cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 29/10/2015
Heure de l'analyse: 13:15
Fichier journal: journaldanalysemalwarebytes.txt
Administrateur: Oui

Version: 2.2.0.1024
Base de données de programmes malveillants: v2015.10.29.01
Base de données de rootkits: v2015.10.28.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé

Système d'exploitation: Windows 8
Processeur: x64
Système de fichiers: NTFS
Utilisateur: raphael muller

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 325131
Temps écoulé: 32 min, 43 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 3
PUP.Optional.Yontoo, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugincontainer.exe, 1928, Supprimer au redémarrage, [516435270d7ed56161f67dd8af521ae6]
PUP.Optional.Yontoo, C:\Program Files (x86)\Common Files\59afa7b8-54e5-4124-8be7-716a905c1142\updater.exe, 2004, Supprimer au redémarrage, [a80d60fc791206309cbb91c4d52c6898]
PUP.Optional.Yontoo, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\10\Plugin.exe, 820, Supprimer au redémarrage, [1c99e9733556a690f067bb9a976ad62a]

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 28
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr TreasureTrack, En quarantaine, [516435270d7ed56161f67dd8af521ae6],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr TreasureTrack, En quarantaine, [a80d60fc791206309cbb91c4d52c6898],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\CLSID\{E104B9E4-01BA-4AAF-9957-6A525CC5451A}, En quarantaine, [3481c5970b8087afff025f9e23de7090],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E104B9E4-01BA-4AAF-9957-6A525CC5451A}, En quarantaine, [3481c5970b8087afff025f9e23de7090],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E104B9E4-01BA-4AAF-9957-6A525CC5451A}, En quarantaine, [3481c5970b8087afff025f9e23de7090],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{1ef422df-c387-4f0d-88d1-b75bdfd51013}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{1ef422df-c387-4f0d-88d1-b75bdfd51013}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\TYPELIB\{00d02ec3-0b78-4444-bef9-57815bd8b29c}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\INTERFACE\{D8369F48-B190-4547-BF52-A80E2B4A98D3}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D8369F48-B190-4547-BF52-A80E2B4A98D3}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D8369F48-B190-4547-BF52-A80E2B4A98D3}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{00d02ec3-0b78-4444-bef9-57815bd8b29c}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{00d02ec3-0b78-4444-bef9-57815bd8b29c}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{1EF422DF-C387-4F0D-88D1-B75BDFD51013}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{1EF422DF-C387-4F0D-88D1-B75BDFD51013}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{1EF422DF-C387-4F0D-88D1-B75BDFD51013}, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}, En quarantaine, [caeba3b93c4ff244ee12cb328b7623dd],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}, En quarantaine, [caeba3b93c4ff244ee12cb328b7623dd],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, En quarantaine, [694c92caf4976fc74cb810edb74a05fb],
PUP.Optional.Yontoo, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}, En quarantaine, [694c92caf4976fc74cb810edb74a05fb],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Treasure Track, En quarantaine, [7b3a3d1f6b20b97d490ea2b3fd04d828],
PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{cfd32d46-7d3f-483f-bace-7172aec5592d}, En quarantaine, [7b3a3d1f6b20b97d490ea2b3fd04d828],
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En quarantaine, [c1f49bc1f59639fdf2cc39623cc7aa56],
PUP.Optional.TreasureTrack, HKLM\SOFTWARE\WOW6432NODE\TreasureTrack, En quarantaine, [dadb96c65d2ec175e0029af95ba8f010],
PUP.Optional.InstallCore, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\ICSW1.14, En quarantaine, [e1d4ee6ed6b587affad4b9b055ae54ac],
PUP.Optional.WinYahoo, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En quarantaine, [f5c00557d5b678bee1dbc9d2798ac43c],
PUP.Optional.Spigot, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{A7DAA095-E293-4513-9DB8-42E0F98364AC}, En quarantaine, [169f015bd4b76bcbfb1d02827e85758b],
PUP.Optional.ProductSetup, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\PRODUCTSETUP, En quarantaine, [5d586fedc4c7f046a1b70e6cfa09758b],

Valeurs du Registre: 8
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, https://th.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_tele_15_43¶m1=1¶m2=f[c1f49bc1f59639fdf2cc39623cc7aa56]D4%26b[c1f49bc1f59639fdf2cc39623cc7aa56]DIE%26cc[c1f49bc1f59639fdf2cc39623cc7aa56]Dth%26pa[c1f49bc1f59639fdf2cc39623cc7aa56]DWinYahoo%26cd[c1f49bc1f59639fdf2cc39623cc7aa56]D2XzuyEtN2Y1L1Qzu0D0CzzyD0D0EyEyByCtA0DyByCyD0FyBtN0D0Tzu0StCtAzytBtN1L2XzutAtFtCyEtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDyC0CtBtCyC0CzytGtDyBtCtAtGtB0DtB0AtGyBtC0C0DtG0FtDtC0FyC0D0D0AyBtB0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyC0BtCyCtCzyyDtBtG0C0DtDyEtGyE0BtCyDtG0A0EtC0AtGtDyB0A0FtByCzz0CyEyB0C0A2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCyEtC%26cr[c1f49bc1f59639fdf2cc39623cc7aa56]D2043106117%26a[c1f49bc1f59639fdf2cc39623cc7aa56]Dwny_tele_15_43%26os[c1f49bc1f59639fdf2cc39623cc7aa56]DWindowsEn quarantaineB8&p={searchTerms}, %4, %5
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURLFallback, https://th.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_tele_15_43¶m1=1¶m2=f[b005b7a5cbc0ca6ca01e9efd19ea52ae]D4%26b[b005b7a5cbc0ca6ca01e9efd19ea52ae]DIE%26cc[b005b7a5cbc0ca6ca01e9efd19ea52ae]Dth%26pa[b005b7a5cbc0ca6ca01e9efd19ea52ae]DWinYahoo%26cd[b005b7a5cbc0ca6ca01e9efd19ea52ae]D2XzuyEtN2Y1L1Qzu0D0CzzyD0D0EyEyByCtA0DyByCyD0FyBtN0D0Tzu0StCtAzytBtN1L2XzutAtFtCyEtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDyC0CtBtCyC0CzytGtDyBtCtAtGtB0DtB0AtGyBtC0C0DtG0FtDtC0FyC0D0D0AyBtB0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyC0BtCyCtCzyyDtBtG0C0DtDyEtGyE0BtCyDtG0A0EtC0AtGtDyB0A0FtByCzz0CyEyB0C0A2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCyEtC%26cr[b005b7a5cbc0ca6ca01e9efd19ea52ae]D2043106117%26a[b005b7a5cbc0ca6ca01e9efd19ea52ae]Dwny_tele_15_43%26os[b005b7a5cbc0ca6ca01e9efd19ea52ae]DWindowsEn quarantaineB8&p={searchTerms}, %4, %5
PUP.Optional.PluginContainer, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Service Mgr TreasureTrack|ImagePath, "C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugincontainer.exe", En quarantaine, [dfd661fbdfac0c2a7f9cdc9c7093fc04]
PUP.Optional.Updater, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Mgr TreasureTrack|ImagePath, "C:\Program Files (x86)\Common Files\59afa7b8-54e5-4124-8be7-716a905c1142\updater.exe", En quarantaine, [0baac4987c0f8bab6a070c7e2bd835cb]
PUP.Optional.WinYahoo, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, https://th.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_tele_15_43¶m1=1¶m2=f[f5c00557d5b678bee1dbc9d2798ac43c]D4%26b[f5c00557d5b678bee1dbc9d2798ac43c]DIE%26cc[f5c00557d5b678bee1dbc9d2798ac43c]Dth%26pa[f5c00557d5b678bee1dbc9d2798ac43c]DWinYahoo%26cd[f5c00557d5b678bee1dbc9d2798ac43c]D2XzuyEtN2Y1L1Qzu0D0CzzyD0D0EyEyByCtA0DyByCyD0FyBtN0D0Tzu0StCtAzytBtN1L2XzutAtFtCyEtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDyC0CtBtCyC0CzytGtDyBtCtAtGtB0DtB0AtGyBtC0C0DtG0FtDtC0FyC0D0D0AyBtB0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyC0BtCyCtCzyyDtBtG0C0DtDyEtGyE0BtCyDtG0A0EtC0AtGtDyB0A0FtByCzz0CyEyB0C0A2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCyEtC%26cr[f5c00557d5b678bee1dbc9d2798ac43c]D2043106117%26a[f5c00557d5b678bee1dbc9d2798ac43c]Dwny_tele_15_43%26os[f5c00557d5b678bee1dbc9d2798ac43c]DWindowsEn quarantaineB8&p={searchTerms}, %4, %5
PUP.Optional.WinYahoo, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TopResultURLFallback, https://th.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_tele_15_43¶m1=1¶m2=f[f2c377e54f3ca096e6d607945ba85aa6]D4%26b[f2c377e54f3ca096e6d607945ba85aa6]DIE%26cc[f2c377e54f3ca096e6d607945ba85aa6]Dth%26pa[f2c377e54f3ca096e6d607945ba85aa6]DWinYahoo%26cd[f2c377e54f3ca096e6d607945ba85aa6]D2XzuyEtN2Y1L1Qzu0D0CzzyD0D0EyEyByCtA0DyByCyD0FyBtN0D0Tzu0StCtAzytBtN1L2XzutAtFtCyEtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDyC0CtBtCyC0CzytGtDyBtCtAtGtB0DtB0AtGyBtC0C0DtG0FtDtC0FyC0D0D0AyBtB0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyC0BtCyCtCzyyDtBtG0C0DtDyEtGyE0BtCyDtG0A0EtC0AtGtDyB0A0FtByCzz0CyEyB0C0A2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtCyEtC%26cr[f2c377e54f3ca096e6d607945ba85aa6]D2043106117%26a[f2c377e54f3ca096e6d607945ba85aa6]Dwny_tele_15_43%26os[f2c377e54f3ca096e6d607945ba85aa6]DWindowsEn quarantaineB8&p={searchTerms}, %4, %5
PUP.Optional.Spigot, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{A7DAA095-E293-4513-9DB8-42E0F98364AC}|URL, https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=435371&p={searchTerms}, En quarantaine, [169f015bd4b76bcbfb1d02827e85758b]
PUP.Optional.ProductSetup, HKU\S-1-5-21-1793319189-4039655897-1873486476-1001\SOFTWARE\PRODUCTSETUP|tb, 0X1F1T1V1G1G, En quarantaine, [5d586fedc4c7f046a1b70e6cfa09758b]

Données du Registre: 0
(Aucun élément malveillant détecté)

Dossiers: 19
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142, Supprimer au redémarrage, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugincontainer, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins, Supprimer au redémarrage, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\10, Supprimer au redémarrage, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\12, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\12\resources, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\2, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\3, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\4, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\5, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\7, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\7\resources, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\8, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\Program Files (x86)\Common Files\59afa7b8-54e5-4124-8be7-716a905c1142, Supprimer au redémarrage, [783dc09c3a516ec8293d264923df0af6],
PUP.Optional.TreasureTrack, C:\Program Files (x86)\Common Files\59afa7b8-54e5-4124-8be7-716a905c1142\updater, En quarantaine, [783dc09c3a516ec8293d264923df0af6],
PUP.Optional.TreasureTrack, C:\Program Files (x86)\Treasure Track, En quarantaine, [d3e266f6e8a3e551a6c189e6da28ee12],
PUP.Optional.TreasureTrack, C:\Program Files (x86)\Treasure Track\Extensions, En quarantaine, [d3e266f6e8a3e551a6c189e6da28ee12],
PUP.Optional.TreasureTrack, C:\Users\raphael muller\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibhbjokbgleemkgllilpldohheklmdne\1.0.5771.39238_0, En quarantaine, [d5e01b419af1a0968ee980e2798bc33d],
PUP.Optional.TreasureTrack, C:\Users\raphael muller\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibhbjokbgleemkgllilpldohheklmdne, En quarantaine, [d5e01b419af1a0968ee980e2798bc33d],

Fichiers: 26
PUP.Optional.Yontoo, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugincontainer.exe, Supprimer au redémarrage, [516435270d7ed56161f67dd8af521ae6],
PUP.Optional.Yontoo, C:\Program Files (x86)\Common Files\59afa7b8-54e5-4124-8be7-716a905c1142\updater.exe, Supprimer au redémarrage, [a80d60fc791206309cbb91c4d52c6898],
PUP.Optional.Yontoo, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\10\Plugin.exe, Supprimer au redémarrage, [1c99e9733556a690f067bb9a976ad62a],
PUP.Optional.Yontoo, C:\Program Files (x86)\Treasure Track\Extensions\1ef422df-c387-4f0d-88d1-b75bdfd51013.dll, En quarantaine, [486d8bd1048774c233a589739d6438c8],
PUP.Optional.Yontoo, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\12\resources\plugin.dll, En quarantaine, [b9fc65f7404b53e3c49371e4de23ad53],
PUP.Optional.Yontoo, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\7\resources\38.0.5.dll, En quarantaine, [1f9672ea305b8fa7183f94c16e9311ef],
PUP.Optional.Yontoo, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\7\resources\39.0.0.dll, En quarantaine, [cde8b6a65932300686d131245aa78e72],
PUP.Optional.Yontoo, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\plugins\7\resources\40.0.0.dll, En quarantaine, [4b6a0458eaa12214b6a14411bb468d73],
PUP.Optional.Yontoo, C:\Program Files (x86)\Treasure Track\Uninstaller.exe, En quarantaine, [7b3a3d1f6b20b97d490ea2b3fd04d828],
PUP.Optional.InstallCore, C:\Users\raphael muller\Downloads\FreeYouTubeToMP3Setup.exe, En quarantaine, [8d2883d9b3d8270f278093c86998fc04],
PUP.Optional.InstallCore, C:\Users\raphael muller\Downloads\itunes-12(1).exe, En quarantaine, [c9ec68f4d5b6dd59c64bee67cc351ee2],
PUP.Optional.InstallCore, C:\Users\raphael muller\Downloads\itunes-12.exe, En quarantaine, [dfd6d08c0f7cbf776ea3d67f35cc0000],
PUP.Optional.TreasureTrack, C:\Users\raphael muller\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_treasuretrack-a.akamaihd.net_0.localstorage, En quarantaine, [c8ed5a02e1aad363de02246f7c871ae6],
PUP.Optional.TreasureTrack, C:\Users\raphael muller\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_treasuretrack-a.akamaihd.net_0.localstorage-journal, En quarantaine, [d6df273556356ec802dee6adec17ce32],
PUP.Optional.TreasureTrack, C:\ProgramData\59afa7b8-54e5-4124-8be7-716a905c1142\temp, En quarantaine, [15a01547305b58de2540343b0101ac54],
PUP.Optional.TreasureTrack, C:\Program Files (x86)\Treasure Track\7za.exe, En quarantaine, [d3e266f6e8a3e551a6c189e6da28ee12],
PUP.Optional.TreasureTrack, C:\Program Files (x86)\Treasure Track\Extensions\ibhbjokbgleemkgllilpldohheklmdne.crx, En quarantaine, [d3e266f6e8a3e551a6c189e6da28ee12],
PUP.Optional.TreasureTrack, C:\Program Files (x86)\Treasure Track\Extensions\{468c6f03-7b5d-4f47-bb8e-564b27123fa4}.xpi, En quarantaine, [d3e266f6e8a3e551a6c189e6da28ee12],
PUP.Optional.TreasureTrack, C:\Users\raphael muller\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibhbjokbgleemkgllilpldohheklmdne\1.0.5771.39238_0\manifest.json, En quarantaine, [d5e01b419af1a0968ee980e2798bc33d],
PUP.Optional.TreasureTrack, C:\Users\raphael muller\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibhbjokbgleemkgllilpldohheklmdne\1.0.5771.39238_0\background.js, En quarantaine, [d5e01b419af1a0968ee980e2798bc33d],
PUP.Optional.TreasureTrack, C:\Users\raphael muller\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibhbjokbgleemkgllilpldohheklmdne\1.0.5771.39238_0\content.js, En quarantaine, [d5e01b419af1a0968ee980e2798bc33d],
PUP.Optional.TreasureTrack, C:\Users\raphael muller\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibhbjokbgleemkgllilpldohheklmdne\1.0.5771.39238_0\icon.png, En quarantaine, [d5e01b419af1a0968ee980e2798bc33d],
PUP.Optional.Yontoo, C:\Users\raphael muller\AppData\Roaming\Mozilla\Firefox\Profiles\5f5dnvw2.default-1445921731322\prefs.js, Bon : (), Mauvais : (user_pref("browser.newtab.url", "http://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAYUeA5dWA5JDAUQcwkVVQoUFRgbcV0LTF8XQABAJA1dWF1GGRNBNARaB0tXUUEeGGlxR1dMdUdGIUpNE1wlU1RAKw==");), Remplacé,[1e97bd9f088343f3d60df86634d0f60a]
PUP.Optional.Yontoo.ChrPRST, C:\Users\raphael muller\AppData\Roaming\Mozilla\Firefox\Profiles\5f5dnvw2.default-1445921731322\prefs.js, Bon : (), Mauvais : (user_pref("keyword.URL", "http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQoPWQ4UGAIbbQkLUglcFQZGdBQAUF1CDFNFIQxbBQ0UGFEUeB9aFQQTR0cFME0FB18EURNNfW1KBFgCVEdGFEtZAlI=&q={searchTerms}");), Remplacé,[e4d12a32ee9d68ce3eab2737b64e34cc]
PUP.Optional.Yontoo, C:\Users\raphael muller\AppData\Roaming\Mozilla\Firefox\Profiles\5f5dnvw2.default-1445921731322\prefs.js, Bon : (browser.startup.homepage", "https://www.malwarebytes.org/restorebrowser/), Mauvais : (browser.startup.homepage", "http://searchinterneat-a.akamaihd.net), Remplacé,[b500411bc9c2d5612e9cd98b39cb7c84]
PUP.Optional.BDYahoo, C:\Users\raphael muller\AppData\Roaming\Mozilla\Firefox\Profiles\5f5dnvw2.default-1445921731322\searchplugins\default.xml, En quarantaine, [bcf9510b1477979f89041d45927221df],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité