Malwarebytes Anti-Malware www.malwarebytes.org Date de l'analyse: 15/11/2015 Heure de l'analyse: 08:33 Fichier journal: antimalware.txt Administrateur: Oui Version: 2.2.0.1024 Base de données de programmes malveillants: v2015.11.15.01 Base de données de rootkits: v2015.11.14.01 Licence: Gratuit Protection contre les programmes malveillants: Désactivé Protection contre les sites Web malveillants: Désactivé Autoprotection: Désactivé Système d'exploitation: Windows 10 Processeur: x64 Système de fichiers: NTFS Utilisateur: Mrs. Jack Type d'analyse: Analyse des menaces Résultat: Terminé Objets analysés: 352500 Temps écoulé: 6 min, 43 s Mémoire: Activé Démarrage: Activé Système de fichiers: Activé Archives: Activé Rootkits: Désactivé Heuristique: Activé PUP: Activé PUM: Activé Processus: 0 (Aucun élément malveillant détecté) Modules: 0 (Aucun élément malveillant détecté) Clés du Registre: 6 PUP.Optional.WinManger, HKLM\SOFTWARE\CLASSES\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, En quarantaine, [430ac9b5acdf3afc65ac8eac34ce3ac6], PUP.Optional.WinManger, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, En quarantaine, [430ac9b5acdf3afc65ac8eac34ce3ac6], PUP.Optional.WinManger, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, En quarantaine, [430ac9b5acdf3afc65ac8eac34ce3ac6], PUP.Optional.Yontoo, HKLM\SOFTWARE\WOW6432NODE\MiddleRush, En quarantaine, [e36a99e56526b680c1347b56c142a759], PUP.Optional.WinYahoo, HKU\S-1-5-21-1735683106-2351720102-2105309539-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2F23AB71-4AC6-41F2-A955-EA576E553146}, En quarantaine, [83ca4e302c5f32045b7498113ec56898], PUP.Optional.WinYahoo, HKU\S-1-5-21-1735683106-2351720102-2105309539-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{84B53684-C78E-467F-82E1-D4A35003CBAD}, En quarantaine, [4805e698ee9dd56103cbdccde81b14ec], Valeurs du Registre: 5 PUP.Optional.WinYahoo, HKU\S-1-5-21-1735683106-2351720102-2105309539-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2f23ab71-4ac6-41f2-a955-ea576e553146}|URL, https://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_tele_15_46¶m1=1¶m2=f[83ca4e302c5f32045b7498113ec56898]D4%26b[83ca4e302c5f32045b7498113ec56898]DIE%26cc[83ca4e302c5f32045b7498113ec56898]Dfr%26pa[83ca4e302c5f32045b7498113ec56898]DWinYahoo%26cd[83ca4e302c5f32045b7498113ec56898]D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtDzyyB0FyBtAtDtGyEyEtBzztGyByD0AyDtGyEzy0CtBtG0AyBtC0FtD0B0F0EtDyD0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr[83ca4e302c5f32045b7498113ec56898]D154272242%26a[83ca4e302c5f32045b7498113ec56898]Dwny_tele_15_46%26os[83ca4e302c5f32045b7498113ec56898]DWindowsEn quarantaineB10En quarantaineBHome&p={searchTerms}, %4, %5 PUP.Optional.WinYahoo, HKU\S-1-5-21-1735683106-2351720102-2105309539-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2f23ab71-4ac6-41f2-a955-ea576e553146}|TopResultURLFallback, https://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_tele_15_46¶m1=1¶m2=f[a5a87b036a214aecf0df05a441c23ec2]D4%26b[a5a87b036a214aecf0df05a441c23ec2]DIE%26cc[a5a87b036a214aecf0df05a441c23ec2]Dfr%26pa[a5a87b036a214aecf0df05a441c23ec2]DWinYahoo%26cd[a5a87b036a214aecf0df05a441c23ec2]D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StAtDzyyB0FyBtAtDtGyEyEtBzztGyByD0AyDtGyEzy0CtBtG0AyBtC0FtD0B0F0EtDyD0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr[a5a87b036a214aecf0df05a441c23ec2]D154272242%26a[a5a87b036a214aecf0df05a441c23ec2]Dwny_tele_15_46%26os[a5a87b036a214aecf0df05a441c23ec2]DWindowsEn quarantaineB10En quarantaineBHome&p={searchTerms}, %4, %5 PUP.Optional.WinYahoo, HKU\S-1-5-21-1735683106-2351720102-2105309539-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{84B53684-C78E-467F-82E1-D4A35003CBAD}|URL, https://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f[4805e698ee9dd56103cbdccde81b14ec]D4%26b[4805e698ee9dd56103cbdccde81b14ec]DIE%26cc[4805e698ee9dd56103cbdccde81b14ec]Dfr%26pa[4805e698ee9dd56103cbdccde81b14ec]DWincy%26cd[4805e698ee9dd56103cbdccde81b14ec]D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr[4805e698ee9dd56103cbdccde81b14ec]D523900357%26a[4805e698ee9dd56103cbdccde81b14ec]Dwncy_dnldastr_15_46%26os[4805e698ee9dd56103cbdccde81b14ec]DWindowsEn quarantaineB10En quarantaineBHome&p={searchTerms}, %4, %5 PUP.Optional.WinYahoo, HKU\S-1-5-21-1735683106-2351720102-2105309539-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{84B53684-C78E-467F-82E1-D4A35003CBAD}|TopResultURLFallback, https://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f[e8656d11b8d3b77fc8065a4f8e7521df]D4%26b[e8656d11b8d3b77fc8065a4f8e7521df]DIE%26cc[e8656d11b8d3b77fc8065a4f8e7521df]Dfr%26pa[e8656d11b8d3b77fc8065a4f8e7521df]DWincy%26cd[e8656d11b8d3b77fc8065a4f8e7521df]D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr[e8656d11b8d3b77fc8065a4f8e7521df]D523900357%26a[e8656d11b8d3b77fc8065a4f8e7521df]Dwncy_dnldastr_15_46%26os[e8656d11b8d3b77fc8065a4f8e7521df]DWindowsEn quarantaineB10En quarantaineBHome&p={searchTerms}, %4, %5 PUP.Optional.MyStartSearch.ShrtCln, HKU\S-1-5-21-1735683106-2351720102-2105309539-1001_Classes\LOCAL SETTINGS\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APPCONTAINER\STORAGE\microsoft.microsoftedge_8wekyb3d8bbwe\MICROSOFTEDGE\MAIN|HomeButtonPage, http://www.mystartsearch.com/?type=hp&ts=1447239428&z=507fd1132a91e56bdbc19bcg5zcz3m6o4c8t7z7o5b&from=cornl&uid=st1000lm014-1ej164-sshd_w77143l3, En quarantaine, [6ae366183655c670764cfcab7e85b848] Données du Registre: 2 PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon : ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais : ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplacé,[4d006915c5c6ce68f2fb242deb19d42c] PUP.Optional.WinYahoo, HKU\S-1-5-21-1735683106-2351720102-2105309539-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=fMauvais : (https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr%3D523900357%26a%3Dwncy_dnldastr_15_46%26os%3DWindows%2B10%2BHome),Remplacé,[62eba8d6800b55e1d7fe1a3b5fa58c74]D1%26bMauvais : (https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr%3D523900357%26a%3Dwncy_dnldastr_15_46%26os%3DWindows%2B10%2BHome),Remplacé,[62eba8d6800b55e1d7fe1a3b5fa58c74]DIE%26ccMauvais : (https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr%3D523900357%26a%3Dwncy_dnldastr_15_46%26os%3DWindows%2B10%2BHome),Remplacé,[62eba8d6800b55e1d7fe1a3b5fa58c74]Dfr%26paMauvais : (https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr%3D523900357%26a%3Dwncy_dnldastr_15_46%26os%3DWindows%2B10%2BHome),Remplacé,[62eba8d6800b55e1d7fe1a3b5fa58c74]DWincy%26cdMauvais : (https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr%3D523900357%26a%3Dwncy_dnldastr_15_46%26os%3DWindows%2B10%2BHome),Remplacé,[62eba8d6800b55e1d7fe1a3b5fa58c74]D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26crMauvais : (https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr%3D523900357%26a%3Dwncy_dnldastr_15_46%26os%3DWindows%2B10%2BHome),Remplacé,[62eba8d6800b55e1d7fe1a3b5fa58c74]D523900357%26aMauvais : (https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr%3D523900357%26a%3Dwncy_dnldastr_15_46%26os%3DWindows%2B10%2BHome),Remplacé,[62eba8d6800b55e1d7fe1a3b5fa58c74]Dwncy_dnldastr_15_46%26osMauvais : (https://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_dnldastr_15_46¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0AyD0D0EtB0D0B0DzytCtCtBtB0E0DtN0D0Tzu0StCyEtCtDtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtD0FyByE0ByC0BtGtA0ByBzztG0AyE0FyCtGyCtCzz0EtGyC0BtA0FtAtCtCyDtCzzyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EtDyEyE0AyD0C0DtG0E0E0FtDtGyEtDyE0CtG0B0E0A0DtGyB0CyD0EyC0F0B0E0AzytAyE2QtN0A0LzuyE%26cr%3D523900357%26a%3Dwncy_dnldastr_15_46%26os%3DWindows%2B10%2BHome),Remplacé,[62eba8d6800b55e1d7fe1a3b5fa58c74]DWindowsBon : (www.google.com)B10Bon : (www.google.com)BHome, %4, %5 Dossiers: 24 PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins\12, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins\12\resources, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins\2, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins\3, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins\5, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins\7, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins\7\resources, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.Yontoo, C:\ProgramData\653ac11b-b606-42c5-b357-bca0fd28d1cd\plugins\8, En quarantaine, [1a3381fd94f72b0b2b2d9ce709f923dd], PUP.Optional.ChinAd, C:\Users\Public\Documents\Baidu, En quarantaine, [65e8403ecac186b00b0b6420b25043bd], PUP.Optional.ChinAd, C:\Users\Public\Documents\Baidu\Common, En quarantaine, [65e8403ecac186b00b0b6420b25043bd], PUP.Optional.ChinAd, C:\Users\Public\Documents\Baidu\Common\I18N, En quarantaine, [65e8403ecac186b00b0b6420b25043bd], PUP.Optional.ChinAd, C:\Users\Public\Documents\Baidu\Common\I18N\IPCSUpdateCache, En quarantaine, [65e8403ecac186b00b0b6420b25043bd], PUP.Optional.ChinAd, C:\Users\Public\Documents\Baidu\Common\I18N\IPCSUpdateCache\DesktopToolMini_global__5_, En quarantaine, [65e8403ecac186b00b0b6420b25043bd], PUP.Optional.ChinAd, C:\Users\Public\Documents\Guid, En quarantaine, [321b502ed1ba9c9ace49671d26dc25db], PUP.Optional.ChinAd, C:\Users\Public\Documents\Guid\Common, En quarantaine, [321b502ed1ba9c9ace49671d26dc25db], PUP.Optional.ChinAd, C:\Users\Public\Documents\Guid\Common\I18N, En quarantaine, [321b502ed1ba9c9ace49671d26dc25db], PUP.Optional.ChinAd, C:\Users\Public\Documents\Guid\Common\I18N\IPCSUpdateCache, En quarantaine, [321b502ed1ba9c9ace49671d26dc25db], PUP.Optional.ChinAd, C:\Users\Public\Documents\Guid\Common\I18N\IPCSUpdateCache\InstallHelper, En quarantaine, [321b502ed1ba9c9ace49671d26dc25db], PUP.Optional.ChinAd, C:\Users\Public\Documents\Guid\Common\I18N\IPCSUpdateCache\nst1B49.tmp, En quarantaine, [321b502ed1ba9c9ace49671d26dc25db], PUP.Optional.ChinAd, C:\Users\Public\Documents\Guid\Common\I18N\IPCSUpdateCache\ScreenSnapshot, En quarantaine, [321b502ed1ba9c9ace49671d26dc25db], PUP.Optional.Yontoo.ChrPRST, C:\Users\Mrs. Jack\AppData\Roaming\Opera Software\Opera Stable\Extensions\oghidddpfknddpejdmneboiohfeniphp\1.0.5792.36783_0, En quarantaine, [94b9c8b6810a9c9a33f10d71808433cd], PUP.Optional.Yontoo.ChrPRST, C:\Users\Mrs. Jack\AppData\Roaming\Opera Software\Opera Stable\Extensions\oghidddpfknddpejdmneboiohfeniphp, En quarantaine, [94b9c8b6810a9c9a33f10d71808433cd], Fichiers: 26 PUP.Optional.ShopperPro, C:\Users\Mrs. Jack\AppData\Roaming\ZHP\Quarantine\ShopperProJSINJFull.exe, En quarantaine, [b19cabd3cfbcf83e1e784fdbe31e8080], PUP.Optional.SoftwareUpdate, C:\Users\Mrs. Jack\AppData\Roaming\ZHP\Quarantine\Software\Update\SoftwareUpdate.exe, En quarantaine, [55f8a9d5513add59ab28ed3d19e8de22], PUP.Optional.ChinAd, C:\Users\Mrs. Jack\AppData\Local\Temp\InstallHelper.exe, En quarantaine, [e865017d3c4f280e56447b2127dade22], PUP.Optional.SoftPulse, C:\Users\Mrs. Jack\AppData\Local\Temp\ScoreSelector.dll, En quarantaine, [e36a2955513a64d253c6e185a65b946c], PUP.Optional.Yontoo, C:\Users\Mrs. Jack\AppData\Local\Temp\{258D4E46-7962-4316-8A19-609BDABFFC95}.dll, En quarantaine, [1a33126c0f7c54e2f0225a2c6c956799], PUP.Optional.SoftPulse, C:\Users\Mrs. Jack\AppData\Local\Temp\Wizard.exe, En quarantaine, [5cf1e49a85060e282b8b3117629f2bd5], PUP.Optional.Yontoo, C:\Users\Mrs. Jack\AppData\Local\Temp\{70F66DA2-F0C1-488D-A260-2D1031BF900F}.dll, En quarantaine, [76d7017dccbf5dd9f2e485005fa28080], PUP.Optional.Yontoo.Gen, C:\Users\Mrs. Jack\AppData\Local\Temp\{75CC14FB-A496-4A18-93DE-0CB6688FF714}.xpi, En quarantaine, [ec6180fe7813fa3c91e2ad6c04fdc33d], PUP.Optional.Yontoo.Gen, C:\Users\Mrs. Jack\AppData\Local\Temp\{8BD9CFDF-4CAB-4875-8AAA-DB44D23EFCB1}.xpi, En quarantaine, [7ecf0b735e2dce68046fd84113ee17e9], PUP.Optional.Yontoo.Gen, C:\Users\Mrs. Jack\AppData\Local\Temp\{8E63CA8F-BE93-4392-BEA3-9393F559E717}.xpi, En quarantaine, [a5a8e19dd2b9da5c3a395dbce61b7e82], PUP.Optional.Yontoo.Gen, C:\Users\Mrs. Jack\AppData\Local\Temp\{A8793DA1-5874-459D-A3B5-5CAC28AA6D40}.xpi, En quarantaine, [5eef9be36a21dc5ab5bebc5def126d93], PUP.Optional.Yontoo, C:\Users\Mrs. Jack\AppData\Local\Temp\{AB3143D4-CBDB-4EAC-B1BE-838E246DAB28}.dll, En quarantaine, [2f1e1668652671c5957dc0c62bd6da26], PUP.Optional.Yontoo, C:\Users\Mrs. Jack\AppData\Local\Temp\{AE45F0BC-2C97-46F2-AB1E-59910FF75B4E}.dll, En quarantaine, [e86526587516b97d498da5e04cb5d828], PUP.Optional.Yontoo, C:\Users\Mrs. Jack\AppData\Local\Temp\{E3FE3CAD-1AF2-4623-9D6C-34C22235D165}.dll, En quarantaine, [4409b2ccb3d81125a072e3a3f70a5aa6], PUP.Optional.SystemNotifier, C:\Users\Mrs. Jack\AppData\Local\Temp\434v21cd.v21\mini_installer.exe, En quarantaine, [252808765d2ed06645463f319e6635cb], PUP.Optional.InstallCore, C:\Users\Mrs. Jack\Downloads\ccsetup-win10.exe, En quarantaine, [a0ad4638b3d88ea88988022602fff907], PUP.Optional.SoftPulse, C:\Users\Mrs. Jack\Downloads\google chrome.exe, En quarantaine, [4c01621c66259d997b3b7fc98e731be5], PUP.Optional.InstallCore, C:\Users\Mrs. Jack\Downloads\microsoft-office-word-200.exe, En quarantaine, [ed6088f6365562d44f24c283ff0209f7], PUP.Optional.Komodia, C:\Windows\Installer\e63c9.msi, En quarantaine, [e469334b9af1ea4cb82ab0959769649c], PUP.Optional.Yontoo, C:\Users\Mrs. Jack\AppData\Roaming\Mozilla\Firefox\Profiles\t56u9jw8.default\extensions\{b682a9b5-ba65-4126-942b-fb2cc121fba8}.xpi, En quarantaine, [301d324c99f2fb3b3a564b3a2fd3e11f], PUP.Optional.ChinAd, C:\Users\Public\Documents\Baidu\Common\I18N\conf.db, En quarantaine, [65e8403ecac186b00b0b6420b25043bd], PUP.Optional.ChinAd, C:\Users\Public\Documents\Guid\Common\I18N\conf.db, En quarantaine, [321b502ed1ba9c9ace49671d26dc25db], PUP.Optional.Yontoo.ChrPRST, C:\Users\Mrs. Jack\AppData\Roaming\Opera Software\Opera Stable\Extensions\oghidddpfknddpejdmneboiohfeniphp\1.0.5792.36783_0\manifest.json, En quarantaine, [94b9c8b6810a9c9a33f10d71808433cd], PUP.Optional.Yontoo.ChrPRST, C:\Users\Mrs. Jack\AppData\Roaming\Opera Software\Opera Stable\Extensions\oghidddpfknddpejdmneboiohfeniphp\1.0.5792.36783_0\background.js, En quarantaine, [94b9c8b6810a9c9a33f10d71808433cd], PUP.Optional.Yontoo.ChrPRST, C:\Users\Mrs. Jack\AppData\Roaming\Opera Software\Opera Stable\Extensions\oghidddpfknddpejdmneboiohfeniphp\1.0.5792.36783_0\content.js, En quarantaine, [94b9c8b6810a9c9a33f10d71808433cd], PUP.Optional.Yontoo.ChrPRST, C:\Users\Mrs. Jack\AppData\Roaming\Opera Software\Opera Stable\Extensions\oghidddpfknddpejdmneboiohfeniphp\1.0.5792.36783_0\icon.png, En quarantaine, [94b9c8b6810a9c9a33f10d71808433cd], Secteurs physiques: 0 (Aucun élément malveillant détecté) (end)