Malwarebytes Anti-Malware www.malwarebytes.org Date de l'analyse: 21/04/2016 Heure de l'analyse: 13:56 Fichier journal: malware2.txt Administrateur: Oui Version: 2.2.1.1043 Base de données de programmes malveillants: v2016.04.21.03 Base de données de rootkits: v2016.04.17.01 Licence: Essai Protection contre les programmes malveillants: Activé Protection contre les sites Web malveillants: Activé Autoprotection: Désactivé Système d'exploitation: Windows 8.1 Processeur: x64 Système de fichiers: NTFS Utilisateur: Cacao Type d'analyse: Analyse des menaces Résultat: Terminé Objets analysés: 356896 Temps écoulé: 27 min, 42 s Mémoire: Activé Démarrage: Activé Système de fichiers: Activé Archives: Activé Rootkits: Désactivé Heuristique: Activé PUP: Activé PUM: Activé Processus: 0 (Aucun élément malveillant détecté) Modules: 0 (Aucun élément malveillant détecté) Clés du Registre: 50 PUP.Optional.PlayNowRadio, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\playnowradio, En quarantaine, [63141a977821ee48d9b6f5380bf5728e], PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\APPID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}, En quarantaine, [2a4dc2efa6f375c11a94f0f6a85ad927], PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}, En quarantaine, [2a4dc2efa6f375c11a94f0f6a85ad927], PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}, En quarantaine, [2a4dc2efa6f375c11a94f0f6a85ad927], Adware.1ClickDownload, HKLM\SOFTWARE\CLASSES\APPID\{C007DADD-132A-624C-088E-59EE6CF0711F}, En quarantaine, [bcbbcce5861338fee2dd06f03fc327d9], Adware.1ClickDownload, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{C007DADD-132A-624C-088E-59EE6CF0711F}, En quarantaine, [bcbbcce5861338fee2dd06f03fc327d9], Adware.1ClickDownload, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{C007DADD-132A-624C-088E-59EE6CF0711F}, En quarantaine, [bcbbcce5861338fee2dd06f03fc327d9], PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}, En quarantaine, [beb9733efa9f46f01d1ee507639f6c94], PUP.Optional.Wajam, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}, En quarantaine, [beb9733efa9f46f01d1ee507639f6c94], PUP.Optional.Wajam, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}, En quarantaine, [beb9733efa9f46f01d1ee507639f6c94], PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}, En quarantaine, [50279f12e9b02f07a96d49ad53af18e8], PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}, En quarantaine, [50279f12e9b02f07a96d49ad53af18e8], PUP.Optional.TheSeaApp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C585D593-E7F3-4852-A200-561686EE02E4}, En quarantaine, [3740258cabee8babeeb2ad177f839769], PUP.Optional.TheSeaApp, HKLM\SOFTWARE\CLASSES\TheSeaApp.Plugin, En quarantaine, [3740258cabee8babeeb2ad177f839769], PUP.Optional.TheSeaApp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C585D593-E7F3-4852-A200-561686EE02E4}, En quarantaine, [3740258cabee8babeeb2ad177f839769], PUP.Optional.TheSeaApp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TheSeaApp.Plugin, En quarantaine, [3740258cabee8babeeb2ad177f839769], PUP.Optional.TheSeaApp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TheSeaApp.Plugin, En quarantaine, [3740258cabee8babeeb2ad177f839769], PUP.Optional.TheSeaApp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{C585D593-E7F3-4852-A200-561686EE02E4}, En quarantaine, [3740258cabee8babeeb2ad177f839769], PUP.Optional.TheSeaApp, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{C585D593-E7F3-4852-A200-561686EE02E4}, En quarantaine, [3740258cabee8babeeb2ad177f839769], PUP.Optional.TheSeaApp, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C585D593-E7F3-4852-A200-561686EE02E4}, En quarantaine, [3740258cabee8babeeb2ad177f839769], PUP.Optional.SearchProtect.AppFlsh, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, En quarantaine, [5c1b02af8f0aa2945b663db8de24916f], PUP.Optional.Wajam, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, En quarantaine, [0770fdb43366f64053e7905cea1828d8], PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}, En quarantaine, [2f48c0f164356acc5265e600af53eb15], PUP.Optional.BrowseFox, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SecretSauce, En quarantaine, [e790f8b9a3f63df977aa61c7ca377b85], PUP.Optional.TheSeaApp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\The Sea App, En quarantaine, [ea8d8f22b3e63cfa36da2e21bf456997], PUP.Optional.MySearchDial, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pflphaooapbgpeakohlggbpidpppgdff, En quarantaine, [e79071409cfdb086417e45f632d2c43c], PUP.Optional.RocketFind, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\_TMP, En quarantaine, [9fd85958009990a68769b390c53f9769], PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32LDR , En quarantaine, [6017565bdfbaf0468aaa7fd1b252db25], PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, En quarantaine, [e196f3be920721155fabc1d1887cae52], PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, En quarantaine, [a9ceaa073f5ada5cc14af999a55f0ef2], PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4BD6DF64-4C56-4A08-BDBF-330EB3AB7583}, Supprimer au redémarrage, [c5b27e33ddbcbf77da65f7ad37cda759], PUP.Optional.DigitalSites, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{755BB4B2-1DEF-4416-B207-D397859F8302}, Supprimer au redémarrage, [a5d2565b83160531965d980cad57728e], PUP.Optional.DigitalSites, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Digital Sites, Supprimer au redémarrage, [91e6ded3bfdaaa8c736c28fe0afa7b85], PUP.Optional.RocketFind, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Rocket Updater, Supprimer au redémarrage, [532468498712a88eac45d073c2426c94], PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\Iminent, En quarantaine, [75028928cecbbf777eff2e0318ec728e], PUP.Optional.InstallBrain, HKLM\SOFTWARE\WOW6432NODE\InstallIQ, En quarantaine, [4334743d2c6d82b40450032f739143bd], PUP.Optional.SuperOptimizer, HKLM\SOFTWARE\WOW6432NODE\{1146AC44-2F03-4431-B4FD-889BC837521F}, En quarantaine, [9ed9426fa9f085b1a5f7f85449bbd52b], PUP.Optional.SuperOptimizer, HKLM\SOFTWARE\WOW6432NODE\{6791A2F3-FC80-475C-A002-C014AF797E9C}, En quarantaine, [6116b3fedcbd6ec8a7f6e26a15ef9b65], PUP.Optional.MySearchDial, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pflphaooapbgpeakohlggbpidpppgdff, En quarantaine, [680fffb229701026912efb4038cc1ee2], PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\SPPDCOM, En quarantaine, [df984c6523763ff7c151eea46d9707f9], PUP.Optional.1ClickDownload, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\1ClickDownload, En quarantaine, [3641a908d6c3142250bab2647d8733cd], PUP.Optional.DigitalSites, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\DSiteproducts, En quarantaine, [7afd337e7a1f47ef07d775b1bf4506fa], PUP.Optional.InstallCore, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\InstallCore, En quarantaine, [4a2dbaf71782e551b3a652e030d4b64a], PUP.Optional.RocketFind, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\RocketUpdater, En quarantaine, [7106c1f04e4bf640aa4570d38480ff01], PUP.Optional.SuperOptimizer, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, En quarantaine, [dd9a417001983cfab1e77cd0f21243bd], PUP.Optional.SurferSafe, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\APPDATALOW\SOFTWARE\Safer-Surf, En quarantaine, [7ef9743d7821ef47d5fdce7e28dc9769], PUP.Optional.MySearchDial, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pflphaooapbgpeakohlggbpidpppgdff, En quarantaine, [b1c6f9b8debb57df07b24fecdd27d030], PUP.Optional.Trovi, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, En quarantaine, [a5d2664bf8a1f145042ccb85f90b926e], PUP.Optional.RocketFind, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\_TMP, En quarantaine, [e097d0e18d0cca6cda14b39054b09a66], PUP.Optional.Spigot, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2D54AB30-6597-494A-8B8A-B18A43ED2133}, En quarantaine, [d99e5f52badf41f539bd34163aca7090], Valeurs du Registre: 22 PUP.Optional.PlayNowRadio, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|playnowradio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio\1.3.2.11\playnowradio.exe, En quarantaine, [63141a977821ee48d9b6f5380bf5728e] PUP.Optional.NextLive, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|NextLive, C:\Windows\SysWOW64\rundll32.exe "C:\Users\Cacao\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l, En quarantaine, [c0b70ea3495061d5f36f4a07fc054bb5] PUP.Optional.RocketFind, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\_tmp|URL, http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_tele_14_28_ch&cd=2XzuyEtN2Y1L1QzuyByE0DtDtB0ByC0AtDyC0DyB0AyBzyzztN0D0Tzu0SzytByEtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyEzyyEyCyByE0D0EtG0C0BtA0EtG0CtD0A0BtGyBtCyDzytGyCzy0CyCzyzy0FyE0EyB0D0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzz0FyCyDyEtC0DtG0E0AyEyDtGzzyCyB0EtGtDtAtA0AtGtDzz0Czz0DtB0CyE0EyDyBzy2Q&cr=393680685&ir=, En quarantaine, [9fd85958009990a68769b390c53f9769] PUP.Optional.RocketFind, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\_tmp|TopResultURLFallback, http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_tele_14_28_ch&cd=2XzuyEtN2Y1L1QzuyByE0DtDtB0ByC0AtDyC0DyB0AyBzyzztN0D0Tzu0SzytByEtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyEzyyEyCyByE0D0EtG0C0BtA0EtG0CtD0A0BtGyBtCyDzytGyCzy0CyCzyzy0FyE0EyB0D0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzz0FyCyDyEtC0DtG0E0AyEyDtGzzyCyB0EtGtDtAtA0AtGtDzz0Czz0DtB0CyE0EyDyBzy2Q&cr=393680685&ir=, En quarantaine, [41364f62e3b6c47236baca797094e41c] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\chrome.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 131051338171184175, En quarantaine, [0d6a03ae5d3cfa3cc76c8ac6ca3a54ac] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\explorer.xxx|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 131051338171184175, En quarantaine, [4a2d4d644f4a05312310ef61f90b2dd3] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\firefox.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 131051338171184175, En quarantaine, [1166fab784159d9944efb79960a439c7] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\iexplore.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 131051338171184175, En quarantaine, [5621ab06a1f86dc900332a263bc9d12f] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\software_removal_tool.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 131051338171184175, En quarantaine, [8ee9fdb4b8e12b0b2310e66a857fc838] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\software_reporter_tool.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 131051338171184175, En quarantaine, [e394347d7c1d67cff043db757391768a] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32Ldr |{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 131051338171184175, En quarantaine, [6017565bdfbaf0468aaa7fd1b252db25] PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4BD6DF64-4C56-4A08-BDBF-330EB3AB7583}|Path, \Microsoft\Windows\Setup\8.1 auto install v2, Supprimer au redémarrage, [c5b27e33ddbcbf77da65f7ad37cda759] PUP.Optional.DigitalSites, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{755BB4B2-1DEF-4416-B207-D397859F8302}|Path, \Digital Sites, Supprimer au redémarrage, [a5d2565b83160531965d980cad57728e] PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\SPPDCOM|TS, 2, En quarantaine, [df984c6523763ff7c151eea46d9707f9] PUP.Optional.RocketFind, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\_tmp|URL, http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_tele_14_28_ch&cd=2XzuyEtN2Y1L1QzuyByE0DtDtB0ByC0AtDyC0DyB0AyBzyzztN0D0Tzu0SzytByEtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyEzyyEyCyByE0D0EtG0C0BtA0EtG0CtD0A0BtGyBtCyDzytGyCzy0CyCzyzy0FyE0EyB0D0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzz0FyCyDyEtC0DtG0E0AyEyDtGzzyCyB0EtGtDtAtA0AtGtDzz0Czz0DtB0CyE0EyDyBzy2Q&cr=393680685&ir=, En quarantaine, [e097d0e18d0cca6cda14b39054b09a66] PUP.Optional.RocketFind, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\_tmp|TopResultURLFallback, http://rocket-find.com/results.php?f=4&q={searchTerms}&a=rckt_tele_14_28_ch&cd=2XzuyEtN2Y1L1QzuyByE0DtDtB0ByC0AtDyC0DyB0AyBzyzztN0D0Tzu0SzytByEtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyEzyyEyCyByE0D0EtG0C0BtA0EtG0CtD0A0BtGyBtCyDzytGyCzy0CyCzyzy0FyE0EyB0D0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzz0FyCyDyEtC0DtG0E0AyEyDtGzzyCyB0EtGtDtAtA0AtGtDzz0Czz0DtB0CyE0EyDyBzy2Q&cr=393680685&ir=, En quarantaine, [a7d0971aecad42f436b8b98ad133946c] PUP.Optional.Conduit, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|URL, http://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPF29C097F-FAB1-4164-B0BA-F79494CF1791&q={searchTerms}&SSPV=, En quarantaine, [3146fcb5b8e1f244615d76aae91b748c] PUP.Optional.Conduit, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|SuggestionsURL_JSON, http://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}, En quarantaine, [5522d9d89affe84ea618859b8a7a33cd] PUP.Optional.Trovi, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|URL, http://www.trovi.com/Results.aspx?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISID=4154E6EE-6202-49BA-A160-944DDDD37FD7&SearchSource=58&CUI=&UM=8&UP=SP7CED04B1-7032-45BB-A2DC-E3F375E74700&D=032916&q={searchTerms}&SSPV=, En quarantaine, [c7b09f1217821b1b30ff54fc6b995ba5] PUP.Optional.Conduit, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|SuggestionsURL_JSON, http://suggest.seccint.com/CSuggestJson.ashx?prefix={searchTerms}&SSPV=, En quarantaine, [7205ddd49bfe1125a7190e12f311e11f] PUP.Optional.Trovi, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|DisplayName, Trovi, En quarantaine, [e88f882943569a9c2d02b0a053b1f40c] PUP.Optional.Spigot, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2D54AB30-6597-494A-8B8A-B18A43ED2133}|URL, https://fr.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=282369&p={searchTerms}, En quarantaine, [d99e5f52badf41f539bd34163aca7090] Données du Registre: 2 PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://start.mysearchdial.com/?f=1&a=tele_14_17_ch&cd=2XzuyEtN2Y1L1QzuyByE0DtDtB0ByC0AtDyC0DyB0AyBzyzztN0D0Tzu0SzzyEyBtN1L2XzutBtFtBtDtFyDtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyBtCyC0Ezy0DtAyCtG0C0B0E0AtG0B0Azz0EtGtC0AyCyBtGyC0C0FtDzyzz0C0C0CtA0DtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzz0FyCyDyEtC0DtG0E0AyEyDtGzzyCyB0EtGtDtAtA0AtGtDzz0Czz0DtB0CyE0EyDyBzy2Q&cr=1207809257&ir=, Bon : (www.google.com), Mauvais : (http://start.mysearchdial.com/?f=1&a=tele_14_17_ch&cd=2XzuyEtN2Y1L1QzuyByE0DtDtB0ByC0AtDyC0DyB0AyBzyzztN0D0Tzu0SzzyEyBtN1L2XzutBtFtBtDtFyDtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyBtCyC0Ezy0DtAyCtG0C0B0E0AtG0B0Azz0EtGtC0AyCyBtGyC0C0FtDzyzz0C0C0CtA0DtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzz0FyCyDyEtC0DtG0E0AyEyDtGzzyCyB0EtGtDtAtA0AtGtDzz0Czz0DtB0CyE0EyDyBzy2Q&cr=1207809257&ir=),Remplacé,[284f446d41585bdb5ea293aeae57b44c] PUP.Optional.Trovi, HKU\S-1-5-21-2023545585-1713788013-2138294092-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.trovi.com/?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISID=4154E6EE-6202-49BA-A160-944DDDD37FD7&SearchSource=55&CUI=&UM=8&UP=SP7CED04B1-7032-45BB-A2DC-E3F375E74700&D=032916&SSPV=, Bon : (www.google.com), Mauvais : (http://www.trovi.com/?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISID=4154E6EE-6202-49BA-A160-944DDDD37FD7&SearchSource=55&CUI=&UM=8&UP=SP7CED04B1-7032-45BB-A2DC-E3F375E74700&D=032916&SSPV=),Remplacé,[6c0bdad78e0bde5865aaf05260a5f709] Dossiers: 22 PUP.Optional.TheSeaApp, C:\Program Files (x86)\The Sea App (Internet Explorer), En quarantaine, [ea8d8f22b3e63cfa36da2e21bf456997], PUP.Optional.UpdateProc, C:\Users\Cacao\AppData\Roaming\DigitalSites\UpdateProc, En quarantaine, [7502d9d88b0edf5733f9bf92ec18f10f], PUP.Optional.UpdateProc, C:\Users\Cacao\AppData\Roaming\DigitalSites, En quarantaine, [7502d9d88b0edf5733f9bf92ec18f10f], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\bin, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\bin\plugins, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.EasySpeedPC, C:\Program Files (x86)\Probit Software\Easy Speed PC, En quarantaine, [94e3cbe63960a98d28d81700aa59c63a], PUP.Optional.Iminent, C:\Program Files (x86)\IminentToolbar, En quarantaine, [c7b0f9b82079a690368d60bb857e619f], PUP.Optional.NextLive, C:\Users\Cacao\AppData\Roaming\newnext.me, En quarantaine, [3641eac744550f27df0447d9f112a35d], PUP.Optional.NextLive, C:\Users\Cacao\AppData\Roaming\newnext.me\cache, En quarantaine, [3641eac744550f27df0447d9f112a35d], PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio, En quarantaine, [294e2091bfdab086250f0d1536cdf30d], PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio, En quarantaine, [294e2091bfdab086250f0d1536cdf30d], PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio\1.3.2.11, En quarantaine, [294e2091bfdab086250f0d1536cdf30d], PUP.Optional.RocketFind, C:\Users\Cacao\AppData\Roaming\RocketUpdater, En quarantaine, [bbbc8130376244f28bcb28fce61d7789], PUP.Optional.RocketFind, C:\Users\Cacao\AppData\Roaming\RocketUpdater\UpdateProc, En quarantaine, [bbbc8130376244f28bcb28fce61d7789], PUP.Optional.SecretSauce, C:\Users\Cacao\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpebffoameokfhnaaedmefjncfboino, En quarantaine, [a7d0cde44a4fd95dee2c6eb85ca747b9], PUP.Optional.SecretSauce, C:\Users\Cacao\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpebffoameokfhnaaedmefjncfboino\1.0.0_0, En quarantaine, [a7d0cde44a4fd95dee2c6eb85ca747b9], PUP.Optional.TornTV, C:\Program Files (x86)\TornTV.com, En quarantaine, [01761a97178287af52fb2a00e71c7090], PUP.Optional.TornTV, C:\Program Files (x86)\TornTV.com\log, En quarantaine, [01761a97178287af52fb2a00e71c7090], PUP.Optional.TornTV, C:\Program Files (x86)\TornTV.com\Torrents, En quarantaine, [01761a97178287af52fb2a00e71c7090], PUP.Optional.Managera, C:\Users\Cacao\AppData\Local\Temp\39fdaae5-8e0e-493c-88ec-e05c3be06e42, En quarantaine, [f285e6cb77221422a13ca985ee15748c], PUP.Optional.ExTutil, C:\Users\Cacao\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B, En quarantaine, [c1b64071a4f5360018db2e003dc67789], Fichiers: 55 PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio\1.3.2.11\playnowradio.exe, En quarantaine, [63141a977821ee48d9b6f5380bf5728e], PUP.Optional.NextLive, C:\Users\Cacao\AppData\Roaming\newnext.me\nengine.dll, En quarantaine, [c0b70ea3495061d5f36f4a07fc054bb5], PUP.Optional.BrowseFox, C:\Program Files (x86)\SecretSauce\SecretSauceUninstall.exe, En quarantaine, [e790f8b9a3f63df977aa61c7ca377b85], PUP.Optional.TheSeaApp, C:\Program Files (x86)\The Sea App (Internet Explorer)\The Sea App.dll, En quarantaine, [0b6c951cf2a776c080ba3122748df709], PUP.Optional.RegCleanPro, C:\Windows\System32\roboot64.exe, En quarantaine, [05723f722871f04616bb312c1aebfb05], PUP.Optional.NextLive, C:\Users\Cacao\AppData\Local\genienext\nengine.dll, En quarantaine, [2255c6eb8415a98d481a5bf63cc503fd], PUP.Optional.DigitalSites, C:\Windows\System32\Tasks\Digital Sites, En quarantaine, [9add4d64ebaef3436c7055d1d430956b], PUP.Optional.DigitalSites, C:\Windows\Tasks\Digital Sites.job, En quarantaine, [3d3a1e930594f640419c0f179d67728e], PUP.Optional.Iminent, C:\Users\Cacao\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage, En quarantaine, [6413e7ca435660d6c09bd16053b1fa06], PUP.Optional.RocketFind, C:\Windows\System32\Tasks\Rocket Updater, En quarantaine, [3a3dc2ef336696a09755251eb0548f71], PUP.Optional.RocketFind, C:\Windows\Tasks\Rocket Updater.job, En quarantaine, [e196545d415882b438b53e05a65e847c], PUP.Optional.TheSeaApp, C:\Program Files (x86)\The Sea App (Internet Explorer)\The Sea App.dll.config, En quarantaine, [ea8d8f22b3e63cfa36da2e21bf456997], PUP.Optional.TheSeaApp, C:\Program Files (x86)\The Sea App (Internet Explorer)\Interop.SHDocVw.dll, En quarantaine, [ea8d8f22b3e63cfa36da2e21bf456997], PUP.Optional.TheSeaApp, C:\Program Files (x86)\The Sea App (Internet Explorer)\Microsoft.mshtml.dll, En quarantaine, [ea8d8f22b3e63cfa36da2e21bf456997], PUP.Optional.TheSeaApp, C:\Program Files (x86)\The Sea App (Internet Explorer)\SpicIEx.dll, En quarantaine, [ea8d8f22b3e63cfa36da2e21bf456997], PUP.Optional.TheSeaApp, C:\Program Files (x86)\The Sea App (Internet Explorer)\Uninstall.exe, En quarantaine, [ea8d8f22b3e63cfa36da2e21bf456997], PUP.Optional.UpdateProc, C:\Users\Cacao\AppData\Roaming\DigitalSites\UpdateProc\prod.dat, En quarantaine, [7502d9d88b0edf5733f9bf92ec18f10f], PUP.Optional.UpdateProc, C:\Users\Cacao\AppData\Roaming\DigitalSites\UpdateProc\config.dat, En quarantaine, [7502d9d88b0edf5733f9bf92ec18f10f], PUP.Optional.UpdateProc, C:\Users\Cacao\AppData\Roaming\DigitalSites\UpdateProc\info.dat, En quarantaine, [7502d9d88b0edf5733f9bf92ec18f10f], PUP.Optional.UpdateProc, C:\Users\Cacao\AppData\Roaming\DigitalSites\UpdateProc\STTL.DAT, En quarantaine, [7502d9d88b0edf5733f9bf92ec18f10f], PUP.Optional.UpdateProc, C:\Users\Cacao\AppData\Roaming\DigitalSites\UpdateProc\TTL.DAT, En quarantaine, [7502d9d88b0edf5733f9bf92ec18f10f], PUP.Optional.SearchProtect.AppFlsh, C:\Windows\apppatch\Custom\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, En quarantaine, [4037eec35940f83e4dad266bd2323cc4], PUP.Optional.SearchProtect.AppFlsh, C:\Windows\apppatch\Custom\Custom64\{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb, En quarantaine, [e98e852c10897eb85f9c0f82f50ffe02], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\dbpebffoameokfhnaaedmefjncfboino.crx, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\SecretSauce.ico, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\sqlite3.exe, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\updateSecretSauce.InstallState, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\bin\sqlite3.dll, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\bin\utilSecretSauce.InstallState, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\bin\plugins\SecretSauce.FFUpdate.dll, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\bin\plugins\SecretSauce.GCUpdate.dll, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.SecretSauce, C:\Program Files (x86)\SecretSauce\bin\plugins\SecretSauce.IEUpdate.dll, En quarantaine, [3d3aedc46336d066ed29e824bc4740c0], PUP.Optional.EasySpeedPC, C:\Program Files (x86)\Probit Software\Easy Speed PC\ESPCReminder.exe, En quarantaine, [94e3cbe63960a98d28d81700aa59c63a], PUP.Optional.NextLive, C:\Users\Cacao\AppData\Roaming\newnext.me\nengine.cookie, En quarantaine, [3641eac744550f27df0447d9f112a35d], PUP.Optional.NextLive, C:\Users\Cacao\AppData\Roaming\newnext.me\cache\spark.bin, En quarantaine, [3641eac744550f27df0447d9f112a35d], PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio\1.3.2.11\app.ini, En quarantaine, [294e2091bfdab086250f0d1536cdf30d], PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio\1.3.2.11\chrmXtn.dll, En quarantaine, [294e2091bfdab086250f0d1536cdf30d], PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio\1.3.2.11\ffxtn.dll, En quarantaine, [294e2091bfdab086250f0d1536cdf30d], PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio\1.3.2.11\instl.js, En quarantaine, [294e2091bfdab086250f0d1536cdf30d], PUP.Optional.PlayNowRadio, C:\Users\Cacao\AppData\Local\playnowradio\playnowradio\1.3.2.11\playnowradio.crx, En quarantaine, [294e2091bfdab086250f0d1536cdf30d], PUP.Optional.RocketFind, C:\Users\Cacao\AppData\Roaming\RocketUpdater\UpdateProc\config.dat, En quarantaine, [bbbc8130376244f28bcb28fce61d7789], PUP.Optional.RocketFind, C:\Users\Cacao\AppData\Roaming\RocketUpdater\UpdateProc\info.dat, En quarantaine, [bbbc8130376244f28bcb28fce61d7789], PUP.Optional.RocketFind, C:\Users\Cacao\AppData\Roaming\RocketUpdater\UpdateProc\STTL.DAT, En quarantaine, [bbbc8130376244f28bcb28fce61d7789], PUP.Optional.RocketFind, C:\Users\Cacao\AppData\Roaming\RocketUpdater\UpdateProc\TTL.DAT, En quarantaine, [bbbc8130376244f28bcb28fce61d7789], PUP.Optional.SecretSauce, C:\Users\Cacao\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpebffoameokfhnaaedmefjncfboino\1.0.0_0\background.js, En quarantaine, [a7d0cde44a4fd95dee2c6eb85ca747b9], PUP.Optional.SecretSauce, C:\Users\Cacao\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpebffoameokfhnaaedmefjncfboino\1.0.0_0\content.js, En quarantaine, [a7d0cde44a4fd95dee2c6eb85ca747b9], PUP.Optional.SecretSauce, C:\Users\Cacao\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpebffoameokfhnaaedmefjncfboino\1.0.0_0\icon.png, En quarantaine, [a7d0cde44a4fd95dee2c6eb85ca747b9], PUP.Optional.SecretSauce, C:\Users\Cacao\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpebffoameokfhnaaedmefjncfboino\1.0.0_0\manifest.json, En quarantaine, [a7d0cde44a4fd95dee2c6eb85ca747b9], PUP.Optional.TornTV, C:\Program Files (x86)\TornTV.com\log\20131129.log, En quarantaine, [01761a97178287af52fb2a00e71c7090], PUP.Optional.TornTV, C:\Program Files (x86)\TornTV.com\Torrents\Almost-Human-Season-1-Episode-3-720p-HDTV-BGlowGazeD-3761002, En quarantaine, [01761a97178287af52fb2a00e71c7090], PUP.Optional.Managera, C:\Users\Cacao\AppData\Local\Temp\39fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js, En quarantaine, [f285e6cb77221422a13ca985ee15748c], PUP.Optional.Managera, C:\Users\Cacao\AppData\Local\Temp\39fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json, En quarantaine, [f285e6cb77221422a13ca985ee15748c], PUP.Optional.ExTutil, C:\Users\Cacao\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js, En quarantaine, [c1b64071a4f5360018db2e003dc67789], PUP.Optional.ExTutil, C:\Users\Cacao\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js, En quarantaine, [c1b64071a4f5360018db2e003dc67789], PUP.Optional.ExTutil, C:\Users\Cacao\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json, En quarantaine, [c1b64071a4f5360018db2e003dc67789], Secteurs physiques: 0 (Aucun élément malveillant détecté) (end)