Malwarebytes Anti-Malware www.malwarebytes.org Date de l'examen: 24/10/2014 Heure de l'examen: 17:32:05 Fichier journal: mbam3.txt Administrateur: Oui Version: 2.00.3.1025 Base de données Malveillants: v2014.10.24.05 Base de données Rootkits: v2014.10.22.01 Licence: Premium Protection contre les malveillants: Activé(e) Protection contre les sites Web malveillants: Activé(e) Auto-protection: Activé(e) Système d'exploitation: Windows 7 Service Pack 1 Processeur: x86 Système de fichiers: NTFS Utilisateur: dell Type d'examen: Examen "Menaces" Résultat: Terminé Objets analysés: 342886 Temps écoulé: 25 min, 10 sec Mémoire: Activé(e) Démarrage: Activé(e) Système de fichiers: Activé(e) Archives: Activé(e) Rootkits: Activé(e) Heuristique: Activé(e) PUP: Activé(e) PUM: Activé(e) Processus: 0 (Aucun élément malicieux detecté) Modules: 0 (Aucun élément malicieux detecté) Clés du Registre: 10 PUP.Optional.RegCleanPro.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\RegClean Pro_is1, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\RegClean-Pro_is1, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.SaveSense.A, HKLM\SOFTWARE\SaveSense, Mis en quarantaine, [952cc94e631968ce4bafb5c7e71d9e62], PUP.Optional.AdvancedSystemProtector.A, HKLM\SOFTWARE\SYSTWEAK\Advanced-System Protector, Mis en quarantaine, [942d43d4d9a30c2ad82db2769271649c], PUP.Optional.RegCleanPro.A, HKLM\SOFTWARE\SYSTWEAK\RegClean Pro, Mis en quarantaine, [a120cf48dba10d293d37fa38b84b11ef], PUP.Optional.SystemSpeedup, HKLM\SOFTWARE\SYSTWEAK\ssd, Mis en quarantaine, [a21f8394007c6ccac30590a2788b8e72], PUP.Optional.SaveSense.A, HKU\S-1-5-21-1072508650-3649331341-3024458212-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SaveSense, Mis en quarantaine, [69585eb9de9e280e8a6d85f7bf45768a], PUP.Optional.AdvancedSystemProtector.A, HKU\S-1-5-21-1072508650-3649331341-3024458212-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\Advanced-System Protector, Mis en quarantaine, [9f22f4230e6e84b28a7cac7c9073639d], PUP.Optional.RegCleanerPro.A, HKU\S-1-5-21-1072508650-3649331341-3024458212-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\RegClean Pro, Mis en quarantaine, [e5dced2a215b91a5b0301360e0249f61], PUP.Optional.SystemSpeedup, HKU\S-1-5-21-1072508650-3649331341-3024458212-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\ssd, Mis en quarantaine, [dfe24bccb9c3d561bb0c40f25da6b848], Valeurs du Registre: 0 (Aucun élément malicieux detecté) Données du Registre: 0 (Aucun élément malicieux detecté) Dossiers: 7 PUP.Optional.RegCleanPro.A, C:\Program Files\RCP, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.SaveSense, C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense, Mis en quarantaine, [3091b166d3a9e94dd51afdf5639f39c7], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\content, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\content\images, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\defaults, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\defaults\preferences, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], Fichiers: 67 PUP.Optional.DomaIQ, C:\Users\dell\Downloads\Setup.exe, Mis en quarantaine, [556ca67199e345f18f0dde7c8a76d030], PUP.Optional.AdvancedSystemProtector, C:\Windows\System32\Tasks\Advanced-System Protector_startup, Mis en quarantaine, [992822f50a72181e3342d65232d17d83], PUP.Optional.AdvancedSystemProtector, C:\Users\Public\Desktop\Advanced-System Protector.lnk, Mis en quarantaine, [f9c8d0475f1d67cfce2d55d343c0e11f], PUP.Optional.RegCleanerPro, C:\Users\Public\Desktop\RegClean Pro.lnk, Mis en quarantaine, [368b8394196353e3d9428f9c0af9b050], PUP.Optional.RegCleanerPro, C:\Windows\System32\Tasks\ASP, Mis en quarantaine, [b20fdf38c5b73600c05e4be09a69d32d], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Chinese_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\FileList.rcp, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Chinese_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\CleanSchedule.exe, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Danish_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Danish_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Dutch_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Dutch_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\eng_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\eng_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Japanese_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Japanese_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\korean_rcp_ko.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\korean_uninst_ko.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\LicMgr.dll, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Norwegian_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Norwegian_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\polish_rcp_pl.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\polish_uninst_pl.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\portugese_rcp_pt.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\portugese_uninst_pt.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Portuguese_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Portuguese_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\RCPUninstall.exe, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Finnish_rcp_fi.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Finnish_uninst_fi.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\French_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\French_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\German_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\German_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\greek_rcp_el.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\greek_uninst_el.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\install_left_image.bmp, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\isxdl.dll, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Italian_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Italian_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\RegCleanPro.exe, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\RegList.rcp, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\russian_rcp_ru.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\russian_uninst_ru.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Spanish_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\spanish_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Swedish_rcp.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\swedish_uninst.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\systweakasp.exe, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\TPS.ico, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\TraditionalCn_rcp_zh-tw.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\traditionalcn_uninst_zh-tw.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\turkish_rcp_tr.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\Turkish_uninst_tr.ini, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\unins000.dat, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\unins000.exe, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\unins000.msg, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.RegCleanPro.A, C:\Program Files\RCP\xmllite.dll, Mis en quarantaine, [d5ec24f33844ea4cd1a28c048b79728e], PUP.Optional.SaveSense, C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\SaveSense Help.url, Mis en quarantaine, [3091b166d3a9e94dd51afdf5639f39c7], PUP.Optional.SaveSense, C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\SaveSense.url, Mis en quarantaine, [3091b166d3a9e94dd51afdf5639f39c7], PUP.Optional.SaveSense, C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense\Uninstall SaveSense.lnk, Mis en quarantaine, [3091b166d3a9e94dd51afdf5639f39c7], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\chrome.manifest, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\install.rdf, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\content\savesense.xul, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\content\images\icon32.png, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], PUP.Optional.SaveSense.A, C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\dydqkwea.default-1413856514108\extensions\{2fab2e94-d6f9-42de-8839-3510cef6424b}\defaults\preferences\defaults.js, Mis en quarantaine, [dce580973c408fa7e05af9fec43e3ec2], Secteurs physiques: 0 (Aucun élément malicieux detecté) (end)