Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 31/01/2016
Heure de l'analyse: 13:30
Fichier journal: Rapport MBAM.txt
Administrateur: Oui
Version: 2.2.0.1024
Base de données de programmes malveillants: v2016.01.31.02
Base de données de rootkits: v2016.01.20.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Renaud
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 356532
Temps écoulé: 26 min, 8 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Avertir
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 5
Trojan.ProxyHijacker, HKLM\SOFTWARE\CLASSES\_Sound_Park.ru_ The Grubby Mitts _ What The World Needs Now Is.DynamicNS, En quarantaine, [b77752ee9ffa2214bba8ddbc56ac4eb2],
Trojan.ProxyHijacker, HKLM\SOFTWARE\WOW6432NODE\CLASSES\_Sound_Park.ru_ The Grubby Mitts _ What The World Needs Now Is.DynamicNS, En quarantaine, [27073808138678bea7bce1b80ef4d32d],
Trojan.ProxyHijacker, HKLM\SOFTWARE\CLASSES\WOW6432NODE\_Sound_Park.ru_ The Grubby Mitts _ What The World Needs Now Is.DynamicNS, En quarantaine, [27073808138678bea7bce1b80ef4d32d],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\IDSC, En quarantaine, [47e72e12386145f15cb8f1550df754ac],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\CHCT3281621, En quarantaine, [6cc2b68ad1c880b6fbc83b79c63d847c],
Valeurs du Registre: 4
PUP.Optional.Tuto4PC, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\IDSC|partner, tuto, En quarantaine, [47e72e12386145f15cb8f1550df754ac]
PUP.Optional.Sputnik, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\GROUP POLICY OBJECTS\{5A2BF78A-8DE6-4B43-8D7B-AD23782B0E74}MACHINE\SOFTWARE\POLICIES\GOOGLE\CHROME|DefaultSearchProviderSuggestURL, http://smartsputnik.ru/?ri=1&uid=cd2f75533a02a3b4da12ebc21d8a8420&q={searchTerms}&t=suggest, En quarantaine, [a38b47f9e4b53402424583b1a85cea16]
PUP.Optional.Sputnik, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\GROUP POLICY OBJECTS\{5A2BF78A-8DE6-4B43-8D7B-AD23782B0E74}MACHINE\SOFTWARE\POLICIES\GOOGLE\CHROME|DefaultSearchProviderInstantURL, http://smartsputnik.ru/?ri=1&uid=cd2f75533a02a3b4da12ebc21d8a8420&q={searchTerms}&t=instant, En quarantaine, [ae808db3c8d13ff79ee937fd02029a66]
PUP.Optional.Sputnik, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\GROUP POLICY OBJECTS\{5A2BF78A-8DE6-4B43-8D7B-AD23782B0E74}MACHINE\SOFTWARE\POLICIES\GOOGLE\CHROME|DefaultSearchProviderSearchURL, http://smartsputnik.ru/?ri=1&uid=cd2f75533a02a3b4da12ebc21d8a8420&q={searchTerms}&t=search, En quarantaine, [1a146cd4c2d796a08ef956de0ef608f8]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 0
(Aucun élément malveillant détecté)
Fichiers: 145
PUP.Optional.BundleInstaller, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\2015_The_Grubby_Mitts_-_What_the_World_Needs_Now_Is_the_Grubby_Mitts_FLACTracks_downloader.exe, En quarantaine, [30fe0040316885b186448845b05118e8],
PUP.Optional.BundleInstaller, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Asaf_Avidan_downloader.exe, En quarantaine, [05295ce4d6c3dd592f9b626bed140bf5],
PUP.Optional.Boxore.WnskRST, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\BoxoreCert.dll, En quarantaine, [141a2818b4e564d20ab4ac4235cf1ce4],
PUP.Optional.Boxore.WnskRST, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\BoxoreLSP.exe, En quarantaine, [d658cb755b3ee84efec027c71be96f91],
PUP.Optional.Boxore.WnskRST, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\BoxoreService.dll, En quarantaine, [31fd3c046e2b8caa8c3222cceb19bd43],
PUP.Optional.Boxore.WnskRST, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\BoxoreService.exe, En quarantaine, [230bb090b9e0e74fc8f688662ada6c94],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Bubble Dock Uninstall.exe, En quarantaine, [c767a29e6a2f330331ad539b4db7f709],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafemadwc.dll, En quarantaine, [c569d36d56430e289ff6ce5cba47ce32],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafemc.dll, En quarantaine, [2fff1c24dcbd16206a2ba08a9c659f61],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafemgc.dll, En quarantaine, [d6587ac6b5e4a98d3e57002afd047090],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeMon.dll, En quarantaine, [4ce2cf7195045ed8c3d2121845bc25db],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeMon64.dll, En quarantaine, [cd6185bbf7a281b56c29062454ad0df3],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafenpf.dll, En quarantaine, [939baf911a7f40f655400c1e51b020e0],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafepxy.dll, En quarantaine, [54dae9577e1b7db9613464c67988e61a],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isaferpt.dll, En quarantaine, [6dc1bb85e0b962d494018c9e3bc623dd],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeSrvMon.dll, En quarantaine, [65c949f77029ce68c2d369c1bd443ac6],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeSrvMon64.dll, En quarantaine, [51dd6ed2465382b4563f2a006e933ec2],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeSvc.exe, En quarantaine, [cb6363dd5d3c6ccad5c01911728f1ee2],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeSvc2.exe, En quarantaine, [b27c8eb2019841f53c593cee00016e92],
PUP.Optional.BundleInstaller, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\The_Black_Keys_Turn_Blue_2014_FLAC_vtwin88cube_downloader.exe, En quarantaine, [b17dda666732ac8ac3071ab303feff01],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\TYPOEX1BE.exe, En quarantaine, [5cd20e3286133006d40a1bd307fd3dc3],
PUP.Optional.Wajam, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\wajam_install.exe, En quarantaine, [f33bea5647528aace96b539f0004c040],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\WindApp Uninstall.exe, En quarantaine, [e34bb789e9b0ad8903dbfcf2b54fba46],
Trojan.Agent, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\dnshelper.exe, En quarantaine, [42eccf71dbbeab8b5a92713958a99070],
Trojan.Agent, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\DNSService.exe, En quarantaine, [b876fa464f4afe383169bc92649ef20e],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iCommon.dll, En quarantaine, [38f66fd11a7f3501efa6f832fc052ad6],
PUP.Optional.BundleInstaller, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\The_Black_Keys_-_Turn_Blue_2014_downloader.exe, En quarantaine, [b777e55babee88aee8e2715c48b99a66],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iCommu.dll, En quarantaine, [73bb360a2574b5814b4afb2fff021fe1],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iDskDllPatch.dll, En quarantaine, [240a2e128118fc3aeda8191138c950b0],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iDskDllPatch64.dll, En quarantaine, [75b9e957efaa1422a0f5a585ed148878],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iImportLib.dll, En quarantaine, [1a1459e73b5e290dbfd632f8e1200af6],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Install_BubbleDock.exe, En quarantaine, [86a83709f8a146f07668a34bf31150b0],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\ipcdl.exe, En quarantaine, [a688d7691386b77fd0c5ca602ad7659b],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\ipcproxy.dll, En quarantaine, [80aeca76a9f0bc7a3a5b5ccee71ac63a],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeAdless.dll, En quarantaine, [6fbf9da33b5eea4c573e6fbb5ca52fd1],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeBase.dll, En quarantaine, [b07e211f9efb69cd583d9e8c2cd51be5],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafebs.dll, En quarantaine, [9d9147f99cfd1e18860f7eacd72a1ce4],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeDisp.dll, En quarantaine, [939b7cc40d8c9e98bfd670ba5ea310f0],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeEngineDisp.dll, En quarantaine, [a18da997fe9ba591cdc87dad59a8ec14],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnl.sys, En quarantaine, [75b9bc849aff93a3fd9892988e7324dc],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnlBoot.sys, En quarantaine, [d25c6bd5a1f88fa7d9bcaa80ac55be42],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnlCall.dll, En quarantaine, [959974cc84153303781d60ca07fa857b],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnlCall64.dll, En quarantaine, [191564dcd3c69c9a6c29b47623decf31],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnlMonCall.dll, En quarantaine, [74ba261a435662d4b0e5c4660100817f],
PUP.Optional.CSDI, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\PJT7Y0FGJM.exe, En quarantaine, [47e749f7dabf62d44b6fa64c34d0ac54],
PUP.Optional.RegCleanPro, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\rcpsetup_17970.exe, En quarantaine, [ce60142c0099b680af1710ac5ea38080],
PUP.Optional.Systweak, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\roboot64.exe, En quarantaine, [cf5f6bd5b4e562d42f823cfde61bdb25],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Selection Tools Uninstall.exe, En quarantaine, [939be45cf8a11125f8e69f4f33d10bf5],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\yac-yet-another-cleaner_6-6-206_fr_431165 (1).exe, En quarantaine, [0a24cc744e4bc86e1c2725c428dc2dd3],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\yac-yet-another-cleaner_6-6-206_fr_431165.exe, En quarantaine, [81adc37d47524ceabb88549507fdb24e],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\yet_another_cleaner_sk_8770973.exe, En quarantaine, [c668320e65349b9bd4c0200a60a16898],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\~dl4C1.exe, En quarantaine, [0c2252eee5b40b2b9ff545e556ab7a86],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\~dl8046.exe, En quarantaine, [c96538080e8bd660d0c4d456b9481ee2],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeTHlp.exe, En quarantaine, [50de64dce0b994a244517eacf60b35cb],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeTHlp64.exe, En quarantaine, [5ed00c3410893ff79afb42e8e71a37c9],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafeupbiz.dll, En quarantaine, [fd31172936633ff7039276b4c23fc13f],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSvc.dll, En quarantaine, [ff2f7cc41881c274464f48e250b11be5],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSvc2.dll, En quarantaine, [5bd3dd637f1ae55183121b0fc73a7789],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\Bubble Dock Update.exe, En quarantaine, [73bb98a8366375c1439bf7f752b2e917],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\Bubble Dock.exe, En quarantaine, [e24c48f8e8b1d264687627c79272df21],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\LBubble Dock.exe, En quarantaine, [87a7211f851458dec5195d915da73ac6],
PUP.Optional.Amonetize, C:\Users\Renaud\Desktop\The+Black+Keys+Turn+Blue.zip-.zip, En quarantaine, [60ce76caeeabae8860c3a13ce61b827e],
PUP.Optional.ConvertAd, C:\Users\Renaud\AppData\Local\Temp\nsq24F4.tmp, En quarantaine, [c36b6fd13b5eae88041d1f1bd9292cd4],
PUP.Optional.ConvertAd, C:\Users\Renaud\AppData\Local\Temp\nsv375B.tmp, En quarantaine, [b27ce55bc4d521150e130f2b0101a060],
PUP.Optional.ConvertAd, C:\Users\Renaud\AppData\Local\Temp\nsz2B61.tmp, En quarantaine, [f836db65247586b0e75e560b04fe7d83],
PUP.Optional.ConvertAd, C:\Users\Renaud\AppData\Local\Temp\0D12213B-6552-45F2-8C87-A490E8B3D50A\ASIns.exe, En quarantaine, [f9356bd5ebae56e0e9f2efe7f50cd22e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sepbackup.7z, En quarantaine, [48e676ca44551f17eda89a900cf518e8],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnl.sys, En quarantaine, [1d11db652376e650ace95fcbde237c84],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [8ba31f21fe9bdb5ba5f0a78347baba46],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnlKit.sys, En quarantaine, [949a1f21b4e50333118440ea59a818e8],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnlMon.sys, En quarantaine, [ef3f17294e4b8ea84a4b0921e021a957],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnlR3.sys, En quarantaine, [e44a0b353663aa8c068fae7cb34e05fb],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnl.sys, En quarantaine, [c56962dedabfc0760e871812ba47c13f],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [7faf94ac7227fc3a9df8b87231d0ef11],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnlKit.sys, En quarantaine, [a48acc7499003bfb2e676cbe26dba060],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnlMon.sys, En quarantaine, [939b49f7108972c4781d61c9df2219e7],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnlR3.sys, En quarantaine, [4ce266da12872a0c8f063ded5da438c8],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sepbackup.7z, En quarantaine, [d25c53ed168381b54253db4f16eb57a9],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnl.sys, En quarantaine, [d6582e126831e5512f66ab7faf52d12f],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [fe3050f0f2a796a05441c86255ac06fa],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnlKit.sys, En quarantaine, [64ca66dad6c3290de0b55ad0b15010f0],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnlMon.sys, En quarantaine, [919dc57bd5c444f22f665bcf5fa2768a],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnlR3.sys, En quarantaine, [d45af34d217851e5ddb841e9a35ee21e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnl.sys, En quarantaine, [aa841d23fb9e8ea8365f1a1006fb31cf],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [f33bcd739bfe10267223bf6bd72aaf51],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnlKit.sys, En quarantaine, [af7f75cbd9c092a49afb3af007fa04fc],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnlMon.sys, En quarantaine, [fd3190b04c4de1557b1a0c1ede234fb1],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnlR3.sys, En quarantaine, [74bace7221782610deb7e347f60b25db],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sepbackup.7z, En quarantaine, [1f0f2020b4e5da5ce3b26fbbbe43857b],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnl.sys, En quarantaine, [09254ef2f7a282b4b7de24065ca58a76],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [a08eae927524b87ee7ae28022bd644bc],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnlKit.sys, En quarantaine, [77b7152b0396a1952a6b9595b44d7b85],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnlMon.sys, En quarantaine, [c16d2719ebae73c399fc1119847d629e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnlR3.sys, En quarantaine, [0e202f11c7d2bf77eea7fc2eb15016ea],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnl.sys, En quarantaine, [cf5ff44c3c5d072f0590a6840df452ae],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [e14ddb65683165d1108549e1fb06f50b],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnlKit.sys, En quarantaine, [d955cf71386147ef11841c0efa0737c9],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnlMon.sys, En quarantaine, [76b8013f4257d165464fda50b74a629e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnlR3.sys, En quarantaine, [db5360e08316e650ade8d6549e63ac54],
PUP.Optional.PennyBee, C:\Users\Renaud\AppData\Local\Temp\JY2C4L6DY\JY2C4L6DY.exe, En quarantaine, [48e6d8682079db5b7127625fe71a6898],
PUP.Optional.YourSearching.ShrtCln, C:\Users\Renaud\AppData\Local\Temp\E4KRLM4C5\E4KRLM4C5.exe, En quarantaine, [e54983bdb5e41224ff4914dc46bebe42],
PUP.Optional.PennyBee, C:\Users\Renaud\AppData\Local\Temp\BY4CI86N6\BY4CI86N6.exe, En quarantaine, [27072d134257ef471880edd458a98d73],
PUP.Optional.CheckOffer, C:\Users\Renaud\AppData\Local\Temp\nsh9F9A.tmp\nsCBHTML5.dll, En quarantaine, [1b1329173f5a95a1bceb12fce31e4eb2],
Trojan.Agent, C:\Users\Renaud\AppData\Local\Temp\nsh9F9A.tmp\Setup.exe, En quarantaine, [c06e97a97326ea4c529ac8e235cc04fc],
PUP.Optional.Wajam, C:\Users\Renaud\AppData\Local\Temp\nsh9F9A.tmp\wajam_install.exe, En quarantaine, [1a1483bd960391a5c98b34be36ceff01],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sepbackup.7z, En quarantaine, [9e90e45c752487af7d187bafb34e639d],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnl.sys, En quarantaine, [161876cac5d40c2adcb94fdb29d8f30d],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [f6384df3a4f5ba7cfd987dadd22f25db],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnlKit.sys, En quarantaine, [0d215ae664353ef804914ae051b008f8],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnlMon.sys, En quarantaine, [7eb062deb0e93ff77d188aa0758cad53],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnlR3.sys, En quarantaine, [7eb0b48c7b1ebc7a890c62c81ce52cd4],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnl.sys, En quarantaine, [a08e3c0449503501712481a9f20f0bf5],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [a28c7bc5c8d1e84edfb68d9dcb36966a],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnlKit.sys, En quarantaine, [c26ce25eb2e7f73fd0c5fd2dd42d10f0],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnlMon.sys, En quarantaine, [ad810e32455496a0abea65c518e91ee2],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnlR3.sys, En quarantaine, [210df54b7227e155534267c340c18779],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sepbackup.7z, En quarantaine, [36f8a29e960357dfc4d1c76302ff619f],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnl.sys, En quarantaine, [131b56ea8811f73ff89d0f1bde23ad53],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [32fc7ac6d7c242f4702565c59d64f30d],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnlKit.sys, En quarantaine, [d45a95ab415856e0f89d75b5ce33a957],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnlMon.sys, En quarantaine, [43eb4af6900961d5068f85a5c73a16ea],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnlR3.sys, En quarantaine, [8ea01a262376d660cbcaf634857cd42c],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnl.sys, En quarantaine, [ad81b48c2b6e0e2890059199f30e629e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [5bd3400059402d092e67dd4d41c0ad53],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnlKit.sys, En quarantaine, [40eea69ad9c04bebeaabe644e61b9967],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnlMon.sys, En quarantaine, [d757bf81a0f936005f36aa80e51c44bc],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnlR3.sys, En quarantaine, [c16dde6264351c1aaee7db4f748d639d],
PUP.Optional.ConvertAd, C:\Windows\Temp\vnsF98A.tmp, En quarantaine, [6ac4c37d93061b1bf1ea76608f720ef2],
Adware.EoRezo, C:\Windows\Temp\1518.tmp, En quarantaine, [5dd1fc444653c4727b0a84486899966a],
Adware.EoRezo.Gen, C:\Windows\Temp\48E7.tmp, En quarantaine, [c866b28e8415ce6855a05b7af60b847c],
PUP.Optional.ConvertAd, C:\Windows\Temp\4D07.tmp, En quarantaine, [62cc6ad69ffaf541088d98ccde24f40c],
PUP.Optional.ConvertAd, C:\Windows\Temp\7DDB.tmp, En quarantaine, [42ec004051482c0a5dfdaf2440c1da26],
Adware.AdLoad, C:\Windows\Temp\8636.tmp, En quarantaine, [df4f4cf428718da99896e6f99a67e020],
PUP.Optional.ConvertAd, C:\Windows\Temp\8F0C.tmp, En quarantaine, [59d5be82d3c63ef8b4a6369d9b66b24e],
PUP.Optional.CheckOffer, C:\Windows\Temp\9351.tmp, En quarantaine, [37f7013fa9f0aa8cd5d20fff4ab73fc1],
Adware.EoRezo.Gen, C:\Windows\Temp\A238.tmp, En quarantaine, [f7373a06aced4fe7668ff5e025dca858],
Adware.AdLoad, C:\Windows\Temp\A4BE.tmp, En quarantaine, [9b9388b8e3b6df576fbfd7082cd536ca],
PUP.Optional.CheckOffer, C:\Windows\Temp\B3DC.tmp, En quarantaine, [fd3160e01a7f52e43e693ed07190867a],
PUP.Optional.Amonetize, C:\Users\Renaud\Downloads\MC+Solaar+Cinquième+As+[Multi]_10924_i28533599_il345.exe.zip, En quarantaine, [a28c09371980191d519299c2eb166f91],
PUP.Optional.Amonetize, C:\Users\Renaud\Downloads\1000mods+Vultures+CD+FLAC+2014+mwnd_10924_i33324509_il345.exe.zip, En quarantaine, [052927192d6c63d3578c91ca5ea31ce4],
PUP.Optional.Amonetize, C:\Users\Renaud\Downloads\fear of a blank planet._10924_i52102859_il345.exe, En quarantaine, [f33b162a6930b185b4dcb0434fb14bb5],
PUP.Optional.SpringFiles, C:\Users\Renaud\Downloads\Incubus-2015-Trust_Fall_Side_A_-_EpIncubus-2015-Trust_Fall_Side_A_-_Ep_downloader.exe, En quarantaine, [7fafa799bfda2b0bbda61f32a15f36ca],
PUP.Optional.Boxore.WnskRST, C:\Windows\Temp\BoxoreService.log, En quarantaine, [46e8320ef1a839fd41ebf44249bb12ee],
PUP.Optional.Boxore.WnskRST, C:\Windows\Temp\BoxoreServicer.log, En quarantaine, [0f1fe060d5c48ea857d54aec07fdaf51],
PUP.Optional.YourSearching.ShrtCln, C:\Users\Renaud\AppData\Local\Temp\HomePage.dat, En quarantaine, [a985c08004955dd9765a04f53bc94fb1],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.org
Date de l'analyse: 31/01/2016
Heure de l'analyse: 13:30
Fichier journal: Rapport MBAM.txt
Administrateur: Oui
Version: 2.2.0.1024
Base de données de programmes malveillants: v2016.01.31.02
Base de données de rootkits: v2016.01.20.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Renaud
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 356532
Temps écoulé: 26 min, 8 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Avertir
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 5
Trojan.ProxyHijacker, HKLM\SOFTWARE\CLASSES\_Sound_Park.ru_ The Grubby Mitts _ What The World Needs Now Is.DynamicNS, En quarantaine, [b77752ee9ffa2214bba8ddbc56ac4eb2],
Trojan.ProxyHijacker, HKLM\SOFTWARE\WOW6432NODE\CLASSES\_Sound_Park.ru_ The Grubby Mitts _ What The World Needs Now Is.DynamicNS, En quarantaine, [27073808138678bea7bce1b80ef4d32d],
Trojan.ProxyHijacker, HKLM\SOFTWARE\CLASSES\WOW6432NODE\_Sound_Park.ru_ The Grubby Mitts _ What The World Needs Now Is.DynamicNS, En quarantaine, [27073808138678bea7bce1b80ef4d32d],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\IDSC, En quarantaine, [47e72e12386145f15cb8f1550df754ac],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\CHCT3281621, En quarantaine, [6cc2b68ad1c880b6fbc83b79c63d847c],
Valeurs du Registre: 4
PUP.Optional.Tuto4PC, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\IDSC|partner, tuto, En quarantaine, [47e72e12386145f15cb8f1550df754ac]
PUP.Optional.Sputnik, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\GROUP POLICY OBJECTS\{5A2BF78A-8DE6-4B43-8D7B-AD23782B0E74}MACHINE\SOFTWARE\POLICIES\GOOGLE\CHROME|DefaultSearchProviderSuggestURL, http://smartsputnik.ru/?ri=1&uid=cd2f75533a02a3b4da12ebc21d8a8420&q={searchTerms}&t=suggest, En quarantaine, [a38b47f9e4b53402424583b1a85cea16]
PUP.Optional.Sputnik, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\GROUP POLICY OBJECTS\{5A2BF78A-8DE6-4B43-8D7B-AD23782B0E74}MACHINE\SOFTWARE\POLICIES\GOOGLE\CHROME|DefaultSearchProviderInstantURL, http://smartsputnik.ru/?ri=1&uid=cd2f75533a02a3b4da12ebc21d8a8420&q={searchTerms}&t=instant, En quarantaine, [ae808db3c8d13ff79ee937fd02029a66]
PUP.Optional.Sputnik, HKU\S-1-5-21-3031026747-1099900953-3985574727-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\GROUP POLICY OBJECTS\{5A2BF78A-8DE6-4B43-8D7B-AD23782B0E74}MACHINE\SOFTWARE\POLICIES\GOOGLE\CHROME|DefaultSearchProviderSearchURL, http://smartsputnik.ru/?ri=1&uid=cd2f75533a02a3b4da12ebc21d8a8420&q={searchTerms}&t=search, En quarantaine, [1a146cd4c2d796a08ef956de0ef608f8]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 0
(Aucun élément malveillant détecté)
Fichiers: 145
PUP.Optional.BundleInstaller, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\2015_The_Grubby_Mitts_-_What_the_World_Needs_Now_Is_the_Grubby_Mitts_FLACTracks_downloader.exe, En quarantaine, [30fe0040316885b186448845b05118e8],
PUP.Optional.BundleInstaller, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Asaf_Avidan_downloader.exe, En quarantaine, [05295ce4d6c3dd592f9b626bed140bf5],
PUP.Optional.Boxore.WnskRST, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\BoxoreCert.dll, En quarantaine, [141a2818b4e564d20ab4ac4235cf1ce4],
PUP.Optional.Boxore.WnskRST, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\BoxoreLSP.exe, En quarantaine, [d658cb755b3ee84efec027c71be96f91],
PUP.Optional.Boxore.WnskRST, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\BoxoreService.dll, En quarantaine, [31fd3c046e2b8caa8c3222cceb19bd43],
PUP.Optional.Boxore.WnskRST, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\BoxoreService.exe, En quarantaine, [230bb090b9e0e74fc8f688662ada6c94],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Bubble Dock Uninstall.exe, En quarantaine, [c767a29e6a2f330331ad539b4db7f709],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafemadwc.dll, En quarantaine, [c569d36d56430e289ff6ce5cba47ce32],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafemc.dll, En quarantaine, [2fff1c24dcbd16206a2ba08a9c659f61],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafemgc.dll, En quarantaine, [d6587ac6b5e4a98d3e57002afd047090],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeMon.dll, En quarantaine, [4ce2cf7195045ed8c3d2121845bc25db],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeMon64.dll, En quarantaine, [cd6185bbf7a281b56c29062454ad0df3],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafenpf.dll, En quarantaine, [939baf911a7f40f655400c1e51b020e0],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafepxy.dll, En quarantaine, [54dae9577e1b7db9613464c67988e61a],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isaferpt.dll, En quarantaine, [6dc1bb85e0b962d494018c9e3bc623dd],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeSrvMon.dll, En quarantaine, [65c949f77029ce68c2d369c1bd443ac6],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeSrvMon64.dll, En quarantaine, [51dd6ed2465382b4563f2a006e933ec2],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeSvc.exe, En quarantaine, [cb6363dd5d3c6ccad5c01911728f1ee2],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeSvc2.exe, En quarantaine, [b27c8eb2019841f53c593cee00016e92],
PUP.Optional.BundleInstaller, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\The_Black_Keys_Turn_Blue_2014_FLAC_vtwin88cube_downloader.exe, En quarantaine, [b17dda666732ac8ac3071ab303feff01],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\TYPOEX1BE.exe, En quarantaine, [5cd20e3286133006d40a1bd307fd3dc3],
PUP.Optional.Wajam, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\wajam_install.exe, En quarantaine, [f33bea5647528aace96b539f0004c040],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\WindApp Uninstall.exe, En quarantaine, [e34bb789e9b0ad8903dbfcf2b54fba46],
Trojan.Agent, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\dnshelper.exe, En quarantaine, [42eccf71dbbeab8b5a92713958a99070],
Trojan.Agent, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\DNSService.exe, En quarantaine, [b876fa464f4afe383169bc92649ef20e],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iCommon.dll, En quarantaine, [38f66fd11a7f3501efa6f832fc052ad6],
PUP.Optional.BundleInstaller, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\The_Black_Keys_-_Turn_Blue_2014_downloader.exe, En quarantaine, [b777e55babee88aee8e2715c48b99a66],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iCommu.dll, En quarantaine, [73bb360a2574b5814b4afb2fff021fe1],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iDskDllPatch.dll, En quarantaine, [240a2e128118fc3aeda8191138c950b0],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iDskDllPatch64.dll, En quarantaine, [75b9e957efaa1422a0f5a585ed148878],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iImportLib.dll, En quarantaine, [1a1459e73b5e290dbfd632f8e1200af6],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Install_BubbleDock.exe, En quarantaine, [86a83709f8a146f07668a34bf31150b0],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\ipcdl.exe, En quarantaine, [a688d7691386b77fd0c5ca602ad7659b],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\ipcproxy.dll, En quarantaine, [80aeca76a9f0bc7a3a5b5ccee71ac63a],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeAdless.dll, En quarantaine, [6fbf9da33b5eea4c573e6fbb5ca52fd1],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeBase.dll, En quarantaine, [b07e211f9efb69cd583d9e8c2cd51be5],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafebs.dll, En quarantaine, [9d9147f99cfd1e18860f7eacd72a1ce4],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeDisp.dll, En quarantaine, [939b7cc40d8c9e98bfd670ba5ea310f0],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeEngineDisp.dll, En quarantaine, [a18da997fe9ba591cdc87dad59a8ec14],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnl.sys, En quarantaine, [75b9bc849aff93a3fd9892988e7324dc],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnlBoot.sys, En quarantaine, [d25c6bd5a1f88fa7d9bcaa80ac55be42],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnlCall.dll, En quarantaine, [959974cc84153303781d60ca07fa857b],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnlCall64.dll, En quarantaine, [191564dcd3c69c9a6c29b47623decf31],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeKrnlMonCall.dll, En quarantaine, [74ba261a435662d4b0e5c4660100817f],
PUP.Optional.CSDI, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\PJT7Y0FGJM.exe, En quarantaine, [47e749f7dabf62d44b6fa64c34d0ac54],
PUP.Optional.RegCleanPro, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\rcpsetup_17970.exe, En quarantaine, [ce60142c0099b680af1710ac5ea38080],
PUP.Optional.Systweak, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\roboot64.exe, En quarantaine, [cf5f6bd5b4e562d42f823cfde61bdb25],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Selection Tools Uninstall.exe, En quarantaine, [939be45cf8a11125f8e69f4f33d10bf5],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\yac-yet-another-cleaner_6-6-206_fr_431165 (1).exe, En quarantaine, [0a24cc744e4bc86e1c2725c428dc2dd3],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\yac-yet-another-cleaner_6-6-206_fr_431165.exe, En quarantaine, [81adc37d47524ceabb88549507fdb24e],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\yet_another_cleaner_sk_8770973.exe, En quarantaine, [c668320e65349b9bd4c0200a60a16898],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\~dl4C1.exe, En quarantaine, [0c2252eee5b40b2b9ff545e556ab7a86],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\~dl8046.exe, En quarantaine, [c96538080e8bd660d0c4d456b9481ee2],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeTHlp.exe, En quarantaine, [50de64dce0b994a244517eacf60b35cb],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSafeTHlp64.exe, En quarantaine, [5ed00c3410893ff79afb42e8e71a37c9],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\isafeupbiz.dll, En quarantaine, [fd31172936633ff7039276b4c23fc13f],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSvc.dll, En quarantaine, [ff2f7cc41881c274464f48e250b11be5],
FraudTool.YAC, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\iSvc2.dll, En quarantaine, [5bd3dd637f1ae55183121b0fc73a7789],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\Bubble Dock Update.exe, En quarantaine, [73bb98a8366375c1439bf7f752b2e917],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\Bubble Dock.exe, En quarantaine, [e24c48f8e8b1d264687627c79272df21],
PUP.Optional.Nosibay, C:\Users\Renaud\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\LBubble Dock.exe, En quarantaine, [87a7211f851458dec5195d915da73ac6],
PUP.Optional.Amonetize, C:\Users\Renaud\Desktop\The+Black+Keys+Turn+Blue.zip-.zip, En quarantaine, [60ce76caeeabae8860c3a13ce61b827e],
PUP.Optional.ConvertAd, C:\Users\Renaud\AppData\Local\Temp\nsq24F4.tmp, En quarantaine, [c36b6fd13b5eae88041d1f1bd9292cd4],
PUP.Optional.ConvertAd, C:\Users\Renaud\AppData\Local\Temp\nsv375B.tmp, En quarantaine, [b27ce55bc4d521150e130f2b0101a060],
PUP.Optional.ConvertAd, C:\Users\Renaud\AppData\Local\Temp\nsz2B61.tmp, En quarantaine, [f836db65247586b0e75e560b04fe7d83],
PUP.Optional.ConvertAd, C:\Users\Renaud\AppData\Local\Temp\0D12213B-6552-45F2-8C87-A490E8B3D50A\ASIns.exe, En quarantaine, [f9356bd5ebae56e0e9f2efe7f50cd22e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sepbackup.7z, En quarantaine, [48e676ca44551f17eda89a900cf518e8],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnl.sys, En quarantaine, [1d11db652376e650ace95fcbde237c84],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [8ba31f21fe9bdb5ba5f0a78347baba46],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnlKit.sys, En quarantaine, [949a1f21b4e50333118440ea59a818e8],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnlMon.sys, En quarantaine, [ef3f17294e4b8ea84a4b0921e021a957],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x64\iSafeKrnlR3.sys, En quarantaine, [e44a0b353663aa8c068fae7cb34e05fb],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnl.sys, En quarantaine, [c56962dedabfc0760e871812ba47c13f],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [7faf94ac7227fc3a9df8b87231d0ef11],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnlKit.sys, En quarantaine, [a48acc7499003bfb2e676cbe26dba060],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnlMon.sys, En quarantaine, [939b49f7108972c4781d61c9df2219e7],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000002\sys\x86\iSafeKrnlR3.sys, En quarantaine, [4ce266da12872a0c8f063ded5da438c8],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sepbackup.7z, En quarantaine, [d25c53ed168381b54253db4f16eb57a9],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnl.sys, En quarantaine, [d6582e126831e5512f66ab7faf52d12f],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [fe3050f0f2a796a05441c86255ac06fa],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnlKit.sys, En quarantaine, [64ca66dad6c3290de0b55ad0b15010f0],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnlMon.sys, En quarantaine, [919dc57bd5c444f22f665bcf5fa2768a],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x64\iSafeKrnlR3.sys, En quarantaine, [d45af34d217851e5ddb841e9a35ee21e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnl.sys, En quarantaine, [aa841d23fb9e8ea8365f1a1006fb31cf],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [f33bcd739bfe10267223bf6bd72aaf51],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnlKit.sys, En quarantaine, [af7f75cbd9c092a49afb3af007fa04fc],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnlMon.sys, En quarantaine, [fd3190b04c4de1557b1a0c1ede234fb1],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000003\sys\x86\iSafeKrnlR3.sys, En quarantaine, [74bace7221782610deb7e347f60b25db],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sepbackup.7z, En quarantaine, [1f0f2020b4e5da5ce3b26fbbbe43857b],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnl.sys, En quarantaine, [09254ef2f7a282b4b7de24065ca58a76],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [a08eae927524b87ee7ae28022bd644bc],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnlKit.sys, En quarantaine, [77b7152b0396a1952a6b9595b44d7b85],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnlMon.sys, En quarantaine, [c16d2719ebae73c399fc1119847d629e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x64\iSafeKrnlR3.sys, En quarantaine, [0e202f11c7d2bf77eea7fc2eb15016ea],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnl.sys, En quarantaine, [cf5ff44c3c5d072f0590a6840df452ae],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [e14ddb65683165d1108549e1fb06f50b],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnlKit.sys, En quarantaine, [d955cf71386147ef11841c0efa0737c9],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnlMon.sys, En quarantaine, [76b8013f4257d165464fda50b74a629e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000004\sys\x86\iSafeKrnlR3.sys, En quarantaine, [db5360e08316e650ade8d6549e63ac54],
PUP.Optional.PennyBee, C:\Users\Renaud\AppData\Local\Temp\JY2C4L6DY\JY2C4L6DY.exe, En quarantaine, [48e6d8682079db5b7127625fe71a6898],
PUP.Optional.YourSearching.ShrtCln, C:\Users\Renaud\AppData\Local\Temp\E4KRLM4C5\E4KRLM4C5.exe, En quarantaine, [e54983bdb5e41224ff4914dc46bebe42],
PUP.Optional.PennyBee, C:\Users\Renaud\AppData\Local\Temp\BY4CI86N6\BY4CI86N6.exe, En quarantaine, [27072d134257ef471880edd458a98d73],
PUP.Optional.CheckOffer, C:\Users\Renaud\AppData\Local\Temp\nsh9F9A.tmp\nsCBHTML5.dll, En quarantaine, [1b1329173f5a95a1bceb12fce31e4eb2],
Trojan.Agent, C:\Users\Renaud\AppData\Local\Temp\nsh9F9A.tmp\Setup.exe, En quarantaine, [c06e97a97326ea4c529ac8e235cc04fc],
PUP.Optional.Wajam, C:\Users\Renaud\AppData\Local\Temp\nsh9F9A.tmp\wajam_install.exe, En quarantaine, [1a1483bd960391a5c98b34be36ceff01],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sepbackup.7z, En quarantaine, [9e90e45c752487af7d187bafb34e639d],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnl.sys, En quarantaine, [161876cac5d40c2adcb94fdb29d8f30d],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [f6384df3a4f5ba7cfd987dadd22f25db],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnlKit.sys, En quarantaine, [0d215ae664353ef804914ae051b008f8],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnlMon.sys, En quarantaine, [7eb062deb0e93ff77d188aa0758cad53],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x64\iSafeKrnlR3.sys, En quarantaine, [7eb0b48c7b1ebc7a890c62c81ce52cd4],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnl.sys, En quarantaine, [a08e3c0449503501712481a9f20f0bf5],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [a28c7bc5c8d1e84edfb68d9dcb36966a],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnlKit.sys, En quarantaine, [c26ce25eb2e7f73fd0c5fd2dd42d10f0],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnlMon.sys, En quarantaine, [ad810e32455496a0abea65c518e91ee2],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000000\sys\x86\iSafeKrnlR3.sys, En quarantaine, [210df54b7227e155534267c340c18779],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sepbackup.7z, En quarantaine, [36f8a29e960357dfc4d1c76302ff619f],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnl.sys, En quarantaine, [131b56ea8811f73ff89d0f1bde23ad53],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnlBoot.sys, En quarantaine, [32fc7ac6d7c242f4702565c59d64f30d],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnlKit.sys, En quarantaine, [d45a95ab415856e0f89d75b5ce33a957],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnlMon.sys, En quarantaine, [43eb4af6900961d5068f85a5c73a16ea],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x64\iSafeKrnlR3.sys, En quarantaine, [8ea01a262376d660cbcaf634857cd42c],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnl.sys, En quarantaine, [ad81b48c2b6e0e2890059199f30e629e],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnlBoot.sys, En quarantaine, [5bd3400059402d092e67dd4d41c0ad53],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnlKit.sys, En quarantaine, [40eea69ad9c04bebeaabe644e61b9967],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnlMon.sys, En quarantaine, [d757bf81a0f936005f36aa80e51c44bc],
FraudTool.YAC, C:\Users\Renaud\AppData\Local\Temp\ISAFE_00000001\sys\x86\iSafeKrnlR3.sys, En quarantaine, [c16dde6264351c1aaee7db4f748d639d],
PUP.Optional.ConvertAd, C:\Windows\Temp\vnsF98A.tmp, En quarantaine, [6ac4c37d93061b1bf1ea76608f720ef2],
Adware.EoRezo, C:\Windows\Temp\1518.tmp, En quarantaine, [5dd1fc444653c4727b0a84486899966a],
Adware.EoRezo.Gen, C:\Windows\Temp\48E7.tmp, En quarantaine, [c866b28e8415ce6855a05b7af60b847c],
PUP.Optional.ConvertAd, C:\Windows\Temp\4D07.tmp, En quarantaine, [62cc6ad69ffaf541088d98ccde24f40c],
PUP.Optional.ConvertAd, C:\Windows\Temp\7DDB.tmp, En quarantaine, [42ec004051482c0a5dfdaf2440c1da26],
Adware.AdLoad, C:\Windows\Temp\8636.tmp, En quarantaine, [df4f4cf428718da99896e6f99a67e020],
PUP.Optional.ConvertAd, C:\Windows\Temp\8F0C.tmp, En quarantaine, [59d5be82d3c63ef8b4a6369d9b66b24e],
PUP.Optional.CheckOffer, C:\Windows\Temp\9351.tmp, En quarantaine, [37f7013fa9f0aa8cd5d20fff4ab73fc1],
Adware.EoRezo.Gen, C:\Windows\Temp\A238.tmp, En quarantaine, [f7373a06aced4fe7668ff5e025dca858],
Adware.AdLoad, C:\Windows\Temp\A4BE.tmp, En quarantaine, [9b9388b8e3b6df576fbfd7082cd536ca],
PUP.Optional.CheckOffer, C:\Windows\Temp\B3DC.tmp, En quarantaine, [fd3160e01a7f52e43e693ed07190867a],
PUP.Optional.Amonetize, C:\Users\Renaud\Downloads\MC+Solaar+Cinquième+As+[Multi]_10924_i28533599_il345.exe.zip, En quarantaine, [a28c09371980191d519299c2eb166f91],
PUP.Optional.Amonetize, C:\Users\Renaud\Downloads\1000mods+Vultures+CD+FLAC+2014+mwnd_10924_i33324509_il345.exe.zip, En quarantaine, [052927192d6c63d3578c91ca5ea31ce4],
PUP.Optional.Amonetize, C:\Users\Renaud\Downloads\fear of a blank planet._10924_i52102859_il345.exe, En quarantaine, [f33b162a6930b185b4dcb0434fb14bb5],
PUP.Optional.SpringFiles, C:\Users\Renaud\Downloads\Incubus-2015-Trust_Fall_Side_A_-_EpIncubus-2015-Trust_Fall_Side_A_-_Ep_downloader.exe, En quarantaine, [7fafa799bfda2b0bbda61f32a15f36ca],
PUP.Optional.Boxore.WnskRST, C:\Windows\Temp\BoxoreService.log, En quarantaine, [46e8320ef1a839fd41ebf44249bb12ee],
PUP.Optional.Boxore.WnskRST, C:\Windows\Temp\BoxoreServicer.log, En quarantaine, [0f1fe060d5c48ea857d54aec07fdaf51],
PUP.Optional.YourSearching.ShrtCln, C:\Users\Renaud\AppData\Local\Temp\HomePage.dat, En quarantaine, [a985c08004955dd9765a04f53bc94fb1],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)