Virus Anyprotect, SmartWeb, Istartsurf,....

[vela1221]

Il y à plusieurs programmes qui viennent s'installer sur mon ordinateur chaque jour malgré le fait que je les supprime et que je fasse des analyses antivirus ainsi que des analyses avec Adwcleaner. J'ai donc refait une analyse avec Adwcleaner ainsi qu'avec FRST dont voici les rapports:

Adwcleaner:

# AdwCleaner v4.206 - Rapport créé le 18/06/2015 à 15:07:12
# Mis à jour le 01/06/2015 par Xplode
# Base de données : 2015-06-17.1 [Serveur]
# Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Nom d'utilisateur : PC_Anthony - PC-DE-ANTHONY
# Exécuté depuis : C:\Users\PC_Anthony\Desktop\adwcleaner_4.206.exe
# Option : Nettoyer

***** [ Services ] *****

[#] Service Supprimé : IHProtect Service
[#] Service Supprimé : WindowsMangerProtect

***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\WindowsMangerProtect
Dossier Supprimé : C:\ProgramData\MailUpdate
Dossier Supprimé : C:\ProgramData\IHProtectUpDate
Dossier Supprimé : C:\Program Files\miuitab
Dossier Supprimé : C:\Users\PC_Anthony\AppData\Local\SmartWeb
Dossier Supprimé : C:\Users\PC_Anthony\AppData\Roaming\AnyProtectEx
Dossier Supprimé : C:\Users\PC_Anthony\AppData\Roaming\MailUpdate
Fichier Supprimé : C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\algmakeomkafjglfhpomolfhjppoojff
Fichier Supprimé : C:\Windows\patsearch.bin
Fichier Supprimé : C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage
Fichier Supprimé : C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage-journal

***** [ Taches planifiées ] *****

Tache Supprimée : SmartWeb Upgrade Trigger Task

***** [ Raccourcis ] *****


***** [ Registre ] *****

Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKCU\Software\AnyProtect
Clé Supprimée : HKCU\Software\APN PIP
Clé Supprimée : HKCU\Software\AskPartnerNetwork
Clé Supprimée : HKCU\Software\HomeTab
Clé Supprimée : HKCU\Software\simplytech
Clé Supprimée : HKCU\Software\WajIEnhance
Clé Supprimée : HKCU\Software\TNT2
Clé Supprimée : HKCU\Software\WajIntEnhance
Clé Supprimée : HKCU\Software\SearchProtectWS
Clé Supprimée : HKCU\Software\Linkey
Clé Supprimée : HKLM\SOFTWARE\AskPartnerNetwork
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\Iminent
Clé Supprimée : HKLM\SOFTWARE\istartsurfSoftware
Clé Supprimée : HKLM\SOFTWARE\SearchProtect
Clé Supprimée : HKLM\SOFTWARE\SupDp
Clé Supprimée : HKLM\SOFTWARE\SupTab
Clé Supprimée : HKLM\SOFTWARE\supWindowsMangerProtect
Clé Supprimée : HKLM\SOFTWARE\IHProtect
Clé Supprimée : HKLM\SOFTWARE\WajIntEnhance
Clé Supprimée : HKLM\SOFTWARE\SpeedBit
Clé Supprimée : HKLM\SOFTWARE\AIM Toolbar
Clé Supprimée : HKLM\SOFTWARE\searchult
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}

***** [ Navigateurs ] *****

-\\ Internet Explorer v9.0.8112.16659

Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]

-\\ Mozilla Firefox v13.0 (fr)


-\\ Google Chrome v43.0.2357.124

[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://dts.search-results.com/sr?src=crb&appid=113&systemid=406&sr=0&q={searchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://dts.search-results.com/sr?src=crb&appid=360&systemid=406&sr=0&q={searchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=&locale=&apn_uid=0B13E83E-6C3D-4AF6-903E-C4A9343DC936&apn_ptnrs=U3&apn_sauid=4E1EEF23-319E-4279-BA76-BD53F0480BD9&apn_dtid=OSJ000YYBE&q={searchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www2.delta-search.com/?q={searchTerms}&affID=119546&tt=gc_&babsrc=SP_def&mntrId=A49C944452E5DF2E
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&affID=119546&tt=gc_&babsrc=SP_def_gin2g&mntrId=A49C944452E5DF2E
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www.searchgol.com/?q={searchTerms}&babs ... 5&tsp=5035
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN17437816322009918&ctid=CT3281621&UM=1
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www.search.ask.com/web?p2=%5EBBK%5EOSJ0 ... earchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www.search.ask.com/web?p2=%5EBBK%5EOSJ0 ... earchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3 ... rms}&SSPV=
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1416083472&from=ill&uid=ST3360320AS_9QF67LNDXXXX9QF67LND&q={searchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1416083472&from=ill&uid=ST3360320AS_9QF67LNDXXXX9QF67LND&q={searchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=dspp&ts=1422901505&from=face&uid=ST3360320AS_9QF67LNDXXXX9QF67LND&q={searchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=dspp&ts=1422901505&from=face&uid=ST3360320AS_9QF67LNDXXXX9QF67LND&q={searchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1433 ... earchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Supprimée [Homepage] : hxxp://www.istartsurf.com/?type=hp&ts=14346320 ... XX9QF67LND
[C:\Users\PC_Anthony\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Supprimée [Startup_URLs] : 162D5B65ABFB767624869A66C04A7730994F41AAC01CFA1059178C8D56B0F167"},"software_reporter":{"prompt_reason":"AA8CA7B3ED2503E3676272611413E3968081E36A4201601D839CBC81C551A881","prompt_seed":"1887B3AA8D7CCB0CE55D9B12F7D50E363CF187D632EA0BDF1B4894C5C00447FF","prompt_version":"5A69335748952496C75923BDD82E1401447C16FE55A8408A3A4E15482F8BE3C0"},"sync":{"remaining_rollback_tries":"E926A3D870AF239272870EA2587EE14C3D00EEA35E6610A94E3688D903B1A430"}},"super_mac":"46AA6BD245E0462CB9A5CE66F723B6B985FB49D2093A0B95125827B26B5B5599"},"session":{"restore_on_startup":4,"startup_urls":["hxxp://www.istartsurf.com/?type=hp&ts=14346320 ... XX9QF67LND

*************************

AdwCleaner[R0].txt - [24467 octets] - [16/06/2015 14:36:40]
AdwCleaner[R1].txt - [12367 octets] - [18/06/2015 15:04:27]
AdwCleaner[S0].txt - [17103 octets] - [16/06/2015 14:39:52]
AdwCleaner[S1].txt - [11316 octets] - [18/06/2015 15:07:12]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [11377 octets] ##########


Voila je ne sait plus quoi faire avec ces programmes donc j'aurais bien besoin de votre aide. Merci d'avance !!

Ps: j'ai déjà réaliser un scan FRST donc j'ai également les 3 rapports

[angelique]

Ps: j'ai déjà réaliser un scan FRST donc j'ai également les 3 rapports

Utilise le site http://pjjoint.malekal.com/ pour envoyer ton rapport, et poste le lien dans ta prochaine réponse pour analyse.

[vela1221]

Bonsoir,

http://pjjoint.malekal.com/files.php?id ... 6l6o7q10m5
http://pjjoint.malekal.com/files.php?id ... t5z7b12s11
http://pjjoint.malekal.com/files.php?id ... n7m13g13j5

Voila les 3 rapports. Merci de votre réponse !

[Malekal_morte]

Salut,

Deux antivirus, pas bon.
Désinstalle celui en trop.

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AV: BitDefender Antivirus (Disabled - Out of date) {982ADE23-275B-0766-37C5-DE01A484098E}

~~


Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutorial-farbar ... -frst/#fix

Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :

R2 quburuzi; C:\Users\PC_Anthony\AppData\Roaming\4B64A5AC-1431098306-11DA-B32C-1FC352F3A63C\nseBF05.tmp [164352 2015-06-07] () [File not signed]
S2 mailUpdate; C:\ProgramData\MailUpdate\mailUpdate.exe -service [X]
2015-06-16 14:19 - 2015-06-16 14:19 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nst2BA1.tmp
2015-06-16 14:01 - 2015-06-16 14:24 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\13332
2015-06-16 13:34 - 2015-06-16 13:34 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{A638FB30-951A-47E3-BCD6-53220371880B}
2015-06-15 22:19 - 2015-06-15 22:29 - 365314954 _____ C:\Users\PC_Anthony\Downloads\AHS.V2.06.zone-telechargement.com.avi
2015-06-15 13:04 - 2015-06-15 13:04 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{C987FAA4-6A7B-4EEC-BCE7-FE7B71CA53C2}
2015-06-14 11:35 - 2015-06-14 11:36 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{1175E59E-E526-48E6-9FA4-BA7DA6F64A4F}
2015-06-13 12:53 - 2015-06-13 12:53 - 00000000 ____D C:\Users\PC_Anthony\Documents\Optimizer Pro
2015-06-13 12:48 - 2015-06-13 12:48 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsr69B6.tmp
2015-06-13 12:47 - 2015-06-14 11:28 - 00000350 _____ C:\Windows\Tasks\Bidaily Synchronize Task[3c32].job
2015-06-13 12:08 - 2015-06-13 12:08 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{A93F15C7-7B43-44B8-97F8-14E924664848}
2015-06-12 09:08 - 2015-06-12 09:07 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nskB96E.tmp
2015-06-12 09:04 - 2015-06-12 09:04 - 00000000 _____ C:\Windows\prleth.sys
2015-06-12 09:04 - 2015-06-12 09:04 - 00000000 _____ C:\Windows\hgfs.sys
2015-06-18 14:58 - 2015-06-18 14:58 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsy6344.tmp
2015-06-18 14:55 - 2015-06-18 14:55 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf
2015-06-18 14:28 - 2015-06-18 14:28 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{6366F595-F1C6-41DC-9C37-E8D9EF79E496}
2015-06-17 15:16 - 2015-06-17 15:16 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{AE401CD1-BBF5-4933-AF10-5BBB00983FD9}
2015-06-08 11:13 - 2015-06-08 11:13 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsoBE5E.tmp
2015-06-07 14:37 - 2015-05-08 17:18 - 00000000 ____D C:\Users\PC_Anthony\AppData\Roaming\4B64A5AC-1431098306-11DA-B32C-1FC352F3A63C
2015-02-02 20:27 - 2015-02-02 20:27 - 0613057 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsjE271.tmp
2015-06-07 13:18 - 2015-06-07 13:18 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsk149B.tmp
2015-06-12 09:08 - 2015-06-12 09:07 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nskB96E.tmp
2015-05-08 17:51 - 2015-05-08 17:50 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsm6282.tmp
2015-06-08 11:13 - 2015-06-08 11:13 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsoBE5E.tmp
2015-06-13 12:48 - 2015-06-13 12:48 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsr69B6.tmp
2015-06-16 14:19 - 2015-06-16 14:19 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nst2BA1.tmp
2015-06-18 14:58 - 2015-06-18 14:58 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsy6344.tmp
2015-02-06 19:07 - 2015-02-06 19:07 - 0613057 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsz2329.tmp
Task: {CFFDB6A3-FCD0-40EA-B869-230E0097A430} - System32\Tasks\WIN-statsAdmin => C:\Users\PC_Anthony\AppData\Local\Microsoft\WinU\~kofxbpz.exe <==== ATTENTION
Task: {14AC1232-28F5-40A8-9B5E-0C35C01A7C84} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\PC_Anthony\AppData\Roaming\~pwhggfn.exe
Task: {1AC151A0-14C1-4421-BCE4-6A902A1DCDB8} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION
Task: {53C2A560-D7F9-44F5-8E09-B20CAC2FEE89} - System32\Tasks\x077VThBgWoMPIZ => C:\Users\PC_Anthony\AppData\Roaming\k8RKKUF\mCMxI6k.exe
Task: {60B16BC7-E76B-40DC-8766-54BF6C84C92A} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION
Task: {74C46005-9171-4EE9-A3AA-0F3C81413F7E} - System32\Tasks\Bidaily Synchronize Task[3c32] => c:\programdata\{ecfbcecb-59d7-8ae8-ecfb-bcecb59d3b2d}\hqghumeaylnlf.exe <==== ATTENTION
Task: {994E9029-0842-48C5-AF0B-A257F63CC549} - System32\Tasks\WIN-fdfEfEfAfC => C:\Users\PC_Anthony\AppData\Roaming\~nsdzgyn.exe
Task: {AF2C4120-68F3-433B-B200-4D1FEAD179F8} - System32\Tasks\WIN-statsSystem => C:\Users\PC_Anthony\AppData\Local\Microsoft\WinU\~mfunhfm.exe


Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.

Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.

Relance FRST qui doit se trouver sur le bureau et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur


puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
* Internet Explorer et modules complémentaires / moteurs de recherche : http://forum.malekal.com/
* Firefox : http://forum.malekal.com/firefox-extens ... 36057.html
* Google Chrome : http://forum.malekal.com/google-chrome- ... 35837.html

[angelique]

• Ouvre le bloc-notes : Menu Démarrer / Tous les programmes / Accessoires et Bloc-Notes. (ou executer---> notepad)
  Copie/colle dedans ce qui suit :
  
  

  
  CHR HKLM\...\Chrome\Extension: [cmmijkjjmhpknehddkdfcombbcfcepme] - C:\Users\PC_ANT~1\AppData\Local\Temp\tbch.crx [Not Found]
  R2 quburuzi; C:\Users\PC_Anthony\AppData\Roaming\4B64A5AC-1431098306-11DA-B32C-1FC352F3A63C\nseBF05.tmp [164352 2015-06-07] () [File not signed]
  URLSearchHook: HKLM - (No Name) - {12cbcae3-c47f-4343-a54c-e80ef9b4a0c5} - No File
  URLSearchHook: HKU\S-1-5-21-3786555133-252006750-2894593866-1000 - (No Name) - {12cbcae3-c47f-4343-a54c-e80ef9b4a0c5} - No File
  Toolbar: HKLM - No Name - {12cbcae3-c47f-4343-a54c-e80ef9b4a0c5} - No File
  Toolbar: HKLM - No Name - !{98889811-442D-49dd-99D7-DC866BE87DBC} - No File
  Toolbar: HKU\S-1-5-21-3786555133-252006750-2894593866-1000 -> No Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File
  Toolbar: HKU\S-1-5-21-3786555133-252006750-2894593866-1000 -> No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
  Toolbar: HKU\S-1-5-21-3786555133-252006750-2894593866-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
  Toolbar: HKU\S-1-5-21-3786555133-252006750-2894593866-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
  HKLM\...\Run: [gmsd_be_005010003] => [X]
  Startup: C:\Users\PC_Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notification de cadeaux MSN.lnk [2009-11-14]
  ShortcutTarget: Notification de cadeaux MSN.lnk -> C:\Users\PC_Anthony\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
  GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
  CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
  Task: {14AC1232-28F5-40A8-9B5E-0C35C01A7C84} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\PC_Anthony\AppData\Roaming\~pwhggfn.exe
  Task: {1AC151A0-14C1-4421-BCE4-6A902A1DCDB8} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION
  Task: {53C2A560-D7F9-44F5-8E09-B20CAC2FEE89} - System32\Tasks\x077VThBgWoMPIZ => C:\Users\PC_Anthony\AppData\Roaming\k8RKKUF\mCMxI6k.exe
  Task: {60B16BC7-E76B-40DC-8766-54BF6C84C92A} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION
  Task: {74C46005-9171-4EE9-A3AA-0F3C81413F7E} - System32\Tasks\Bidaily Synchronize Task[3c32] => c:\programdata\{ecfbcecb-59d7-8ae8-ecfb-bcecb59d3b2d}\hqghumeaylnlf.exe <==== ATTENTION
  Task: {994E9029-0842-48C5-AF0B-A257F63CC549} - System32\Tasks\WIN-fdfEfEfAfC => C:\Users\PC_Anthony\AppData\Roaming\~nsdzgyn.exe
  Task: {AF2C4120-68F3-433B-B200-4D1FEAD179F8} - System32\Tasks\WIN-statsSystem => C:\Users\PC_Anthony\AppData\Local\Microsoft\WinU\~mfunhfm.exe
  Task: {B949A3FD-0649-4E0A-A58E-59AFAD4B23A2} - \Adobe Flash Player Updater No Task File <==== ATTENTION
  Task: {CFFDB6A3-FCD0-40EA-B869-230E0097A430} - System32\Tasks\WIN-statsAdmin => C:\Users\PC_Anthony\AppData\Local\Microsoft\WinU\~kofxbpz.exe <==== ATTENTION
  Task: C:\Windows\Tasks\Bidaily Synchronize Task[3c32].job => c:\programdata\{ecfbcecb-59d7-8ae8-ecfb-bcecb59d3b2d}\hqghumeaylnlf.exe <==== ATTENTION
  C:\Users\PC_Anthony\AppData\Roaming\~pwhggfn.exe
  C:\Users\PC_Anthony\AppData\Roaming\k8RKKUF
  C:\programdata\{ecfbcecb-59d7-8ae8-ecfb-bcecb59d3b2d}
  C:\Users\PC_Anthony\AppData\Roaming\~nsdzgyn.exe
  C:\Users\PC_Anthony\AppData\Local\Microsoft\WinU
  C:\Users\PC_Anthony\AppData\Local\Microsoft\WinU\~kofxbpz.exe
  C:\Users\PC_Anthony\AppData\Roaming\4B64A5AC-1431098306-11DA-B32C-1FC352F3A63C
  2015-06-13 12:53 - 2015-06-13 12:53 - 00000000 ____D C:\Users\PC_Anthony\Documents\Optimizer Pro
  2015-06-13 12:48 - 2015-06-13 12:48 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsr69B6.tmp
  2015-06-13 12:47 - 2015-06-14 11:28 - 00000350 _____ C:\Windows\Tasks\Bidaily Synchronize Task[3c32].job
  2015-06-13 12:08 - 2015-06-13 12:08 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{A93F15C7-7B43-44B8-97F8-14E924664848}
  2015-06-12 09:08 - 2015-06-12 09:07 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nskB96E.tmp
  C:\Users\PC_Anthony\AppData\Local\Temp\275F.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\79B1DD57-85DE-547D-0EA6-6285A8E0145C.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\bitool.dll
  C:\Users\PC_Anthony\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpg9hcrp.dll
  C:\Users\PC_Anthony\AppData\Local\Temp\F0908873-585C-62EC-1BD7-C0B9D8C815F4.dll
  C:\Users\PC_Anthony\AppData\Local\Temp\F0908873-585C-62EC-1BD7-C0B9D8C815F4.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\fsd64DA.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\fsdDB12.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\fsdE0DC.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\fsdE417.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\optprosetup.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\Quarantine.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\sdf94B0.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\sqlite3.dll
  C:\Users\PC_Anthony\AppData\Local\Temp\Uninstall.exe
  C:\Users\PC_Anthony\AppData\Local\Temp\uninstall5Dn1s9dNFS.exe
  EmptyTemp:
  

• Menu Fichier / Enregistrer-sous
  Place toi sur le bureau.
  Dans le champs en bas, nom du fichier mets : fixlist.txt
  Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.
• Ferme toutes les applications, y compris ton navigateur
• Double-clique sur FRST.exe
  /!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
  Sur le menu principal, clique une seule fois sur Fix et patiente le temps de la correction
  
  
  Un redémarrage peut être nécessaire (pas obligatoire).
• L'outil va créer un rapport de correction Fixlog.txt. Poste ce rapport dans ta réponse.

[vela1221]

Bonjour,

Voici le nouveau rapport Fixlog:

Fix result of Farbar Recovery Scan Tool (x86) Version: 13-06-2015
Ran by PC_Anthony at 2015-06-19 16:17:45 Run:1
Running from C:\Users\PC_Anthony\Desktop\FRST
Loaded Profiles: PC_Anthony (Available Profiles: PC_Anthony & Patrick)
Boot Mode: Normal

==============================================

fixlist content:
*****************
R2 quburuzi; C:\Users\PC_Anthony\AppData\Roaming\4B64A5AC-1431098306-11DA-B32C-1FC352F3A63C\nseBF05.tmp [164352 2015-06-07] () [File not signed]
S2 mailUpdate; C:\ProgramData\MailUpdate\mailUpdate.exe -service [X]
2015-06-16 14:19 - 2015-06-16 14:19 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nst2BA1.tmp
2015-06-16 14:01 - 2015-06-16 14:24 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\13332
2015-06-16 13:34 - 2015-06-16 13:34 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{A638FB30-951A-47E3-BCD6-53220371880B}
2015-06-15 22:19 - 2015-06-15 22:29 - 365314954 _____ C:\Users\PC_Anthony\Downloads\AHS.V2.06.zone-telechargement.com.avi
2015-06-15 13:04 - 2015-06-15 13:04 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{C987FAA4-6A7B-4EEC-BCE7-FE7B71CA53C2}
2015-06-14 11:35 - 2015-06-14 11:36 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{1175E59E-E526-48E6-9FA4-BA7DA6F64A4F}
2015-06-13 12:53 - 2015-06-13 12:53 - 00000000 ____D C:\Users\PC_Anthony\Documents\Optimizer Pro
2015-06-13 12:48 - 2015-06-13 12:48 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsr69B6.tmp
2015-06-13 12:47 - 2015-06-14 11:28 - 00000350 _____ C:\Windows\Tasks\Bidaily Synchronize Task[3c32].job
2015-06-13 12:08 - 2015-06-13 12:08 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{A93F15C7-7B43-44B8-97F8-14E924664848}
2015-06-12 09:08 - 2015-06-12 09:07 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nskB96E.tmp
2015-06-12 09:04 - 2015-06-12 09:04 - 00000000 _____ C:\Windows\prleth.sys
2015-06-12 09:04 - 2015-06-12 09:04 - 00000000 _____ C:\Windows\hgfs.sys
2015-06-18 14:58 - 2015-06-18 14:58 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsy6344.tmp
2015-06-18 14:55 - 2015-06-18 14:55 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf
2015-06-18 14:28 - 2015-06-18 14:28 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{6366F595-F1C6-41DC-9C37-E8D9EF79E496}
2015-06-17 15:16 - 2015-06-17 15:16 - 00000000 ____D C:\Users\PC_Anthony\AppData\Local\{AE401CD1-BBF5-4933-AF10-5BBB00983FD9}
2015-06-08 11:13 - 2015-06-08 11:13 - 00613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsoBE5E.tmp
2015-06-07 14:37 - 2015-05-08 17:18 - 00000000 ____D C:\Users\PC_Anthony\AppData\Roaming\4B64A5AC-1431098306-11DA-B32C-1FC352F3A63C
2015-02-02 20:27 - 2015-02-02 20:27 - 0613057 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsjE271.tmp
2015-06-07 13:18 - 2015-06-07 13:18 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsk149B.tmp
2015-06-12 09:08 - 2015-06-12 09:07 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nskB96E.tmp
2015-05-08 17:51 - 2015-05-08 17:50 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsm6282.tmp
2015-06-08 11:13 - 2015-06-08 11:13 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsoBE5E.tmp
2015-06-13 12:48 - 2015-06-13 12:48 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsr69B6.tmp
2015-06-16 14:19 - 2015-06-16 14:19 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nst2BA1.tmp
2015-06-18 14:58 - 2015-06-18 14:58 - 0613255 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsy6344.tmp
2015-02-06 19:07 - 2015-02-06 19:07 - 0613057 _____ (CMI Limited) C:\Users\PC_Anthony\AppData\Local\nsz2329.tmp
Task: {CFFDB6A3-FCD0-40EA-B869-230E0097A430} - System32\Tasks\WIN-statsAdmin => C:\Users\PC_Anthony\AppData\Local\Microsoft\WinU\~kofxbpz.exe <==== ATTENTION
Task: {14AC1232-28F5-40A8-9B5E-0C35C01A7C84} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\PC_Anthony\AppData\Roaming\~pwhggfn.exe
Task: {1AC151A0-14C1-4421-BCE4-6A902A1DCDB8} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION
Task: {53C2A560-D7F9-44F5-8E09-B20CAC2FEE89} - System32\Tasks\x077VThBgWoMPIZ => C:\Users\PC_Anthony\AppData\Roaming\k8RKKUF\mCMxI6k.exe
Task: {60B16BC7-E76B-40DC-8766-54BF6C84C92A} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION
Task: {74C46005-9171-4EE9-A3AA-0F3C81413F7E} - System32\Tasks\Bidaily Synchronize Task[3c32] => c:\programdata\{ecfbcecb-59d7-8ae8-ecfb-bcecb59d3b2d}\hqghumeaylnlf.exe <==== ATTENTION
Task: {994E9029-0842-48C5-AF0B-A257F63CC549} - System32\Tasks\WIN-fdfEfEfAfC => C:\Users\PC_Anthony\AppData\Roaming\~nsdzgyn.exe
Task: {AF2C4120-68F3-433B-B200-4D1FEAD179F8} - System32\Tasks\WIN-statsSystem => C:\Users\PC_Anthony\AppData\Local\Microsoft\WinU\~mfunhfm.exe

*****************

quburuzi => Service stopped successfully.
quburuzi => Service removed successfully.
mailUpdate => Service stopped successfully.
mailUpdate => Service removed successfully.
C:\Users\PC_Anthony\AppData\Local\nst2BA1.tmp => moved successfully.
C:\Users\PC_Anthony\AppData\Local\13332 => moved successfully.
C:\Users\PC_Anthony\AppData\Local\{A638FB30-951A-47E3-BCD6-53220371880B} => moved successfully.
C:\Users\PC_Anthony\Downloads\AHS.V2.06.zone-telechargement.com.avi => moved successfully.
C:\Users\PC_Anthony\AppData\Local\{C987FAA4-6A7B-4EEC-BCE7-FE7B71CA53C2} => moved successfully.
C:\Users\PC_Anthony\AppData\Local\{1175E59E-E526-48E6-9FA4-BA7DA6F64A4F} => moved successfully.
C:\Users\PC_Anthony\Documents\Optimizer Pro => moved successfully.
C:\Users\PC_Anthony\AppData\Local\nsr69B6.tmp => moved successfully.
C:\Windows\Tasks\Bidaily Synchronize Task[3c32].job => moved successfully.
C:\Users\PC_Anthony\AppData\Local\{A93F15C7-7B43-44B8-97F8-14E924664848} => moved successfully.
C:\Users\PC_Anthony\AppData\Local\nskB96E.tmp => moved successfully.
C:\Windows\prleth.sys => moved successfully.
C:\Windows\hgfs.sys => moved successfully.
C:\Users\PC_Anthony\AppData\Local\nsy6344.tmp => moved successfully.
C:\Windows\system32\Drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf => moved successfully.
C:\Users\PC_Anthony\AppData\Local\{6366F595-F1C6-41DC-9C37-E8D9EF79E496} => moved successfully.
C:\Users\PC_Anthony\AppData\Local\{AE401CD1-BBF5-4933-AF10-5BBB00983FD9} => moved successfully.
C:\Users\PC_Anthony\AppData\Local\nsoBE5E.tmp => moved successfully.
C:\Users\PC_Anthony\AppData\Roaming\4B64A5AC-1431098306-11DA-B32C-1FC352F3A63C => moved successfully.
C:\Users\PC_Anthony\AppData\Local\nsjE271.tmp => moved successfully.
C:\Users\PC_Anthony\AppData\Local\nsk149B.tmp => moved successfully.
"C:\Users\PC_Anthony\AppData\Local\nskB96E.tmp" => File/Folder not found.
C:\Users\PC_Anthony\AppData\Local\nsm6282.tmp => moved successfully.
"C:\Users\PC_Anthony\AppData\Local\nsoBE5E.tmp" => File/Folder not found.
"C:\Users\PC_Anthony\AppData\Local\nsr69B6.tmp" => File/Folder not found.
"C:\Users\PC_Anthony\AppData\Local\nst2BA1.tmp" => File/Folder not found.
"C:\Users\PC_Anthony\AppData\Local\nsy6344.tmp" => File/Folder not found.
C:\Users\PC_Anthony\AppData\Local\nsz2329.tmp => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CFFDB6A3-FCD0-40EA-B869-230E0097A430}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CFFDB6A3-FCD0-40EA-B869-230E0097A430}" => key removed successfully.
C:\Windows\System32\Tasks\WIN-statsAdmin => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsAdmin" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{14AC1232-28F5-40A8-9B5E-0C35C01A7C84}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14AC1232-28F5-40A8-9B5E-0C35C01A7C84}" => key removed successfully.
C:\Windows\System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-GGfIfEGCfEGbGffIfCfEGC" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{1AC151A0-14C1-4421-BCE4-6A902A1DCDB8}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1AC151A0-14C1-4421-BCE4-6A902A1DCDB8}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate 2" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{53C2A560-D7F9-44F5-8E09-B20CAC2FEE89}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53C2A560-D7F9-44F5-8E09-B20CAC2FEE89}" => key removed successfully.
C:\Windows\System32\Tasks\x077VThBgWoMPIZ => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\x077VThBgWoMPIZ" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{60B16BC7-E76B-40DC-8766-54BF6C84C92A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{60B16BC7-E76B-40DC-8766-54BF6C84C92A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{74C46005-9171-4EE9-A3AA-0F3C81413F7E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{74C46005-9171-4EE9-A3AA-0F3C81413F7E}" => key removed successfully.
C:\Windows\System32\Tasks\Bidaily Synchronize Task[3c32] => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bidaily Synchronize Task[3c32]" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{994E9029-0842-48C5-AF0B-A257F63CC549}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{994E9029-0842-48C5-AF0B-A257F63CC549}" => key removed successfully.
C:\Windows\System32\Tasks\WIN-fdfEfEfAfC => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-fdfEfEfAfC" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AF2C4120-68F3-433B-B200-4D1FEAD179F8}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF2C4120-68F3-433B-B200-4D1FEAD179F8}" => key removed successfully.
C:\Windows\System32\Tasks\WIN-statsSystem => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WIN-statsSystem" => key removed successfully.

==== End of Fixlog 16:17:55 ====

[angelique]

c'est mieux ?

[vela1221]

Pour le moment ça à l'air mieux rien ne s'installe au démarrage de mon ordinateur ! Je vais voir si ça tient mais je pense que ça ira. Merci beaucoup pour votre aide car je ne m'en sortais plus !!

[angelique]

➫ supprime frst.exe, ses rapports et C:\FRST


➫ Quelques conseils :


Pour prévenir les sites malicieux, tu peux installer Blockulicious : http://forum.malekal.com/blockulicious- ... 46656.html


Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/