cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 27-06-15
Heure de l'examen: 15:57:21
Fichier journal: malwarebytes anti malware.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de données Malveillants: v2015.06.27.02
Base de données Rootkits: v2015.06.26.01
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: ACER

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 373643
Temps écoulé: 26 min, 23 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 0
(Aucun élément malicieux détecté)

Modules: 0
(Aucun élément malicieux détecté)

Clés du Registre: 5
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, Mis en quarantaine, [5e5007b83a509e98cae87f131fe6e61a],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{24a6f44f}, Mis en quarantaine, [58561ca34f3bc670e91a335ec93ce818],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, Mis en quarantaine, [e6c8744b0e7c74c21a98ccc6d134be42],
PUP.Optional.PCSpeedUp.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PCSUUCDRV, Mis en quarantaine, [0ca2536c74166bcbd41b761da75ee719],
PUP.Optional.SuperOptimizer.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, Mis en quarantaine, [535b833c810974c2e5c7a4f0b154f60a],

Valeurs du Registre: 2
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, Mis en quarantaine, [5e5007b83a509e98cae87f131fe6e61a]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, Mis en quarantaine, [e6c8744b0e7c74c21a98ccc6d134be42]

Données du Registre: 0
(Aucun élément malicieux détecté)

Dossiers: 4
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0, Mis en quarantaine, [f8b6c0ff66243cfa0d547712e52104fc],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Extensions\foohckpdfgemipgcdggkecnmcjimnicd, Mis en quarantaine, [f8b6c0ff66243cfa0d547712e52104fc],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\Opera Software\Opera Stable\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0, Mis en quarantaine, [941a3a85335781b589bc4a419274c937],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\Opera Software\Opera Stable\Extensions\foohckpdfgemipgcdggkecnmcjimnicd, Mis en quarantaine, [941a3a85335781b589bc4a419274c937],

Fichiers: 66
PUP.Optional.PCOptimizerPro, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\hqghumeaylnlf.exe, Mis en quarantaine, [6b430bb44c3eec4a1b63cc93778bc53b],
PUP.Optional.WProtectManager.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\ProtectWindowsManager.exe, Mis en quarantaine, [b3fb15aa830760d621b3e6a228de4cb4],
PUP.Optional.MultiPlug.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\v2FPxbKM4GgCC7.x64.dll, Mis en quarantaine, [08a613ace7a3f145c6a9aec51fe3e61a],
PUP.Optional.WordShark.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\wordshark.exe, Mis en quarantaine, [feb07946b6d4191dba5a8be31ae83dc3],
PUP.Optional.WordShark.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\WordSharkAutoUpdateClient.exe, Mis en quarantaine, [f6b8fcc3fd8db3837d97b8b646bce21e],
PUP.Optional.WordShark.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\wsfd_1_10_0_19.sys, Mis en quarantaine, [b9f58639bbcf92a4cb495915ce34a957],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\{2dc69315-903c-4a9c-a481-3b9b33c9045d}Gw64.sys, Mis en quarantaine, [7e30e2dd206aa393da1d3f48c343d32d],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\{4be5ff1c-9341-48dd-b568-3007f328efd2}Gw64.sys, Mis en quarantaine, [01adc7f8c2c8082ee6110f785bab23dd],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\{f130164f-d262-4f2a-8198-452c98b15b39}Gw64.sys, Mis en quarantaine, [8628536c2e5c41f5f4034b3c61a530d0],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\OptProLauncher.exe, Mis en quarantaine, [3d71dce3deac7fb76640d78d10f2c937],
PUP.Optional.PCSpeedUp.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Accelerer PC.DIR\PCSpeedUp.sys, Mis en quarantaine, [f1bd942b503ac076ccdd09601be79769],
PUP.Optional.PCSpeedUp.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Accelerer PC.DIR\PCSUUCC.exe, Mis en quarantaine, [1b936758fa90d95d1891462348ba5fa1],
PUP.Optional.ProPCCleaner.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Pro PC Cleaner\ProPCCleaner.exe, Mis en quarantaine, [5a541ba44c3e74c26083660b54aefd03],
PUP.Optional.ProPCCleaner.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Pro PC Cleaner\updater.exe, Mis en quarantaine, [c3eba01f4e3c7eb8796ade93d32f9b65],
PUP.Optional.MultiPlug.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\ProiceLeess\v2FPxbKM4GgCC7.dll, Mis en quarantaine, [733b724d8cfe0630ea8599da34ced828],
PUP.Optional.MultiPlug, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\ProiceLeess\v2FPxbKM4GgCC7.exe, Mis en quarantaine, [89258b34ccbe38fe8038f25c0101a759],
PUP.Optional.WordShark.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\WordShark_1.10.0.19\Uninstall.exe, Mis en quarantaine, [dcd27e41b4d65bdb15ff5915aa587b85],
PUP.Optional.WordShark.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\WordShark_1.10.0.19\Service\wssvc.exe, Mis en quarantaine, [1b93615e6b1f270fba5a096520e208f8],
PUP.Optional.EORezo, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\mbot_be_014010008\mybestofferstoday_widget.exe, Mis en quarantaine, [c6e8605f0684053138972b5c38ceeb15],
PUP.Optional.Tuto4PC.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\mbot_be_014010008\predm.exe, Mis en quarantaine, [d0de4778503adb5b8936295e60a6b54b],
PUP.Optional.EORezo, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\mbot_be_014010008\unins000.exe, Mis en quarantaine, [ab03843b6a2093a3ae2104836a9ce41c],
PUP.Optional.Tuto4PC.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\mbot_be_014010008\mbot_be_014010008\upmbot_be_014010008.exe, Mis en quarantaine, [505ecef136541521ba05691ed72fc23e],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Optimizer Pro 3.97\OptProGuard.exe, Mis en quarantaine, [dcd211ae3654181e485ef074b84aba46],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Optimizer Pro 3.97\OptimizerPro.exe, Mis en quarantaine, [436b9a25048666d07c2acd978b77f40c],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Optimizer Pro 3.97\OptProReminder.exe, Mis en quarantaine, [5e504976365444f27a2ccb99778b7789],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Optimizer Pro 3.97\OptProSchedule.exe, Mis en quarantaine, [e6c8487724663303693df4708a7819e7],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Optimizer Pro 3.97\OptProSmartScan.exe, Mis en quarantaine, [f2bca6194b3f9f973e6891d31ce6ff01],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Optimizer Pro 3.97\OptProStart.exe, Mis en quarantaine, [9f0f9a25068478be3d6991d3e61c5ea2],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Roaming\ZHP\Quarantine\Optimizer Pro 3.97\OptProUninstaller.exe, Mis en quarantaine, [67474e718cfe9e98d8cedf8522e0da26],
PUP.Optional.Amonetize, C:\$Recycle.Bin\S-1-5-21-137556181-3849937818-3895881643-1001\$RKUMXIB.exe, Mis en quarantaine, [cae4229d98f24de9fd171d1f45bd14ec],
PUP.Optional.Amonetize, C:\$Recycle.Bin\S-1-5-21-137556181-3849937818-3895881643-1001\$RNV3MD9.exe, Mis en quarantaine, [406e853a7911df576ca8ee4e29d91ae6],
PUP.Optional.OptimizerPro.A, C:\Users\ACER\AppData\Local\Temp\optprosetup.exe, Mis en quarantaine, [1e904679593174c27532e381b25011ef],
PUP.Optional.ClickYes, C:\Users\ACER\AppData\Local\Temp\setup.exe, Mis en quarantaine, [ab03bc03711960d6967d088176906799],
Adware.EoRezo, C:\Users\ACER\AppData\Local\Temp\setup_mbot_be.exe, Mis en quarantaine, [cce2526d16744cea93211a56748e02fe],
PUP.Optional.Amonetize, C:\Users\ACER\AppData\Local\Temp\Setup__10924_i1540331979_il1285198.exe, Mis en quarantaine, [edc1615e5139280e51488ff90afcc13f],
PUP.Optional.Amonetize, C:\Users\ACER\AppData\Local\Temp\Setup__10924_i1540333122_il1285198.exe, Mis en quarantaine, [5a5401bef3977eb841580e7ac0468878],
PUP.Optional.Amonetize, C:\Users\ACER\AppData\Local\Temp\Setup__10924_i1540333302_il1285198.exe, Mis en quarantaine, [e9c50cb394f69d99a1f80c7c6d99d828],
PUP.Optional.Amonetize, C:\Users\ACER\AppData\Local\Temp\Setup__10924_i1540333638_il1285198.exe, Mis en quarantaine, [a905c7f833579f975a3fb2d60afc52ae],
PUP.Optional.Amonetize, C:\Users\ACER\AppData\Local\Temp\Setup__10924_i1540333803_il1285198.exe, Mis en quarantaine, [e6c81ca34d3da3939801335561a55ba5],
PUP.Optional.CheckOffer, C:\Users\ACER\AppData\Local\Temp\nso175.tmp\nsCBHTML5.dll, Mis en quarantaine, [c2ec06b9464459dd75e785dea85a12ee],
PUP.Optional.CrossRider.A, C:\Users\ACER\AppData\Local\Temp\81434884756\1P1M8L01STw==101.exe, Mis en quarantaine, [a00e506fa1e953e3856adca225e1c040],
PUP.Optional.CheckOffer, C:\Users\ACER\AppData\Local\Temp\nsjFA92.tmp\nsCBHTML5.dll, Mis en quarantaine, [8529bf0095f54beb6def8ad954aead53],
Adware.EoRezo, C:\Users\ACER\AppData\Local\Temp\is-3P776.tmp\465.exe, Mis en quarantaine, [ebc35669731774c26b495719dd2520e0],
PUP.Optional.CheckOffer, C:\Users\ACER\AppData\Local\Temp\is-3P776.tmp\InstallManager.exe, Mis en quarantaine, [6e40be012d5d4ee8c399baa98a786c94],
PUP.Optional.CheckOffer, C:\Users\ACER\AppData\Local\Temp\is-463VK.tmp\InstallManager.exe, Mis en quarantaine, [d7d715aa56346accb8a4cc97f50da25e],
Adware.EoRezo, C:\Users\ACER\AppData\Local\Temp\is-463VK.tmp\package_optimizerpro_installer_multilang.exe, Mis en quarantaine, [416d05ba1c6e2115d9dbd49c7f832fd1],
Adware.EoRezo, C:\Users\ACER\AppData\Local\Temp\is-463VK.tmp\package_priceless_p_installer_multilang.exe, Mis en quarantaine, [426c3b842d5ddc5a7f35b6ba689aac54],
Adware.EoRezo, C:\Users\ACER\AppData\Local\Temp\is-463VK.tmp\package_superpct_installer_multilang.exe, Mis en quarantaine, [208e3f8092f82511bcf8aec2fc0646ba],
Adware.EoRezo, C:\Users\ACER\AppData\Local\Temp\is-463VK.tmp\package_superpc_installer_multilang.exe, Mis en quarantaine, [535b3c83682237ff7c38c9a7778bc43c],
PUP.Optional.Tuto4PC.A, C:\Users\ACER\AppData\Local\Temp\is-H9DFO.tmp\gentlemjmp_ieu.exe, Mis en quarantaine, [1797625d5d2d24128e3130576b9bd729],
PUP.Optional.Tuto4PC.A, C:\Users\ACER\AppData\Local\Temp\is-MSULL.tmp\gentlemjmp_ieu.exe, Mis en quarantaine, [307e5867325854e2b20d6522be485ba5],
Adware.EoRezo, C:\Users\ACER\AppData\Local\Temp\is-PK439.tmp\465.exe, Mis en quarantaine, [9816437c8307e353397bd49c28dab54b],
PUP.Optional.Tuto4PC.A, C:\Users\ACER\AppData\Local\Temp\is-RTLOT.tmp\gentlemjmp_ieu.exe, Mis en quarantaine, [e4ca04bb1971de583d82206729dd49b7],
PUP.Optional.Amonetize, C:\Users\ACER\Downloads\12] [FRENCH] HDTV_10924_i22567989_il345.exe, Mis en quarantaine, [efbf5867048677bfdb39ae8e1ae8619f],
PUP.Optional.BoostSaves.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.boostsaves.com_0.localstorage, Mis en quarantaine, [06a8bb048703ae8866b828e4778dac54],
PUP.Optional.BoostSaves.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.boostsaves.com_0.localstorage-journal, Mis en quarantaine, [c9e5fec1c6c459ddc559ab6141c31ae6],
PUP.Optional.ReMarkable.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Mis en quarantaine, [3f6fccf3f99187af064bfb8ef114b749],
PUP.Optional.ReMarkable.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Mis en quarantaine, [6f3f9926632781b567eaa4e573927a86],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0\manifest.json, Mis en quarantaine, [f8b6c0ff66243cfa0d547712e52104fc],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0\background.js, Mis en quarantaine, [f8b6c0ff66243cfa0d547712e52104fc],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0\content.js, Mis en quarantaine, [f8b6c0ff66243cfa0d547712e52104fc],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Local\Google\Chrome\User Data\Default\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0\icon.png, Mis en quarantaine, [f8b6c0ff66243cfa0d547712e52104fc],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\Opera Software\Opera Stable\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0\manifest.json, Mis en quarantaine, [941a3a85335781b589bc4a419274c937],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\Opera Software\Opera Stable\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0\background.js, Mis en quarantaine, [941a3a85335781b589bc4a419274c937],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\Opera Software\Opera Stable\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0\content.js, Mis en quarantaine, [941a3a85335781b589bc4a419274c937],
PUP.Optional.WoodenSeal.A, C:\Users\ACER\AppData\Roaming\Opera Software\Opera Stable\Extensions\foohckpdfgemipgcdggkecnmcjimnicd\1.0.1_0\icon.png, Mis en quarantaine, [941a3a85335781b589bc4a419274c937],

Secteurs physiques: 0
(Aucun élément malicieux détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité