Rating: 5.0. From 1 vote.
Please wait...

De nombreux programmes développés par PerformerSoft sont qualifiés par les antivirus de Logiciels potentiellement Indésirables (LPI). Les plus connus sont Speed Analysis, SpecialSavings, InstallBrain ou encore BitGuard.

Les logiciels potentiellement indésirables (LPI) ou Potentialy Unwanted Programs (PUP) sont à l’origine de nombreuses infections. L’exemple le plus souvent rencontré est celui des adwares InstallCore, CrossRider, Graftor ou Boxore qui polluent la Base de Registres et vos unités de stockage de données. Ils s’installent généralement à votre insu via le téléchargement de gratuiciels. En effet certains sites utilisent la méthode de repaquetage, une opération qui consiste à refaire le module d’installation du logiciel en y ajoutant des options de téléchargement. Ces options permettent d’ajouter d’autres logiciels comme par exemple des barres d’outils de navigateur, des adwares, des logiciels potentiellement indésirables, des logiciels à publicités intrusives, voire des pirates de navigateur.

PerformerSoft

performersoft-pup-adware

Recensé les : 12/12/2012, 18/05/2013, 02/06/2013, 13/09/2013, 13/05/2014
Propriétaire : Performersoft LLC – U.S.A. (Beaverton)
Origine : PUP.Optional

Produit

BitGuard
Browsers Protector
BrowserDefender
eType Toolbar
IB Updater Service
Jet Browser
PC Performer
Performancer
SpecialSavings
Speed Analysis
Speed Test Analysis
VideoPerformer
Zula Games

Numéro de série

07dac5f73c6773

Algorithme MD5

EE3EC3BF27EC6C6FB45E4125255CABE5
2D89ABAC9D439ABAD1E427A467F0687D
7B388487CF9C4D3F09244E8BA4ECEF55
060CFEBA44859BBD439208532DEB64F1
15382BEFD84EC2490A588F8BBC624339

Caractéristiques

– Il installe un programme d’extension pour le navigateur Google Chrome (G2),
– Il installe un programme d’extension pour le navigateur Mozilla Firefox (M2),
– Il installe un plugin pour le navigateur Mozilla Firefox (M3),
– Il s’installe en tant que BHO (Browser Helper Object) de Navigateur internet (O2),
– Il place un raccourci Quick Launch sous Microsoft Internet Explorer (O4 GS),
– Il s’installe en tant que valeur de registre AppInit_DLLs (O20),
– Il s’installe en tant que service pour être lancé à chaque démarrage du système (O23),(SS/SR),
– Il démarre une tâche planifiée en automatique (O39),
– Il s’installe en tant que programme (O42),
– Il crée de multiples clés de Registre “Software”,
– Il crée des dossiers supplémentaires (O43),
– Il créé une clé de registre ShareTools MSconfig StartupReg (O53),
– Il crée de multiples fichiers utilisateurs (O61),
– Il crée une connexion entrante active dans les exceptions d’application du parefeu Windows (O87),
– Il crée de multiples fichiers et dossiers (O88 ),

Rapport ZHPDiag

Recensé le 12/12/2012.
O39 – APT:Automatic Planified Task – C:\Windows\Tasks\PC Performer_DEFAULT.job
O39 – APT:Automatic Planified Task – C:\Windows\Tasks\PC Performer_UPDATES.job
[MD5.EE3EC3BF27EC6C6FB45E4125255CABE5] [APT] [PC Performer] (.PerformerSoft LLC.) — C:\Program Files\PC Performer\PCPerformer.exe
[MD5.EE3EC3BF27EC6C6FB45E4125255CABE5] [APT] [PC Performer_DEFAULT] (.PerformerSoft LLC.) — C:\Program Files\PC Performer\PCPerformer.exe
[MD5.EE3EC3BF27EC6C6FB45E4125255CABE5] [APT] [PC Performer_UPDATES] (.PerformerSoft LLC.) — C:\Program Files\PC Performer\PCPerformer.exe
O42 – Logiciel: PC Performer – (.PerformerSoft LLC.) [HKLM] — PC Performer_is1
O43 – CFD: 07/12/2012 – 22:35:01 – [11,861] —-D C:\Program Files\PC Performer
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PC Performer_is1]
C:\Program Files\PC Performer

Recensé le 18/05/2013
G2 – GCE: Preference [User Data\Default] [dgjkhjdcljddbedokogakmmdjgnbeanf] Speed Analysis 2 v.1.0.0.0 (Désactivé )
M2 – MFEP: prefs.js [Coolman – 61zmuhik.default\speedanalysis02@SpeedAnalysis.com] [] Speed Analysis 2 v1.0.0.0 (..)
M2 – MFEP: prefs.js [Coolman – 61zmuhik.default\speedanalysis02@SpeedAnalysis.com] [] Speed Analysis 2 v1.0.0.3 (..)
O2 – BHO: Speed Analysis 2 – {18DBB6CE-3148-4FEC-B481-103CB3290427} . (.SpeedAnalysis.com – ScriptHost.) — C:\Program Files\Speed Analysis 2\ScriptHost.dll
O2 – BHO: Speed Test Analysis – {310D38FE-EB4C-467C-8781-B7C2AEB7847D} . (.SpeedAnalysis.com – ScriptHost.) — C:\Program Files\Speed Test Analysis\ScriptHost.dll
O4 – GS\Desktop: SpeedAnalysis.lnk – Clé orpheline
O42 – Logiciel: Speed Analysis 2 – (.SpeedAnalysis.com.) [HKLM] — Speed Analysis 2
HKCU\Software\Speed Analysis 2]
O43 – CFD: 30/04/2013 – 21:06:52 – [0,079] —-D C:\Users\user\AppData\Roaming\SpeedAnalysis2
O43 – CFD: 29/06/2013 – 13:51:13 – [2,482] —-D C:\Program Files\Speed Analysis 2
O43 – CFD: 29/06/2013 – 13:51:13 – [0,081] —-D C:\Documents and Settings\Coolman\Application Data\SpeedAnalysis2
O61 – LFC: 29/06/2013 – 12:51:12 —A- C:\Documents and SettingsCoolman\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf\1.0.0.3\manifest.json [1332]
O61 – LFC: 29/06/2013 – 12:51:13 —A- C:\Documents and SettingsCoolman\Application Data\Mozilla\Firefox\Profiles\17rtqr2w.default\extensions\speedanalysis02@SpeedAnalysis.com\chrome.manifest [332]
O61 – LFC: 29/06/2013 – 12:51:13 —A- C:\Documents and SettingsCoolman\Application Data\Mozilla\Firefox\Profiles\17rtqr2w.default\extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\background.html [118]
O61 – LFC: 29/06/2013 – 12:51:13 —A- C:\Documents and SettingsCoolman\Application Data\Mozilla\Firefox\Profiles\17rtqr2w.default\extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\bg.js [469]
O61 – LFC: 29/06/2013 – 12:51:13 —A- C:\Documents and SettingsCoolman\Application Data\Mozilla\Firefox\Profiles\17rtqr2w.default\extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\button.xml [1582]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{310D38FE-EB4C-467C-8781-B7C2AEB7847D}]
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 2
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DBB6CE-3148-4FEC-B481-103CB3290427}
HKLM\Software\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
HKCU\Software\Speed Analysis 2
C:\Documents and Settings\Coolman\Application Data\Mozilla\Firefox\Profiles\67rtqr2w.default\Extensions\speedanalysis02@SpeedAnalysis.com
C:\Users\Coolman\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
C:\Users\Coolman\AppData\Roaming\Mozilla\Firefox\Profiles\62zmuhik.default\Extensions\speedanalysis02@SpeedAnalysis.com
C:\Users\Coolman\AppData\Roaming\SpeedAnalysis2
C:\Documents and Settings\Coolman\Application Data\SpeedAnalysis2
C:\Program Files\Speed Analysis 2
C:\Program Files\Speed Test Analysis\ScriptHost.dll

Recensé le 02/06/2013
M2 – MFEP: prefs.js [J-C – 0f572mux.default\{d0230100-3044-43b1-a44e-70dc12fd418c}] [] eType Toolbar v2.0.0.7 (..)
O4 – GS\Desktop: Video Performer.lnk . (.PerformerSoft LLC – Video Performer.) — C:\Program Files (x86)\VideoPerformer\VideoPerformer.exe
O42 – Logiciel: VideoPerformer – (.PerformerSoft LLC.) [HKLM][64Bits] — VideoPerformer
O42 – Logiciel: eType Toolbar – (.Visicom Media Inc..) [HKLM][64Bits] — etype
[HKCU\Software\5fed78de13ce510]
O43 – CFD: 01/06/2013 – 16:20:36 – [24,312] —-D C:\Program Files (x86)\VideoPerformer
O43 – CFD: 01/06/2013 – 16:20:36 – [0,002] —-D C:\Users\Coolman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VideoPerformer
[HKCU\Software\8558adae06aed41\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.761.139]:folderName=”eType Manager”
O87 – FAEL: “{DB0C9AED-D12E-4FD4-AD42-4DEF44B2DFC5}” [In-None-P17-TRUE] .(…) — C:\Users\Coolman\Downloads\VideoPerformerSetup.exe
O87 – FAEL: “{6C857566-5205-4126-B9AC-2E276D526D91}” [Out-None-P17-TRUE] .(…) — C:\Users\Coolman\Downloads\VideoPerformerSetup.exe
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VideoPerformer]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\etype]
[HKCU\Software\5fed78de13ce510]
C:\Program Files (x86)\VideoPerformer
C:\Users\Coolman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VideoPerformer
[HKCU\Software\5fed78de13ce510\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.796.11]:guid=”{16cdff19-861d-48e3-a751-d99a27784753}”
[HKCU\Software\5fed78de13ce510\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.796.11]:version=”2.3.796.11″
[HKCU\Software\5fed78de13ce510\history\{16cdff19-861d-48e3-a751-d99a27784753}2.6.1123.78]:guid=”{16cdff19-861d-48e3-a751-d99a27784753}”
[HKCU\Software\5fed78de13ce510\history\{16cdff19-861d-48e3-a751-d99a27784753}2.6.1123.78]:version=”2.6.1123.78″
[HKCU\Software\5fed78de13ce510]:GUID=”{16cdff19-861d-48e3-a751-d99a27784753}”
[HKLM\Software\Wow6432Node\5fed78de13ce510]:GUID=”{16cdff19-861d-48e3-a751-d99a27784753}”

Recensé le 06/06/2013
O4 – HKLM\..\Run: [Browsers Protector] . (.Publisher Name – Browsers Protector.) — C:\Program Files\Browsers Protector\regmon32.exe
O42 – Logiciel: Browsers Protector – (.Publisher Name.) [HKLM] — Browsers Protector
[HKLM\Software\Browsers Protector]
O43 – CFD: 08/10/2012 – 13:27:02 – [0,048] —-D C:\Program Files\Browsers Protector
O53 – SMSR:HKLM\…\startupreg\Browsers Protector [Key] . (…) — C:\Program Files\Browsers Protector\regmon32.exe
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Browsers Protector
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Browsers Protector]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Browsers Protector]
[HKLM\Software\Browsers Protector]
C:\Program Files\Browsers Protector
C:\Program Files\Browsers Protector\regmon32.exe

Recensé le 13/09/2013
Aperçu ZHPDiag :
[MD5.2D89ABAC9D439ABAD1E427A467F0687D] – (…) — C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [2845152] [PID.5232]
M3 – MFPP: Plugins – [Coolman] — C:\Documents and Settings\Coolman\Application Data\Mozilla\Firefox\Profiles\s3a7k4mv.default\searchplugins\BitGuard.xml
O20 – AppInit_DLLs: . (…) – c:\docume~1\Coolman\applic~1\bitguard\261673~1.238\{c16c1~1\bitguard.dll
O23 – Service: BitGuard (BitGuard) . (…) – C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
O39 – APT:Automatic Planified Task – C:\WINDOWS\Tasks\BitGuard.job [280]
O42 – Logiciel: BitGuard – (.MediaTechSoft Inc..) [HKLM][64Bits] — {15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}
O43 – CFD: 12/09/2013 – 20:19:18 – [8,084] —-D C:\Documents and Settings\Coolman\Application Data\BitGuard
O43 – CFD: 12/09/2013 – 20:19:25 – [0,001] —-D C:\Documents and Settings\Coolman\Menu Démarrer\Programmes\BitGuard
O43 – CFD: 14/09/2013 – 14:39:59 – [8,436] —-D C:\ProgramData\BitGuard
O43 – CFD: 14/09/2013 – 14:40:07 – [0,001] —-D C:\Users\Coolman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
O45 – LFCP:[MD5.7B388487CF9C4D3F09244E8BA4ECEF55] – 14/09/2013 – 13:40:17 —A- – C:\Windows\Prefetch\BITGUARD.EXE-86EB8BEB.pf
O61 – LFC: 12/09/2013 – 19:19:25 —A- . (…) — C:\Documents and Settings\Coolman\Menu Démarrer\Programmes\BitGuard\Uninstall BitGuard.lnk [1353]
O64 – Services: CurCS – 10/09/2013 – Pas de propriétaire (BitGuard) .(…) – LEGACY_BITGUARD
[HKCU\Software\8ed7d0b639bf45]:GUID=”{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}”
[HKCU\Software\8ed7d0b639bf45]:INSTALL_FOLDER_NAME=”BitGuard”
[HKCU\Software\8ed7d0b639bf45]:PROTECTOR_DLL_NAME=”BitGuard.dll”
[HKCU\Software\8ed7d0b639bf45]:PROTECT_EXE_NAME=”BitGuard.exe”
[HKCU\Software\8ed7d0b639bf45]:SERVICE_NAME=”BitGuard”
[HKLM\Software\8ed7d0b639bf45]:INSTALL_FOLDER_NAME=”BitGuard”
[HKLM\Software\8ed7d0b639bf45]:PROTECTOR_DLL_NAME=”BitGuard.dll”
[HKLM\Software\8ed7d0b639bf45]:PROTECT_EXE_NAME=”BitGuard.exe”
[HKLM\Software\8ed7d0b639bf45]:SERVICE_NAME=”BitGuard”
SR – | Auto 13/09/2013 3029472 | (BitGuard) . (…) – C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}]
[HKLM\SYSTEM\CurrentControlSet\Services\BitGuard]
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BITGUARD]
C:\ProgramData\BitGuard
C:\Users\Coolman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
C:\Documents and Settings\Coolman\Menu Démarrer\Programmes\BitGuard
C:\Documents and Settings\Coolman\Application Data\BitGuard
C:\Documents and Settings\Coolman\Menu Démarrer\Programmes\BitGuard
C:\WINDOWS\Tasks\BitGuard.job

Recensé le 13/05/2014
[MD5.060CFEBA44859BBD439208532DEB64F1] – (. – Installer.) — C:\ProgramData\IBUpdaterService\ibsvc.exe [593312] [PID.4264]
G2 – GCE: Preference [User Data\Default] [dlnembnfbcpjnepmfjmngjenhhajpdfd] IB Updater v.2.0.0.578, (Activé )
G2 – GCE: Preference [User Data\Default] [gflandjopdloblmlcoiidmncpinmmacn] Zula Games v.1.0.0.5 (Activé )
O2 – BHO: Zula Games – {A9337080-7CBF-4E3E-80C1-3867BEDD88E0} . (.Zula Games – Zula Games.) — C:\Program Files\Zula Games\ScriptHost.dll
O23 – Service: Updater Service (IBUpdaterService) . (.Pas de propriétaire – Installer.) – C:\ProgramData\IBUpdaterService\ibsvc.exe
O23 – Service: (IBUpdaterService) . (…) – C:\Windows\System32\dmwu.exe
O42 – Logiciel: IB Updater Service – (…) [HKLM][64Bits] — WNLT
O42 – Logiciel: Jet Browser version 0.2.0.7 – (.Performersoft LLC.) [HKLM][64Bits] — {1EB98921-3AD1-4A7A-BED2-B4054E9CFA8E}_is1
HKLM\Software\IB Updater
HKLM\Software\Wow6432Node\IB Updater
O43 – CFD: 18/05/2013 – 17:53:32 – [0,002] —-D C:\ProgramData\IBUpdaterService
O43 – CFD: 12/07/2015 – [] D — C:\Users\Coolman\AppData\Local\DriverSpeedSetup
O45 – LFCP:[MD5.E279AD68CE63DBD3EC2EA508588273D7] – 02/07/2013 – 11:56:56 —A- – C:\Windows\Prefetch\IBSVC.EXE-DF599968.pf
[MD5.15382BEFD84EC2490A588F8BBC624339] [SPRF][01-04-13] (.Pas de propriétaire – Installer.) — C:\Users\Coolman\Desktop\bundleSetup.exe [609088]
SR – | Auto 1455408 | (IBUpdaterService) . (…) – C:\Windows\System32\dmwu.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A9337080-7CBF-4E3E-80C1-3867BEDD88E0}
HKLM\Software\Classes\CLSID\{A9337080-7CBF-4E3E-80C1-3867BEDD88E0}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats{A9337080-7CBF-4E3E-80C1-3867BEDD88E0}\
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A9337080-7CBF-4E3E-80C1-3867BEDD88E0}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1EB98921-3AD1-4A7A-BED2-B4054E9CFA8E}_is1
HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService
HKLM\Software\IB Updater
HKLM\Software\Wow6432Node\IB Updater
HKLM\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
HKLM\Software\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn
C:\Windows\Prefetch\IBSVC.EXE-DF599968.pf
C:\Program Files\Zula Games\ScriptHost.dll
C:\ProgramData\InstallBrainService
C:\ProgramData\IBUpdaterService
C:\ProgramData\IBUpdaterService\ibsvc.exe
C:\Users\Coolman\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn
C:\Users\Coolman\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
C:\Users\Coolman\Desktop\bundleSetup.exe
C:\Windows\System32\dmwu.exe

Alias

PUP.Optional.InstallBrain [Malwarebytes]
PUP.Optional.ZuluGames [Malwarebytes]
Adware.BGuard.16 [DrWeb]
Win32/Toolbar.Besttoolbars.C [ESET Nod32]
Adware.Downware.1988 [DrWeb]
PUA.InstallBrain [Agnitum Outpost]
PUP.Optional.PCPerformer
PUP.Optional.SpeedAnalysis
PUP.Performersoft.Bundler [Reason Heuristics]
Trojan.Win32.TopMedia.AMN [Emsisoft]
TR/StartPage.aiz.3 [Avira AntiVir]
Win32:PUP-gen [PUP] [avast!]
Superfluous.MediaTechSoft
Gen:Variant.Adware.BHO.Bprotector.1 [F-Secure]
Win32:BProtect-A [PUP] [Avast!]
PUP.Optional.PerformerSoft.A [Malwarebytes]
PUP.Optional.BProtector

Editeurs associés

Bit89 Inc.
Cheap Software LLC
Elephant Tech Software LLC
F11L Software Inc.
Forty Seven Tech Software LLC
ForwardTech Inc
Giraffe Tech Software LLC
Green Tech Software LLC
Klingon Tech Software LLC
MediaTechSoft Inc.
PPCTechSoft Inc.
PurpleTech Software Inc
R2D2 Tech Software LLC
Red Balloons Software, LLC
Softango Technology LLC
SpeedAnalysis.com
Speedchecker Ltd
Twenty Nine Tech Software LLC
Visicom Media Inc.
We Code Good Inc.
White Tech Software LLC
YellowSoft Inc

Comment supprimer ?

windows10-supprimer-reparer-programme

Support Microsoft

zhpcleaner

Supprimer avec ZHPCleaner

ZHPDiag

Diagnostiquer avec ZHPDiag

A lire

- Définition d'un logiciel superfluous (Superflu) - Définition d'un PUP/LPI
Responsabilité :   Le principe d'absence de responsabilité du site d'origine, au regard des contenus des sites cibles pointés, est rappelé par l'arrêt du 19 septembre 2001 de la Cour d'Appel de Paris. Les propos que je tiens ici reflètent mon opinion et sont des suggestions - le visiteur n'est pas obligé de les suivre."
2016-05-05T11:37:17+00:00 Adware, LPI, Polluteware, PUP, Toolbar|Commentaires fermés sur PUP.Optional.PerformerSoft