03\9d938613-a196-47c7-b867-30edf0071600-64.exe, Mis en quarantaine, [05a4d84aff8bb680861742e48086ee12], PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03\UninstallBrw.exe, Mis en quarantaine, [8326d250abdfb77f138a5ec853b3cc34], PUP.Optional.CrossRider.A, C:\Program Files (x86)\I - Cinema\utils.exe, Mis en quarantaine, [09a06fb3a7e3280ec5beb498d52b52ae], PUP.Optional.OutBrowse, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$R2HCYP3.s0u, Mis en quarantaine, [2f7aa47ed0bab87efdd7ed45b84a06fa], PUP.Optional.OutBrowse, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$ROH7E34.eof, Mis en quarantaine, [4a5fc161acde42f4894b1a18c042c13f], Trojan.Downloader, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$R29XN9N.tmp, Mis en quarantaine, [f8b180a2dbaf5cda8bd6918eda29847c], PUP.Optional.BubbleDock.A, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$RIL4O8P.exe, Mis en quarantaine, [0e9bac7693f769cdf6db1b4b15ece51b], PUP.Optional.OutBrowse, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$ROSJEV9.f02, Mis en quarantaine, [3a6f2df516748baba82c9a98d13128d8], PUP.Optional.MyBestOffersToday.A, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$RIK1WRF.tmp, Mis en quarantaine, [b4f5f32f4e3c2a0cf3a49564956c9868], PUP.Optional.Bundle, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$R8GA066.tmp, Mis en quarantaine, [7237c260ccbe85b194aec4200ef7738d], PUP.Optional.Amonetize, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$RFJBR20.exe, Mis en quarantaine, [d1d88f935832ef47fa00e535cb37fb05], PUP.Optional.Chinad, C:\$Recycle.Bin\S-1-5-21-2766308116-2510081639-848604313-1001\$RV8PDM1\0AB64RN1.exe, Mis en quarantaine, [446554ce21690432696e80b3de24d927], PUP.Optional.OutBrowse, C:\Users\christiane\Downloads\setup.exe, Mis en quarantaine, [43660022e5a560d63d976ac85ba71be5], PUP.Optional.SearchProtect, C:\Windows\apppatch\Custom\Custom64\{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb, Mis en quarantaine, [6d3c63bf54363cfa7c0ead8faa5bbc44], PUP.Optional.ColorMedia.A, C:\Windows\SysWOW64\ColorMedia.ini, Mis en quarantaine, [6445b66cfe8c132308d624199f660ff1], PUP.Optional.Winsock.Hijack, C:\Windows\System32\ColorMedia64.dll, Mis en quarantaine, [773227fbd6b4aa8c5f5b2f17ab5a12ee], PUP.Optional.MultiPlug.A, C:\Users\christiane\AppData\Roaming\FF10D580-1426537858-815C-30F0-0C54A52059F9\nsy1427.tmpfs, Supprimé-au-redémarrage, [03a6ff23afdb39fd5311624e857efe02], PUP.Optional.ICinema.A, C:\Program Files (x86)\I - Cinema\47e26a51-313e-4f6e-bfba-76003377a4c5.crx, Mis en quarantaine, [139664be04860b2b80464250dc27c43c], PUP.Optional.ICinema.A, C:\Program Files (x86)\I - Cinema\bgNova.html, Mis en quarantaine, [139664be04860b2b80464250dc27c43c], PUP.Optional.ICinema.A, C:\Program Files (x86)\I - Cinema\Uninstall.exe, Mis en quarantaine, [139664be04860b2b80464250dc27c43c], PUP.Optional.Cinema.A, C:\Program Files (x86)\CinemaP-1.9cV04.02\bgNova.html, Mis en quarantaine, [1891e042aedcf93d8a4f395c8b782dd3], PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03\00d9fb8f-5855-4fc1-8014-47a94bb597e2.dll, Mis en quarantaine, [dccde53db4d69e98ae5a415e9e656b95], PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03\92eca77c-fc53-4595-8315-0307b03c95a2.crx, Mis en quarantaine, [dccde53db4d69e98ae5a415e9e656b95], PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03\bgNova.html, Mis en quarantaine, [dccde53db4d69e98ae5a415e9e656b95], PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03\Uninstall.exe, Mis en quarantaine, [dccde53db4d69e98ae5a415e9e656b95], PUP.Optional.CrossRider.A, C:\Program Files (x86)\HQCinema Pro 2.1V16.03\utils.exe, Mis en quarantaine, [dccde53db4d69e98ae5a415e9e656b95], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\csrcc.exe, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\garrus.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\grunt.exe, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\kasumi32.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\kasumi64.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\krios.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\krios64.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\liara.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\liara64.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\mseff32.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\nfregdrv64.exe, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\nseven.exe, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\prc64.exe, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\prexec.exe, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\spdata.dat, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\tree.js, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\tsoni.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\tsoni64.dll, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.Shopperz.A, C:\Program Files\shopperz\unins000.exe, Supprimé-au-redémarrage, [d2d7a0820d7d93a381e01b8b52b1728e], PUP.Optional.BrowserSupport.A, C:\Program Files (x86)\browsersupport\browsersupport.dll, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.BrowserSupport.A, C:\Program Files (x86)\browsersupport\Uninstall.exe, Mis en quarantaine, [614877ab2a60b58127ac04a6d82b9d63], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\background.html, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\chromeCoreFilesIndex.txt, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\manifest.json, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\popup.html, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\Settings.json, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\manifest.xml, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins.json, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\281.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\102.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\119.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\123.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\13.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\14.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\17.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\178.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\179.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\180.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\184.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\19.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\195.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\200.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\220.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\221.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\223.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\231.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\232.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\234.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\242.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\246.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\252.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\253.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\260.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\262.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\263.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\264.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\273.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\286.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\288.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\289.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\300.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\334.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\335.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\339.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\345.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\354.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\356.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\375.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\379.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\380.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\385.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\388.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\389.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\390.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\391.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\4.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\47.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\64.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\7.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\78.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\80.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\9.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\91.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\93.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\plugins\97.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\userCode\background.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\extensionData\userCode\extension.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\icons\icon128.png, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\icons\icon16.png, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\icons\icon48.png, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\icons\actions\1.png, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\0023b4790f68b1772c86823a5b788014.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\d45eabb7f5a00ff300a89f17fc7aabd1.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\main.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\api\39993bdf4dfaad6f65ba4d30a7f7c6dd.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\api\55d627bb309caa9dcd3043d7bf2aa865.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\api\6e80908f5353b3612278ed189c44939e.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\api\9b1a400f9844ed0ce189b2944a87d52a.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\api\cd289415febb11854989ed16cdc25361.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\api\pageAction.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\bd6b4da69774db3f59fe4d4b80c8b126.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\01a3c1aab26150e0c4e162eba589c7ae.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\25d2142af917a964e7d5538a8f2f7bca.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\31ec52366e52e3020a54e547ed6cfe84.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\481705eb5aed39a5bb118015c9857adf.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\9f42d1ee2fe133189cee0cfb8da2cf82.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\a330e69a505e6bbc8e0808d48d897f89.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\app_api.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\b367b258e12c3a51e5aafec76b3b965f.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\d63eeeb8d265729fee418b874022ee2b.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\d8de36b2afa74e86a01a037409801261.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\d98fff275e293623a026f1966e0eebcd.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\e7f6f9a4ca8eeb1ec8cb936dddc5a94b.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\eaf3464042b37c539e389a633578dc41.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\f2d1c9cdbc1037987d1ca0b395ab7d76.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\installer.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\popupResource\newPopup.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], PUP.Optional.CrossRider.A, C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\plfghefomandejfcfhcindgbnfogdgjj\1.26.28_0\js\lib\popupResource\popup.js, Mis en quarantaine, [5e4b28fa5733999d3b3d525cc241ac54], Secteurs physiques: 0 (Aucun élément malicieux detecté) (end)

http://www.cjoint.com/15ma/ECwrUEvyGr3.htm

# AdwCleaner v4.112 - Rapport créé le 22/03/2015 à 16:44:48 # Mis à jour le 09/03/2015 par Xplode # Base de données : 2015-03-05.1 [Locale] # Système d'exploitation : Windows 8.1 (x64) # Nom d'utilisateur : christiane - CRICRI # Exécuté depuis : C:\Users\christiane\Documents\Desktop\adwcleaner_4.112.exe # Option : Nettoyer ***** [ Services ] ***** [#] Service Supprimé : globalUpdate [#] Service Supprimé : globalUpdatem Service Supprimé : SWUpdater [#] Service Supprimé : cherimoya Service Supprimé : csrcc [#] Service Supprimé : bsdriver ***** [ Fichiers / Dossiers ] ***** Dossier Supprimé : C:\Program Files (x86)\StormWatch Dossier Supprimé : C:\Program Files (x86)\ver5CheckMeUp [!] Dossier Supprimé : C:\Program Files\shopperz Dossier Supprimé : C:\Users\christiane\AppData\Local\BreakingNewsAlert Dossier Supprimé : C:\Users\christiane\AppData\Roaming\Store Dossier Supprimé : C:\Users\christiane\AppData\Roaming\WTools Dossier Supprimé : C:\Users\christiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock Fichier Supprimé : C:\WINDOWS\patsearch.bin Fichier Supprimé : C:\WINDOWS\System32\drivers\cherimoya.sys Fichier Supprimé : C:\WINDOWS\System32\drivers\bsdriver.sys Fichier Supprimé : C:\Users\christiane\AppData\Roaming\Bubble Dock.boostrap.log Fichier Supprimé : C:\Users\christiane\AppData\Roaming\WindApp.boostrap.log Fichier Supprimé : C:\Users\christiane\AppData\Roaming\Bubble Dock.installation.log Fichier Supprimé : C:\Users\christiane\AppData\Roaming\WindApp.installation.log Fichier Supprimé : C:\Users\christiane\AppData\Roaming\Selection Tools.installation.log Fichier Supprimé : C:\Users\christiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StormWatch.lnk ***** [ Tâches planifiées ] ***** Tâche Supprimée : globalUpdateUpdateTaskMachineCore Tâche Supprimée : globalUpdateUpdateTaskMachineUA Tâche Supprimée : RocketTab Update Task Tâche Supprimée : RocketTab Tâche Supprimée : WindApp Update Tâche Supprimée : Selection Tools Update Tâche Supprimée : CheckMeUp Update Tâche Supprimée : 9d938613-a196-47c7-b867-30edf0071600-1-6 Tâche Supprimée : 9d938613-a196-47c7-b867-30edf0071600-1-7 Tâche Supprimée : 9d938613-a196-47c7-b867-30edf0071600-10_user Tâche Supprimée : 9d938613-a196-47c7-b867-30edf0071600-5_user ***** [ Raccourcis ] ***** ***** [ Registre ] ***** Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [bubble Dock] Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [WindApp] Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0 Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc Clé Supprimée : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0 Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10 Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [WinCheck] Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [selection Tools] Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B761EBA0-AA33-E87C-422B-AAD91488850C} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B761EBA0-AA33-E87C-422B-AAD91488850C} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B761EBA0-AA33-E87C-422B-AAD91488850C} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B761EBA0-AA33-E87C-422B-AAD91488850C} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A} Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{B761EBA0-AA33-E87C-422B-AAD91488850C} Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B761EBA0-AA33-E87C-422B-AAD91488850C} Clé Supprimée : HKCU\Software\GlobalUpdate Clé Supprimée : HKCU\Software\InstalledBrowserExtensions Clé Supprimée : HKCU\Software\Nosibay Clé Supprimée : HKCU\Software\RocketTabInstalled Clé Supprimée : HKCU\Software\Search Extensions Clé Supprimée : HKCU\Software\Store Clé Supprimée : HKCU\Software\StormWatchApp Clé Supprimée : HKCU\Software\WTools Clé Supprimée : HKCU\Software\rttasks Clé Supprimée : HKCU\Software\AppDataLow\Software\Crossrider Clé Supprimée : HKCU\Software\AppDataLow\Software\CheckMeUp Clé Supprimée : HKLM\SOFTWARE\GlobalUpdate Clé Supprimée : HKLM\SOFTWARE\InstalledBrowserExtensions Clé Supprimée : HKLM\SOFTWARE\RocketTab Clé Supprimée : HKLM\SOFTWARE\StormWatchApp Clé Supprimée : HKLM\SOFTWARE\StormWatch Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bubble Dock Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\windapp Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Liveistream Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Selection Tools Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RocketTab Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ConvertAd Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\StormWatch Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\wincheck Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\41BD0A1E-C20B-2CBC-03C5-46317C3264D5 Clé Supprimée : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback> Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxp=127.0.0.1:49867;hxxps=127.0.0.1:49867 Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1 ***** [ Navigateurs ] ***** -\\ Internet Explorer v11.0.9600.17416 -\\ Google Chrome v41.0.2272.89 -\\ Opera v28.0.1750.48 ************************* AdwCleaner[R0].txt - [29719 octets] - [07/02/2015 10:33:30] AdwCleaner[R1].txt - [3466 octets] - [07/02/2015 11:02:41] AdwCleaner[R2].txt - [1622 octets] - [11/02/2015 09:01:21] AdwCleaner[R3].txt - [4745 octets] - [10/03/2015 21:11:48] AdwCleaner[R4].txt - [11127 octets] - [22/03/2015 16:40:22] AdwCleaner[s0].txt - [25976 octets] - [07/02/2015 10:41:22] AdwCleaner[s1].txt - [3482 octets] - [07/02/2015 11:05:39] AdwCleaner[s2].txt - [1710 octets] - [11/02/2015 09:16:34] AdwCleaner[s3].txt - [4812 octets] - [10/03/2015 21:15:17] AdwCleaner[s4].txt - [10878 octets] - [22/03/2015 16:44:48] ########## EOF - C:\AdwCleaner\AdwCleaner[s4].txt - [10939 octets] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.4.5 (03.17.2015:1) OS: Windows 8.1 x64 Ran by christiane on 22/03/2015 at 16:25:34,88 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files Successfully deleted: [File] C:\WINDOWS\Tasks\9d938613-a196-47c7-b867-30edf0071600-3.job Successfully deleted: [File] C:\WINDOWS\Tasks\9d938613-a196-47c7-b867-30edf0071600-5.job Successfully deleted: [File] C:\WINDOWS\Tasks\9d938613-a196-47c7-b867-30edf0071600-6.job Successfully deleted: [File] C:\WINDOWS\Tasks\9d938613-a196-47c7-b867-30edf0071600-7.job Successfully deleted: [File] "C:\Users\christiane\appdata\local\google\chrome\user data\default\local storage\http_static.boostsaves.com_0.localstorage" Successfully deleted: [File] "C:\Users\christiane\appdata\local\google\chrome\user data\default\local storage\http_static.boostsaves.com_0.localstorage-journal" Successfully deleted: [File] "C:\Users\christiane\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage" Successfully deleted: [File] "C:\Users\christiane\appdata\local\google\chrome\user data\default\local storage\http_www.superfish.com_0.localstorage-journal" Successfully deleted: [File] "C:\Users\christiane\appdata\local\google\chrome\user data\default\local storage\https_static.boostsaves.com_0.localstorage" Successfully deleted: [File] "C:\Users\christiane\appdata\local\google\chrome\user data\default\local storage\https_static.boostsaves.com_0.localstorage-journal" ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\browser" Successfully deleted: [Folder] "C:\Users\christiane\AppData\Roaming\nosibay" Successfully deleted: [Folder] "C:\Users\christiane\AppData\Roaming\vopackage" Failed to delete: [Folder] "C:\Users\christiane\AppData\Roaming\wtools" Successfully deleted: [Folder] "C:\Users\christiane\appdata\local\globalupdate" Successfully deleted: [Folder] "C:\Users\christiane\appdata\local\stormwatch" Successfully deleted: [Folder] "C:\Users\christiane\appdata\local\weather_protector_llc" Successfully deleted: [Folder] "C:\Program Files (x86)\globalupdate" Successfully deleted: [Folder] "C:\Program Files (x86)\search extensions" Failed to delete: [Folder] "C:\Program Files (x86)\stormwatch" Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\stormwatch" Successfully deleted: [Folder] "C:\Users\christiane\AppData\Roaming\microsoft\windows\start menu\programs\stormwatch" Successfully deleted: [Folder] "C:\Users\christiane\AppData\Roaming\microsoft\windows\start menu\programs\vopackage" ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 22/03/2015 at 16:35:36,83 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~ ZHPCleaner v2015.3.15.122 by Nicolas Coolman (15/03/2015) ~ Run by christiane (Administrator) (15/03/2015 21:11:39) ~ Forum : http://forum.nicolascoolman.fr ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Réparer ~ Report : C:\Users\christiane\Documents\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\christiane\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) ~ Windows 81, 64-bit (Build 9600) ---\\ Service. (1) ---\\ Navigateur internet. (3) SUPPRIMÉ donnée: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings [bad : Port=51367 <-Loopback>] (Hijacker.Proxy) SUPPRIMÉ donnée: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings [bad : Port=51367 <-Loopback>] (Hijacker.Proxy) DEPLACÉ fichier: C:\Users\christiane\Documents\Desktop\Continue GUPlayer Uninstaller.lnk [bad : C:\Program Files (x86)\GU Player\GUPlayerUninstaller.exe] (PUP.GUPlayer) ---\\ Fichier hôte. (2) ~ Le fichier hôte est légitime. (21) ~ Le fichier hôte est légitime. (21) ---\\ Tâche planifiée. (1) SUPPRIMÉ tâche: [avaxvavya] [C:\Users\christiane\AppData\Local\avaxvavya\avaxvavya.exe (Not File) ] (PUP.SearchProtect) ---\\ Explorateur ( Dossiers, Fichiers ). (64) DEPLACÉ fichier****: C:\Program Files\shopperz\wrex64.exe (PUP.Shopperz) DEPLACÉ fichier: C:\Program Files (x86)\I - Cinema\47e26a51-313e-4f6e-bfba-76003377a4c5-1-6.exe [DiscountFrenzy - I - Cinema exe] (PUP.CrossRider) DEPLACÉ fichier: C:\Program Files (x86)\I - Cinema\47e26a51-313e-4f6e-bfba-76003377a4c5-1-7.exe [DiscountFrenzy - I - Cinema exe] (PUP.CrossRider) DEPLACÉ fichier: C:\Program Files (x86)\I - Cinema\47e26a51-313e-4f6e-bfba-76003377a4c5-10.exe [DiscountFrenzy - I - Cinema exe] (PUP.CrossRider) DEPLACÉ fichier: C:\Program Files (x86)\I - Cinema\47e26a51-313e-4f6e-bfba-76003377a4c5-11.exe [DiscountFrenzy - I - Cinema exe] (PUP.CrossRider) DEPLACÉ fichier: C:\Program Files (x86)\I - Cinema\47e26a51-313e-4f6e-bfba-76003377a4c5-5.exe [DiscountFrenzy - I - Cinema exe] (PUP.CrossRider) DEPLACÉ fichier: C:\WINDOWS\Prefetch\ANYPROTECT.EXE-53752276.pf (PUP.AnyProtect) DEPLACÉ fichier: C:\WINDOWS\Prefetch\AVAXVAVYA.EXE-6CF42B75.pf (PUP.SearchProtect) DEPLACÉ fichier: C:\WINDOWS\Prefetch\BOBROWSER.EXE-23E685A1.pf (PUP.BoBrowser) DEPLACÉ fichier: C:\WINDOWS\Prefetch\BOXORE.EXE-43C373DB.pf (Adware.Boxore) DEPLACÉ fichier: C:\WINDOWS\Prefetch\BOXOREINSTALLER_3009-284342EA-66A6ED48.pf (Adware.Boxore) DEPLACÉ fichier: C:\WINDOWS\Prefetch\BUBBLE DOCK BSETUP.EXE-C9E2DF0B.pf (PUP.BubbleDock) DEPLACÉ fichier: C:\WINDOWS\Prefetch\BUBBLE DOCK UPDATE.EXE-FDEB817F.pf (PUP.BubbleDock) DEPLACÉ fichier: C:\WINDOWS\Prefetch\BUBBLE DOCK.EXE-9B8B5D28.pf (PUP.BubbleDock) DEPLACÉ fichier: C:\WINDOWS\Prefetch\CLARAUPDATER.EXE-2E48CBCB.pf (Adware.SupTab) DEPLACÉ fichier: C:\WINDOWS\Prefetch\CONVERTAD.EXE-EA73C37B.pf (Adware.Pirrit) DEPLACÉ fichier: C:\WINDOWS\Prefetch\GAMESDESKTOP-FRINSTALLER.EXE-DDB303F8.pf (Adware.GamesDesktop) DEPLACÉ fichier: C:\WINDOWS\Prefetch\GAMESDESKTOP-FRINSTALLER.TMP-E100D389.pf (Adware.GamesDesktop) DEPLACÉ fichier: C:\WINDOWS\Prefetch\J6BLOCKANDSURFR79.EXE-1AC1F779.pf (PUP.BlockAndSurf) DEPLACÉ fichier: C:\WINDOWS\Prefetch\JAN7_COR_SWEET-PAGE.EXE-958061AC.pf (PUP.SweetPage) DEPLACÉ fichier: C:\WINDOWS\Prefetch\LBUBBLE DOCK.EXE-AD686F2C.pf (PUP.BubbleDock) DEPLACÉ fichier: C:\WINDOWS\Prefetch\MYPC BACKUP.EXE-D2D9F9B9.pf (PUP.MyPCBackup) DEPLACÉ fichier: C:\WINDOWS\Prefetch\OPTIMIZERMONITOR.EXE-45091E09.pf (Adware.OptimizerMonitor) DEPLACÉ fichier: C:\WINDOWS\Prefetch\OPTIMIZERPRO.EXE-42552B93.pf (PUP.OptimizerPro) DEPLACÉ fichier: C:\WINDOWS\Prefetch\OPTIMIZERPRO.EXE-DA6E828F.pf (PUP.OptimizerPro) DEPLACÉ fichier: C:\WINDOWS\Prefetch\OPTIMIZERPROINSTALLER.EXE-1C645747.pf (PUP.OptimizerPro) DEPLACÉ fichier: C:\WINDOWS\Prefetch\OPTIMIZERPROINSTALLER.EXE-7DCCA0E8.pf (PUP.OptimizerPro) DEPLACÉ fichier: C:\WINDOWS\Prefetch\OPTPROSTART.EXE-3C0ECAF5.pf (PUP.OptimizerPro) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PACKAGE_CUBEPILESHOPPERZ_INST-74811DAC.pf (PUP.Shopperz) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PACKAGE_CUBEPILESHOPPERZ_INST-AA8B3FFF.pf (PUP.Shopperz) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PACKAGE_PLUMOWEB_INSTALLER_MU-C778FE74.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PACKAGE_PLUMOWEB_INSTALLER_MU-D4E00B12.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PLUMOWEB.BROWSERADAPTER.EXE-502ED039.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PLUMOWEB.BROWSERADAPTER64.EXE-9D178E8B.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PLUMOWEB.EXPEXT.EXE-9B92A0C6.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PLUMOWEB.PURBROWSE64.EXE-B7674C0F.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\PLUMOWEB_SOFT_PARTNER.EXE-F67BB2C5.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\REGISTEROPTIMIZERMONITOR.EXE-91CA857A.pf (Adware.OptimizerMonitor) DEPLACÉ fichier: C:\WINDOWS\Prefetch\SEARCHPROTECT_SY_1112-94025A9-4212764D.pf (PUP.SearchProtect) DEPLACÉ fichier: C:\WINDOWS\Prefetch\SELECTION TOOLS.EXE-4B836F6B.pf (PUP.Nosibay) DEPLACÉ fichier: C:\WINDOWS\Prefetch\SMARTWEBAPP.EXE-6932E006.pf (PUP.SmartWebSearch) DEPLACÉ fichier: C:\WINDOWS\Prefetch\SMARTWEBHELPER.EXE-813D2091.pf (PUP.SmartWebSearch) DEPLACÉ fichier: C:\WINDOWS\Prefetch\SMDMFSERVICE.EXE-4AA7D1F8.pf (PUP.SystemK) DEPLACÉ fichier: C:\WINDOWS\Prefetch\UNINSTALL BUBBLE DOCK.EXE-C6895063.pf (PUP.BubbleDock) DEPLACÉ fichier: C:\WINDOWS\Prefetch\UNINSTALL BUBBLE DOCK.EXE-D419211A.pf (PUP.BubbleDock) DEPLACÉ fichier: C:\WINDOWS\Prefetch\UNINSTALL_OPTIMIZERPRO.EXE-7F38370C.pf (PUP.OptimizerPro) DEPLACÉ fichier: C:\WINDOWS\Prefetch\UPDATEPLUMOWEB.EXE-41F1F4F0.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\UTILPLUMOWEB.EXE-4A5D9C48.pf (PUP.PlumoWeb) DEPLACÉ fichier: C:\WINDOWS\Prefetch\VOPACKAGE.EXE-4160483B.pf (Adware.Downware) DEPLACÉ fichier: C:\WINDOWS\Prefetch\VOPACKAGE.EXE-F213B793.pf (Adware.Downware) DEPLACÉ fichier: C:\WINDOWS\Prefetch\WAJAM_DOWNLOAD_V2.EXE-36AD6FA8.pf (PUP.Wajam) DEPLACÉ fichier: C:\WINDOWS\Prefetch\WINCHECK.EXE-794C3E07.pf (PUP.Wincheck) DEPLACÉ fichier: C:\WINDOWS\Prefetch\WINCHECKWRAPPER.EXE-A04CF3DC.pf (PUP.Wincheck) DEPLACÉ fichier: C:\WINDOWS\Prefetch\WPM_V20.0.0.1714_0204.EXE-91CF3B8C.pf (PUP.WpManager) DEPLACÉ fichier: C:\ProgramData\{470e4507-0420-e412-470e-e4507042141c}\OptimizerProInstaller.exe [PC Utilities Software Limited - OptimizerPro – Clean up your PC] (PUP.OptimizerPro) DEPLACÉ fichier: C:\Users\CHRIST~1\AppData\Local\Temp\setup_496.exe [shopperz - ] (PUP.Shopperz) DEPLACÉ fichier: C:\Users\CHRIST~1\AppData\Local\Temp\nsbEEEC.tmp\2dc5634e-dffe-4d43-a419-8c920578f600.exe [ClaraLabs - ClaraSetup] (PUP.BoBrowser) DEPLACÉ fichier*: C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage (PUP.BoostSaves) DEPLACÉ fichier*: C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage-journal (PUP.BoostSaves) DEPLACÉ fichier*: C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.boostsaves.com_0.localstorage (PUP.BoostSaves) DEPLACÉ fichier*: C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.boostsaves.com_0.localstorage-journal (PUP.BoostSaves) DEPLACÉ fichier*: C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage (PUP.SpecialSavings) DEPLACÉ fichier*: C:\Users\christiane\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal (PUP.SpecialSavings) DEPLACÉ fichier****: C:\WINDOWS\System32\Drivers\bsdriver.sys [Copyright © 2012 - ] (PUP.Shopperz) ---\\ Base de Registres ( Clés, Valeurs, Données ). (29) SUPPRIMÉ clé^: [X64] HKLM\SYSTEM\CurrentControlSet\Services\4ef60154 ["C:\WINDOWS\system32\rundll32.exe" "c:\Program Files (x86)\Optimizer Pro 3.38\OptProMon.dll",ENT (Not File) ] (PUP.OptimizerPro) SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\shopperz [C:\Program Files\shopperz\wrex.exe] (PUP.Shopperz) SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\shopperz64 [C:\Program Files\shopperz\wrex64.exe] (PUP.Shopperz) SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions\\{5081D2D4-1637-404c-B74F-50526718257D} [C:\Program Files\shopperz\Firefox] (PUP.Shopperz) SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\{5081D2D4-1637-404c-B74F-50526718257D} [C:\Program Files\shopperz\Firefox] (PUP.Shopperz) SUPPRIMÉ clé*: HKCU\Software\CinemaP-1.9cV04.02-nv-ie [] (Heuristic.CrossRider) SUPPRIMÉ clé*: HKCU\Software\I - Cinema-nv-ie [] (Heuristic.CrossRider) SUPPRIMÉ clé*: HKCU\Software\SmartSaver+ 3-nv-ie [] (Heuristic.CrossRider) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\14b78aa1-6f45-cabb-a3b3-30d5b09b8b69 [] (PUP.CrossRider) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\CinemaP-1.9cV04.02-nv-ie [] (Heuristic.CrossRider) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\I - Cinema-nv-ie [] (Heuristic.CrossRider) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Wow6432Node\SmartSaver+ 3-nv-ie [] (Heuristic.CrossRider) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.DataContainer [DataContainer Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.DataContainer.1 [DataContainer Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.DataController [DataController Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.DataController.1 [DataController Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.DataTable [DataTable Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.DataTable.1 [DataTable Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.DataTableHolder [DataTableHolder Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.DataTableHolder.1 [DataTableHolder Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.LSPLogic [LSPLogic Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.LSPLogic.1 [LSPLogic Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.ReadOnlyManager [ReadOnlyManager Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.ReadOnlyManager.1 [ReadOnlyManager Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.WatchDog [WatchDog Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Classes\OptimizerMonitorLib.WatchDog.1 [WatchDog Class] (Adware.OptimizerMonitor) SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\OptimizerMonitor [service] (Adware.OptimizerMonitor) SUPPRIMÉ clé^: [X64] HKLM\SOFTWARE\shopperz [] (PUP.Shopperz) SUPPRIMÉ clé^: [X64] HKLM\SOFTWARE\Wow6432Node\shopperz [] (PUP.Shopperz) ---\\ Bilan de la réparation ~ Réparation réalisée avec succès. ~ Ce navigateur est absent (Mozilla Firefox) ~ Ce navigateur est absent (Opera Software) ~ Le système a été redémarré. ---\\ Statistiques ~ Items scannés : 68028 ~ Items trouvés : 0 ~ Items réparés : 80 End of clean at 21:23:03 =================== ZHPCleaner-[R]-15032015-21_23_03.txt ZHPCleaner--15032015-21_03_04.txt

pc lent et fenetres intempestives ccleaner adwcleaner et malwares bytes effectués mais toujours infecté merci bcq de m'aider

rapport delfix http://www.cjoint.com/15jv/EAsiMLm3TVr.htm merci beaucoup tomtom95

rapport anti-malware http://www.cjoint.com/15jv/EArwBNX7dIf.htm opération terminée..ça a l'air 'être bcq mieux non ? encore qqch à faire? une question au fait : dois je laisser l'anti malware actif etc apres la desinfection ? merci bcq