cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 18/02/2016
Heure de l'analyse: 23:46
Fichier journal: mbamb1.txt
Administrateur: Oui

Version: 2.2.0.1024
Base de données de programmes malveillants: v2016.02.18.05
Base de données de rootkits: v2016.02.17.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: johan

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 427400
Temps écoulé: 43 min, 10 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 34
PUP.Optional.CouponMarvel, HKLM\SOFTWARE\{9E6892AE-EDB8-490A-9FDD-5A9770E7909E}, En quarantaine, [cd60b1b18316b68015516ee0f1138c74],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\CLASSES\PCSU.Registry, En quarantaine, [9c9170f25049d066e7346f8d0ef558a8],
PUP.Optional.VBates, HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\4832D1BACA6156C53A74A472BE8678EAAABC8CBE, En quarantaine, [cc614919f4a568ce3217560c00046b95],
PUP.Optional.WombatUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\SERVICE1104.EXE, En quarantaine, [b07d9dc50a8fb482cc1913ffe71dfb05],
PUP.Optional.CrossAd, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Extension Rush, Supprimer au redémarrage, [2d00aab80a8fe65093eb3abb04fe13ed],
PUP.Optional.Feven, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Feven 1.8-codedownloader, Supprimer au redémarrage, [67c69ec4e8b14beb97afd80fa162857b],
PUP.Optional.Feven, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Feven 1.8-enabler, Supprimer au redémarrage, [ba73570bdbbe69cd70d65e89ac57cc34],
PUP.Optional.Feven, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Feven 1.8-firefoxinstaller, Supprimer au redémarrage, [f03d97cb722742f468de806728dbe11f],
PUP.Optional.Feven, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Feven 1.8-updater, Supprimer au redémarrage, [9895b3af1f7a072f4bfb0dda768d669a],
PUP.Optional.PlusHD, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Plus-HD-1.3-chromeinstaller, Supprimer au redémarrage, [84a9e87a207955e15be052abb25101ff],
PUP.Optional.PlusHD, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Plus-HD-1.3-codedownloader, Supprimer au redémarrage, [0825154db5e41224da61ea13897ab14f],
PUP.Optional.PlusHD, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Plus-HD-1.3-enabler, Supprimer au redémarrage, [9895adb5b5e4b284b08bc23b758ed42c],
PUP.Optional.PlusHD, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Plus-HD-1.3-firefoxinstaller, Supprimer au redémarrage, [5ad3abb78514dd59e05b74891ae953ad],
PUP.Optional.PlusHD, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Plus-HD-1.3-updater, Supprimer au redémarrage, [2eff6bf7b4e5da5c76c58c71b152847c],
PUP.Optional.PlusHD, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Plus-HD-3.5-chromeinstaller, Supprimer au redémarrage, [a28bc999336694a275c6699432d1817f],
PUP.Optional.PlusHD, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Plus-HD-3.5-firefoxinstaller, Supprimer au redémarrage, [d25ba2c0e9b01e184bf06b9280831ce4],
PUP.Optional.CouponMarvel, HKLM\SOFTWARE\WOW6432NODE\{9E6892AE-EDB8-490A-9FDD-5A9770E7909E}, En quarantaine, [3af3273bddbce15567ffcb832fd5d030],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\PCSU.Registry, En quarantaine, [34f96ff38c0d5fd7e338fefe8083c43c],
PUP.Optional.VBates, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\4832D1BACA6156C53A74A472BE8678EAAABC8CBE, En quarantaine, [df4e67fbb3e668cebc8d3c262ed66d93],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{c31ed948}, En quarantaine, [032a2b37bcdd54e218229c5cac574db3],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{cae99edb}, En quarantaine, [9b92ee74bfda58de43f7be3a22e15ba5],
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{2743C4F5-E14B-4A43-B470-D9CC5FA4273A}, En quarantaine, [53da065cebae0531939a24adcc378d73],
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{2743C4F5-E14B-4A43-B470-D9CC5FA4273A}, En quarantaine, [80ad8dd58d0c05314ce1834e12f1c23e],
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{2743C4F5-E14B-4A43-B470-D9CC5FA4273A}, En quarantaine, [c469bda5afea0432e6479d34c83b24dc],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2213859796-574135468-659709981-1000\SOFTWARE\CONDUIT\DistributionEngine, En quarantaine, [c46972f07b1ef44201d707c45fa429d7],
PUP.Optional.CrossRider, HKU\S-1-5-21-2213859796-574135468-659709981-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\30935, En quarantaine, [e845c59da5f416202490667a5fa453ad],
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-21-2213859796-574135468-659709981-1000\SOFTWARE\{2743C4F5-E14B-4A43-B470-D9CC5FA4273A}, En quarantaine, [0b223b274e4b60d63fee448d798a8080],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-2213859796-574135468-659709981-1000\SOFTWARE\{F06702E0-6C1B-4AC1-9E53-091FB38CE32D}, En quarantaine, [0d202c36b7e25fd7e56e5d74f40f5ba5],
PUP.Optional.Birds, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\3DODO, En quarantaine, [e548ff63970286b0c38c4014699b50b0],
PUP.Optional.Birds, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\BIRDS, En quarantaine, [59d4d2904c4dcd69c58c7cd8d72d639d],
PUP.Optional.Komodia, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\INSTALLPATH\STATUS, En quarantaine, [50ddbca627720630836fadaa7d87b749],
PUP.Optional.CrossRider, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{9563BC59-9556-4805-8CD4-886781779D8D}, En quarantaine, [fa33d68ce5b494a2f5ff70d9f113926e],
PUP.Optional.DealPly, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\gaiilaahiahdejapggenmdmafpmbipje, En quarantaine, [d45922407c1d55e1dfa4766cc73cf20e],
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\{2743C4F5-E14B-4A43-B470-D9CC5FA4273A}, En quarantaine, [f439d48e8712ef47101d0dc45fa428d8],

Valeurs du Registre: 19
PUP.Optional.Softomate, HKU\S-1-5-21-2213859796-574135468-659709981-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{CA3EB689-8F09-4026-AA10-B9534C691CE0}, En quarantaine, [d9541c469bfe65d1f0a5dbc8f11158a8],
PUP.Optional.Softomate, HKU\S-1-5-21-2213859796-574135468-659709981-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{CA3EB689-8F09-4026-AA10-B9534C691CE0}, En quarantaine, [d9541c469bfe65d1f0a5dbc8f11158a8],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\CLASSES\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [b974bca6ecad270f1e0b22248a7a9f61],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\CLASSES\WOW6432NODE\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [b9742e344c4d053163c6d57156ae8c74],
PUP.Optional.WombatUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\Service1104.exe|{a53dd3e5-0283-4ab3-b77c-7bd1bc7550c6}.sdb, 130824179772927085, En quarantaine, [b07d9dc50a8fb482cc1913ffe71dfb05]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [42eb372bf0a9a294ee3ba2a4709411ef],
PUP.Optional.MyBrowser, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS, MyBrowser, En quarantaine, [0d20cb9798013303eb3ea37570940000]
PUP.Optional.MyBrowser, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|StubPath, "C:\Program Files (x86)\MyBrowser\MyBrowser\Application\39.5.2171.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level, En quarantaine, [c36ad989029736007dacbe5a55af35cb]
PUP.Optional.MyBrowser, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|Localized Name, MyBrowser, En quarantaine, [ac81a9b9594090a64ddc6dab60a420e0]
PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SVCHOST|ORBTR, Orbiter^^, En quarantaine, [d35ade845f3aaa8cbe69db1e37cb758b]
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{2743C4F5-E14B-4A43-b470-D9CC5FA4273A}|Name, C:\Program Files\groover150220160932\Ianyi.exe, En quarantaine, [53da065cebae0531939a24adcc378d73]
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{2743C4F5-E14B-4A43-b470-D9CC5FA4273A}|Name, C:\Program Files\groover150220160932\Ianyi.exe, En quarantaine, [80ad8dd58d0c05314ce1834e12f1c23e]
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{2743C4F5-E14B-4A43-b470-D9CC5FA4273A}|Name, C:\Program Files\groover150220160932\Ianyi.exe, En quarantaine, [c469bda5afea0432e6479d34c83b24dc]
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-21-2213859796-574135468-659709981-1000\SOFTWARE\{2743C4F5-E14B-4A43-b470-D9CC5FA4273A}|Name, C:\Program Files\groover150220160932\Ianyi.exe, En quarantaine, [0b223b274e4b60d63fee448d798a8080]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-2213859796-574135468-659709981-1000\SOFTWARE\{f06702e0-6c1b-4ac1-9e53-091fb38ce32d}|Name, C:\Program Files\shopperz22072015\Huyde.exe, En quarantaine, [0d202c36b7e25fd7e56e5d74f40f5ba5]
PUP.Optional.Birds, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\3DODO|path, C:\Users\johan\AppData\Local\Birds365, En quarantaine, [e548ff63970286b0c38c4014699b50b0]
PUP.Optional.Birds, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\BIRDS|play, start, En quarantaine, [59d4d2904c4dcd69c58c7cd8d72d639d]
PUP.Optional.Komodia, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\INSTALLPATH\STATUS|FlowsurfCB, S, En quarantaine, [50ddbca627720630836fadaa7d87b749]
PUP.Optional.Groover.BrwsrFlsh, HKU\S-1-5-21-2213859796-574135468-659709981-1002\SOFTWARE\{2743C4F5-E14B-4A43-b470-D9CC5FA4273A}|Name, C:\Program Files\groover150220160932\Ianyi.exe, En quarantaine, [f439d48e8712ef47101d0dc45fa428d8]

Données du Registre: 0
(Aucun élément malveillant détecté)

Dossiers: 9
PUP.Optional.VBates.WnskRST, C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}, En quarantaine, [a6872e34f7a287af15925e92887a05fb],
PUP.Optional.VBates.WnskRST, C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}\{FBC0652C-7B29-4FB6-8ADA-91F54B267AD4}, En quarantaine, [a6872e34f7a287af15925e92887a05fb],
PUP.Optional.VBates.WnskRST, C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}\{FBC0652C-7B29-4FB6-8ADA-91F54B267AD4}\1.5, En quarantaine, [a6872e34f7a287af15925e92887a05fb],
PUP.Optional.PullUpdate, C:\ProgramData\yhEUPtZHT\dat, En quarantaine, [3af3451d168321150b1659bd13f218e8],
PUP.Optional.PullUpdate, C:\ProgramData\yhEUPtZHT, En quarantaine, [3af3451d168321150b1659bd13f218e8],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component2, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\zBin, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],

Fichiers: 78
Adware.PullUpdate, C:\ProgramData\yhEUPtZHT\dat\gYIwJjtqd.dll, En quarantaine, [0b22164c01988ea8b50961cec53c23dd],
PUP.Optional.ZombieInvasion, C:\ProgramData\yhEUPtZHT\dat\jWwWGcgPzXt.dll, En quarantaine, [a38a3929eeab43f38785d2db8e7610f0],
Adware.PennyBee, C:\Users\johan\AppData\Roaming\HeutpiUivou\Tatarud.exe, En quarantaine, [5ecf99c9d2c7072f5cdd34baeb16da26],
PUP.Optional.Cherimoya, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\bsdriver.sys, En quarantaine, [909d81e151481e18bbddb55af80dd62a],
PUP.Optional.Cherimoya, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\cherimoya.sys, En quarantaine, [47e6ff632e6b3df96e2a10ff83824eb2],
PUP.Optional.BreakingNewsAlert, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\hnTFXkXPvb.exe, En quarantaine, [3df05f0373260f27f0c4f443a859b54b],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\09a7d9e6-6b0e-4cb5-86bd-5ba2dc8bf6be.dll, En quarantaine, [0726a2c08712f0463ec186b5946d41bf],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\0c9b8d9f-d88d-4581-94a2-4a903997cd62.dll, En quarantaine, [61cc540e8217ee485a17f73ee819f10f],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\0d775519-980f-4239-a2e9-cd3bf31c984a.dll, En quarantaine, [7db01d450693af87e6197dbe629f3dc3],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\227c540d-b413-4977-b87a-901ac113fde5.dll, En quarantaine, [68c5550d207972c453ac192216eb2ed2],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\3ae6c0d0-b937-4081-9be9-f3f58501fc8e.dll, En quarantaine, [89a469f922770d292d7853bce520956b],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\55bbfa5e-ae7a-4011-83fa-1edef2cc6ee5.dll, En quarantaine, [b7762939e5b40036a6cb4ce923deee12],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\957398f2-c5e9-4880-86c9-6f6f60eb4c7a.dll, En quarantaine, [022b82e0b3e6e452d0a19a9b53aee818],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\ce409aaa-5b69-46d5-90ac-7aaf31c9bed5.dll, En quarantaine, [3bf2d78b6435b97d5fa0c6758879f10f],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\dfa2de44-a5d0-4fff-a766-3dc46a448714.dll, En quarantaine, [45e8f270debb5cdac3ae1f16cb3659a7],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\0c9b8d9f-d88d-4581-94a2-4a903997cd62\e4bcc248-895c-4ada-b7fc-1e2ef88d5f9b.dll, En quarantaine, [46e7d88a2c6def472ed1b982867bf60a],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\21afe9f6-f824-435e-bd18-8ae473683f44\331adde4-39b8-44ef-9d02-9ec2d19bd8ff.dll, En quarantaine, [0a2390d2ddbc3ef878f9e74e3ac7827e],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\21afe9f6-f824-435e-bd18-8ae473683f44\a4a8a739-d080-4e74-a2d8-d2cb658beb91.dll, En quarantaine, [210cf86a7029a98d8b74e358e61b748c],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\21afe9f6-f824-435e-bd18-8ae473683f44\d52a15ba-6e96-4343-93a9-6f49ab435f58.dll, En quarantaine, [d5582e346b2e8da94d24d26302ffb64a],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\21afe9f6-f824-435e-bd18-8ae473683f44\e3e345cc-9799-4096-8113-38f71f887cd6.dll, En quarantaine, [5bd2461cb2e7c670b748cf6cea17ef11],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\3ae6c0d0-b937-4081-9be9-f3f58501fc8e\b85b4bad-7fcc-44a5-9906-cc8aacc34147.dll, En quarantaine, [33fa8ed4c4d5b77ff00f9d9e5aa7936d],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\3ae6c0d0-b937-4081-9be9-f3f58501fc8e\ef64b0e4-f23c-4d64-9a8e-b158695374bc.dll, En quarantaine, [3cf1b1b1524794a2d6cf2ce317ee28d8],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\55bbfa5e-ae7a-4011-83fa-1edef2cc6ee5\a84b396e-4cb8-4fc4-a42b-f76c28fda010.dll, En quarantaine, [0e1fa4be9efb9f978e7194a7ac55ce32],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\55bbfa5e-ae7a-4011-83fa-1edef2cc6ee5\a8de9c9b-6b22-4b5d-a1a0-acd598991a67.dll, En quarantaine, [39f4f0725247af8789e8c17404fdd22e],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\88500b27-4eb7-4088-bbe9-4376ced8cf5e\44aa03cd-a6c3-4d47-958b-c3bf770e1c33.dll, En quarantaine, [45e8b1b107924ee8609f192224dded13],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\88500b27-4eb7-4088-bbe9-4376ced8cf5e\b6e0853f-07cb-414e-ba03-ac79268bfd16.dll, En quarantaine, [1a134f13118811258fe22114d32eac54],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\88500b27-4eb7-4088-bbe9-4376ced8cf5e\ec01b7b1-73d4-478b-a024-8bc34c92a7be.dll, En quarantaine, [fa334e144356a59183eedb5a4ab720e0],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\88500b27-4eb7-4088-bbe9-4376ced8cf5e\ed7a2e02-a384-4c94-9895-9ee97d916dce.dll, En quarantaine, [5dd0e47e00999a9c6f902318a75a55ab],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\957398f2-c5e9-4880-86c9-6f6f60eb4c7a\05103a1d-afeb-421c-9141-230d3b7b5d0e.dll, En quarantaine, [d5585d05b3e686b033cc0239fc055fa1],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\957398f2-c5e9-4880-86c9-6f6f60eb4c7a\a4826e4c-a2b9-4263-98a6-15469d26baca.dll, En quarantaine, [9895431ff6a333032a47ad88d829b24e],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\c461763f-91eb-49e9-bc93-d2e1b37398a6\6fc34d56-0777-4ec0-a6fe-8957e2981b72.dll, En quarantaine, [37f65f039702b482639ca19aa45d3fc1],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\c461763f-91eb-49e9-bc93-d2e1b37398a6\a82dafd2-901e-4b71-b1f1-4fbc4855f6c4.dll, En quarantaine, [63cac89ac9d0ce68d79ae45159a8c937],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\d52a15ba-6e96-4343-93a9-6f49ab435f58\210f230a-9fb8-48bd-bc7b-8d75f2cf2745.dll, En quarantaine, [31fc3929f2a75fd71958270ef70a22de],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\d52a15ba-6e96-4343-93a9-6f49ab435f58\6a8b96b3-db0d-480f-84a9-fd1ff46fe0fb.dll, En quarantaine, [a18c154d910841f56a9567d4ca376b95],
PUP.Optional.Tuto4PC, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\dimp_en_157010238\dimp_en_157010238\updimp_en_157010238.exe, En quarantaine, [969772f004952b0bdbbfc50e956ce41c],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\e1d5a7e3-46b4-484f-af01-0a707a6db261\8cb13852-9c8b-4526-8f1e-d1267537acec.dll, En quarantaine, [131a055dc6d363d3fb0465d69170dd23],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\e1d5a7e3-46b4-484f-af01-0a707a6db261\e5b7f6a7-ca07-460d-b9ce-e64ce4b6ccb5.dll, En quarantaine, [f5384b17f7a238fedd943ff65fa2ca36],
PUP.Optional.CrossRider, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\ec01b7b1-73d4-478b-a024-8bc34c92a7be\670eede7-6707-47fe-aefc-b75592262649.dll, En quarantaine, [b776f76b4d4ccc6ac0b1af86679a09f7],
PUP.Optional.Nova, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\ec01b7b1-73d4-478b-a024-8bc34c92a7be\d36863df-1850-48b9-8d00-81e73eff63c2.dll, En quarantaine, [bd7089d9adecb48204fb66d5a65beb15],
PUP.Optional.Perion, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\shopperz22072015\csrcc.exe, En quarantaine, [f6378fd33c5d3cfa028a310223de36ca],
PUP.Optional.Perion, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\shopperz22072015\Keeqcb.dll, En quarantaine, [3af36ff3fe9b1c1a0a83f142f1100bf5],
PUP.Optional.Perion, C:\Users\johan\AppData\Roaming\ZHP\Quarantine\shopperz22072015\Keeqcb64.dll, En quarantaine, [072602609207bc7a02b2fe35c53cc838],
PUP.Optional.Nova, C:\Program Files (x86)\AmIcoSingLun\602e5a16-822a-4c34-b22f-3d77b5f4a856.dll, En quarantaine, [c667e67cdbbeae8842bd40fbaa5744bc],
PUP.Optional.CrossRider, C:\Program Files (x86)\AmIcoSingLun\88500b27-4eb7-4088-bbe9-4376ced8cf5e.dll, En quarantaine, [eb42e47e93062412ec8563d2b150629e],
PUP.Optional.CrossRider, C:\Program Files (x86)\AmIcoSingLun\c461763f-91eb-49e9-bc93-d2e1b37398a6.dll, En quarantaine, [43ea085a2079a0968de4d0657e8354ac],
PUP.Optional.CrossRider, C:\Program Files (x86)\AmIcoSingLun\e1d5a7e3-46b4-484f-af01-0a707a6db261.dll, En quarantaine, [75b841210e8b5cda620fd263926f52ae],
PUP.Optional.Nova, C:\Program Files (x86)\AmIcoSingLun\efb6a639-2d6d-4e1e-8e0d-66d251eb77a0.dll, En quarantaine, [fb32d092ebaed561d32cb58616eb936d],
PUP.Optional.Nova, C:\Program Files (x86)\AmIcoSingLun\fa784bc5-5cd6-43ce-852a-e1762916f02f.dll, En quarantaine, [33fa5d051287a39318e7e6553ac7fd03],
Rootkit.Komodia.PUA, C:\Windows\System32\drivers\bsdriver.sys, Supprimer au redémarrage, [c6678dd563364aec1631d0ece1209a66],
PUP.Optional.Cherimoya, C:\Windows\System32\drivers\cherimoya.sys, Supprimer au redémarrage, [6cc1f1719efbaa8c99ff4ac5ce3720e0],
PUP.Optional.SoftPulse, C:\Users\johan\Downloads\installer_ccleaner_French.exe, En quarantaine, [73bafa6807920333eb8ad68455acf50b],
PUP.Optional.InstallCore, C:\Users\johan\Downloads\Vlc_2.1.3.exe, En quarantaine, [de4ff36f0396d75f5321eb4f1de422de],
PUP.Optional.ClickRunSoftware, C:\Users\johan\Downloads\setup(1).exe, En quarantaine, [bc71085ad6c346f01487848bbd4839c7],
PUP.Optional.BundleInstaller, C:\Users\johan\Downloads\Setup(3).exe, En quarantaine, [7db01949e9b0ee48226bf36559a88779],
PUP.Optional.InstallCore, C:\Users\johan\Downloads\CR_Downloader_pour_dolphin.exe, En quarantaine, [eb42cb97cfcace68fe9862d89869b848],
PUP.Optional.CrossAd, C:\Users\johan\AppData\Local\Extension Rush\zBin\ExtensionRush.dll, En quarantaine, [a687bea43c5d1521f91e685503fe1be5],
PUP.Optional.CrossAd, C:\Windows\System32\Tasks\Extension Rush, En quarantaine, [d05d065c52476dc9fa80f10433cfdd23],
Rootkit.Agent.A, C:\Windows\System32\drivers\cherimoya.sys, Supprimer au redémarrage, [5dd0065cd0c941f568bd6c98ad56d729],
PUP.Optional.WombatUpdater, C:\Windows\AppPatch\Custom\{a53dd3e5-0283-4ab3-b77c-7bd1bc7550c6}.sdb, En quarantaine, [6ac364fe1a7f191de9fb19f93fc525db],
PUP.Optional.FakeIELaunch, C:\Users\johan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet-Explorer Browser.lnk, En quarantaine, [0f1e7ee4dfbad660f060d745d331ce32],
PUP.Optional.VBates.WnskRST, C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}\{FBC0652C-7B29-4FB6-8ADA-91F54B267AD4}\1.5\config.js, En quarantaine, [a6872e34f7a287af15925e92887a05fb],
PUP.Optional.PullUpdate, C:\ProgramData\yhEUPtZHT\dat\fEXdcAdQht.exe.config, En quarantaine, [3af3451d168321150b1659bd13f218e8],
PUP.Optional.PullUpdate, C:\ProgramData\yhEUPtZHT\dat\gYIwJjtqd.dll, En quarantaine, [3af3451d168321150b1659bd13f218e8],
PUP.Optional.PullUpdate, C:\ProgramData\yhEUPtZHT\dat\hnTFXkXPvb.exe.config, En quarantaine, [3af3451d168321150b1659bd13f218e8],
PUP.Optional.PullUpdate, C:\ProgramData\yhEUPtZHT\info.dat, En quarantaine, [3af3451d168321150b1659bd13f218e8],
PUP.Optional.PullUpdate, C:\ProgramData\yhEUPtZHT\XpbAdHon.dat, En quarantaine, [3af3451d168321150b1659bd13f218e8],
PUP.Optional.PullUpdate, C:\ProgramData\yhEUPtZHT\XpbAdHon.exe.config, En quarantaine, [3af3451d168321150b1659bd13f218e8],
Trojan.Injector.BHO, C:\settings.ini, En quarantaine, [73baa3bf6930df573d4ca4735aab0cf4],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component\config.json, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component\hello.js, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component\manifest.json, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component\scriptTagContext.js, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component\tmp_bg.js, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component\uconfig.json, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\Component2\plugin, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\zBin\c.dat, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.CrossAd.Gen, C:\Users\johan\AppData\Local\Extension Rush\zBin\dyn.dll, En quarantaine, [d9547be73861092d2ac9a66dfe07c53b],
PUP.Optional.HijackHosts.Gen, C:\Windows\System32\yjoj\wyn\romf.dat, En quarantaine, [38f57ae85e3b32043db09c77c93c47b9],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité