cjoint

Publicité


Publicité

Commentaire : 2eme fichier

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 11/09/2015
Heure de l'analyse: 18:13
Fichier journal:
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.09.11.05
Base de données de rootkits: v2015.08.16.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Marie

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 386013
Temps écoulé: 43 min, 0 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 68
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{11111111-1111-1111-1111-110011221158}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440044224458}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550055225558}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660066226658}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\INTERFACE\{77777777-7777-7777-7777-770077227758}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550055225558}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660066226658}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{77777777-7777-7777-7777-770077227758}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{55555555-5555-5555-5555-550055225558}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{66666666-6666-6666-6666-660066226658}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{77777777-7777-7777-7777-770077227758}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440044224458}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{44444444-4444-4444-4444-440044224458}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{11111111-1111-1111-1111-110011221158}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{11111111-1111-1111-1111-110011221158}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110011221158}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{11111111-1111-1111-1111-110011221158}, , [f5ac999562299a9c716cb9fbc73bd52b],
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{22222222-2222-2222-2222-220022222258}, , [1b86012d573438fe7668922259a923dd],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{22222222-2222-2222-2222-220022222258}, , [1b86012d573438fe7668922259a923dd],
Adware.GamePlayLab, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{33333333-3333-3333-3333-330033223358}, , [a4fd2fff008b6dc9558a03b1ac56916f],
Adware.GamePlayLab, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{33333333-3333-3333-3333-330033223358}, , [a4fd2fff008b6dc9558a03b1ac56916f],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{665cb5b7-4c3b-4995-8cec-1f4d5860edc9}, , [e1c04ae41279b086e1fbe0ffa85a3cc4],
PUP.Optional.MindSpark, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{665CB5B7-4C3B-4995-8CEC-1F4D5860EDC9}, , [e1c04ae41279b086e1fbe0ffa85a3cc4],
PUP.Optional.MindSpark, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{665CB5B7-4C3B-4995-8CEC-1F4D5860EDC9}, , [e1c04ae41279b086e1fbe0ffa85a3cc4],
PUP.Optional.MindSpark, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{665CB5B7-4C3B-4995-8CEC-1F4D5860EDC9}, , [e1c04ae41279b086e1fbe0ffa85a3cc4],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{9e28b297-11d4-4293-aa6f-558658ee66ae}, , [168be8467615ae8827226d737b878f71],
PUP.Optional.MindSpark, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{9E28B297-11D4-4293-AA6F-558658EE66AE}, , [168be8467615ae8827226d737b878f71],
PUP.Optional.MindSpark, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{9E28B297-11D4-4293-AA6F-558658EE66AE}, , [168be8467615ae8827226d737b878f71],
PUP.Optional.MindSpark, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{9E28B297-11D4-4293-AA6F-558658EE66AE}, , [168be8467615ae8827226d737b878f71],
PUP.Optional.CytiWeb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{aa2fac44-d24d-4fed-9e32-397d138365f1}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKLM\SOFTWARE\CLASSES\TYPELIB\{4b030cae-5396-4e8d-b29f-0bc3213ab606}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKLM\SOFTWARE\CLASSES\INTERFACE\{A30B13F5-3743-428A-A1FA-6F001D36CC4A}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A30B13F5-3743-428A-A1FA-6F001D36CC4A}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A30B13F5-3743-428A-A1FA-6F001D36CC4A}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{4b030cae-5396-4e8d-b29f-0bc3213ab606}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{4b030cae-5396-4e8d-b29f-0bc3213ab606}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{AA2FAC44-D24D-4FED-9E32-397D138365F1}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{AA2FAC44-D24D-4FED-9E32-397D138365F1}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.CytiWeb, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{AA2FAC44-D24D-4FED-9E32-397D138365F1}, , [1b86ec42ccbff3438c78429b6b97f50b],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{cc28794a-99d4-4b1b-bccf-b065ce5f9feb}, , [227f33fbf29902349b08b92726dc4ab6],
PUP.Optional.MindSpark, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{CC28794A-99D4-4B1B-BCCF-B065CE5F9FEB}, , [227f33fbf29902349b08b92726dc4ab6],
PUP.Optional.MindSpark, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{CC28794A-99D4-4B1B-BCCF-B065CE5F9FEB}, , [227f33fbf29902349b08b92726dc4ab6],
PUP.Optional.MindSpark, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{CC28794A-99D4-4B1B-BCCF-B065CE5F9FEB}, , [227f33fbf29902349b08b92726dc4ab6],
PUP.Optional.NewTab, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\bakijjialdiiboeaknfpmflphhmljfkd, , [b4ed84aaed9e7fb74c78644111f3b749],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, , [6a37cc6269229d997e973c37917305fb],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\HQ-Video-Pro-2.1cV03.01-nv, , [6f328ca28b00320497573a5153b108f8],
PUP.Optional.NewTab, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bakijjialdiiboeaknfpmflphhmljfkd, , [277a032bd5b65bdb0cb8d5d051b3718f],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{01907012-88BD-4A1E-9E60-9F4D3E5FFC28}, , [aaf7a48aa9e26dc9d3ceb7ebd62ecf31],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{481DD1D9-2619-4136-BEAD-8766AE46542D}, , [6d34c866167560d60a97723035cf956b],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{499A1BF0-AFF3-48E8-9333-C4A4567AB59D}, , [3a6773bbb1da43f31190465c6c9808f8],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{52247F23-D798-4AD9-823B-B83FCFE2F74B}, , [1988c46abfcc47ef79281290c341847c],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5E58CDA9-3B21-4611-A859-26EE28950E61}, , [317042ecb6d5d066aff23f6330d405fb],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{63AD0951-229A-4F3B-9E96-B4891811A156}, , [4859de50b5d67db99c056a3854b0ec14],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6874FADE-02C8-4181-831A-FC7486CF1D74}, , [5a475dd16625d85e30713d658d77ef11],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6C5561B6-3DD2-46B5-83BE-EAE744366046}, , [cdd456d88308ee482c75e1c171936f91],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81FDA3B2-1023-4131-8055-29CE1560C12A}, , [b3ee82ac701b1e18128fd0d2cc3860a0],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95969FA6-C35A-4552-A1FE-34C45FE13799}, , [7f2229057615e1558e13fda5d430cd33],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{968E8731-8549-4289-AD46-B9A9EAC1D302}, , [01a0b5794d3e6acc1190069c51b3f50b],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{97CE1707-67E1-4758-A14C-04CE2205D975}, , [d4cd09253e4d79bdecb529795da7e020],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{CF8F750B-3FA0-4566-8B2C-19CFB50CF9C5}, , [c0e1f6387615082e2c751191ba4a47b9],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{DB9EFCEE-B30C-4989-98CC-EE371FA5B355}, , [c6db141ab8d358de4a570a98c93b1ee2],
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@InternetSpeedTracker_9t.com/Plugin, , [bbe61e107813dc5ab9014260c2424bb5],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, , [58497eb07e0d83b37a9b086b49bb0ef2],
PUP.Optional.Sanbreel, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{55685567-4840-4a91-962b-49a412e9485a}Gw64, , [f9a8c26cf79484b20259604e0ff5b14f],
PUP.Optional.Sanbreel, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{55685567-4840-4a91-962b-49a412e9485a}w64, , [bce5bc72b0dbf73fa5ba822cfc0853ad],
PUP.Optional.Sanbreel, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64, , [6f329d91048738fec497c8e617ed54ac],
PUP.Optional.CrossRider, HKU\S-1-5-18\SOFTWARE\HQ-Video-Pro-2.1cV03.01-nv, , [a100131b117abb7bc2dc5f2b20e40ff1],
PUP.Optional.DealPly, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\gaiilaahiahdejapggenmdmafpmbipje, , [3c65141a62292d098a3a1a72cd3716ea],

Valeurs du registre: 18
PUP.Optional.MindSpark, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{b287e6b2-868b-4ac1-acce-c69eb5fd29d1}, , [990843eb7417e65092e0558b04fe3ec2],
PUP.Optional.MindSpark, HKU\S-1-5-21-120149573-2835027526-263365961-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{B287E6B2-868B-4AC1-ACCE-C69EB5FD29D1}, , [990843eb7417e65092e0558b04fe3ec2],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [6a37cc6269229d997e973c37917305fb]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{01907012-88bd-4a1e-9e60-9f4d3e5ffc28}|AppPath, C:\Program Files (x86)\InternetSpeedTracker_9t\bar\1.bin, , [aaf7a48aa9e26dc9d3ceb7ebd62ecf31]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{481dd1d9-2619-4136-bead-8766ae46542d}|AppPath, C:\Program Files (x86)\InternetSpeedTracker_9t\bar\1.bin, , [6d34c866167560d60a97723035cf956b]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{499a1bf0-aff3-48e8-9333-c4a4567ab59d}|AppPath, C:\Program Files (x86)\InternetSpeedTracker_9t\bar\1.bin, , [3a6773bbb1da43f31190465c6c9808f8]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{52247f23-d798-4ad9-823b-b83fcfe2f74b}|AppPath, C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin, , [1988c46abfcc47ef79281290c341847c]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5e58cda9-3b21-4611-a859-26ee28950e61}|AppPath, C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin, , [317042ecb6d5d066aff23f6330d405fb]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{63ad0951-229a-4f3b-9e96-b4891811a156}|AppPath, C:\Program Files (x86)\InternetSpeedTracker_9t\bar\1.bin, , [4859de50b5d67db99c056a3854b0ec14]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6874fade-02c8-4181-831a-fc7486cf1d74}|AppPath, C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin, , [5a475dd16625d85e30713d658d77ef11]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6c5561b6-3dd2-46b5-83be-eae744366046}|AppPath, C:\Program Files (x86)\Allin1Convert_8h\bar\1.bin, , [cdd456d88308ee482c75e1c171936f91]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81fda3b2-1023-4131-8055-29ce1560c12a}|AppPath, C:\Program Files (x86)\InternetSpeedTracker_9t\bar\1.bin, , [b3ee82ac701b1e18128fd0d2cc3860a0]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{95969fa6-c35a-4552-a1fe-34c45fe13799}|AppPath, C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin, , [7f2229057615e1558e13fda5d430cd33]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{968e8731-8549-4289-ad46-b9a9eac1d302}|AppPath, C:\Program Files (x86)\InternetSpeedTracker_9t\bar\1.bin, , [01a0b5794d3e6acc1190069c51b3f50b]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{97ce1707-67e1-4758-a14c-04ce2205d975}|AppPath, C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin, , [d4cd09253e4d79bdecb529795da7e020]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{cf8f750b-3fa0-4566-8b2c-19cfb50cf9c5}|AppPath, C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin, , [c0e1f6387615082e2c751191ba4a47b9]
PUP.Optional.MindSpark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{db9efcee-b30c-4989-98cc-ee371fa5b355}|AppPath, C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin, , [c6db141ab8d358de4a570a98c93b1ee2]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [58497eb07e0d83b37a9b086b49bb0ef2]

Données du registre: 3
Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{955E9F46-83F0-4723-8A2D-A3C9EE1D3856}|NameServer, 199.203.131.150,82.163.143.168, Bon : (), Mauvais : (199.203.131.150,82.163.143.168),,[4c557bb3d5b6a690cf8acd9ffc09e21e]
Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{BB8C9484-BDD0-485F-9085-847F9BF303D0}|NameServer, 199.203.131.150,82.163.143.168, Bon : (), Mauvais : (199.203.131.150,82.163.143.168),,[158c16187d0e37fff8615418927312ee]
Trojan.DNSChanger, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{DFE02669-F898-4902-A654-14EA3C02DB4E}|NameServer, 199.203.131.150,82.163.143.168, Bon : (), Mauvais : (199.203.131.150,82.163.143.168),,[81204ce294f7979f1544fa72f80df907]

Dossiers: 5
PUP.Optional.MindSpark, C:\Users\Marie\AppData\Roaming\Mozilla\Firefox\Profiles\4sq9czhy.default\InternetSpeedTracker_9t, , [a00184aaadde1026ce2ee3bce81cf10f],
PUP.Optional.OptimizerPro, C:\Users\Marie\Documents\Optimizer Pro, , [188936f85833d2648ba1dfc85ba9e11f],
PUP.Optional.CrossRider, C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_mpfapcdfbbledbojijcbcclmlieaoogk_0, , [6b36eb430883ae88b81c15f135ce0cf4],
PUP.Optional.CrossRider, C:\Program Files (x86)\HQ-Video-Pro-2.1cV03.01, , [00a175b9830891a5fbe1957551b2bd43],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx, , [960b2fffc5c66ec8724e5ac344bf926e],

Fichiers: 64
PUP.Optional.CrossRider, C:\Users\Marie\AppData\Roaming\UMBRXAW.exe, , [c5dcd7570388a492928b97043cc958a8],
PUP.Optional.AudioToAudioToolBar, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\8hbarsvc.exe.VIR, , [7a274fdfa9e29a9ce1f281d47a864ab6],
PUP.Optional.AudioToAudioToolBar, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\9tbarsvc.exe.VIR, , [7c25949acac19d99f1e283d288784ab6],
PUP.Optional.AudioToAudioToolBar, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\aabarsvc.exe.VIR, , [158c2c027a11c274d6fd1c396a962dd3],
PUP.Optional.MindSpark, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\appintegrator.exe.VIR, , [138eaf7f0e7dde583c5c584649bc748c],
PUP.Optional.MindSpark, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\appintegrator64.exe.VIR, , [1e8335f9aae142f44c4c029c80855fa1],
PUP.Optional.ServiceRNDM, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\colorful management.exe.VIR, , [7b261a14c2c976c0cfbed1edc1403ac6],
PUP.Optional.InstallCore, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\01553a6f-4c8e-4a30-8990-9875d0f47f82.DIR\7d697e04-2ef1-46a1-a084-7a2383823577.dll, , [6a37b07e66254ceaea5d8b13788d7090],
PUP.Optional.Nova, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\01553a6f-4c8e-4a30-8990-9875d0f47f82.DIR\b6247716-34b8-46f0-9da1-47178d5a9cab.dll, , [653c85a9553673c374dc9b22837ef20e],
PUP.Optional.InstallCore, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\Allin1Convert_8h.DIR\01553a6f-4c8e-4a30-8990-9875d0f47f82.dll, , [d0d18f9f711a82b45aedd0ce54b18c74],
PUP.Optional.Nova, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\Allin1Convert_8h.DIR\86003eeb-2093-4476-8bbd-5635e37c46db.dll, , [c9d8ed416f1cec4abb951f9ec938c13f],
PUP.Optional.Downloader, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\CinemaPlus-3.2cV21.05.DIR\Uninstall.exe, , [7031a787c7c4c76f51f713a746bbfb05],
PUP.Optional.BrowseFox, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\Cyti Web.DIR\CytiWebUninstall.exe, , [4d54c16de6a51c1adb4a2f5bf809ef11],
PUP.DealPly, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\DealPly.DIR\DealPlyIE.dll, , [11906bc30d7ec96d57b72a63d1345da3],
PUP.Optional.DealPly, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\DealPly.DIR\DealPlyTune.dll, , [267b2707dcafa88e216ba9f1d92c50b0],
PUP.Optional.DealPly, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\DealPly.DIR\DealPlyUpdate.exe, , [722fdd51eaa166d06a2282186a9b639d],
PUP.Optional.DealPly, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\DealPly.DIR\DealPlyUpdateRun.exe, , [e3bead81a0eb47ef8b013664719453ad],
PUP.Optional.DealPly, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\DealPly.DIR\uninst.exe, , [0f92a08e9cefcf67e5a7b4e62cd9b848],
PUP.Optional.MindSpark, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\EliteUnzip.DIR\7z.dll, , [2978e747612a91a5a1f7584645c029d7],
PUP.Optional.MindSpark, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\EliteUnzip.DIR\EliteUnzip.exe, , [e5bc9b932467dd592672fca2ad5817e9],
PUP.Optional.MindSpark, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\EliteUnzip.DIR\IAC.Helpers.dll, , [3869b579820906305048415db0556997],
PUP.Optional.MindSpark, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\EliteUnzip.DIR\uninstall.exe, , [6e331519d2b9b185f6a2f9a5bd4857a9],
PUP.Optional.CrossRider, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\12a69489-f45a-42f4-96bd-e3f42f159434-3.exe, , [cdd448e6028986b08a930596eb1a54ac],
PUP.Optional.CrossRider, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\12a69489-f45a-42f4-96bd-e3f42f159434-4.exe, , [188932fcd4b792a47ca1c8d381842cd4],
PUP.Optional.CrossRider, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\12a69489-f45a-42f4-96bd-e3f42f159434-6.exe, , [fea334fa7a1192a447d60a91f90c5ea2],
PUP.Optional.CrossRider, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\12a69489-f45a-42f4-96bd-e3f42f159434-64.exe, , [aef3e54947444beb57c6198231d417e9],
PUP.Optional.CrossRider, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\12a69489-f45a-42f4-96bd-e3f42f159434-7.exe, , [bbe64be3dfac053159c4bbe0679efc04],
PUP.Optional.Nova, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\1f8faca9-35e1-49aa-baf0-4aed4a6eb395.dll, , [722f4de1dcaf73c31d335c61d32e42be],
PUP.Optional.InstallCore, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\988b5a39-84c5-4a05-8d3b-619b27ce3249.dll, , [a10087a7cfbcfb3b94b3b9e525e004fc],
PUP.Optional.InstallCore, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\Uninstall.exe, , [f1b042ec0487013567e09c02aa5b3bc5],
PUP.Optional.CrossRider, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\HQ-Video-Pro-2.1cV03.01.DIR\HQ-Video-Pro-2.1cV03.01\12a69489-f45a-42f4-96bd-e3f42f159434-6.exe, , [c1e0101e2e5d0630aa734e4d7b8a2bd5],
PUP.Optional.SkyTech, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\DpInterface32.dll, , [bae7929cd0bbcb6b4b69cbf3669b03fd],
PUP.Optional.SkyTech, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\DpInterface64.dll, , [acf5ea447c0ff5419d17546abd4454ac],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\Loader32.exe, , [dac7ad810388f640745092e7d42dd828],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\Loader64.exe, , [485948e63f4ced4990915fd938c98878],
PUP.Optional.IEPluginService, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\RSHP.exe, , [eab7b5791e6da0964f1bffbc7a87b947],
PUP.Optional.SkyTech, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\SearchProtect32.dll, , [9b0655d991faf046bafa09b50100916f],
PUP.Optional.SkyTech, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\SearchProtect64.dll, , [425f0628d2b92313199b2e90b74a6898],
PUP.Optional.Elex, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\SupIePluginServiceUpdate.exe, , [1091d955a3e866d0f225694d59a8d52b],
PUP.Optional.SupTab, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\SupTab.DIR\SupTab.dll, , [c1e0f7378209280e8f7d93c627d98b75],
PUP.Optional.Systweak, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\Systweak.DIR\ssd\SSDPTstub.exe, , [29789e9093f8af8734c7c68b9170ef11],
PUP.Optional.BrowserWatch, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\XTab.DIR\BrowerWatchCH.dll, , [7031e7475c2f9d9996beff43da26c43c],
PUP.Optional.BrowserWatch, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\XTab.DIR\BrowerWatchFF.dll, , [861bc36b2d5e83b3530149f9e51bb749],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\XTab.DIR\BrowserAction.dll, , [d4cd230b404b1521921b027026db12ee],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\XTab.DIR\CmdShell.exe, , [c2df6dc1602bda5ce2e48caef015639d],
PUP.Optional.Elex, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\XTab.DIR\HPNotify.exe, , [01a044eaf49757df39dd00b6e71ae61a],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Roaming\ZHP\Quarantine\XTab.DIR\IeWatchDog.dll, , [247ddb53d6b589ada322bb7fd62fce32],
PUP.Optional.OptimumInstaller, C:\Users\Marie\Documents\Downloads\Media_Player_Setup.exe, , [722fa985117acf6702807944679a7d83],
Adware.Agent, C:\Users\Marie\Documents\Downloads\PDFReaderSetup.exe, , [940dac82fe8df83e41cc8210d0306799],
PUP.Optional.FlashPro, C:\Users\Marie\Documents\Downloads\flashplayerpro-setup.exe, , [ecb57ab40784fe38510ffe24ea1bbe42],
PUP.Optional.CrossRider, C:\Program Files (x86)\HQ-Video-Pro-2.1cV03.01\12a69489-f45a-42f4-96bd-e3f42f159434-6.exe, , [bee3c06e74173afc9489fd9e4abbee12],
PUP.Optional.MultiPlug.PLY, C:\Program Files (x86)\ClickNRead\ClickNRead.dll, , [e4bd80ae7219df57f20eb7097a874fb1],
PUP.Optional.Spigot, C:\Windows\Temp\pdfforgeToolbar.exe, , [257c5fcf93f860d651e7722bce373ac6],
PUP.Optional.KeepMySearch, C:\Users\Marie\AppData\Roaming\Mozilla\Firefox\Profiles\4sq9czhy.default\searchplugins\keepmysearch.xml, , [6e33a18d513aa5919cb3f1aa0bf94db3],
PUP.Optional.MindSpark, C:\Users\Marie\AppData\Roaming\Mozilla\Firefox\Profiles\4sq9czhy.default\InternetSpeedTracker_9t\5720764D-7CDF-471B-9440-6978C616E953.sqlite, , [a00184aaadde1026ce2ee3bce81cf10f],
PUP.Optional.OptimizerPro, C:\Users\Marie\Documents\Optimizer Pro\CookiesException.txt, , [188936f85833d2648ba1dfc85ba9e11f],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx\bahvxfk, , [960b2fffc5c66ec8724e5ac344bf926e],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx\mkfvxfk, , [960b2fffc5c66ec8724e5ac344bf926e],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx\pvpqbjobmlpfqlovvawq, , [960b2fffc5c66ec8724e5ac344bf926e],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx\qokvxfk, , [960b2fffc5c66ec8724e5ac344bf926e],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx\rfobmlpfqlovvawq, , [960b2fffc5c66ec8724e5ac344bf926e],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx\rpboobmlpfqlovvawq, , [960b2fffc5c66ec8724e5ac344bf926e],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx\stb.dat, , [960b2fffc5c66ec8724e5ac344bf926e],
PUP.Optional.SearchProtect, C:\Users\Marie\AppData\Local\avabvcxvyx\ycfvxfk, , [960b2fffc5c66ec8724e5ac344bf926e],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité