Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 01/06/2015
Heure de l'examen: 20:26:04
Fichier journal: mbam.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de données Malveillants: v2015.06.01.05
Base de données Rootkits: v2015.05.31.01
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: adopi

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 361029
Temps écoulé: 5 min, 46 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Activé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 0
(Aucun élément malicieux détecté)

Modules: 0
(Aucun élément malicieux détecté)

Clés du Registre: 26
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65CE308E-25AB-4E00-92E0-9734F21CFCCD}, Mis en quarantaine, [3752cfe69cee12249611a1db3dc8d828], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E7C7D223-46E7-44D2-9EB9-7A42E7B275EE}, Mis en quarantaine, [19700baa216957df178eff7d9b6af30d], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65CE308E-25AB-4E00-92E0-9734F21CFCCD}, Mis en quarantaine, [5534318492f8ad89773082faca3b0ff1], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E7C7D223-46E7-44D2-9EB9-7A42E7B275EE}, Mis en quarantaine, [3b4e9223a8e24beb4263413bbb4a20e0], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Mis en quarantaine, [fc8d2a8b8a0085b14330392339cc7789], 
PUP.Optional.WinService86.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\winservice86, Mis en quarantaine, [4d3c9124d5b579bd6a892ed522e2da26], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2562B9C1-1E82-44C2-A583-2750272839EF}, Mis en quarantaine, [aedb2d88206ae84ef2b237458a7b52ae], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5F850D0E-4A9C-45EC-927B-1A494D37CC34}, Mis en quarantaine, [e1a8d3e26a206dc9e0c33d3fd53009f7], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65CE308E-25AB-4E00-92E0-9734F21CFCCD}, Mis en quarantaine, [6c1d32839bef61d533710676d82da759], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90F33B9A-AB71-4A39-8577-E4BB50BF9AA5}, Mis en quarantaine, [d5b451642d5de0569e0627552cd97b85], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C66F1004-D2F4-4C27-A34E-726B2A41E1A9}, Mis en quarantaine, [c1c8dadb8cfe83b3faaa1369ec19e31d], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C7F7BF0A-8DE7-4F45-BC44-65D1FD5233F4}, Mis en quarantaine, [6e1bcee73d4d40f6b1f33547de2732ce], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{D60FCB68-1611-4BFA-B673-F78F7CF32313}, Mis en quarantaine, [4544e2d31f6b171fd8cb7606b4514ab6], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E7C7D223-46E7-44D2-9EB9-7A42E7B275EE}, Mis en quarantaine, [6128c5f0b3d722140f93c9b382838c74], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F041AB69-88D0-493A-BAE8-8F731DA1EBC1}, Mis en quarantaine, [7118b10491f955e1287c91eb778e12ee], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F7794E69-FF3E-4544-8375-15BE14A7E7D7}, Mis en quarantaine, [3b4e298ce4a6af87d2d19ce0d332d828], 
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F9911231-552B-4ECC-B2A7-1AE776F3F452}, Mis en quarantaine, [fc8dc6ef4842d165f1b20b71e025c13f], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2562B9C1-1E82-44C2-A583-2750272839EF}, Mis en quarantaine, [e6a311a4a5e57fb70b99e399da2b46ba], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5F850D0E-4A9C-45EC-927B-1A494D37CC34}, Mis en quarantaine, [a5e4961ff496e74f861d205c5fa6ff01], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90F33B9A-AB71-4A39-8577-E4BB50BF9AA5}, Mis en quarantaine, [91f84a6bd0ba9f970d97126ae520b64a], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C66F1004-D2F4-4C27-A34E-726B2A41E1A9}, Mis en quarantaine, [b7d25c59dcaec96d812387f5ff06718f], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C7F7BF0A-8DE7-4F45-BC44-65D1FD5233F4}, Mis en quarantaine, [48419d1899f1c175cfd5304c9c6912ee], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{D60FCB68-1611-4BFA-B673-F78F7CF32313}, Mis en quarantaine, [1c6de2d342487bbba6fd4735e91c30d0], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F041AB69-88D0-493A-BAE8-8F731DA1EBC1}, Mis en quarantaine, [4d3cb40151390f27f9ab384458ad7c84], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F7794E69-FF3E-4544-8375-15BE14A7E7D7}, Mis en quarantaine, [0782ad082862f046257e4a32bf46bf41], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F9911231-552B-4ECC-B2A7-1AE776F3F452}, Mis en quarantaine, [ef9ad6df1b6ff4420a99bac2877eeb15], 

Valeurs du Registre: 25
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65ce308e-25ab-4e00-92e0-9734f21cfccd}|AppName, winservice86-codedownloader.exe, Mis en quarantaine, [3752cfe69cee12249611a1db3dc8d828]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e7c7d223-46e7-44d2-9eb9-7a42e7b275ee}|AppName, winservice86-bg.exe, Mis en quarantaine, [19700baa216957df178eff7d9b6af30d]
PUP.Optional.Astromenda.C, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\WSE_Astromenda\\, Mis en quarantaine, [22674f662a60003692216b79758ec53b]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65ce308e-25ab-4e00-92e0-9734f21cfccd}|AppName, winservice86-codedownloader.exe, Mis en quarantaine, [5534318492f8ad89773082faca3b0ff1]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e7c7d223-46e7-44d2-9eb9-7a42e7b275ee}|AppName, winservice86-bg.exe, Mis en quarantaine, [3b4e9223a8e24beb4263413bbb4a20e0]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2562B9C1-1E82-44C2-A583-2750272839EF}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [aedb2d88206ae84ef2b237458a7b52ae]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5F850D0E-4A9C-45EC-927B-1A494D37CC34}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-buttonutil.exe, Mis en quarantaine, [e1a8d3e26a206dc9e0c33d3fd53009f7]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{65ce308e-25ab-4e00-92e0-9734f21cfccd}|AppName, winservice86-codedownloader.exe, Mis en quarantaine, [6c1d32839bef61d533710676d82da759]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90F33B9A-AB71-4A39-8577-E4BB50BF9AA5}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [d5b451642d5de0569e0627552cd97b85]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C66F1004-D2F4-4C27-A34E-726B2A41E1A9}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [c1c8dadb8cfe83b3faaa1369ec19e31d]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C7F7BF0A-8DE7-4F45-BC44-65D1FD5233F4}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [6e1bcee73d4d40f6b1f33547de2732ce]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{D60FCB68-1611-4BFA-B673-F78F7CF32313}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-buttonutil.exe, Mis en quarantaine, [4544e2d31f6b171fd8cb7606b4514ab6]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e7c7d223-46e7-44d2-9eb9-7a42e7b275ee}|AppName, winservice86-bg.exe, Mis en quarantaine, [6128c5f0b3d722140f93c9b382838c74]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F041AB69-88D0-493A-BAE8-8F731DA1EBC1}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [7118b10491f955e1287c91eb778e12ee]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F7794E69-FF3E-4544-8375-15BE14A7E7D7}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-buttonutil.exe, Mis en quarantaine, [3b4e298ce4a6af87d2d19ce0d332d828]
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F9911231-552B-4ECC-B2A7-1AE776F3F452}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-buttonutil.exe, Mis en quarantaine, [fc8dc6ef4842d165f1b20b71e025c13f]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2562B9C1-1E82-44C2-A583-2750272839EF}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [e6a311a4a5e57fb70b99e399da2b46ba]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5F850D0E-4A9C-45EC-927B-1A494D37CC34}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-buttonutil.exe, Mis en quarantaine, [a5e4961ff496e74f861d205c5fa6ff01]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90F33B9A-AB71-4A39-8577-E4BB50BF9AA5}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [91f84a6bd0ba9f970d97126ae520b64a]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C66F1004-D2F4-4C27-A34E-726B2A41E1A9}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [b7d25c59dcaec96d812387f5ff06718f]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C7F7BF0A-8DE7-4F45-BC44-65D1FD5233F4}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [48419d1899f1c175cfd5304c9c6912ee]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{D60FCB68-1611-4BFA-B673-F78F7CF32313}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-buttonutil.exe, Mis en quarantaine, [1c6de2d342487bbba6fd4735e91c30d0]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F041AB69-88D0-493A-BAE8-8F731DA1EBC1}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-codedownloader.exe, Mis en quarantaine, [4d3cb40151390f27f9ab384458ad7c84]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F7794E69-FF3E-4544-8375-15BE14A7E7D7}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-buttonutil.exe, Mis en quarantaine, [0782ad082862f046257e4a32bf46bf41]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3227559671-3124400362-31802557-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F9911231-552B-4ECC-B2A7-1AE776F3F452}|AppName, a8d80158-8a89-4bce-b3c5-45be4ebf96dd-2.exe-buttonutil.exe, Mis en quarantaine, [ef9ad6df1b6ff4420a99bac2877eeb15]

Données du Registre: 0
(Aucun élément malicieux détecté)

Dossiers: 1
PUP.Optional.OptimizerPro.A, C:\Users\adopi\Documents\Optimizer Pro, Mis en quarantaine, [1a6fb7fe9cee9c9a5cb8c4bba85dda26], 

Fichiers: 1
PUP.Optional.OptimizerPro.A, C:\Users\adopi\Documents\Optimizer Pro\CookiesException.txt, Mis en quarantaine, [1a6fb7fe9cee9c9a5cb8c4bba85dda26], 

Secteurs physiques: 0
(Aucun élément malicieux détecté)


(end)