cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 23/04/2015
Heure de l'examen: 22:19:17
Fichier journal: Rapport Malwarebytes.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de donn�es Malveillants: v2015.04.23.05
Base de donn�es Rootkits: v2015.04.21.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 8.1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Monique

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 374581
Temps �coul�: 27 min, 36 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 1
PUP.Optional.Trovi.A, C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe, 3640, Supprim�-au-red�marrage, [c43d2f416a20a29437c6ed50de25f20e]

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 7
PUP.Optional.Trovi.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{589B893E-773C-4941-88C2-0DCC718E621C}, Mis en quarantaine, [c43d2f416a20a29437c6ed50de25f20e],
PUP.Optional.Trovi.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\GamesAppIntegrationService, Mis en quarantaine, [c43d2f416a20a29437c6ed50de25f20e],
PUP.Optional.Taplika.C, HKLM\SOFTWARE\CLASSES\APPID\{BE26A525-DF20-4BBD-A602-5CE538ADA94E}\INSTL\DATA, Mis en quarantaine, [57aabab65f2bd75f63fc3b87b74c7090],
PUP.Optional.Taplika.C, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{BE26A525-DF20-4BBD-A602-5CE538ADA94E}\INSTL\DATA, Mis en quarantaine, [a65bc6aa84061422a8b7556d8e7522de],
PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, Mis en quarantaine, [31d0462ab5d5e650e047f258cb3a17e9],
PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, Mis en quarantaine, [f011610f54365adc4cda69e1877e35cb],
PUP.Optional.Taplika.C, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{BE26A525-DF20-4BBD-A602-5CE538ADA94E}\INSTL\DATA, Mis en quarantaine, [0cf57000593196a0a2bda81a51b2a060],

Valeurs du Registre: 4
PUP.Optional.Taplika.C, HKLM\SOFTWARE\CLASSES\APPID\{BE26A525-DF20-4BBD-A602-5CE538ADA94E}\INSTL\DATA|tlbrSrchUrl, http://taplika.com/?f=3&a=tpl_tuto_15_14&cd=2XzuyEtN2Y1L1Qzu0Bzz0E0EyCyD0DtCtDtCyE0AyC0CtByCtN0D0Tzu0StCtCzzyBtN1L2XzutAtFzztFtAtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyE0E0F0FyB0DyDyBtG0EyE0B0CtG0FyEzzzytG0Dzy0F0BtGtA0A0D0E0BtDtByDyDyE0Bzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0CyDyBzztDtB0BtGtD0EtCyDtGyE0F0D0CtG0ByCtCtBtGyC0EyCyEyB0E0DyE0FyEtDtC2QtN1B2Z1V1T1S1NzuyCyCyD&cr=1507333161&ir=&q=, Mis en quarantaine, [57aabab65f2bd75f63fc3b87b74c7090]
PUP.Optional.Taplika.C, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{BE26A525-DF20-4BBD-A602-5CE538ADA94E}\INSTL\DATA|tlbrSrchUrl, http://taplika.com/?f=3&a=tpl_tuto_15_14&cd=2XzuyEtN2Y1L1Qzu0Bzz0E0EyCyD0DtCtDtCyE0AyC0CtByCtN0D0Tzu0StCtCzzyBtN1L2XzutAtFzztFtAtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyE0E0F0FyB0DyDyBtG0EyE0B0CtG0FyEzzzytG0Dzy0F0BtGtA0A0D0E0BtDtByDyDyE0Bzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0CyDyBzztDtB0BtGtD0EtCyDtGyE0F0D0CtG0ByCtCtBtGyC0EyCyEyB0E0DyE0FyEtDtC2QtN1B2Z1V1T1S1NzuyCyCyD&cr=1507333161&ir=&q=, Mis en quarantaine, [a65bc6aa84061422a8b7556d8e7522de]
PUP.Optional.Taplika.C, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{BE26A525-DF20-4BBD-A602-5CE538ADA94E}\INSTL\DATA|tlbrSrchUrl, http://taplika.com/?f=3&a=tpl_tuto_15_14&cd=2XzuyEtN2Y1L1Qzu0Bzz0E0EyCyD0DtCtDtCyE0AyC0CtByCtN0D0Tzu0StCtCzzyBtN1L2XzutAtFzztFtAtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyE0E0F0FyB0DyDyBtG0EyE0B0CtG0FyEzzzytG0Dzy0F0BtGtA0A0D0E0BtDtByDyDyE0Bzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0CyDyBzztDtB0BtGtD0EtCyDtGyE0F0D0CtG0ByCtCtBtGyC0EyCyEyB0E0DyE0FyEtDtC2QtN1B2Z1V1T1S1NzuyCyCyD&cr=1507333161&ir=&q=, Mis en quarantaine, [0cf57000593196a0a2bda81a51b2a060]
PUP.Optional.Taplika.C, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\WSE_Taplika\\, Mis en quarantaine, [45bcf37d13772b0b81e802c0e41ff907]

Donn�es du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Dossiers: 1
PUP.Optional.SearchProtect.A, C:\Users\Monique\AppData\Local\avaavaevy, Mis en quarantaine, [6998c0b03159e2543b8f526bde2553ad],

Fichiers: 21
PUP.Optional.Trovi.A, C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe, Supprim�-au-red�marrage, [c43d2f416a20a29437c6ed50de25f20e],
PUP.Optional.Clara.A, C:\Users\Monique\AppData\Roaming\ZHP\Quarantine\ClaraUpdater.exe, Mis en quarantaine, [b44dd59b701a1a1c15dd30108a7c1ee2],
PUP.Optional.MyPCBackup.A, C:\Users\Monique\AppData\Roaming\ZHP\Quarantine\Service Start.exe, Mis en quarantaine, [e71a80f0c1c9f244ebe65f957b86b749],
PUP.Optional.PullUpdate.SID.C, C:\Users\Monique\AppData\Roaming\ZHP\Quarantine\Uninstall.exe, Mis en quarantaine, [f8090868583215211dd7f54b47bf916f],
PUP.Optional.Conduit.A, C:\Users\Monique\AppData\Local\Temp\dlLogic.exe, Mis en quarantaine, [12ef175991f949ed06e30341d52bca36],
PUP.Optional.Conduit.A, C:\Users\Monique\AppData\Local\Temp\dltr.exe, Mis en quarantaine, [5da4155bcebc42f476747dc760a06e92],
PUP.Optional.Conduit.A, C:\Users\Monique\AppData\Local\Temp\GCVerifier.dll, Mis en quarantaine, [4db4d9977f0ba393eefa5ee6be42f10f],
PUP.Optional.Conduit.A, C:\Users\Monique\AppData\Local\Temp\verifier.exe, Mis en quarantaine, [51b0e58bd8b23df9608a9ba9e41cca36],
PUP.Optional.IStartsurf.A, C:\Users\Monique\AppData\Local\Temp\0b6e7a9d-b33a-4592-9be6-e1296c8b3ddd\lly_istartsurf.exe, Mis en quarantaine, [34cd6b0511791b1b7baf0d322fd7ef11],
PUP.Optional.Conduit.A, C:\Users\Monique\AppData\Local\Temp\ct3334334\ism.exe, Mis en quarantaine, [11f0155b3f4b13232645be7752b08a76],
PUP.Optional.Clara.A, C:\Users\Monique\AppData\Local\Temp\7b8b2fbb-d136-43d8-92fd-c8f93e96cca5\unicobrowser.exe, Mis en quarantaine, [a061056ba5e5a393dae86b7657aa659b],
PUP.Optional.TVWizard.A, C:\Users\Monique\AppData\Local\Temp\7ec3024a-5704-4166-a917-41bb847fc931\setup.exe, Mis en quarantaine, [41c0165a632785b1a6ab5c01ee129868],
PUP.Optional.Boxore.A, C:\Users\Monique\AppData\Local\Temp\is-6BNIO.tmp\package_boxore_installer_multilang.exe, Mis en quarantaine, [50b172febecc44f20b8b26d03ac7bf41],
PUP.Optional.Conduit.A, C:\Users\Monique\AppData\Local\Temp\is-BL949.tmp\ism.exe, Mis en quarantaine, [3dc45b15fe8cf83ec7a4d164f70b41bf],
PUP.Optional.Conduit.A, C:\Users\Monique\AppData\Local\Temp\is-KU37B.tmp\ism.exe, Mis en quarantaine, [0bf6d29e9bef3df9dc8f50e519e9867a],
PUP.Optional.Boxore.A, C:\Users\Monique\AppData\Local\Temp\is-M2Q9B.tmp\package_boxore_installer_multilang.exe, Mis en quarantaine, [2bd6b7b9d0ba3afcfe988d69788930d0],
PUP.Optional.Taplika.C, C:\Users\Monique\AppData\LocalLow\Microsoft\Internet Explorer\Services\FavIcon.icoWSE_Taplika, Mis en quarantaine, [b64bc6aa543648ee84cf279b14efa759],
PUP.Optional.Clara.A, C:\claraInstaller.txt, Mis en quarantaine, [9c65acc4eaa00630b4caaf1630d3ad53],
PUP.Optional.Taplika.A, C:\Windows\Tasks\Taplika leco.job, Mis en quarantaine, [5ba63b3581094beb911d15bdc93aad53],
PUP.Optional.Taplika.A, C:\Windows\System32\Tasks\Taplika leco, Mis en quarantaine, [857c5917eb9f42f4634cf6dcf90add23],
PUP.Optional.SoftwareUpdate.A, C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe, Mis en quarantaine, [08f98de3f3976fc77112bc48719360a0],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité