Répondre à : URL:MAL 2016-09-08T13:41:29+00:00
Photo du profil de zinedzined
Participant
Post count: 11

Bonjour El Desaparecido

Merci beaucoup d’accepter de prendre de votre temps pour me venir en aide.
En fait, j’avais utilisé Adwcleaner hier…. avant de découvrir votre site (et j’avais donc déjà supprimé des choses, mais pour autant la fenêtre d’alerte d’Avast était toujours présente)

# AdwCleaner v3.208 – Rapport créé le 18/05/2014 à 12:39:22
# Mis à jour le 11/05/2014 par Xplode
# Système d’exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d’utilisateur : Denis – DENIS-F9A2778A2
# Exécuté depuis : D:Mes DocumentsTéléchargementsadwcleaner-3.208.exe
# Option : Nettoyer

***** [ Services ] *****

***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:Documents and SettingsAll UsersApplication DataWPM
Dossier Supprimé : C:Program FilesRightSurf
Dossier Supprimé : C:Program FilesSupTab
Dossier Supprimé : C:Documents and SettingsDenisApplication DataDSite
Dossier Supprimé : C:Documents and SettingsDenisApplication Datapdfforge
Dossier Supprimé : C:Documents and SettingsChristelleApplication DataMozillaFirefoxProfilesf2wwujbi.defaultExtensionsffxtlbr@mysearchdial.com
Dossier Supprimé : C:Documents and SettingsMargauxApplication DataMozillaFirefoxProfilesw03ppk6n.defaultExtensionsffxtlbr@mysearchdial.com
Fichier Supprimé : C:Documents and SettingsChristelleApplication DataMozillaFirefoxProfilesf2wwujbi.defaultExtensions{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}.xpi
Fichier Supprimé : C:Documents and SettingsDenisApplication DataMozillaFirefoxProfilesysm57oiw.defaultExtensions{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}.xpi
Fichier Supprimé : C:Documents and SettingsMargauxApplication DataMozillaFirefoxProfilesw03ppk6n.defaultExtensions{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}.xpi
Fichier Supprimé : C:Documents and SettingsDenisApplication DataMozillaFirefoxProfilesysm57oiw.defaultExtensionslightningnewtab@gmail.com.xpi
Fichier Supprimé : C:END
Fichier Supprimé : C:Documents and SettingsChristelleApplication DataMozillaFirefoxProfilesf2wwujbi.defaultsearchpluginsMysearchdial.xml
Fichier Supprimé : C:Documents and SettingsDenisApplication DataMozillaFirefoxProfilesysm57oiw.defaultsearchpluginsMysearchdial.xml
Fichier Supprimé : C:Documents and SettingsMargauxApplication DataMozillaFirefoxProfilesw03ppk6n.defaultsearchpluginsMysearchdial.xml
Fichier Supprimé : C:Documents and SettingsChristelleApplication DataMozillaFirefoxProfilesf2wwujbi.defaultuser.js
Fichier Supprimé : C:Documents and SettingsDenisApplication DataMozillaFirefoxProfilesysm57oiw.defaultuser.js
Fichier Supprimé : C:Documents and SettingsMargauxApplication DataMozillaFirefoxProfilesw03ppk6n.defaultuser.js

***** [ Raccourcis ] *****

***** [ Registre ] *****

Clé Supprimée : HKLMSYSTEMCurrentControlSetServicesEventlogApplicationWajamUpdater
Clé Supprimée : HKLMSOFTWAREClassesAppID{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Clé Supprimée : HKLMSOFTWAREClassesTypeLib{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Clé Supprimée : HKCUSoftwareMicrosoftInternet ExplorerSearchScopes{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Clé Supprimée : HKLMSOFTWAREMicrosoftInternet ExplorerSearchScopes{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Clé Supprimée : HKCUSoftwaredsiteproducts
Clé Supprimée : HKCUSoftwareYahooPartnerToolbar
Clé Supprimée : HKCUSoftwareMicrosoftWindowsCurrentVersionApp ManagementARPCacheDSite
Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionApp ManagementARPCacheWajam

***** [ Navigateurs ] *****

-\ Internet Explorer v7.0.6000.21376

-\ Mozilla Firefox v10.0.2 (fr)

[ Fichier : C:Documents and SettingsChristelleApplication DataMozillaFirefoxProfilesf2wwujbi.defaultprefs.js ]

Ligne Supprimée : user_pref(“browser.search.defaultenginename”, “Mysearchdial”);
Ligne Supprimée : user_pref(“browser.search.order.1”, “Mysearchdial”);
Ligne Supprimée : user_pref(“extensions.enabledAddons”, “jqs@sun.com:1.0,{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:6.3.0.11079,ffxtlbr@mysearchdial.com:1.6.0,wrc@avast.com:9.0.2013.75,{972ce4c6-7e08-4474-a285-3208198ce6fd[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.AL”, 2);
Ligne Supprimée : user_pref(“extensions.mysearchdial.aflt”, “tele0202ff”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.appId”, “{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cd”, “2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cntry”, “FR”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cr”, “1703619422”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dfltLng”, “”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dfltSrch”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dnsErr”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dpkLst”, “3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.excTlbr”, false);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hdrMd5”, “DBF36396208E2237C89066C5D262E8A0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hmpg”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hmpgUrl”, “hxxp://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1Czut[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.id”, “00112F31755A61EE”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.instlDay”, “16120”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.instlRef”, “”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.lastB”, “hxxp://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBt[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.lastVrsnTs”, “”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.newTabUrl”, “hxxp://start.mysearchdial.com/?f=2&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1Cz[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.pnu_base”, “{“newVrsn”:”96″,”lastVrsn”:”96″,”vrsnLoad”:””,”showMsg”:”false”,”showSilent”:”true”,”msgTs”:0,”lstMsgTs”:”0″}”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.prdct”, “mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.prtnrId”, “mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.sg”, “{smplGrp}”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.srchPrvdr”, “Mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.tlbrId”, “base”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.tlbrSrchUrl”, “hxxp://start.mysearchdial.com/?f=3&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.vrsn”, “1.8.21.0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.vrsni”, “1.8.21.0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.hmpg”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.newTab”, false);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.smplGrp”, “none”);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.vrsnTs”, “1.8.21.010:12:26”);

[ Fichier : C:Documents and SettingsDenisApplication DataMozillaFirefoxProfilesysm57oiw.defaultprefs.js ]

Ligne Supprimée : user_pref(“browser.newtab.url”, “hxxp://www.sweet-page.com/newtab/?type=nt&ts=1390914160&from=cor&uid=ST3160812A_5LS5R7TBXXXX5LS5R7TB”);
Ligne Supprimée : user_pref(“browser.search.defaultenginename”, “Mysearchdial”);
Ligne Supprimée : user_pref(“browser.search.order.1”, “Mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.AL”, 2);
Ligne Supprimée : user_pref(“extensions.mysearchdial.aflt”, “tele0202ff”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.appId”, “{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cd”, “2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cntry”, “FR”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cr”, “1703619422”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dfltLng”, “”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dfltSrch”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dnsErr”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dpkLst”, “3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.excTlbr”, false);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hdrMd5”, “B5BD2FE5A10952DC24129A4BB872466D”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hmpg”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hmpgUrl”, “hxxp://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1Czut[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.id”, “00112F31755A61EE”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.instlDay”, “16120”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.instlRef”, “”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.lastB”, “hxxp://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBt[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.lastVrsnTs”, “1.8.21.010:12:26”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.newTabUrl”, “hxxp://start.mysearchdial.com/?f=2&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1Cz[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.pnu_base”, “{“newVrsn”:”90″,”lastVrsn”:”90″,”vrsnLoad”:””,”showMsg”:”false”,”showSilent”:”false”,”msgTs”:0,”lstMsgTs”:”0″}”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.prdct”, “mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.prtnrId”, “mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.sg”, “none”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.srchPrvdr”, “Mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.tlbrId”, “base”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.tlbrSrchUrl”, “hxxp://start.mysearchdial.com/?f=3&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.vrsn”, “1.8.21.0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.vrsni”, “1.8.21.0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.hmpg”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.newTab”, false);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.smplGrp”, “none”);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.vrsnTs”, “1.8.21.010:12:26”);

[ Fichier : C:Documents and SettingsMargauxApplication DataMozillaFirefoxProfilesw03ppk6n.defaultprefs.js ]

Ligne Supprimée : user_pref(“browser.search.defaultenginename”, “Mysearchdial”);
Ligne Supprimée : user_pref(“browser.search.order.1”, “Mysearchdial”);
Ligne Supprimée : user_pref(“extensions.enabledAddons”, “ffxtlbr@mysearchdial.com:1.6.0,wrc@avast.com:9.0.2013.75,{972ce4c6-7e08-4474-a285-3208198ce6fd}:11.0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.AL”, 2);
Ligne Supprimée : user_pref(“extensions.mysearchdial.aflt”, “tele0202ff”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.appId”, “{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cd”, “2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cntry”, “FR”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.cr”, “1703619422”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dfltLng”, “”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dfltSrch”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dnsErr”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.dpkLst”, “3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.excTlbr”, false);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hdrMd5”, “DBF36396208E2237C89066C5D262E8A0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hmpg”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial.hmpgUrl”, “hxxp://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1Czut[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.id”, “00112F31755A61EE”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.instlDay”, “16120”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.instlRef”, “”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.lastB”, “hxxp://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBt[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.lastVrsnTs”, “”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.newTabUrl”, “hxxp://start.mysearchdial.com/?f=2&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1Cz[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.pnu_base”, “{“newVrsn”:”96″,”lastVrsn”:”96″,”vrsnLoad”:””,”showMsg”:”false”,”showSilent”:”true”,”msgTs”:0,”lstMsgTs”:”0″}”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.prdct”, “mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.prtnrId”, “mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.sg”, “{smplGrp}”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.srchPrvdr”, “Mysearchdial”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.tlbrId”, “base”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.tlbrSrchUrl”, “hxxp://start.mysearchdial.com/?f=3&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1[…]
Ligne Supprimée : user_pref(“extensions.mysearchdial.vrsn”, “1.8.21.0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial.vrsni”, “1.8.21.0”);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.hmpg”, true);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.newTab”, false);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.smplGrp”, “none”);
Ligne Supprimée : user_pref(“extensions.mysearchdial_i.vrsnTs”, “1.8.21.010:12:26”);
Ligne Supprimée : user_pref(“extensions.wrc.SearchRules.ask.com.style”, “.WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(“I[…]
Ligne Supprimée : user_pref(“extensions.wrc.SearchRules.ask.com.url”, “^hxxp(s)?\:\/\/(.+\.)?ask\.com\/.*”);

-\ Google Chrome v23.0.1271.64

[ Fichier : C:Documents and SettingsDenisLocal SettingsApplication DataGoogleChromeUser DataDefaultpreferences ]

Supprimée [Search Provider] : hxxp://start.mysearchdial.com/results.php?f=4&q=” onclick=”window.open(this.href);return false;{searchTerms}&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1703619422&ir=
Supprimée [Homepage] : hxxp://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1703619422&ir=” onclick=”window.open(this.href);return false;

*************************

AdwCleaner[R0].txt – [16120 octets] – [18/05/2014 12:37:06]
AdwCleaner[S0].txt – [16303 octets] – [18/05/2014 12:39:22]

########## EOF – C:AdwCleanerAdwCleaner[S0].txt – [16364 octets] ##########

Et puis ensuite j’avais utilisé Malwarebytes Anti-Malware dont voici le rapport d’analyse :

Malwarebytes Anti-Malware
http://www.malwarebytes.org” onclick=”window.open(this.href);return false;

Date de l’examen: 19/05/2014
Heure de l’examen: 09:37:24
Fichier journal: 19 mai 2014 9H37.txt
Administrateur: Oui

Version: 2.00.1.1004
Base de données Malveillants: v2014.05.19.03
Base de données Rootkits: v2014.03.27.01
Licence: Gratuite
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Chameleon: Désactivé(e)

Système d’exploitation: Windows XP Service Pack 3
Processeur: x86
Système de fichiers: NTFS
Utilisateur: Denis

Type d’examen: Examen “Menaces”
Résultat: Terminé
Objets analysés: 314066
Temps écoulé: 18 min, 3 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Shuriken: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Clés du Registre: 4
PUP.Optional.Wajam.A, HKUS-1-5-21-220523388-1390067357-725345543-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREMICROSOFTWINDOWSCURRENTVERSIONEXTSTATS{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}, , [043bc1921d5efa3c53fcaa82d32f04fc],
PUP.Optional.MySearchDial.A, HKUS-1-5-21-220523388-1390067357-725345543-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREmysearchdial.com, , [cd72df746a11aa8c841310a428db926e],
PUP.Optional.MySearchDial.A, HKUS-1-5-21-220523388-1390067357-725345543-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREmysearchdial.com, , [82bd035033485bdbadea8d2741c25aa6],
PUP.Optional.Wajam.A, HKUS-1-5-21-220523388-1390067357-725345543-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREWAJAM, , [90af074cbdbe95a1cc212b8bf40f8f71],

Valeurs du Registre: 1
PUP.Optional.Wajam.A, HKUS-1-5-21-220523388-1390067357-725345543-1006-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREWAJAM|affiliate_id, 3672, , [90af074cbdbe95a1cc212b8bf40f8f71]

Données du Registre: 0
(No malicious items detected)

Dossiers: 0
(No malicious items detected)

Fichiers: 33
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultsearchpluginsMysearchdial.xml, , [f54a0053a1da2c0a78ac83106d9554ac],
PUP.Optional.RightSurf.A, C:Documents and SettingsDenisApplication DataMozillaFirefoxProfilesysm57oiw.defaultextensions{b9a19c25-a741-47e5-91a2-0b62bef307ff}.xpi, , [ed52ec67502bff37ea57bcd738ca27d9],
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultprefs.js, Bon: (), Mauvais: (user_pref(“browser.startup.homepage”, “http://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1703619422&ir=”);), ,[211ea7acceada591ab31354431d3ae52]
PUP.Optional.MySearch.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.irmysearch.aflt”, “tele0202ff”);), ,[71ce71e28cefa59155499bdeed17857b]
PUP.Optional.MySearch.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.irmysearch.instlRef”, “”);), ,[86b94b080f6cf5410f8fcaaf7c886799]
PUP.Optional.MySearch.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.irmysearch.cr”, “1703619422”);), ,[3e01e86b7b0077bffba3b5c456ae847c]
PUP.Optional.MySearch.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.irmysearch.cd”, “2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R”);), ,[a19ee2717803ac8a207ea5d4fa0aac54]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.hmpg”, true);), ,[7cc33e153c3ff244ecbb0772030103fd]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.hmpgUrl”, “http://start.mysearchdial.com/?f=1&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1703619422&ir=”);), ,[350a2b28aad1ff37ced9295060a48a76]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.dfltSrch”, true);), ,[093677dcd9a22016acfbf9808f7501ff]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.srchPrvdr”, “Mysearchdial”);), ,[231c68eb90ebdd59fcab96e322e24db3]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.dnsErr”, true);), ,[78c7d87b1962c5716344c8b1cd3734cc]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial_i.newTab”, false);), ,[cd721241d3a851e50d9ababfd72d4db3]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.newTabUrl”, “http://start.mysearchdial.com/?f=2&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1703619422&ir=”);), ,[67d88cc7b7c4082efbacb1c858acc53b]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.tlbrSrchUrl”, “http://start.mysearchdial.com/?f=3&a=tele0202ff&cd=2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1703619422&ir=&q=”);), ,[58e764ef4a31d2649512fa7f56ae926e]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.id”, “00112F31755A61EE”);), ,[eb5474dfc2b951e59c0b1d5ca65e1ce4]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.instlDay”, “16120”);), ,[5ae52132780385b1f5b22752cc38e917]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.vrsn”, “1.8.21.0”);), ,[221d9db6a9d27cba5156e990b54fb947]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.vrsni”, “1.8.21.0”);), ,[fc43fe556714d95d5156eb8ec73da759]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial_i.vrsnTs”, “1.8.21.010:12:26”);), ,[3e01f45f2952cf673473453419ebd828]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.prtnrId”, “mysearchdial”);), ,[0f30db78205b85b1e8bf522709fb29d7]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.prdct”, “mysearchdial”);), ,[c07fe1729edd0a2cb1f6a7d26e9639c7]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.aflt”, “tele0202ff”);), ,[fc43ff54a0db2c0ae5c27dfc7f85ec14]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial_i.smplGrp”, “none”);), ,[fb44e271a5d637ffdbcc1465b64eb050]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.tlbrId”, “base”);), ,[013ed87b81fa2d099710dc9d2bd9c43c]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.instlRef”, “”);), ,[ce7189ca0f6ce74f4e59bfbafb0934cc]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.dfltLng”, “”);), ,[47f890c3c6b584b2a007dd9c07fddd23]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.appId”, “{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}”);), ,[2e1192c1ec8f7bbb941329500df7ab55]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.excTlbr”, false);), ,[a19ef55e88f3bc7a66417702d72dc43c]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial_i.hmpg”, true);), ,[6dd2c68d56253105e5c24732798b936d]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.cr”, “1703619422”);), ,[a8970d4658230e28ccdb2059976d39c7]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.cd”, “2XzuyEtN2Y1L1QzutDtDtCtCtB0FtAtCyByDyD0AyCtC0E0EtN0D0Tzu0SyBzztDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R”);), ,[44fbe46f92e9bd79c8df6f0a51b323dd]
PUP.Optional.MySearchDial.A, C:Documents and SettingsLocalServiceApplication DataMozillaFirefoxProfiles8knczz2o.defaultuser.js, Bon: (), Mauvais: (user_pref(“extensions.mysearchdial.AL”, 2);), ,[2f10282b94e79b9bd7d04534ea1a3fc1]

Secteurs physiques: 0
(No malicious items detected)

(end)

A plus tard
Je vous remercie beaucoup
Cordialement
zined