cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 25/06/2015
Heure de l'examen: 16:57:47
Fichier journal: mbam.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de données Malveillants: v2015.06.25.04
Base de données Rootkits: v2015.06.22.01
Licence: Essai
Protection contre les malveillants: Activé(e)
Protection contre les sites Web malveillants: Activé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 8
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Thominus

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 341322
Temps écoulé: 39 min, 9 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Activé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 1
PUP.Optional.WordAnchor.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\Service\wasvc.exe, 2392, Supprimé-au-redémarrage, [5791d9e51575d16582435c2ac54117e9]

Modules: 0
(Aucun élément malicieux détecté)

Clés du Registre: 6
PUP.Optional.WordAnchor.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wasvc_1.10.0.19, Mis en quarantaine, [5791d9e51575d16582435c2ac54117e9],
PUP.Optional.WordAnchor.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WordAnchor_1.10.0.19, Mis en quarantaine, [cd1b19a58dfdc472e0e5afd7e422f60a],
PUP.Optional.WordAnchor.A, HKLM\SOFTWARE\WOW6432NODE\WordAnchor_1.10.0.19, Mis en quarantaine, [60884e701971db5b38e4deb7ae57f40c],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{cae99edb}, Mis en quarantaine, [9f49e7d79deda195f889345b5ca9e917],
PUP.Optional.WordAnchor.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wafd_1_10_0_19, Mis en quarantaine, [9c4c76484941c76f42d473217f86ca36],
PUP.Optional.SuperOptimizer.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\{1146AC44-2F03-4431-B4FD-889BC837521F}, Mis en quarantaine, [a44408b69eecc670d753b3e08085e818],

Valeurs du Registre: 1
PUP.Optional.Vitruvian.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wasvc_1.10.0.19|ImagePath, "C:\Program Files (x86)\WordAnchor_1.10.0.19\Service\wasvc.exe", Mis en quarantaine, [0ddb8d3195f59c9ab3e95637e61f8f71]

Données du Registre: 0
(Aucun élément malicieux détecté)

Dossiers: 20
PUP.Optional.Updater.A, C:\Program Files (x86)\Common Files\f08cac26-e74f-49b4-9ff1-f081aa55e1b3, Mis en quarantaine, [2fb910ae5d2d1f17b5d1662307fea060],
PUP.Optional.Updater.A, C:\Program Files (x86)\Common Files\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\updater, Mis en quarantaine, [2fb910ae5d2d1f17b5d1662307fea060],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugincontainer, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\10, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\10bak, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\2, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\2bak, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\3, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\3bak, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\5, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\5bak, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\8, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\8bak, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19, Supprimé-au-redémarrage, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\3rd Party Licenses, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\Service, Supprimé-au-redémarrage, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.FilterResults.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnplcfcahccbobajbpjjniedjgpedkkn\1.0.5652.17727_0, Mis en quarantaine, [a147833ba5e51b1bb0c53e4a0402dc24],
PUP.Optional.FilterResults.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnplcfcahccbobajbpjjniedjgpedkkn, Mis en quarantaine, [a147833ba5e51b1bb0c53e4a0402dc24],

Fichiers: 34
PUP.Optional.WordAnchor.A, C:\WINDOWS\SYSTEM32\drivers\wafd_1_10_0_19.sys, Supprimé-au-redémarrage, [d3302581b6bb54d54bbf47762b9ce9b7],
PUP.Optional.WordAnchor.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\Service\wasvc.exe, Supprimé-au-redémarrage, [5791d9e51575d16582435c2ac54117e9],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugincontainer.bak, Mis en quarantaine, [e30596281e6cfd39d8d16b1b0df9e917],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugincontainer.exe, Mis en quarantaine, [4f992a9446448aac0a9f394d0bfb7b85],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\10\Plugin.exe, Mis en quarantaine, [d711447ab2d865d11b8eadd9aa5cc040],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\10bak\Plugin.exe, Mis en quarantaine, [47a1437b2961c2743475b8cecd399769],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\2\Plugin.exe, Mis en quarantaine, [76729b23c0ca44f2a009d1b529dd619f],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\2bak\Plugin.exe, Mis en quarantaine, [ebfd85398cfe8bab85243b4b818557a9],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\3\Plugin.exe, Mis en quarantaine, [61873b833a503ef838716f17da2c0ff1],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\3bak\Plugin.exe, Mis en quarantaine, [a246fdc19deddf571c8d1c6a6f977b85],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\5\Plugin.exe, Mis en quarantaine, [90589f1fa3e7a393cfdaa0e683836c94],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\5bak\Plugin.exe, Mis en quarantaine, [db0db806672355e19514d8ae689e2ed2],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\8\Plugin.exe, Mis en quarantaine, [53955f5f86047fb7f0b95135c145c13f],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\plugins\8bak\Plugin.exe, Mis en quarantaine, [2ebab40a2466ec4a6e3bf78f0402936d],
PUP.Optional.WordAnchor.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\Uninstall.exe, Mis en quarantaine, [cd1b19a58dfdc472e0e5afd7e422f60a],
PUP.Optional.ReMarkable.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Supprimé-au-redémarrage, [a444fdc1d1b9a88e903f7d0a9c69d030],
PUP.Optional.ReMarkable.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Supprimé-au-redémarrage, [13d5b10d8a0056e04788fd8a9f669c64],
PUP.Optional.Updater.A, C:\Program Files (x86)\Common Files\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\updater.exe, Mis en quarantaine, [2fb910ae5d2d1f17b5d1662307fea060],
PUP.Optional.Updater.A, C:\Program Files (x86)\Common Files\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\updater.bak, Mis en quarantaine, [2fb910ae5d2d1f17b5d1662307fea060],
PUP.Optional.FilterResults.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_filterresults-a.akamaihd.net_0.localstorage, Supprimé-au-redémarrage, [fceca717a3e7e55112703a5953b29e62],
PUP.Optional.FilterResults.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_filterresults-a.akamaihd.net_0.localstorage-journal, Supprimé-au-redémarrage, [7870d5e9f793251183ffc4cf1aeb35cb],
PUP.Optional.FilterResults.A, C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3\temp, Mis en quarantaine, [2fb9b9050f7b6acc8999b93b02019769],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\terms-of-service.rtf, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\3rd Party Licenses\buildcrx-license.txt, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\3rd Party Licenses\Info-ZIP-license.txt, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\3rd Party Licenses\JSON-simple-license.txt, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\3rd Party Licenses\nsJSON-license.txt, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\3rd Party Licenses\Nustache-license.txt, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\3rd Party Licenses\TaskScheduler-license.txt, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.Vitruvian.A, C:\Program Files (x86)\WordAnchor_1.10.0.19\3rd Party Licenses\UAC-license.txt, Mis en quarantaine, [3dabe8d63d4dad8955e4b1d7749216ea],
PUP.Optional.FilterResults.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnplcfcahccbobajbpjjniedjgpedkkn\1.0.5652.17727_0\manifest.json, Mis en quarantaine, [a147833ba5e51b1bb0c53e4a0402dc24],
PUP.Optional.FilterResults.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnplcfcahccbobajbpjjniedjgpedkkn\1.0.5652.17727_0\background.js, Mis en quarantaine, [a147833ba5e51b1bb0c53e4a0402dc24],
PUP.Optional.FilterResults.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnplcfcahccbobajbpjjniedjgpedkkn\1.0.5652.17727_0\content.js, Mis en quarantaine, [a147833ba5e51b1bb0c53e4a0402dc24],
PUP.Optional.FilterResults.A, C:\Users\Thominus\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnplcfcahccbobajbpjjniedjgpedkkn\1.0.5652.17727_0\icon.png, Mis en quarantaine, [a147833ba5e51b1bb0c53e4a0402dc24],

Secteurs physiques: 0
(Aucun élément malicieux détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité