cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 24/06/2015
Heure de l'examen: 20:33:02
Fichier journal: rapport MBAM.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de données Malveillants: v2015.06.24.04
Base de données Rootkits: v2015.06.22.01
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: flore_000

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 454062
Temps écoulé: 50 min, 12 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 0
(Aucun élément malicieux détecté)

Modules: 0
(Aucun élément malicieux détecté)

Clés du Registre: 4
PUP.Optional.SaveSense.A, HKU\S-1-5-21-2710196674-1561009495-2148570843-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{71e129ff-6c2a-4984-818c-7e2c998b8d99}, Mis en quarantaine, [5e263b83a9e1d6607d41165f7f84b749],
PUP.Optional.SaveSense.A, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{71E129FF-6C2A-4984-818C-7E2C998B8D99}, Mis en quarantaine, [5e263b83a9e1d6607d41165f7f84b749],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, Mis en quarantaine, [01830faf4c3e2e0879fd08888580b24e],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, Mis en quarantaine, [84004c72d1b9f5415224cdc333d25ea2],

Valeurs du Registre: 2
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, Mis en quarantaine, [01830faf4c3e2e0879fd08888580b24e]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, Mis en quarantaine, [84004c72d1b9f5415224cdc333d25ea2]

Données du Registre: 0
(Aucun élément malicieux détecté)

Dossiers: 2
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy, Mis en quarantaine, [d3b1bc02fd8d3105fe261bd260a35ea2],

Fichiers: 94
PUP.Optional.SearchProtect, C:\Users\flore_000\AppData\Roaming\ZHP\Quarantine\avaavaevy.exe, Mis en quarantaine, [3c48f8c69febed4977c4f82962a0ea16],
PUP.Optional.SearchProtect, C:\Users\flore_000\AppData\Roaming\ZHP\Quarantine\avayvxvaxc.exe, Mis en quarantaine, [add7922cdfabdb5b9c9fac7519e935cb],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Roaming\ZHP\Quarantine\avaavaevy\pbqrmvbub, Mis en quarantaine, [8afaeed0602a72c4fc6fa122dc255da3],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Roaming\ZHP\Quarantine\avayvxvaxc\pbqrmvbub, Mis en quarantaine, [166eab13c7c377bf1c4ffcc70af70cf4],
PUP.Optional.Wajam.A, C:\Users\flore_000\AppData\Roaming\ZHP\Quarantine\WaIntEnhance\WaIntEnhance Internet Enhancer\InternetEnhancer.exe, Mis en quarantaine, [22627846068455e1f134210531d17888],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\Temp\Setup.exe, Mis en quarantaine, [ee96536be1a93ef8135822a1bc4518e8],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsg88C.tmp\SPtool.dll, Mis en quarantaine, [9de7c5f92c5ed75fbdae576c907130d0],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nszEF31.tmp\SPtool.dll, Mis en quarantaine, [ccb8b20c3c4e290d8cdf586be41db34d],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsa9456.tmp\SPtool.dll, Mis en quarantaine, [275d87378703d66015562a99669b4fb1],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsaA3B8.tmp\SPtool.dll, Mis en quarantaine, [f391e7d7d9b1b284ee7d4d76768ba15f],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsb145F.tmp\SPtool.dll, Mis en quarantaine, [dda76955503a88ae74f7ebd84db411ef],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsb43E9.tmp\SPtool.dll, Mis en quarantaine, [ef95a717434764d27feca51e748d8c74],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsb880F.tmp\SPtool.dll, Mis en quarantaine, [3054e7d7335786b0115a477c44bd2dd3],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsc570C.tmp\SPtool.dll, Mis en quarantaine, [e3a13a844149290d9fcc9132a75acf31],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsc7486.tmp\SPtool.dll, Mis en quarantaine, [54302c92e1a966d0f873c1026899d927],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nscD06.tmp\SPtool.dll, Mis en quarantaine, [dea62b93f7932412442703c0a9585ca4],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsd5B85.tmp\SPtool.dll, Mis en quarantaine, [cdb7922c305a1a1c2744b50e629fc23e],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nse93CC.tmp\SPtool.dll, Mis en quarantaine, [9fe55866a8e262d4fb706c570df428d8],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nseAF7E.tmp\SPtool.dll, Mis en quarantaine, [6b19d3ebb2d876c03d2e7b48649d5ba5],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nseD944.tmp\SPtool.dll, Mis en quarantaine, [1371dae4dfabd6601259626150b1718f],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nseEF20.tmp\SPtool.dll, Mis en quarantaine, [384c1aa4256580b6e18a05be6a972fd1],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nseFF20.tmp\SPtool.dll, Mis en quarantaine, [9be91ca243476dc9462504bfc33e3cc4],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsf7D61.tmp\SPtool.dll, Mis en quarantaine, [6d17d1ed226859ddf2793a89d1306997],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsf9F21.tmp\SPtool.dll, Mis en quarantaine, [9ce8c8f696f432049dceab187889bb45],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsfFF87.tmp\SPtool.dll, Mis en quarantaine, [790b4c72e1a93df971fa01c2ad54ef11],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsg2362.tmp\SPtool.dll, Mis en quarantaine, [84008737f2981e18f873bc078b76639d],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsgE3CC.tmp\SPtool.dll, Mis en quarantaine, [8ff5704e3753f0463734c30023deee12],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsh3C2B.tmp\SPtool.dll, Mis en quarantaine, [7c08c4fabbcff6400f5c388b14ed5da3],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsh495D.tmp\SPtool.dll, Mis en quarantaine, [c3c1704efd8d1c1a98d3a221936e53ad],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsh94D5.tmp\SPtool.dll, Mis en quarantaine, [d6ae625c91f95bdbbcaf893ae41d12ee],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsi4572.tmp\SPtool.dll, Mis en quarantaine, [95ef7747692184b2303b7a49a45d4ab6],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsj798D.tmp\SPtool.dll, Mis en quarantaine, [acd8ad116723e94ddb90497a8879ac54],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsj9D39.tmp\SPtool.dll, Mis en quarantaine, [0381338ba0ea84b2a3c801c2857c6c94],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsjCDF3.tmp\SPtool.dll, Mis en quarantaine, [354f328c02882412adbe517220e1cd33],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsjE7A5.tmp\SPtool.dll, Mis en quarantaine, [0381615d0486ea4cf279685b8f724fb1],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nskD1EB.tmp\SPtool.dll, Mis en quarantaine, [4e362698e0aa73c3f17a853e8e734db3],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsl30CB.tmp\SPtool.dll, Mis en quarantaine, [f1939b23afdbe6505912efd40ff2c937],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsm40FC.tmp\SPtool.dll, Mis en quarantaine, [6b19c2fc3258989e98d3784b98695fa1],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsm80A0.tmp\SPtool.dll, Mis en quarantaine, [aed6a41a3d4dd3638edd279c6e938080],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsmD874.tmp\SPtool.dll, Mis en quarantaine, [21637747becc9c9a9ecd4d767e8358a8],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsn483B.tmp\SPtool.dll, Mis en quarantaine, [7014e4dab4d61521ff6ce6dd03fea15f],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsn6A8D.tmp\SPtool.dll, Mis en quarantaine, [91f31f9f0981c0760f5cb80b32cfcf31],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsnF12B.tmp\SPtool.dll, Mis en quarantaine, [6a1a56686d1d0e2876f5378cda27e11f],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nso961A.tmp\SPtool.dll, Mis en quarantaine, [4e366a54f694c373aebdf2d1758c2fd1],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsq74C2.tmp\SPtool.dll, Mis en quarantaine, [3a4ab20cb2d878be99d2d0f37c858e72],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsqC7AF.tmp\SPtool.dll, Mis en quarantaine, [fa8a823c5c2ecb6b9ad1447f34cd6997],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsqF0BC.tmp\SPtool.dll, Mis en quarantaine, [61234a74c5c58aac34370cb7d130be42],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsr36C1.tmp\SPtool.dll, Mis en quarantaine, [97edfac4e0aa64d25a11299a47ba01ff],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nss64B8.tmp\SPtool.dll, Mis en quarantaine, [c7bd734bdeaca0960f5c368d38c9936d],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nss69DE.tmp\SPtool.dll, Mis en quarantaine, [f68e08b60486b08608630bb8fa07c53b],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nss9344.tmp\SPtool.dll, Mis en quarantaine, [166e7f3f5e2cd561d398a61d29d8f50b],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nss9542.tmp\SPtool.dll, Mis en quarantaine, [a2e23688dab0b185e68512b142bfd828],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nssB304.tmp\SPtool.dll, Mis en quarantaine, [c3c115a9e5a5c76f79f211b20cf56e92],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nssCD94.tmp\SPtool.dll, Mis en quarantaine, [5e263886c7c3b482c9a2863ddd2443bd],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nssDC64.tmp\SPtool.dll, Mis en quarantaine, [aed608b6b9d1ca6c7eed1da619e81ce4],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nstE115.tmp\SPtool.dll, Mis en quarantaine, [e0a4219d4545979ff477a122a45d39c7],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsuE590.tmp\SPtool.dll, Mis en quarantaine, [aada724c58323df98fdc11b25fa2cf31],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsv4A49.tmp\SPtool.dll, Mis en quarantaine, [afd57b438901b87e6efd527111f022de],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsv531D.tmp\SPtool.dll, Mis en quarantaine, [572dcaf4513990a671fa942f2fd2c937],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsw6E68.tmp\SPtool.dll, Mis en quarantaine, [5d27fec05f2b88ae5714606352af4eb2],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nswACCC.tmp\SPtool.dll, Mis en quarantaine, [4a3a7747157589ad42299e25a0615da3],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nswF0DC.tmp\SPtool.dll, Mis en quarantaine, [ff85744a4c3eb68079f24281b74add23],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsy4236.tmp\SPtool.dll, Mis en quarantaine, [ef95e7d735558bab4d1ed6ed3ac7c33d],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsy4B02.tmp\SPtool.dll, Mis en quarantaine, [94f01ca22c5ebf77a7c422a17f82e31d],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsy7482.tmp\SPtool.dll, Mis en quarantaine, [7f052d91f59546f068033d86e61b6799],
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsy906E.tmp\SPtool.dll, Mis en quarantaine, [c6bea31b93f7360093d8ba09aa576d93],
PUP.Optional.Conduit.A, C:\Users\flore_000\Downloads\Skype_TSV137M74.exe, Mis en quarantaine, [0c785965573388ae9c0489f955ac57a9],
PUP.Optional.Conduit.A, C:\Users\flore_000\Downloads\Skype_TSV137M7K.exe, Mis en quarantaine, [6a1afbc3e1a91224edb3f58d847d2cd4],
PUP.Optional.OpenCandy, C:\Users\flore_000\Downloads\AxCrypt-1.7.3156.0-Setup.exe, Mis en quarantaine, [dda7ead4e9a1c76fa21292dd51b509f7],
PUP.Optional.SmartInstaller, C:\Users\flore_000\Downloads\Carp_Fishing_Simulator_v1.8.exe, Mis en quarantaine, [cdb755698ffb6bcbe35742acb24fa060],
PUP.Optional.SearchProtect, C:\Users\flore_000\AppData\Local\avabvbxvh\avabvbxvh.exe, Mis en quarantaine, [acd8922cb0da1521e75453ce4ab8ae52],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\pbqrmvbub, Mis en quarantaine, [5c288a3498f2fd39a3c806bdfd048f71],
PUP.Optional.SearchProtect, C:\Users\flore_000\AppData\Local\avabvdxvy\avabvdxvy.exe, Mis en quarantaine, [1e66cdf1eaa02115d764a97841c18977],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy\pbqrmvbub, Mis en quarantaine, [6e16b70778125bdba3c822a150b1ba46],
PUP.Optional.SearchProtect.A, C:\Windows\System32\Tasks\avabvbxvh, Mis en quarantaine, [255f7549058552e496502ed1ad560ff1],
PUP.Optional.SearchProtect.A, C:\Windows\System32\Tasks\avabvdxvy, Mis en quarantaine, [453f6c52e8a23bfb875fbd42739014ec],
PUP.Optional.Proxy.A, C:\Users\flore_000\AppData\Local\proxy.log, Mis en quarantaine, [6c187c42b4d643f32effa97414f026da],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\bahvxfk, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\mkfvxfk, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\pvpqbjobmlpfqlovvawq, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\qokvxfk, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\rfobmlpfqlovvawq, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\rpboobmlpfqlovvawq, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\stb.dat, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvbxvh\ycfvxfk, Mis en quarantaine, [572d5a648a009b9b39ebdd10dd26ff01],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy\bahvxfk, Mis en quarantaine, [d3b1bc02fd8d3105fe261bd260a35ea2],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy\mkfvxfk, Mis en quarantaine, [d3b1bc02fd8d3105fe261bd260a35ea2],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy\pvpqbjobmlpfqlovvawq, Mis en quarantaine, [d3b1bc02fd8d3105fe261bd260a35ea2],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy\qokvxfk, Mis en quarantaine, [d3b1bc02fd8d3105fe261bd260a35ea2],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy\rfobmlpfqlovvawq, Mis en quarantaine, [d3b1bc02fd8d3105fe261bd260a35ea2],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy\rpboobmlpfqlovvawq, Mis en quarantaine, [d3b1bc02fd8d3105fe261bd260a35ea2],
PUP.Optional.SearchProtect.A, C:\Users\flore_000\AppData\Local\avabvdxvy\ycfvxfk, Mis en quarantaine, [d3b1bc02fd8d3105fe261bd260a35ea2],
PUP.Optional.Trovi, C:\Users\flore_000\AppData\Roaming\Mozilla\Firefox\Profiles\xy034lxf.default\prefs.js, Bon: (), Mauvais: (user_pref("browser.search.defaultenginename", "Trovi search");), Remplacé,[cfb5d4ea8a008aacc99a1f6a35d1e818]
PUP.Optional.Trovi, C:\Users\flore_000\AppData\Roaming\Mozilla\Firefox\Profiles\xy034lxf.default\prefs.js, Bon: (), Mauvais: (user_pref("browser.search.selectedEngine", "Trovi search");), Remplacé,[038117a7a9e196a032322f5a2adc08f8]

Secteurs physiques: 0
(Aucun élément malicieux détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité