Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 14/04/2016
Heure de l'analyse: 10:55
Fichier journal: mbam.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.04.14.02
Base de données de rootkits: v2016.04.09.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: chucky
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 345262
Temps écoulé: 14 min, 45 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 28
PUP.Optional.ProPCCleaner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4C6F2DB4-DC86-4E27-8A86-8A96BD1CC6DE}, Supprimer au redémarrage, [befcab03c5d412246698dac391737090],
PUP.Optional.ObjectBrowser, HKLM\SOFTWARE\WOW6432NODE\Object Browser-nv, En quarantaine, [605aa20c118893a3cfbc45f0eb1917e9],
PUP.Optional.ObjectBrowser, HKLM\SOFTWARE\WOW6432NODE\Object Browser-nv-ie, En quarantaine, [98223777ecad9a9c1576f63f21e33ac6],
PUP.Optional.SmartSaver, HKLM\SOFTWARE\WOW6432NODE\Sm23mS, En quarantaine, [209a6846e7b2a98d6b8dce739074d32d],
PUP.Optional.SmartSaver, HKLM\SOFTWARE\WOW6432NODE\Sm23mS-nv, En quarantaine, [54667836306944f28078db66c93bb64a],
PUP.Optional.SmartSaver, HKLM\SOFTWARE\WOW6432NODE\Sm23mS-nv-ie, En quarantaine, [7743139b168386b0837583bed23223dd],
PUP.Optional.WordAnchor, HKLM\SOFTWARE\WOW6432NODE\WordAnchor_1.10.0.20, En quarantaine, [a713347a4455f73f172e9cb2cc3845bb],
PUP.Optional.WordSurfer, HKLM\SOFTWARE\WOW6432NODE\WordSurfer_1.10.0.19, En quarantaine, [10aab6f86d2c88aea5c5d07eee163ac6],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Update Product Deals, En quarantaine, [19a1b7f7dabfec4a6c46f19b5ba96a96],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Util Product Deals, En quarantaine, [9a2001ad7623f145e1d11874b054ef11],
PUP.Optional.Goobzo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\wbsvc, En quarantaine, [61595757ebae2b0ba73c87163ec6f60a],
PUP.Optional.CinemaPlus, HKU\S-1-5-18\SOFTWARE\CinemaPlus-4.2vV20.07-nv, En quarantaine, [0faba608e3b655e1152784930ff58a76],
PUP.Optional.CinemaPlus, HKU\S-1-5-18\SOFTWARE\CinemaPlus-4.2vV20.07-nv-ie, En quarantaine, [4179d7d78f0af3438daf0f08dc28b749],
PUP.Optional.iWebar, HKU\S-1-5-18\SOFTWARE\iWebar-nv, En quarantaine, [55654b637d1cf1458af758d346bec13f],
PUP.Optional.ObjectBrowser, HKU\S-1-5-18\SOFTWARE\Object Browser-nv, En quarantaine, [d1e91896cecb1c1a9ee938fde2225da3],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{F9197656-D12A-45BD-BC48-2F5C25C20875}, En quarantaine, [d8e2e2ccfa9f6fc75a1b23ea58ac6e92],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{F9197656-D12A-45BD-BC48-2F5C25C20875}, En quarantaine, [14a6aa043d5c41f572035ab3fd078e72],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{F9197656-D12A-45BD-BC48-2F5C25C20875}, En quarantaine, [4377406e7524d561393cfb12709405fb],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\CinemaPlus-4.2vV20.07, En quarantaine, [7b3fdbd319800f2789b3799e5aaa46ba],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\CinemaPlus-4.2vV20.07-nv, En quarantaine, [2397505ec8d17fb7300ca47357ad41bf],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\CinemaPlus-4.2vV20.07-nv-ie, En quarantaine, [2b8f1c92f1a87cba55e7160194709d63],
PUP.Optional.ObjectBrowser, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Object Browser-nv, En quarantaine, [f7c3674740591125a5e21223986c9868],
PUP.Optional.ObjectBrowser, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Object Browser-nv-ie, En quarantaine, [0eac3c726f2afc3aa1e60e2714f03fc1],
PUP.Optional.SmartSaver, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Sm23mS, En quarantaine, [a8121896badf4de9c62755ecb64eff01],
PUP.Optional.SmartSaver, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Sm23mS-nv, En quarantaine, [4f6b901e465386b03cb1b8890ff51ae6],
PUP.Optional.SmartSaver, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Sm23mS-nv-ie, En quarantaine, [0fab8f1f7b1e1b1b16d774cd0cf8d62a],
PUP.Optional.Komodia, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\INSTALLPATH\STATUS, En quarantaine, [29918f1f8d0cf2441b8fdfb2e91bcb35],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\{F9197656-D12A-45BD-BC48-2F5C25C20875}, En quarantaine, [dbdfedc19504df573b3ae92458ac08f8],
Valeurs du Registre: 15
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\CLASSES\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [ead0e4ca881167cfc130e19f41c3cf31],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\CLASSES\WOW6432NODE\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [bbff3b73d1c8d85e5b963c44838108f8],
PUP.Optional.ProPCCleaner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4C6F2DB4-DC86-4E27-8A86-8A96BD1CC6DE}|Path, \ProPCCleaner_Start, Supprimer au redémarrage, [befcab03c5d412246698dac391737090]
PUP.Optional.SpeedBrowser, HKLM\SOFTWARE\REGISTEREDAPPLICATIONS|speed browser, Software\Clients\StartMenuInternet\speed browser\Capabilities, En quarantaine, [87334b63ecadd95d599594f1fd07ab55]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [65554b63bddcd06609e8245c867e31cf],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS, Crossbrowse, En quarantaine, [d8e29e108118e55153a93bdfdf25d12f]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|StubPath, "C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level, En quarantaine, [cfeb3c728415f83e13e98f8b35cf8f71]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|Localized Name, Crossbrowse, En quarantaine, [dae0cfdfa2f7b08620dcd74306fe32ce]
PUP.Optional.SpeedBrowser, HKLM\SOFTWARE\WOW6432NODE\REGISTEREDAPPLICATIONS|speed browser, Software\Clients\StartMenuInternet\speed browser\Capabilities, En quarantaine, [a61439757722f046d618ea9be61e44bc]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{f9197656-d12a-45bd-bc48-2f5c25c20875}|Name, C:\Program Files\shopperz12072015\Bzvra.exe, En quarantaine, [d8e2e2ccfa9f6fc75a1b23ea58ac6e92]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{f9197656-d12a-45bd-bc48-2f5c25c20875}|Name, C:\Program Files\shopperz12072015\Bzvra.exe, En quarantaine, [14a6aa043d5c41f572035ab3fd078e72]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{f9197656-d12a-45bd-bc48-2f5c25c20875}|Name, C:\Program Files\shopperz12072015\Bzvra.exe, En quarantaine, [4377406e7524d561393cfb12709405fb]
PUP.Optional.Komodia, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\INSTALLPATH\STATUS|FlowsurfCB, N, En quarantaine, [29918f1f8d0cf2441b8fdfb2e91bcb35]
PUP.Optional.WikiBrowser, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\INSTALLPATH\STATUS|WikiBrowser, Y, En quarantaine, [46749915782143f3c5e18ebf7b89926e]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\{f9197656-d12a-45bd-bc48-2f5c25c20875}|Name, C:\Program Files\shopperz12072015\Bzvra.exe, En quarantaine, [dbdfedc19504df573b3ae92458ac08f8]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 2
PUP.Optional.CrossRider, C:\Program Files (x86)\Sm23mS, En quarantaine, [1d9d575725741d19f49a1309c63e09f7],
PUP.Optional.Shopperz.BrwsrFlsh, C:\Program Files\shopperz12072015, Supprimer au redémarrage, [6c4e327ceeab5fd7d0cf7e8659aad927],
Fichiers: 13
Rootkit.Komodia.PUA, C:\WINDOWS\SYSTEM32\drivers\bsdriver.sys, Supprimer au redémarrage, [2e337d553eae82ee85c0de302435cca0],
PUP.Optional.Cherimoya, C:\WINDOWS\SYSTEM32\drivers\cherimoya.sys, Supprimer au redémarrage, ,
PUP.Optional.WordAnchor, C:\WINDOWS\SYSTEM32\drivers\wafd_vt_1_10_0_20.sys, Supprimer au redémarrage, [1f8f15014627bf0f31cb7994eed39a13],
PUP.Optional.WordAnchor, C:\WINDOWS\SYSTEM32\drivers\wafd_vw_1_10_0_20.sys, Supprimer au redémarrage, [0b7bb6e28499549a5e2b456d2ec5f056],
PUP.Optional.Perion, C:\Program Files\shopperz12072015\csrcc.exe, Supprimer au redémarrage, [78420ba35a3fd6600f28262153ae728e],
PUP.Optional.Perion, C:\Program Files\shopperz12072015\Znjiay.dll, Supprimer au redémarrage, [8b2f39750396eb4b61d7d3748c755ca4],
PUP.Optional.Perion, C:\Program Files\shopperz12072015\Znjiay64.dll, Supprimer au redémarrage, [e1d9d3db584180b6c09f88bf80818a76],
PUP.Optional.BundleInstaller, C:\Users\chucky\Desktop\Favoris\adobe_flash_setup.zip, En quarantaine, [7c3e06a8c3d6ef47bac1d39368983bc5],
PUP.Optional.WinYahoo, C:\Users\chucky\AppData\LocalLow\Microsoft\Internet Explorer\Services\WinYahoo.ico, En quarantaine, [86344f5f0693eb4be28094737b895da3],
PUP.Optional.CrossRider, C:\Program Files (x86)\Sm23mS\bgNova.html, En quarantaine, [1d9d575725741d19f49a1309c63e09f7],
PUP.Optional.WinYahoo, C:\Users\chucky\AppData\LocalLow\Microsoft\Internet Explorer\Services\Wincy.ico, En quarantaine, [54666a4451488aacc8694514857fb848],
PUP.Optional.Shopperz.BrwsrFlsh, C:\Program Files\shopperz12072015\prc.exe, Supprimer au redémarrage, [6c4e327ceeab5fd7d0cf7e8659aad927],
PUP.Optional.Shopperz.BrwsrFlsh, C:\Program Files\shopperz12072015\unins000.exe, Supprimer au redémarrage, [6c4e327ceeab5fd7d0cf7e8659aad927],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.org
Date de l'analyse: 14/04/2016
Heure de l'analyse: 10:55
Fichier journal: mbam.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.04.14.02
Base de données de rootkits: v2016.04.09.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: chucky
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 345262
Temps écoulé: 14 min, 45 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 28
PUP.Optional.ProPCCleaner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4C6F2DB4-DC86-4E27-8A86-8A96BD1CC6DE}, Supprimer au redémarrage, [befcab03c5d412246698dac391737090],
PUP.Optional.ObjectBrowser, HKLM\SOFTWARE\WOW6432NODE\Object Browser-nv, En quarantaine, [605aa20c118893a3cfbc45f0eb1917e9],
PUP.Optional.ObjectBrowser, HKLM\SOFTWARE\WOW6432NODE\Object Browser-nv-ie, En quarantaine, [98223777ecad9a9c1576f63f21e33ac6],
PUP.Optional.SmartSaver, HKLM\SOFTWARE\WOW6432NODE\Sm23mS, En quarantaine, [209a6846e7b2a98d6b8dce739074d32d],
PUP.Optional.SmartSaver, HKLM\SOFTWARE\WOW6432NODE\Sm23mS-nv, En quarantaine, [54667836306944f28078db66c93bb64a],
PUP.Optional.SmartSaver, HKLM\SOFTWARE\WOW6432NODE\Sm23mS-nv-ie, En quarantaine, [7743139b168386b0837583bed23223dd],
PUP.Optional.WordAnchor, HKLM\SOFTWARE\WOW6432NODE\WordAnchor_1.10.0.20, En quarantaine, [a713347a4455f73f172e9cb2cc3845bb],
PUP.Optional.WordSurfer, HKLM\SOFTWARE\WOW6432NODE\WordSurfer_1.10.0.19, En quarantaine, [10aab6f86d2c88aea5c5d07eee163ac6],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Update Product Deals, En quarantaine, [19a1b7f7dabfec4a6c46f19b5ba96a96],
PUP.Optional.Yontoo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Util Product Deals, En quarantaine, [9a2001ad7623f145e1d11874b054ef11],
PUP.Optional.Goobzo, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\wbsvc, En quarantaine, [61595757ebae2b0ba73c87163ec6f60a],
PUP.Optional.CinemaPlus, HKU\S-1-5-18\SOFTWARE\CinemaPlus-4.2vV20.07-nv, En quarantaine, [0faba608e3b655e1152784930ff58a76],
PUP.Optional.CinemaPlus, HKU\S-1-5-18\SOFTWARE\CinemaPlus-4.2vV20.07-nv-ie, En quarantaine, [4179d7d78f0af3438daf0f08dc28b749],
PUP.Optional.iWebar, HKU\S-1-5-18\SOFTWARE\iWebar-nv, En quarantaine, [55654b637d1cf1458af758d346bec13f],
PUP.Optional.ObjectBrowser, HKU\S-1-5-18\SOFTWARE\Object Browser-nv, En quarantaine, [d1e91896cecb1c1a9ee938fde2225da3],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{F9197656-D12A-45BD-BC48-2F5C25C20875}, En quarantaine, [d8e2e2ccfa9f6fc75a1b23ea58ac6e92],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{F9197656-D12A-45BD-BC48-2F5C25C20875}, En quarantaine, [14a6aa043d5c41f572035ab3fd078e72],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{F9197656-D12A-45BD-BC48-2F5C25C20875}, En quarantaine, [4377406e7524d561393cfb12709405fb],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\CinemaPlus-4.2vV20.07, En quarantaine, [7b3fdbd319800f2789b3799e5aaa46ba],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\CinemaPlus-4.2vV20.07-nv, En quarantaine, [2397505ec8d17fb7300ca47357ad41bf],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\CinemaPlus-4.2vV20.07-nv-ie, En quarantaine, [2b8f1c92f1a87cba55e7160194709d63],
PUP.Optional.ObjectBrowser, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Object Browser-nv, En quarantaine, [f7c3674740591125a5e21223986c9868],
PUP.Optional.ObjectBrowser, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Object Browser-nv-ie, En quarantaine, [0eac3c726f2afc3aa1e60e2714f03fc1],
PUP.Optional.SmartSaver, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Sm23mS, En quarantaine, [a8121896badf4de9c62755ecb64eff01],
PUP.Optional.SmartSaver, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Sm23mS-nv, En quarantaine, [4f6b901e465386b03cb1b8890ff51ae6],
PUP.Optional.SmartSaver, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\Sm23mS-nv-ie, En quarantaine, [0fab8f1f7b1e1b1b16d774cd0cf8d62a],
PUP.Optional.Komodia, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\INSTALLPATH\STATUS, En quarantaine, [29918f1f8d0cf2441b8fdfb2e91bcb35],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\{F9197656-D12A-45BD-BC48-2F5C25C20875}, En quarantaine, [dbdfedc19504df573b3ae92458ac08f8],
Valeurs du Registre: 15
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\CLASSES\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [ead0e4ca881167cfc130e19f41c3cf31],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\CLASSES\WOW6432NODE\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [bbff3b73d1c8d85e5b963c44838108f8],
PUP.Optional.ProPCCleaner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4C6F2DB4-DC86-4E27-8A86-8A96BD1CC6DE}|Path, \ProPCCleaner_Start, Supprimer au redémarrage, [befcab03c5d412246698dac391737090]
PUP.Optional.SpeedBrowser, HKLM\SOFTWARE\REGISTEREDAPPLICATIONS|speed browser, Software\Clients\StartMenuInternet\speed browser\Capabilities, En quarantaine, [87334b63ecadd95d599594f1fd07ab55]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\.XHTML\OPENWITHPROGIDS|CRSBRWSHTML, En quarantaine, [65554b63bddcd06609e8245c867e31cf],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS, Crossbrowse, En quarantaine, [d8e29e108118e55153a93bdfdf25d12f]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|StubPath, "C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level, En quarantaine, [cfeb3c728415f83e13e98f8b35cf8f71]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|Localized Name, Crossbrowse, En quarantaine, [dae0cfdfa2f7b08620dcd74306fe32ce]
PUP.Optional.SpeedBrowser, HKLM\SOFTWARE\WOW6432NODE\REGISTEREDAPPLICATIONS|speed browser, Software\Clients\StartMenuInternet\speed browser\Capabilities, En quarantaine, [a61439757722f046d618ea9be61e44bc]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{f9197656-d12a-45bd-bc48-2f5c25c20875}|Name, C:\Program Files\shopperz12072015\Bzvra.exe, En quarantaine, [d8e2e2ccfa9f6fc75a1b23ea58ac6e92]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{f9197656-d12a-45bd-bc48-2f5c25c20875}|Name, C:\Program Files\shopperz12072015\Bzvra.exe, En quarantaine, [14a6aa043d5c41f572035ab3fd078e72]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{f9197656-d12a-45bd-bc48-2f5c25c20875}|Name, C:\Program Files\shopperz12072015\Bzvra.exe, En quarantaine, [4377406e7524d561393cfb12709405fb]
PUP.Optional.Komodia, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\INSTALLPATH\STATUS|FlowsurfCB, N, En quarantaine, [29918f1f8d0cf2441b8fdfb2e91bcb35]
PUP.Optional.WikiBrowser, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\INSTALLPATH\STATUS|WikiBrowser, Y, En quarantaine, [46749915782143f3c5e18ebf7b89926e]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-778808802-1970086714-4052149648-1001\SOFTWARE\{f9197656-d12a-45bd-bc48-2f5c25c20875}|Name, C:\Program Files\shopperz12072015\Bzvra.exe, En quarantaine, [dbdfedc19504df573b3ae92458ac08f8]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 2
PUP.Optional.CrossRider, C:\Program Files (x86)\Sm23mS, En quarantaine, [1d9d575725741d19f49a1309c63e09f7],
PUP.Optional.Shopperz.BrwsrFlsh, C:\Program Files\shopperz12072015, Supprimer au redémarrage, [6c4e327ceeab5fd7d0cf7e8659aad927],
Fichiers: 13
Rootkit.Komodia.PUA, C:\WINDOWS\SYSTEM32\drivers\bsdriver.sys, Supprimer au redémarrage, [2e337d553eae82ee85c0de302435cca0],
PUP.Optional.Cherimoya, C:\WINDOWS\SYSTEM32\drivers\cherimoya.sys, Supprimer au redémarrage, ,
PUP.Optional.WordAnchor, C:\WINDOWS\SYSTEM32\drivers\wafd_vt_1_10_0_20.sys, Supprimer au redémarrage, [1f8f15014627bf0f31cb7994eed39a13],
PUP.Optional.WordAnchor, C:\WINDOWS\SYSTEM32\drivers\wafd_vw_1_10_0_20.sys, Supprimer au redémarrage, [0b7bb6e28499549a5e2b456d2ec5f056],
PUP.Optional.Perion, C:\Program Files\shopperz12072015\csrcc.exe, Supprimer au redémarrage, [78420ba35a3fd6600f28262153ae728e],
PUP.Optional.Perion, C:\Program Files\shopperz12072015\Znjiay.dll, Supprimer au redémarrage, [8b2f39750396eb4b61d7d3748c755ca4],
PUP.Optional.Perion, C:\Program Files\shopperz12072015\Znjiay64.dll, Supprimer au redémarrage, [e1d9d3db584180b6c09f88bf80818a76],
PUP.Optional.BundleInstaller, C:\Users\chucky\Desktop\Favoris\adobe_flash_setup.zip, En quarantaine, [7c3e06a8c3d6ef47bac1d39368983bc5],
PUP.Optional.WinYahoo, C:\Users\chucky\AppData\LocalLow\Microsoft\Internet Explorer\Services\WinYahoo.ico, En quarantaine, [86344f5f0693eb4be28094737b895da3],
PUP.Optional.CrossRider, C:\Program Files (x86)\Sm23mS\bgNova.html, En quarantaine, [1d9d575725741d19f49a1309c63e09f7],
PUP.Optional.WinYahoo, C:\Users\chucky\AppData\LocalLow\Microsoft\Internet Explorer\Services\Wincy.ico, En quarantaine, [54666a4451488aacc8694514857fb848],
PUP.Optional.Shopperz.BrwsrFlsh, C:\Program Files\shopperz12072015\prc.exe, Supprimer au redémarrage, [6c4e327ceeab5fd7d0cf7e8659aad927],
PUP.Optional.Shopperz.BrwsrFlsh, C:\Program Files\shopperz12072015\unins000.exe, Supprimer au redémarrage, [6c4e327ceeab5fd7d0cf7e8659aad927],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)