Search

Bonjour à tous,

Je suis helper sur PC Astuces et dans le cadre d'une demande par un DA dont je met le lien ci dessous, AdwCleaner à trouvé deux faux positifs

https://forum.pcastuces.com/malware_ou_pas_-f25s77991.htm

J'ai passé AdwCleaner sur mon pc et il à trouvé les deux fichiers en question

Fichier trouvé:  C:\Windows\SysNative\wecutil.exe Fichier trouvé:  C:\Windows\SysWOW64\wecutil.exe

I would object to that, I'm 100% sure I don't have ProxyGate.

This is some of the matches that have Legit names in their descriptions, and the last changed date is the date that I installed my machine.

So it seems colleteral damage from the ProxyGate detection, I would not remove these keys!

HKCR\Wow6432Node\CLSID\{1EFB6596-857C-11D1-B16A-00C0F0283628} REG_SZ    Microsoft TabStrip Control...

Here are the logs you asked for.

1) I couldn't find Skype click to call.

2) Fixlog.txt: https://up2sha.re/file?f=xhpcQNIUt1u5

3)C:\WINDOWS\system32\chtbrkg.dll: https://www.virustotal.com/en/file/10f018be8341a82995c8a617b8e16ef5bef28f3f8278bd69224da6c9ac35bbea/analysis/1478036673/

C:\WINDOWS\SysWOW64\chtbrkg.dll: https://www.virustotal.com/en/file/10f018be8341a82995c8a617b8e16ef5bef28f3f827...

1)  I recommend to uninstall this:

Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Unity Web Player (HKU\S-1-5-21-336042120-3881833094-1070839671-1001\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)

2)   

Download fixlist.txt file and save it to the Desktop.

NOTE. It's important that both files, FRST/F...

Bonjour cocochepeau,

Thanks for your response.

First I should explain that in the last hour, I downloaded Malwarebytes (free) from Softpedia (http://www.softpedia.com/dyn-postdownload.php/4da55095eb250a3742025ebdcf058222/580a4e8d/13ebe/0/1?tsf=0

...and something was found and removed from Firefox. It wasn't named 'Bing' but Bing has now been removed.

I had previously tried changing the defa...

thank your for the help.

Malwarebytes Anti-Malware

www.malwarebytes.org



Scan Date: 2016-10-16

Scan Time: 20:31

Logfile: 2016_10_16_AP_Logs.txt

Administrator: Yes



Version: 2.2.1.1043

Malware Database: v2016.10.16.07

Rootkit Database: v2016.09.26.02

License: Free

Malware Protection: Disabled

Malicious Website Protection: Disabled

Self-protection: Disabled



OS: Windows 7 Servic...

pedromatt,

 

1) Do  you have installed Driver Booster? If yes, then I advise you to uninstall.

 

2) Download fixlist.txt file and save it to the Desktop.

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another ...

Thanks fr33tux, here is the log:

1. ========================= SEAF 1.0.1.0 - C_XX 2.  3. Commencé à: 06:43:11 le 06/10/2016 4.  5. Valeur(s) recherchée(s): 6. dnsapi.dll 7.  8. Légende: TC => Date de création, TM => Date de modification, DA => Dernier accès 9.  10.  11. ====== Fichier(s) ====== 12.  13.  14. "C:\Windows\System32\dnsapi.dll" [ ARCHIVE | 499 Ko ] 15. TC: 25/08/2016,07:11:35 | T...

Bonjour, vous êtes matinal, voici le rapport

1. ========================= SEAF 1.0.1.0 - C_XX 2. 3. Commencé à: 09:10:05 le 28/09/2016 4. 5. Valeur(s) recherchée(s): 6. msvcr120.dll 7. 8. Légende: TC => Date de création, TM => Date de modification, DA => Dernier accès 9. 10. 11. ====== Fichier(s) ====== 12. 13. 14. "C:\Program Files (x86)\Audacity\msvcr120.dll" [ ARCHIVE | 971 Ko ] 15. TC: 06...

Voici le rapport de SEAF

1. ========================= SEAF 1.0.1.0 - C_XX 2. 3. Commencé à: 17:13:55 le 27/09/2016 4. 5. Valeur(s) recherchée(s): 6. sqlite3.dll 7. 8. Légende: TC => Date de création, TM => Date de modification, DA => Dernier accès 9. 10. 11. ====== Fichier(s) ====== 12. 13. 14. "C:\Program Files\GIMP 2\Python\DLLs\sqlite3.dll" [ ARCHIVE | 426 Ko ] 15. TC: 23/02/2016,12:42:15 |...