cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 08/07/2015
Heure de l'analyse: 21:47
Fichier journal: Journal d'analyse.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.07.08.07
Base de données de rootkits: v2015.07.07.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Eric

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 516648
Temps écoulé: 56 min, 18 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 43
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{E38FA7CB-C053-4B07-84AD-BCA6D2BE4FE7}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4404078E-2745-4E25-B010-BBC026C0E9C2}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B03CD630-51ED-4B15-974C-76472E4624C0}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{4404078E-2745-4E25-B010-BBC026C0E9C2}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B03CD630-51ED-4B15-974C-76472E4624C0}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{4404078E-2745-4E25-B010-BBC026C0E9C2}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B03CD630-51ED-4B15-974C-76472E4624C0}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{E38FA7CB-C053-4B07-84AD-BCA6D2BE4FE7}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{E38FA7CB-C053-4B07-84AD-BCA6D2BE4FE7}, En quarantaine, [f85fbf204f3b162012160675e2200ef2],
PUP.Optional.SaveSense.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{71e129ff-6c2a-4984-818c-7e2c998b8d99}, En quarantaine, [b7a07b6465255fd76284d6acdc262ed2],
PUP.Optional.DiscountDragon.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EA34C851-D481-49F5-A356-3A8B0A8F3B7E}, En quarantaine, [96c1d20da7e3d85ef63719a2b74bd12f],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{1241CEBD-9777-4BC6-AAE5-2A77E25DB246}, En quarantaine, [520520bf7a1041f5768cf4948d7718e8],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6818868A-1B3D-4E35-A561-FA964A96CD3B}, En quarantaine, [7ed9d00fc5c5ea4c13ef5a2e48bc926e],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{79E57AFA-BC05-4636-9457-FBC0ABB3576B}, En quarantaine, [0f48568942482511e31f4048d034b44c],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9193E23B-4182-493F-A38E-682307A7C463}, En quarantaine, [5ff8548b2169c670c43ecabe2dd745bb],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{BF75B5A2-8403-4F70-88A6-488E3BEA0D7B}, En quarantaine, [b1a6815e206af541788ab8d039cbf907],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E1F80EB5-8AF4-410D-87C1-4F3E2776822A}, En quarantaine, [da7d736c4a404ee81ae8097fc73d7d83],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{c31ed948}, En quarantaine, [47108659692149ed03b4404a9c68cf31],
PUP.Optional.SuperOptimizer.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, En quarantaine, [76e13ea1a0ead363e9701f6fc1436f91],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MapsGalaxy_39, En quarantaine, [97c0ffe0206aca6c13688be758aca858],
PUP.Optional.SaveSense.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\SaveSenseLive, En quarantaine, [59fe7e619feb999d70e7e6831de733cd],
PUP.Optional.SweetIM.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\SweetIM, En quarantaine, [b1a67e6178125ed8e66669aa6d9652ae],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\APPDATALOW\SOFTWARE\MapsGalaxy_39, En quarantaine, [62f5627dcac0e74f3d6368cba261b14f],
PUP.Optional.Ask.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{B0441A0E-A49A-4E16-AFC1-74ECCED1921F}, En quarantaine, [5007f1ee2565d2647fdc3d459c685ca4],
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}, En quarantaine, [8dcacb142b5f47ef294fd2b4c93b1ee2],
PUP.Optional.Wajam.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\WAJAM, En quarantaine, [104718c77a1057df2aeef06eff051ee2],
PUP.Optional.InstallBrain.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\WNLT, En quarantaine, [cb8c2ab5206a7abc0cb0e1803cc8a65a],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MapsGalaxy_39, En quarantaine, [1047b629b0da38fe176419598d775aa6],
PUP.Optional.SaveSense.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\SaveSenseLive, En quarantaine, [d1867867bdcd53e3b4a36dfc24e0bc44],
PUP.Optional.SweetIM.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\SweetIM, En quarantaine, [acabedf2f39746f0e864cf44e023f20e],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\APPDATALOW\SOFTWARE\MapsGalaxy_39, En quarantaine, [025512cdfb8f48ee901051e2669d2cd4],
PUP.Optional.Ask.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{B909E887-B118-4447-9DA6-8195685069D3}, En quarantaine, [273022bd4644e551bc3054384bb920e0],
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}, En quarantaine, [99be6778eaa073c3fb7d9fe7ce361ae6],
PUP.Optional.InstallBrain.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\WNLT, En quarantaine, [58ff23bc8efc94a2912bf8696f956f91],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\MapsGalaxy_39, En quarantaine, [f265c51a9dedd26424576210b54f817f],
PUP.Optional.SaveSense.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\SaveSenseLive, En quarantaine, [233487586624d462b2a524453dc7ec14],
PUP.Optional.SweetIM.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\SweetIM, En quarantaine, [2235b42b2664ef47ce7eac67f40f0ef2],
PUP.Optional.SuperOptimizer.C, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, En quarantaine, [0750b52ae2a834027bde8b03699bfe02],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\APPDATALOW\SOFTWARE\MapsGalaxy_39, En quarantaine, [a8af6a75bfcb4bebdac6310205fe837d],
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}, En quarantaine, [63f4b42b4842fd39126626602cd85ea2],
PUP.Optional.RegCleanerPro.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\SYSTWEAK\RegClean Pro, En quarantaine, [a4b3c51ac8c20135b1b210506c98966a],
PUP.Optional.InstallBrain.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\WNLT, En quarantaine, [055297481179c571625a471ae420867a],
PUP.Optional.Vitruvian.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WordSurfer_1.10.0.19, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],

Valeurs du registre: 35
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{364EA597-E728-4CE4-BB4A-ED846EF47970}, En quarantaine, [2235697696f4bf778c3eabd7fa0823dd],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{364EA597-E728-4CE4-BB4A-ED846EF47970}, —¥N6(çäL»Jí„nôyp, En quarantaine, [2235697696f4bf778c3eabd7fa0823dd]
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{26842a09-ffa8-4e2c-ae12-0c80f01c3295}, En quarantaine, [b89fa53a8109f83e72571e64b94919e7],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{26842A09-FFA8-4E2C-AE12-0C80F01C3295}, En quarantaine, [b89fa53a8109f83e72571e64b94919e7],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{26842A09-FFA8-4E2C-AE12-0C80F01C3295}, En quarantaine, [b89fa53a8109f83e72571e64b94919e7],
PUP.Optional.Mindspark.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{26842a09-ffa8-4e2c-ae12-0c80f01c3295}, En quarantaine, [1d3af2edfb8fe15520a91072639f51af],
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{1241cebd-9777-4bc6-aae5-2a77e25db246}|AppPath, C:\Program Files (x86)\MapsGalaxy_39\bar\1.bin, En quarantaine, [520520bf7a1041f5768cf4948d7718e8]
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6818868a-1b3d-4e35-a561-fa964a96cd3b}|AppPath, C:\Program Files (x86)\MapsGalaxy_39\bar\1.bin, En quarantaine, [7ed9d00fc5c5ea4c13ef5a2e48bc926e]
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{79e57afa-bc05-4636-9457-fbc0abb3576b}|AppPath, C:\Program Files (x86)\MapsGalaxy_39\bar\1.bin, En quarantaine, [0f48568942482511e31f4048d034b44c]
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9193e23b-4182-493f-a38e-682307a7c463}|AppPath, C:\Program Files (x86)\MapsGalaxy_39\bar\1.bin, En quarantaine, [5ff8548b2169c670c43ecabe2dd745bb]
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{bf75b5a2-8403-4f70-88a6-488e3bea0d7b}|AppPath, C:\Program Files (x86)\MapsGalaxy_39\bar\1.bin, En quarantaine, [b1a6815e206af541788ab8d039cbf907]
PUP.Optional.MindSpark.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e1f80eb5-8af4-410d-87c1-4f3e2776822a}|AppPath, C:\Program Files (x86)\MapsGalaxy_39\bar\1.bin, En quarantaine, [da7d736c4a404ee81ae8097fc73d7d83]
PUP.Optional.MBot.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|mbot_fr_014010025, En quarantaine, [ff588f501179f343eae4ad77ed167e82],
PUP.Optional.Ask.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{b0441a0e-a49a-4e16-afc1-74ecced1921f}|DisplayName, Ask Web Search, En quarantaine, [5007f1ee2565d2647fdc3d459c685ca4]
PUP.Optional.ASK.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{b0441a0e-a49a-4e16-afc1-74ecced1921f}|URL, http://search.tb.ask.com/search/GGmain.jhtml?p2=^UX^xdm063^LAFRFR^fr&si=CM3N0KK8jb4CFQEXwwodKysAdA&ptb=825BEFF4-043F-4A4A-BD0F-93BD6695738F&ind=2014050210&n=780bf7a2&psa=&st=sb&searchfor={searchTerms}, En quarantaine, [df78e4fba3e7e056c174f094eb19b14f]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|FaviconURL, http://mystart.incredibar.com/favicon.ico, En quarantaine, [8dcacb142b5f47ef294fd2b4c93b1ee2]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|FaviconURLFallback, http://mystart.incredibar.com/favicon.ico, En quarantaine, [44133da29beffb3b6f09e89e21e38d73]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|TopResultURL, http://mystart.incredibar.com/?a=6PQMCFktYq&loc=skw&search={searchTerms}, En quarantaine, [5601518e8703ce683c3c741262a256aa]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|TopResultURLFallback, http://mystart.incredibar.com/?a=6PQMCFktYq&loc=skw&search={searchTerms}, En quarantaine, [9cbbd10e97f3b97d23555234659f32ce]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|URL, http://mystart.incredibar.com/?a=6PQMCFktYq&loc=skw&search={searchTerms}, En quarantaine, [cc8b8659addd5ed82454850105ff7789]
PUP.Optional.Wajam.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\WAJAM|affiliate_id, 3672, En quarantaine, [104718c77a1057df2aeef06eff051ee2]
PUP.Optional.InstallBrain.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1004\SOFTWARE\WNLT|URL, MYSTART, En quarantaine, [cb8c2ab5206a7abc0cb0e1803cc8a65a]
PUP.Optional.Ask.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{B909E887-B118-4447-9DA6-8195685069D3}|URL, http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=kw&q={searchTerms}&locale=fr_FR&apn_ptnrs=U3&apn_dtid=OSJ000YYFR&apn_uid=C1E5E51B-7B20-4E71-A299-F4898E269B36&apn_sauid=809B74F8-071A-4504-9C21-8030958D76AE, En quarantaine, [273022bd4644e551bc3054384bb920e0]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|FaviconURL, http://mystart.incredibar.com/favicon.ico, En quarantaine, [99be6778eaa073c3fb7d9fe7ce361ae6]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|FaviconURLFallback, http://mystart.incredibar.com/favicon.ico, En quarantaine, [c394ce11e4a6f6403f3986006b99916f]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|TopResultURL, http://mystart.incredibar.com/?a=6R8MqgHbIP&loc=skw&search={searchTerms}, En quarantaine, [f5623aa51377b77f95e31076af55718f]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|TopResultURLFallback, http://mystart.incredibar.com/?a=6R8MqgHbIP&loc=skw&search={searchTerms}, En quarantaine, [b89fc01fddada78fb9bf2b5b45bffe02]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|URL, http://mystart.incredibar.com/?a=6R8MqgHbIP&loc=skw&search={searchTerms}, En quarantaine, [d97e0dd2b6d46bcb0573d0b6f212847c]
PUP.Optional.InstallBrain.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1005\SOFTWARE\WNLT|URL, MYSTART, En quarantaine, [58ff23bc8efc94a2912bf8696f956f91]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|FaviconURL, http://mystart.incredibar.com/favicon.ico, En quarantaine, [63f4b42b4842fd39126626602cd85ea2]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|FaviconURLFallback, http://mystart.incredibar.com/favicon.ico, En quarantaine, [3720ffe0dcaee1551a5e0581788c60a0]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|TopResultURL, http://mystart.incredibar.com/?a=6R8LKtiYeu&loc=skw&search={searchTerms}, En quarantaine, [d4834a9537533bfb7dfb731350b4e31d]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|TopResultURLFallback, http://mystart.incredibar.com/?a=6R8LKtiYeu&loc=skw&search={searchTerms}, En quarantaine, [8ccb578894f68caa0573e89e19eb6a96]
PUP.Optional.Incredibar.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}|URL, http://mystart.incredibar.com/?a=6R8LKtiYeu&loc=skw&search={searchTerms}, En quarantaine, [1f38ab3403870135babee2a4bc486a96]
PUP.Optional.InstallBrain.A, HKU\S-1-5-21-1728536225-545517894-4075288012-1006\SOFTWARE\WNLT|URL, MYSTART, En quarantaine, [055297481179c571625a471ae420867a]

Données du registre: 0
(Aucun élément malveillant détecté)

Dossiers: 4
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\3rd Party Licenses, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\Service, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\Update, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],

Fichiers: 51
Adware.Boxore, C:\Users\Eric\AppData\Roaming\ZHP\Quarantine\110a07c.msi, En quarantaine, [342324bb177330062ea8544f926e6b95],
Adware.Boxore, C:\Users\Eric\AppData\Roaming\ZHP\Quarantine\BoxoreInstaller.exe, En quarantaine, [7cdb934c94f6e4524590b8eba35d47b9],
PUP.Optional.Nosibay.A, C:\Users\Eric\AppData\Roaming\ZHP\Quarantine\Bubble Dock Uninstall.exe, En quarantaine, [61f637a8e1a9a492e75d2e2f28dd8e72],
FraudTool.YAC, C:\Users\Eric\AppData\Roaming\ZHP\Quarantine\yet_another_cleaner_brof.exe, En quarantaine, [85d2dd025c2e84b2b30215689071649c],
PUP.Optional.MySpeedDial.A, C:\Users\Eric\AppData\Roaming\ZHP\Quarantine\Mysearchdial.exe.56994325, En quarantaine, [b0a7ca15335740f68699ac37e81c12ee],
PUP.Optional.InstallCore, C:\Users\Eric\AppData\Local\Temp\ICReinstall_FFSetup3.1.1.0.exe, En quarantaine, [e671f9e6840631058be57ea56f91d42c],
PUP.Optional.InstallCore.A, C:\Users\Eric\AppData\Local\Temp\ICReinstall_installer_flash_video_player_French.exe, En quarantaine, [4f0878671971ee485e1b6b788f757789],
PUP.Optional.InstallCore.A, C:\Users\Eric\AppData\Local\Temp\ICReinstall_install_flashplayer12x32_mssd_aaa_aih.exe, En quarantaine, [f95e627dc6c49f97c5d009dadf25649c],
PUP.Optional.BundleInstaller.A, C:\Users\Eric\AppData\Local\Temp\ICReinstall_Setup (1).exe, En quarantaine, [2f28dd02820852e4a343e5fe18ec10f0],
PUP.Optional.Mypcbackup, C:\Users\Eric\AppData\Local\Temp\BackupSetup.exe, En quarantaine, [094e7d6290faa393dc6a3528030237c9],
PUP.Optional.Amonetize, C:\Users\Eric\AppData\Local\Temp\m audio midisport 1x1 driver__10924_i1552382452_il598298.exe, En quarantaine, [62f54d929eecba7cb25869f57c89e11f],
PUP.Optional.MyStartSearch.A, C:\Users\Eric\AppData\Local\Temp\nssA186.tmp, En quarantaine, [5205647be8a267cf828f1f3d28dd17e9],
PUP.Optional.MyStartSearch.A, C:\Users\Eric\AppData\Local\Temp\nsx1EA1.tmp, En quarantaine, [f364419e96f42412b859e27aca3bcb35],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-072CK.tmp\gentlemjmp_ieu.exe, En quarantaine, [e37404db662423130030a0bdad581be5],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-9TLJU.tmp\gentlemjmp_ieu.exe, En quarantaine, [62f5aa350e7c9e98aa86e776ef16f808],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-BPDKK.tmp\386.exe, En quarantaine, [124514cbeb9f3df934fc64f93acb9a66],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-BPDKK.tmp\package_airwebbar_installer_multilang.exe, En quarantaine, [ef68924d5d2db5819a878ac640c119e7],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-BPDKK.tmp\package_BubbleSound_installer_multilang.exe, En quarantaine, [4314ffe0eaa04aec53ce72de5aa77d83],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-GE62M.tmp\465.exe, En quarantaine, [a7b0657a3f4bbe7872af2b25a25f23dd],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-GE62M.tmp\package_airwebbar_installer_multilang.exe, En quarantaine, [34239f40d6b41e189091153bf50cb54b],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-GE62M.tmp\package_BubbleSound_installer_multilang.exe, En quarantaine, [98bf0bd43357bf778899fd53976af010],
PUP.Optional.Tuto4PC.A, C:\Users\Eric\AppData\Local\Temp\is-GE62M.tmp\package_pzombie_installer_multilang.exe, En quarantaine, [bf987a65692168ce00213b158180827e],
PUP.Optional.AnyProtect.A, C:\Users\Eric\AppData\Local\Temp\is82122515\57640482_stp\AnyProtectScannerSetup.exe, En quarantaine, [63f4835caddd142287252a31ea1b23dd],
PUP.Optional.Mypcbackup, C:\Users\Eric\AppData\Local\Temp\Java.exe\97fa165c5f484b18a65b6064c9683345\software\Cloud_Backup_Setup.exe, En quarantaine, [0453a738c5c560d6083e3627a5601be5],
PUP.Optional.DealPly.A, C:\Users\Eric\AppData\Local\Temp\Java.exe\97fa165c5f484b18a65b6064c9683345\software\Dealply.exe, En quarantaine, [85d21ec1107abd7915d0afa39f66c13f],
PUP.Optional.SaltarSmart.A, C:\Users\Eric\AppData\Local\Temp\Java.exe\97fa165c5f484b18a65b6064c9683345\software\SaltarSmart_tg.exe, En quarantaine, [d186954a424866d01a7c9a3df60e19e7],
PUP.Optional.SaveSense.A, C:\Users\Eric\AppData\Local\Temp\{0476ABCA-1AB5-4AC9-9BC1-D97F0CC7D0B7}\o-update\SaveSenseLive.exe, En quarantaine, [79dee9f63c4e40f617941d01c23fd12f],
PUP.Optional.Inredibar.A, C:\Windows\Temp\INJ001\ExtensionUpdate.exe, En quarantaine, [1443b52a99f140f697f2b17022dfd52b],
PUP.Optional.Inredibar.A, C:\Windows\Temp\INJ002\ExtensionUpdate.exe, En quarantaine, [70e7ffe0e9a13501cfba48d906fbc739],
PUP.Optional.DomaIQ, C:\Users\Eric\Downloads\Setup v2 1.exe, En quarantaine, [c6919f40a5e5a6902c998ab3f8088b75],
PUP.Optional.DomaIQ, C:\Users\Eric\Downloads\Setup.exe, En quarantaine, [2f2831aecebc69cdd74176bd728fd828],
PUP.Optional.Bershnet, C:\Users\Eric\Downloads\m audio midisport 1x1 driver_10924_i29906933_il345.exe, En quarantaine, [9bbc815e6723df57c525b1ece61e669a],
PUP.Optional.AnyProtect, C:\Users\Eric\AppData\Local\nsh8AB3.tmp, En quarantaine, [0750508f53370333ee1704729b67e41c],
PUP.Optional.AnyProtect, C:\Users\Eric\AppData\Local\nso5F3D.tmp, En quarantaine, [90c7b22dc1c96bcb4cb9d4a236cc7789],
PUP.Optional.BoostSaves.A, C:\Users\Eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.boostsaves.com_0.localstorage, En quarantaine, [3f18eff0bdcdb680b948140046bda65a],
PUP.Optional.BoostSaves.A, C:\Users\Eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.boostsaves.com_0.localstorage-journal, En quarantaine, [d483e0ff27639c9a0af764b08f74f30d],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\terms-of-service.rtf, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\Uninstall.exe, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\3rd Party Licenses\buildcrx-license.txt, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\3rd Party Licenses\Info-ZIP-license.txt, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\3rd Party Licenses\JSON-simple-license.txt, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\3rd Party Licenses\nsJSON-license.txt, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\3rd Party Licenses\Nustache-license.txt, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\3rd Party Licenses\TaskScheduler-license.txt, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\3rd Party Licenses\UAC-license.txt, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\Service\wsasvc.exe, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\Microsoft.Win32.TaskScheduler.dll, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\Nustache.Core.dll, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe.config, En quarantaine, [1c3b2eb13c4e979fbb2b3926aa5b8e72],
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Bon : (), Mauvais : (54.204.28.26 nikdaiaidiiiogaidkkekcmokcgcdeac), Remplacé,[1b3cdd02dcae191d3b600f53996cd927]

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité