Malwarebytes Anti-Malware www.malwarebytes.org Date de l'examen: 02/05/2014 Heure de l'examen: 17:34:35 Fichier journal: rapport.txt Administrateur: Oui Version: 2.00.1.1004 Base de données Malveillants: v2014.05.02.08 Base de données Rootkits: v2014.03.27.01 Licence: Essai Protection contre les malveillants: Activé(e) Protection contre les sites Web malveillants: Activé(e) Chameleon: Désactivé(e) Système d'exploitation: Windows 7 Service Pack 1 Processeur: x64 Système de fichiers: NTFS Utilisateur: Florian Type d'examen: Examen "Menaces" Résultat: Terminé Objets analysés: 263576 Temps écoulé: 15 min, 51 sec Mémoire: Activé(e) Démarrage: Activé(e) Système de fichiers: Activé(e) Archives: Activé(e) Rootkits: Désactivé(e) Shuriken: Activé(e) PUP: Activé(e) PUM: Activé(e) Processus: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Clés du Registre: 3 PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM, Mis en quarantaine, [455b67e5d6a5c57118e4188ade257c84], PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Freeven pro 1.2, Mis en quarantaine, [7828bc902b50cb6b9b52e895d929a957], PUP.Optional.MediaPlayerplus.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MediaPlayerplus, Mis en quarantaine, [0f91ef5d98e303337897b8c64bb79d63], Valeurs du Registre: 2 PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_169, Mis en quarantaine, [8f11e369ff7c2412f8b0a9ce46bc2dd3], PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM|simapp_id, {0FA439B8-90C9-4F90-864B-AB0B56B35E3C}, Mis en quarantaine, [455b67e5d6a5c57118e4188ade257c84] Données du Registre: 1 PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplacé,[38680943d9a2de5840d8ef496f950af6] Dossiers: 6 PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c], Rogue.Multiple, C:\ProgramData\374311380, Mis en quarantaine, [e3bd94b8cead51e5d0afe77003ff1ce4], PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save, Mis en quarantaine, [40604dff5427bf77b261571061a1847c], PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a], PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94], PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\update, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94], Fichiers: 24 PUP.Optional.SilentInstall.A, C:\ProgramData\Browse2save\uninstall.exe, Mis en quarantaine, [4f51f45818635dd9fceb0ef7fc054bb5], PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\PluginService.exe, Mis en quarantaine, [534dda7204771a1c9ad890c3fd04ee12], PUP.Optional.InstallCore.A, C:\Users\Florian\AppData\Local\Temp\nsfD476.tmp, Mis en quarantaine, [8917eb611764d26476ee91dddb267090], PUP.Optional.InstallCore.A, C:\Users\Florian\AppData\Local\Temp\ICReinstall_nsfD476.tmp, Mis en quarantaine, [cdd33616433891a575effb73d829728e], PUP.Optional.DomaIQ, C:\Users\Florian\AppData\Local\Temp\dfsB3E8.tmp, Mis en quarantaine, [851bde6e99e286b0de7eb2c3f60b768a], PUP.Optional.IePluginService.A, C:\Users\Florian\AppData\Local\Temp\fullpackage_temp1398948036\tmp\SupTab.exe, Mis en quarantaine, [a3fdd07c03780e289ed42e252fd2ea16], PUP.Optional.WpManager, C:\Users\Florian\AppData\Local\Temp\fullpackage_temp1398948036\tmp\wpm.exe, Mis en quarantaine, [168ae6666a1141f501c6d28bf90820e0], Adware.EoRezo, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\Freesofttoday.exe, Mis en quarantaine, [ebb53d0fd8a3d75fc84a234bb05139c7], Heuristics.Shuriken, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\freeven-pr2.exe, Mis en quarantaine, [ffffffffffffffffffffffffffffffff], PUP.Optional.SkyTech.A, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\lly_webssearches.exe .exe, Mis en quarantaine, [138d89c32754fe383d15ec67e918cd33], PUP.Optional.CrossRider.A, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\mediaplayerpluuss.exe, Mis en quarantaine, [89175fed86f543f3533b271b847c11ef], Trojan.Agent.CK, C:\Users\Florian\Downloads\keygen.exe, Mis en quarantaine, [742cf8545724f5417f8caec7a858639d], PUP.Optional.Somoto, C:\Users\Florian\Downloads\7ZipSetup-aBrZZig.exe, Mis en quarantaine, [dfc1c68687f469cdebfd5208867e17e9], PUP.Optional.Incredibar.A, C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dlnembnfbcpjnepmfjmngjenhhajpdfd_0.localstorage, Mis en quarantaine, [8a163f0d13688fa7c2cbb8c0946e5ea2], PUP.Optional.Wajam.A, C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jpmbfleldcgkldadpdinhjjopdfpjfjp_0.localstorage, Mis en quarantaine, [c4dc3d0fc2b9ed49d0b4493419e9966a], PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\coordinator.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c], PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\general.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c], PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\S-1-5-21-1102061308-1966254936-2478125045-1000.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c], Rogue.Multiple, C:\ProgramData\374311380\BITAD20.tmp, Mis en quarantaine, [e3bd94b8cead51e5d0afe77003ff1ce4], PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save\515aefc377af7.tlb, Mis en quarantaine, [40604dff5427bf77b261571061a1847c], PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save\settings.ini, Mis en quarantaine, [40604dff5427bf77b261571061a1847c], PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save\Browse2save.lnk, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a], PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save\Uninstall.lnk, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a], PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\update\conf, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94], Secteurs physiques: 0 (No malicious items detected) (end)