Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 03/09/2015
Heure de l'analyse: 16:48
Fichier journal: 
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.09.03.06
Base de données de rootkits: v2015.08.16.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x86
Système de fichiers: NTFS
Utilisateur: Android

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 327875
Temps écoulé: 10 min, 17 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 48
PUP.Optional.IStartSurf.ShrtCln, HKLM\SOFTWARE\istartsurfSoftware, En quarantaine, [dea4f6354546d46240da4ee47192fb05], 
PUP.Optional.SavePass, HKLM\SOFTWARE\SavePass 1.1, En quarantaine, [433f39f29cefa2946372bced9e661ae6], 
PUP.Optional.SavePass, HKLM\SOFTWARE\SavePass 1.1-nv, En quarantaine, [9fe371baf69515215283cadf2ada37c9], 
PUP.Optional.SavePass, HKLM\SOFTWARE\SavePass 1.1-nv-ie, En quarantaine, [b1d165c69deee452ae279d0cc04454ac], 
PUP.Optional.WPM, HKLM\SOFTWARE\supWindowsMangerProtect, En quarantaine, [c0c2d952fd8e55e1b71cb209fe0613ed], 
PUP.Optional.CrossRider, HKLM\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, En quarantaine, [0181ae7d96f5171f8a9e404741c356aa], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickCtrl.10, En quarantaine, [f68c1417e0ab78be91cd6927c0440df3], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickProcessLauncherMachine, En quarantaine, [0b77ba71e2a9f93d96c8eaa60df76799], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickProcessLauncherMachine.1.0, En quarantaine, [70124cdf04874bebf767b6da768ef709], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoCreateAsync, En quarantaine, [681a62c962299f97c996b0e02bd9c937], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoCreateAsync.1.0, En quarantaine, [87fb14177516c86e9dc2523e659f8b75], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreClass, En quarantaine, [0b7765c62e5d7abc0f50444cf50f23dd], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreClass.1, En quarantaine, [235f63c88209b87e045bfe927391ec14], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreMachineClass, En quarantaine, [f88a0922147756e00f50246c5ba97090], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CoreMachineClass.1, En quarantaine, [cdb5ab805833290d441baee254b056aa], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CredentialDialogMachine, En quarantaine, [077b0d1e8dfef541d08ff79948bc55ab], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.CredentialDialogMachine.1.0, En quarantaine, [dea414172d5eea4c85da474984803fc1], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachine, En quarantaine, [325055d6acdfa690322d236da36124dc], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachine.1.0, En quarantaine, [4c3632f9c4c7b38393cce2aeba4a768a], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachineFallback, En quarantaine, [a9d913181675de58520d7b155ca851af], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0, En quarantaine, [542e2407f794cc6a342b207059ab30d0], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassSvc, En quarantaine, [c9b939f2a1ea59dd5f00d8b86b99a65a], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.OnDemandCOMClassSvc.1.0, En quarantaine, [047ea5862d5e51e5b5aa018f8183748c], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.ProcessLauncher, En quarantaine, [394907244a41db5b57083b55a163b749], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.ProcessLauncher.1.0, En quarantaine, [86fc9d8e9dee53e3550aa3ed699b9a66], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService, En quarantaine, [1f639497503b2115bea1b2de9c6825db], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService.1.0, En quarantaine, [047ec8635a31c373cc932b6519ebfc04], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachine, En quarantaine, [50324edd72190f273d22048cb351718f], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachine.1.0, En quarantaine, [a8da4be0c1ca1323adb2018f768e8977], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachineFallback, En quarantaine, [72106cbfbad1fa3cbda2e1af11f329d7], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebMachineFallback.1.0, En quarantaine, [463c909b107b9f97bfa0d7b945bf09f7], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebSvc, En quarantaine, [a7dbf3389cefc96d4f10f997966e53ad], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3WebSvc.1.0, En quarantaine, [fb8755d69dee80b6df80454bfb091de3], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\APPID\GLOBALUPDATE.EXE, En quarantaine, [245eb675b3d853e334291d7354b04fb1], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE\Clients, En quarantaine, [3d45c06bd3b8c571f76a533d867eca36], 
PUP.Optional.CrossRider, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\29777, En quarantaine, [255d0a213a51ef47b08142455ba9c33d], 
PUP.Optional.IStartSurf.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, En quarantaine, [7d05cf5c741783b34b2ec7a3c143bd43], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, En quarantaine, [daa82efd8605f83ee382e1af3dc760a0], 
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, En quarantaine, [483a2ffc8cff270fa2c22e62da2ae11f], 
PUP.Optional.WindowsMangerProtect, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, En quarantaine, [daa8be6db8d3f93d73ad4c6fa55faf51], 
PUP.Optional.CrossRider, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, En quarantaine, [226038f3810a0c2a33b0afd61de79b65], 
PUP.Optional.SavePass, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\SavePass 1.1, En quarantaine, [6919b6756c1ff2440fc25950b54f55ab], 
PUP.Optional.SavePass, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\SavePass 1.1-nv, En quarantaine, [9ce6d853bccf52e4b51c88216b99d22e], 
PUP.Optional.SavePass, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\SavePass 1.1-nv-ie, En quarantaine, [4d352407aeddbb7b5b7609a031d314ec], 
PUP.Optional.GlobalUpdate, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY, En quarantaine, [ceb49a91b1da4ceaa5bba8e827dd7c84], 
PUP.Optional.CrossRider, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\29777, En quarantaine, [20621615bfcc181eb6427e0764a09c64], 
PUP.Optional.CrossRider, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\OB, En quarantaine, [760c1b10008bec4acfd7b7cf62a26a96], 
PUP.Optional.OutBrowse, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\OB, En quarantaine, [d6ac5ccf9fece155673c01a148bcdc24], 

Valeurs du registre: 7
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, En quarantaine, [245eb675b3d853e334291d7354b04fb1]
PUP.Optional.IStartSurf.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, istartsurf, En quarantaine, [7d05cf5c741783b34b2ec7a3c143bd43]
PUP.Optional.IStartSurf.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, http://www.istartsurf.com/web/?type=ds&ts=1437922733&z=2f12bac5f1aad99a017784dg1z5c4m9t1oeodm1w8m&from=obw&uid=WDCXWD2500BEKT-75A25T0_WD-WXK1AB0T1942T1942&q={searchTerms}, En quarantaine, [4f3327045b309e98fa7fd6949d67cf31]
PUP.Optional.GlobalUpdate, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY|source, IE, En quarantaine, [ceb49a91b1da4ceaa5bba8e827dd7c84]
PUP.Optional.OutBrowse, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\OB|monitype15, 7/26/15 15:0:3, En quarantaine, [d6ac5ccf9fece155673c01a148bcdc24]
PUP.Optional.OutBrowse, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\OB|monitype14, 7/26/15 15:3:3, En quarantaine, [d1b1c269810a280e069d0e94c440d828]
PUP.Optional.OutBrowse, HKU\S-1-5-21-526736390-3430416302-3744501632-1000\SOFTWARE\OB|monitype21, 7/26/15 15:5:53, En quarantaine, [f48ef2394c3f2610b2f19c067c889f61]

Données du registre: 2
PUP.Optional.IStartSurf.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.istartsurf.com/?type=hp&ts=1437922733&z=2f12bac5f1aad99a017784dg1z5c4m9t1oeodm1w8m&from=obw&uid=WDCXWD2500BEKT-75A25T0_WD-WXK1AB0T1942T1942, Bon : (www.google.com), Mauvais : (http://www.istartsurf.com/?type=hp&ts=1437922733&z=2f12bac5f1aad99a017784dg1z5c4m9t1oeodm1w8m&from=obw&uid=WDCXWD2500BEKT-75A25T0_WD-WXK1AB0T1942T1942),Remplacé,[1072c665f89362d4db4280d65da8867a]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon : ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais : ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplacé,[8cf644e7d5b6c076ad04f56a45c0af51]

Dossiers: 24
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\code, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\1.3.25.0, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\Download, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\Download\{D99C58D4-3B75-482C-8693-23DA98F73C61}, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\Download\{D99C58D4-3B75-482C-8693-23DA98F73C61}\1.3.25.31, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\Install, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\Offline, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\Offline\{6619F36E-D68E-4BB1-A5DA-FAAB1D7B308C}, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.SavePass, C:\Program Files\SavePass 1.1, En quarantaine, [740eb7743c4f66d0918db860778cea16], 
PUP.Optional.WPM, C:\ProgramData\WindowsMangerProtect, En quarantaine, [93ef58d346456cca2fac37e94fb4a55b], 
PUP.Optional.WPM, C:\ProgramData\WindowsMangerProtect\update, En quarantaine, [93ef58d346456cca2fac37e94fb4a55b], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\api, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\popupResource, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\userCode, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\icons, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\icons\actions, En quarantaine, [97eb86a51279270f2929970446bfaa56], 

Fichiers: 92
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\530.json, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\MessageBox.xml, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\uninstallDlg2.xml, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\bg.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\bg1.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\bk_shadow.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\button.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\button1.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\checkbox.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\checkbox_select.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\checked.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\close.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\loading_bg.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\loading_light.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\min.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\scrollbar.bmp, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\Thumbs.db, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\unchecked.png, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\code\code1.jpg, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\code\code2.jpg, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\code\code3.jpg, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\code\code4.jpg, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\code\code5.jpg, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\code\code6.jpg, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Android\AppData\Roaming\istartsurf\images\code\Thumbs.db, En quarantaine, [8cf63cef2c5f8caad7a10de538cac43c], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateHelper.msi, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\1.3.25.0\goopdate.dll, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\1.3.25.0\goopdateres_en.dll, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.GlobalUpdate, C:\Program Files\globalUpdate\Update\Download\{D99C58D4-3B75-482C-8693-23DA98F73C61}\1.3.25.31\update.msi, En quarantaine, [7c0628038a01f6408fab0bec946e4cb4], 
PUP.Optional.WPM, C:\ProgramData\WindowsMangerProtect\update\conf, En quarantaine, [93ef58d346456cca2fac37e94fb4a55b], 
PUP.Optional.IStartSurf, C:\Users\Android\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Bon : ("session":{"restore_on_startup":4,"startup_urls":["https://www.malwarebytes.org/restorebrowser/"]}}), Mauvais : ("session":{"restore_on_startup":4,"startup_urls":["http://www.istartsurf.com/?type=hp&ts=1437922733&z=2f12bac5f1aad99a017784dg1z5c4m9t1oeodm1w8m&from=obw&uid=WDCXWD2500BEKT-75A25T0_WD-WXK1AB0T1942T1942"]}}), Remplacé,[ed95fa31f893280efb5a623c1fe60bf5]
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\main.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\bfb0061b1835bf87b3186a636d1df1ca.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\api\20e80c1caefdd2510dd3dd15229ab172.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\api\fd07c36c4659655b84fb72a1aab846f9.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\api\pageAction.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\app_api.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\0dc30552ff5223801d2825ce30d632cf.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\8620d12d1f9ad38e81f5cdb2b17e9c42.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\a836b75e32641daa2e709774115f1a1c.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\c2a6ffd7ad19dfdae3484886387c6acd.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\c626a8794882e0633e8efaba7e259841.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\d03ae5c7e74b97494bc287e1d4888bee.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\fa615408377a48a205a7b101fd906aa0.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\installer.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\popupResource\newPopup.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\js\lib\popupResource\popup.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\background.html, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\chromeCoreFilesIndex.txt, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\manifest.json, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\popup.html, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\Settings.json, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\manifest.xml, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins.json, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\102.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\13.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\14.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\17.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\180.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\192.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\195.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\200.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\220.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\223.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\242.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\246.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\253.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\281.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\288.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\300.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\339.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\345.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\354.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\376.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\379.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\390.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\391.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\4.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\415.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\47.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\64.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\7.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\78.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\80.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\9.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\plugins\97.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\userCode\background.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\extensionData\userCode\extension.js, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\icons\icon128.png, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\icons\icon16.png, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\icons\icon48.png, En quarantaine, [97eb86a51279270f2929970446bfaa56], 
PUP.Optional.CrossRider, C:\Users\Android\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh\1.26.85_0\icons\actions\1.png, En quarantaine, [97eb86a51279270f2929970446bfaa56], 

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)