Re: Adwcleaner bloqué a "analyse des navigateurs"

Bonjour, désolé pour le retard vous pouvez me critiquer X)

he bien vous avez raison cocochepeau quelque jour après même problème , j'ai fait comme vous m'avez demander fr33tux celà a duré plusieurs heures et surprise toujours de google chrome alors que je l'ai désinstallé bizarre . voici l rapport de scan

# Mode: Scan # Support : https://www.malwarebytes.com/support



***** [ Services ] ***...

Re: AdwCleamer wants to delete my whole Firefox profile folder

Hello,

Thanks M-K-D-B, sorry for misunderstanding.

@Simplex: Can you zip me the folder "C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1" and your profile: "4ui6vnjc.Simplex" ? I'll merge the two so that you'll find a clean profile, and you will be able to clean with AdwCleaner the malicious one.

Thanks,

Re: Firefox pref Found - what does this option do and why is it considered malicious?

Hello,

It's part of QuickStart, an adware. You can clean it.

Best regards,

Re: Menace Persistante après nettoyage

Bonjour,

Nous allons utiliser Farbar Recovery Scan Tool, voici la marche à suivre :

  • Téléchargez FRST;
  • Effectuez un clique-droit sur le fichier téléchargé, puis "Exécuter en tant qu'administrateur";
  • Cliquez sur le bouton "Scan";
  • Un rapport est sauvegardé, il se nomme "FRST.txt" et quelques informations supplémentaires sont proposées dans le fichier "Addition.txt";
  • S'il vous plait, utilisez...

Re: AdwCleamer wants to delete my whole Firefox profile folder

You're right, nice catch! But that really is my main firefox profile. Did malware hacked its name, or what?

I searech for this profile ID and found in int he following places:

c:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\41a66e7e5ee1

c:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41a66e7e5ee1

 

I am certain that when I told adwcleaner to delete this folder, my firefox pro...

Re: AdwCleamer wants to delete my whole Firefox profile folder

This element seems to be a FP caused by a generic detection.  

Sorry, but I don't think so.

There are  - only at the german TB forum - at least 50 topics with this ff profilename "41A66E7E5EE1".

Usually, every ff profilename is almost unique, 41A66E7E5EE1 isn't unique.

It is related to Yondoo browser hijacker, I've seen multiple topics with this variant.

 

my suggestion:

Check profiles.i...

Firefox pref Found - what does this option do and why is it considered malicious?

Hi all.

I googled before asking but never found anything relevant... So AdwCleaner found 1 threat, this is what is says:

Firefox pref Found:  [E:\Profiles\Firefox\prefs.js] - "extensions.quick_start.sd.closeWindowWithLastTab_prev_state" -  false

Anyone knows what this config option does and why is it dangerous?

Thanks.

Re: Infected LNK, False positive ?

Bjr ^^

Merci pour la correction.

Sachant que ce n'était qu'un faux positif, il n'y avait pas de soucis à se faire.

Merci pour ton travail.

GG