cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 25/06/2015
Heure de l'examen: 11:15:56
Fichier journal: mbam.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de données Malveillants: v2015.06.25.01
Base de données Rootkits: v2015.06.22.01
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: olivier

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 346593
Temps écoulé: 38 min, 37 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 2
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\1.0.1.0\enflixri.exe, 2936, Supprimé-au-redémarrage, [04e1c8f657337fb79e34b7d8e12445bb]
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\1.0.1.0\enflixri.exe, 464, Supprimé-au-redémarrage, [04e1c8f657337fb79e34b7d8e12445bb]

Modules: 1
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\1.0.1.0\sqlite3.dll, Supprimé-au-redémarrage, [04e1c8f657337fb79e34b7d8e12445bb],

Clés du Registre: 13
PUP.Optional.Linkey.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fpmeembnagmagppkgghhfjfdfajdfcah, Mis en quarantaine, [e401d5e96426b680c797ad8b4abaa060],
PUP.Optional.Coupoon.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\coupoon, Mis en quarantaine, [ebfa714d9ded2610f807691e778ee719],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{72a94386-d7dd-4032-86b6-e013e104f0ab}, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\CLSID\{72A94386-D7DD-4032-86B6-E013E104F0AB}, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\Extension.Akgceyy.1, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\Extension.Akgceyy, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Extension.Akgceyy, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Extension.Akgceyy, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{72A94386-D7DD-4032-86B6-E013E104F0AB}, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Extension.Akgceyy.1, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Extension.Akgceyy.1, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{72A94386-D7DD-4032-86B6-E013E104F0AB}, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{72A94386-D7DD-4032-86B6-E013E104F0AB}, Mis en quarantaine, [28bdac1291f93afce4e5460a9f67936d],

Valeurs du Registre: 4
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|shopperz, C:\Program Files\shopperz\Qqbvgtgao.exe, Mis en quarantaine, [8a5bc1fdf19940f6969ae622cc38ad53]
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|shopperz64, C:\Program Files\shopperz\Qqbvgtgao64.exe, Mis en quarantaine, [1fc69f1fed9d171ff33e1deb996ba45c]
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{72a94386-d7dd-4032-86b6-e013e104f0ab}, C:\Program Files\shopperz\Firefox, Mis en quarantaine, [4d9808b61377a78fcf213c4b927318e8]
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{72a94386-d7dd-4032-86b6-e013e104f0ab}, C:\Program Files\shopperz\Firefox, Mis en quarantaine, [21c43787c4c61b1bc32d2b5c8c79a25e]

Données du Registre: 0
(Aucun élément malicieux détecté)

Dossiers: 14
PUP.Optional.Updater.A, C:\Program Files (x86)\Common Files\2988696b-294c-4054-b34f-e97ca58a10e8, Mis en quarantaine, [2eb78737acde2016a563a1e8b45121df],
PUP.Optional.Updater.A, C:\Program Files (x86)\Common Files\2988696b-294c-4054-b34f-e97ca58a10e8\updater, Mis en quarantaine, [2eb78737acde2016a563a1e8b45121df],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\1.0.1.0, Supprimé-au-redémarrage, [04e1c8f657337fb79e34b7d8e12445bb],
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno, Supprimé-au-redémarrage, [04e1c8f657337fb79e34b7d8e12445bb],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugincontainer, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\10, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\2, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\2bak, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\3, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\5, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\8, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],

Fichiers: 52
PUP.Optional.TriangleTrail.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugincontainer.bak, Mis en quarantaine, [588dd0ee4248ef47db69e79f8d7945bb],
PUP.Optional.TriangleTrail.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugincontainer.exe, Mis en quarantaine, [d411b30b0a808bab45fffd899274a957],
PUP.Optional.TriangleTrail.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\10\Plugin.exe, Mis en quarantaine, [da0b4a7449413600dc685036c541a957],
PUP.Optional.TriangleTrail.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\2\Plugin.exe, Mis en quarantaine, [12d317a7e0aadd59fa4ad9ad4cba0cf4],
PUP.Optional.TriangleTrail.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\2bak\Plugin.exe, Mis en quarantaine, [9055ebd31e6c84b263e1bbcb9e685fa1],
PUP.Optional.TriangleTrail.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\3\Plugin.exe, Mis en quarantaine, [d60f05b92c5e6bcb2024e5a1da2c6997],
PUP.Optional.TriangleTrail.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\5\Plugin.exe, Mis en quarantaine, [e00505b9325826103a0a2d596e98f709],
PUP.Optional.TriangleTrail.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\plugins\8\Plugin.exe, Mis en quarantaine, [5c8901bd008afa3c87bdbdc9689e4bb5],
PUP.Optional.TriangleTrail.A, C:\Users\olivier\AppData\Local\Temp\setup.exe, Mis en quarantaine, [9154635bef9b96a096ae0581778fe61a],
PUP.Optional.StormWatch.A, C:\Users\olivier\AppData\Local\Temp\setup_608.exe, Mis en quarantaine, [e0057747e9a1d85eca5aaaadf50ba65a],
PUP.Optional.Crossbrowse.C, C:\Users\olivier\AppData\Local\Temp\4299.exe, Mis en quarantaine, [c1244e705139b1854fcfcb8ede24e21e],
PUP.Optional.CheckOffer, C:\Users\olivier\AppData\Local\Temp\nsqDE4B.tmp, Mis en quarantaine, [ac39ae104e3cf83e030598cb679b15eb],
PUP.Optional.MyStartSearch.A, C:\Users\olivier\AppData\Local\Temp\nss4E4C.tmp, Mis en quarantaine, [34b1219dc2c8280e14066e16887e24dc],
PUP.Optional.AztecMedia.A, C:\Users\olivier\AppData\Local\Temp\DSManagerSetup.exe, Mis en quarantaine, [a045d0eedcae0a2c7e289de8e5219868],
PUP.Optional.CheckOffer, C:\Users\olivier\AppData\Local\Temp\nsj1E5B.tmp, Mis en quarantaine, [18cd2e90f595e0569c6c065dfe041de3],
PUP.Optional.Nosibay.A, C:\Users\olivier\AppData\Local\Temp\2462015195929\Bubble Dock Uninstall.exe, Mis en quarantaine, [5095338b1d6d37ff57d0afd66f97b34d],
PUP.Optional.Nosibay.A, C:\Users\olivier\AppData\Local\Temp\2462015200044\Selection Tools Uninstall.exe, Mis en quarantaine, [db0a605e2961082e2bfce4a1e224c43c],
Adware.EoRezo, C:\Users\olivier\AppData\Local\Temp\is-JR98I.tmp\package_pmediaconverter_installer_multilang.exe, Mis en quarantaine, [6e770cb25d2d4aec5e039ad6e81a0bf5],
Adware.EoRezo, C:\Users\olivier\AppData\Local\Temp\is-JR98I.tmp\399.exe, Mis en quarantaine, [cf16d6e83a50e056a5bcd997e51d2fd1],
Adware.EoRezo, C:\Users\olivier\AppData\Local\Temp\is-JR98I.tmp\480.exe, Mis en quarantaine, [8c59fdc1494180b65e035d130af8b24e],
Adware.EoRezo, C:\Users\olivier\AppData\Local\Temp\is-JR98I.tmp\package_airwebbar_installer_multilang.exe, Mis en quarantaine, [5f8645793357f2445f02264ad52d2fd1],
Adware.EoRezo, C:\Users\olivier\AppData\Local\Temp\is-JR98I.tmp\package_BubbleSound_installer_multilang.exe, Mis en quarantaine, [7e67c1fdb8d276c0ee73d29e15ed39c7],
Adware.EoRezo, C:\Users\olivier\AppData\Local\Temp\is-JR98I.tmp\package_optimizerpro_installer_multilang.exe, Mis en quarantaine, [2eb79d21b2d895a1075ae68aab57ec14],
Adware.EoRezo, C:\Users\olivier\AppData\Local\Temp\is-JR98I.tmp\package_pcrossbrowser_installer_multilang.exe, Mis en quarantaine, [00e566580684a98dd58ccda35aa8e11f],
Adware.EoRezo, C:\Users\olivier\AppData\Local\Temp\is-JR98I.tmp\package_superpc_installer_multilang.exe, Mis en quarantaine, [7e67a41a95f5e2548dd488e842c02ed2],
PUP.Optional.Tuto4PC.A, C:\Users\olivier\AppData\Local\Temp\is-U4FV3.tmp\gentlemjmp_ieu.exe, Mis en quarantaine, [cf16239bc4c639fd4ec52f56e32354ac],
PUP.Optional.CheckOffer, C:\Users\olivier\AppData\Local\Temp\nsaFAB.tmp\nsCBHTML5.dll, Mis en quarantaine, [ae37c0fe4842340239cf313253af5ea2],
PUP.Optional.OfferInstaller.C, C:\Users\olivier\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe, Mis en quarantaine, [29bc615d9eec7cba6d41013e2dd5817f],
PUP.Optional.SndVol.A, C:\Windows\SysWOW64\config\systemprofile\sndvol.exe, Mis en quarantaine, [b3326559404ad95d99bf9065d1324fb1],
PUP.Optional.Vitruvian.A, C:\Users\olivier\AppData\Local\Temp\vitruvian-installer-hardwareprofile-v0001, Mis en quarantaine, [6580457963279a9c57e341402adbeb15],
PUP.Optional.Vitruvian.A, C:\Users\olivier\AppData\Local\Temp\vitruvian-installer-install-v0003, Mis en quarantaine, [1fc68539d5b560d60139047d62a34cb4],
PUP.Optional.Vitruvian.A, C:\Users\olivier\AppData\Local\Temp\vitruvian-installer-processes-v0002, Mis en quarantaine, [6382e1dd8efccc6af54580017d8818e8],
PUP.Optional.Vitruvian.A, C:\Users\olivier\AppData\Local\Temp\vitruvian-installer-scheduledtasks-v0001, Mis en quarantaine, [c71e308ec9c10d291525ceb3c045649c],
PUP.Optional.Vitruvian.A, C:\Users\olivier\AppData\Local\Temp\vitruvian-installer-softwareregkeys-v0002, Mis en quarantaine, [2fb6eed0d5b539fd89b11e630ef77c84],
PUP.Optional.Updater.A, C:\Program Files (x86)\Common Files\2988696b-294c-4054-b34f-e97ca58a10e8\updater.exe, Mis en quarantaine, [2eb78737acde2016a563a1e8b45121df],
PUP.Optional.Updater.A, C:\Program Files (x86)\Common Files\2988696b-294c-4054-b34f-e97ca58a10e8\updater.bak, Mis en quarantaine, [2eb78737acde2016a563a1e8b45121df],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\debug.log, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\17AF54B9, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\4DEDA591, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\6C8E155, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\7F24D2EF, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\9721B0CB, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\99E1F920, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\AA012CZ, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.BundleInstaller.A, C:\ProgramData\abc\C78F0747, Mis en quarantaine, [c2235668b6d4191d8742404fe2236d93],
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\1.0.1.0\enflixri.exe.config, Mis en quarantaine, [04e1c8f657337fb79e34b7d8e12445bb],
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\1.0.1.0\enflixri.exe, Supprimé-au-redémarrage, [04e1c8f657337fb79e34b7d8e12445bb],
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\1.0.1.0\sqlite3.dll, Supprimé-au-redémarrage, [04e1c8f657337fb79e34b7d8e12445bb],
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\1.0.1.0\time.dat, Mis en quarantaine, [04e1c8f657337fb79e34b7d8e12445bb],
PUP.Optional.Amonetize.A, C:\ProgramData\Tneorlnemno\dat.dat, Mis en quarantaine, [04e1c8f657337fb79e34b7d8e12445bb],
PUP.Optional.BubbleDock.A, C:\Users\olivier\AppData\Local\Temp\LBubble Dock.txt, Mis en quarantaine, [ffe607b7800ab97d7860484b09fc28d8],
PUP.Optional.OnStage.A, C:\ProgramData\2988696b-294c-4054-b34f-e97ca58a10e8\temp, Mis en quarantaine, [5d88734bdeac082e46cf19dba55e20e0],

Secteurs physiques: 0
(Aucun élément malicieux détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité