cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 10/10/2015
Heure de l'analyse: 17:42
Fichier journal: malwarebytes.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.10.10.03
Base de données de rootkits: v2015.10.06.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Marjory

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 450744
Temps écoulé: 43 min, 47 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 2
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Crsoft\crsvc.exe, 2012, Supprimer au redémarrage, [7ecd3421ed9e072f391041045fa45ea2]
PUP.Optional.NetService, C:\Users\Marjory\AppData\Roaming\NetService\netservice.exe, 2488, Supprimer au redémarrage, [f2592134444744f2dc70a79e996a02fe]

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 16
PUP.Optional.WinManger, HKLM\SOFTWARE\CLASSES\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, En quarantaine, [60eb69ec187373c3b4e59869a16218e8],
PUP.Optional.WinManger, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, En quarantaine, [60eb69ec187373c3b4e59869a16218e8],
PUP.Optional.WinManger, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, En quarantaine, [60eb69ec187373c3b4e59869a16218e8],
PUP.Optional.EasyCalendar.ChrPRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Crashhd, En quarantaine, [7ecd3421ed9e072f391041045fa45ea2],
PUP.Optional.AmiUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\amiupdaterExd, Supprimer au redémarrage, [c18a7bda1a712a0c6d380992d4309070],
PUP.Optional.AmiUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\amiupdaterExi, Supprimer au redémarrage, [86c56bea92f9f541762f3a618e7655ab],
PUP.Optional.GameGogle, HKLM\SOFTWARE\SAKURA, En quarantaine, [be8de86db6d5da5cd28985660ff548b8],
PUP.Optional.MovieDea, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\MovieDea, En quarantaine, [99b28ec7cbc053e3bac3f7cab74dbb45],
PUP.Optional.PhraseProfessor, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\PhraseProfessorAutoUpdateClient_RASAPI32, En quarantaine, [410ae27312798caa84ee44a60afaf10f],
PUP.Optional.PhraseProfessor, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\PhraseProfessorAutoUpdateClient_RASMANCS, En quarantaine, [54f7154098f345f1a9c90edcb351ce32],
PUP.Optional.NetService, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NETTCPHANDLER, En quarantaine, [f2592134444744f2dc70a79e996a02fe],
PUP.Optional.ICinema, HKU\S-1-5-18\SOFTWARE\I - Cinema-nv, En quarantaine, [341769ec117a3402db64bff7e12310f0],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{0F5717C7-C54C-44FC-8951-79AD56FC58DB}, En quarantaine, [d67593c22a61c57128745741f70d19e7],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{0F5717C7-C54C-44FC-8951-79AD56FC58DB}, En quarantaine, [1f2c63f28cffa1955b41efa9da2aeb15],
PUP.Optional.OneSystemCare, HKU\S-1-5-21-786793541-1044784857-3159579442-1001\SOFTWARE\ONE SYSTEM CARE, En quarantaine, [f952154095f68caa4d44675dc341ef11],
PUP.Optional.Searching, HKU\S-1-5-21-786793541-1044784857-3159579442-1002\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\jlcgehabolcakkjhgmgpkagpolbjlhfa, En quarantaine, [4b00074e5e2d0a2c32132521be455fa1],

Valeurs du registre: 12
PUP.Optional.3DBubbleSound, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|3D BubbleSound, "C:\Program Files\BubbleSound\3D BubbleSound.exe", En quarantaine, [82c9282d315a60d65bcde2b8e51f8878]
PUP.Optional.GameGogle, HKLM\SOFTWARE\SAKURA|gamegogle, 1, En quarantaine, [be8de86db6d5da5cd28985660ff548b8]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS, Crossbrowse, En quarantaine, [272494c10e7dd95d20b7198d20e4b54b]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|StubPath, "C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level, En quarantaine, [1f2c272e8cff73c3b0277e28fd070ff1]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|Localized Name, Crossbrowse, En quarantaine, [f15abd9854370f277265228451b32fd1]
PUP.Optional.EasyCalendar.ChrPRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CRASHHD|ImagePath, C:\Users\Marjory\AppData\Local\Crsoft\crsvc.exe -st, En quarantaine, [7ccf3e17c3c8f64098b2fc49fd06aa56]
PUP.Optional.NetService, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NETTCPHANDLER|ImagePath, C:\Users\Marjory\AppData\Roaming\NetService\netservice.exe -start, En quarantaine, [f2592134444744f2dc70a79e996a02fe]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{0F5717C7-C54C-44FC-8951-79AD56FC58DB}|Name, C:\Program Files\shopperz081020151355\Netsigw.exe, En quarantaine, [d67593c22a61c57128745741f70d19e7]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{0F5717C7-C54C-44FC-8951-79AD56FC58DB}|Name, C:\Program Files\shopperz081020151355\Netsigw.exe, En quarantaine, [1f2c63f28cffa1955b41efa9da2aeb15]
PUP.Optional.OneSystemCare, HKU\S-1-5-21-786793541-1044784857-3159579442-1001\SOFTWARE\ONE SYSTEM CARE|OSID, 6.2, En quarantaine, [f952154095f68caa4d44675dc341ef11]
PUP.Optional.OneSystemCare, HKU\S-1-5-21-786793541-1044784857-3159579442-1001\SOFTWARE\ONE SYSTEM CARE|AdvertsLink1, http://dl.softservers.net/121002341/DriverPro.exe, En quarantaine, [df6c272e99f2df57e1af8242719354ac]
PUP.Optional.OneSystemCare, HKU\S-1-5-21-786793541-1044784857-3159579442-1001\SOFTWARE\ONE SYSTEM CARE|AdvertsLink2, http://dl.softservers.net/171002341/LiveSupport.exe, En quarantaine, [e269b1a4424995a1f89815af49bbec14]

Données du registre: 2
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon : ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais : ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplacé,[85c6ef664d3e65d15f8e286533d210f0]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon : ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais : ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplacé,[a0ab262facdfdf576e7f0b8246bfbe42]

Dossiers: 14
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Crsoft, Supprimer au redémarrage, [7ecd3421ed9e072f391041045fa45ea2],
PUP.Optional.GlobalUpdate, C:\Users\Marjory\AppData\Local\Temp\comh.294466, En quarantaine, [400be372f893211505201e0e5ea542be],
PUP.Optional.GlobalUpdate, C:\Users\Marjory\AppData\Local\Temp\comh.42618, En quarantaine, [d3781e37c4c7cf6744e1ad7fec17be42],
PUP.Optional.GlobalUpdate, C:\Users\Marjory\AppData\Local\Temp\comh.469904, En quarantaine, [4a01c590f794251174b160cc748f6f91],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_locales, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_locales\en, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_locales\en_US, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_locales\pt_BR, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_metadata, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.PullUpdate, C:\ProgramData\llUfrHN\dat, En quarantaine, [123971e4711a45f1d4a34e7dd62f2cd4],
PUP.Optional.PullUpdate, C:\ProgramData\llUfrHN, En quarantaine, [123971e4711a45f1d4a34e7dd62f2cd4],
PUP.Optional.NetService, C:\Users\Marjory\AppData\Roaming\NetService, Supprimer au redémarrage, [1a318ec7afdcc47249b07755e421d729],

Fichiers: 110
PUP.Optional.ZombieInvasion, C:\ProgramData\llUfrHN\dat\dNTVjCj.dll, En quarantaine, [78d315409cef87afc2fac0b683828e72],
PUP.Optional.PullUpdate, C:\ProgramData\llUfrHN\dat\vcGaOg.dll, En quarantaine, [de6d0055e4a73204a5f7c3026f966b95],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\15EC8838-15D6-49B1-A07D-B1ABED8CA6D2.exe, En quarantaine, [d972421304870e28588bedd7fb0acf31],
PUP.Optional.WordShark, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\adv_151.exe, En quarantaine, [e16ac3921d6e95a159992e96aa571de3],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\goopdate.dll, En quarantaine, [81cad481b8d361d57cf92e4da16003fd],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\goopdateres_en.dll, En quarantaine, [b19a5ef705865bdb4530a3d822dff40c],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\gshEA7E.tmp, En quarantaine, [4704ea6b3952082ecca95724d32ed729],
PUP.Optional.Nosibay, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\Bubble Dock Uninstall.exe, En quarantaine, [fb50a9aca7e43df948340fb6739260a0],
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\face_istartsurf[1].exe, En quarantaine, [c388f362f09bc2740d574778b84d1de3],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\globalupdate.exe, En quarantaine, [aba098bdc6c5191de98c13684db4d729],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\globalupdateBroker.exe, En quarantaine, [26259fb64a417fb7d99ccfac0ff2be42],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\globalupdateCrashHandler.exe, En quarantaine, [113a2b2a1477a591f67f0972af52e61a],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\globalupdateOnDemand.exe, En quarantaine, [0a41b79ebbd0f04684f14635887945bb],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\nqUyHL6QNf7KbGHVo39WUVb7TCR.exe, En quarantaine, [50fb25308308b284f4fe1f9fb84930d0],
PUP.Optional.OneSystemCare, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\OneSystemCare[1].exe, En quarantaine, [8bc01243d4b754e29de18e3715f0a45c],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\psmachine.dll, En quarantaine, [3219a8adf695e74f79fc6417a55c36ca],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\psuser.dll, En quarantaine, [b794d283a9e2b482b0c5d5a669989070],
PUP.Optional.ICinema, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\Rkerpumtgm.exe, En quarantaine, [f358d2837219d561addd239dd22f7f81],
PUP.Optional.SearchProtect, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\Setup[1].exe, En quarantaine, [7fccdb7a583345f12f6f8340f80920e0],
PUP.Optional.SmartWeb, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\SmartWebInstaller[1].exe, En quarantaine, [97b47bdaec9f6bcb30c0bd060ef314ec],
PUP.Optional.SearchProtect, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\Stub[1].exe, En quarantaine, [f754a3b2a1ea6ec85b44dee56f92eb15],
PUP.Optional.ICinema, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\temp.exe, En quarantaine, [ca8198bdbecd53e32466823e24dd847c],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\tkLRKqfE.exe, En quarantaine, [53f887ced8b379bd1bd766586f92f20e],
PUP.Optional.ZombieNews, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\VeQPTUelv.exe, En quarantaine, [1c2fc3923c4fbe78d33bd3f2f809817f],
PUP.Optional.ZombieNews, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\vRZYgWi.exe, En quarantaine, [f05b31240d7e58deb6585570738e43bd],
PUP.Optional.CheckOffer, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\VuuPC_VO2_8907[1].exe, En quarantaine, [4308223344475cdae1ebbbd4f50c857b],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\W1msEyoygAcCGwah1.exe, En quarantaine, [311aa4b15b30b38317db5767eb163cc4],
Adware.PullUpdate, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\juxlaani.exe, En quarantaine, [2922064f6a21e55162e2e6d317eab050],
PUP.Optional.ModGoog, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\npglobalupdateUpdate4.dll, En quarantaine, [69e2cb8afb902b0b2a4b6912ca3740c0],
PUP.Optional.ZombieNews, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\xQrENEQKB.exe, En quarantaine, [b4974114840749ede42a4580dc259967],
PUP.Optional.Nova, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\358923aa-cbf3-43f2-89bd-b1b2f5e40b34\8d50a827-19f1-4b92-82c5-f8ab8aba3976.dll, En quarantaine, [51fae3720e7dd462175b645ef50c0bf5],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\358923aa-cbf3-43f2-89bd-b1b2f5e40b34\d15fc20f-1e3b-4521-b8c9-38086c6ae04b.dll, En quarantaine, [004b99bc4d3ec76f9985c3f8d52c20e0],
PUP.Optional.Nova, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\388d0e4b-8b4f-4e81-93df-2f82ebff79b3\1fc6e371-4535-4877-8bab-3ddb9d8ac2c0.dll, En quarantaine, [ce7d67ee315a8da991e1467c90715ba5],
PUP.Optional.Nova, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\388d0e4b-8b4f-4e81-93df-2f82ebff79b3\5ab2081e-dd88-40a2-992a-c00bd056c865.dll, En quarantaine, [ea611045ff8ca096db97a71b758cbd43],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\388d0e4b-8b4f-4e81-93df-2f82ebff79b3\73f6a863-aa11-4600-a886-df93727c748d.dll, En quarantaine, [7fcc80d57e0d989ee23cd4e707fa53ad],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\388d0e4b-8b4f-4e81-93df-2f82ebff79b3\f2d8b95e-9792-40eb-a370-e59f0c5ad2bc.dll, En quarantaine, [3b100f46c0cbc571bf5f6655b54cf60a],
PUP.Optional.Nova, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\55bbfa5e-ae7a-4011-83fa-1edef2cc6ee5\a84b396e-4cb8-4fc4-a42b-f76c28fda010.dll, En quarantaine, [60eb193ca4e737ff7ff34d75e41d649c],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\55bbfa5e-ae7a-4011-83fa-1edef2cc6ee5\a8de9c9b-6b22-4b5d-a1a0-acd598991a67.dll, En quarantaine, [d2799eb7266554e2041af6c5c33e827e],
PUP.Optional.Nova, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\73f6a863-aa11-4600-a886-df93727c748d\1d9093d7-c9c1-4ef2-a1a6-12d3df06c210.dll, En quarantaine, [6ae1cc899dee76c071017d45f60b12ee],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\73f6a863-aa11-4600-a886-df93727c748d\a220a3a5-0c33-4738-8a8e-f32080c4a74c.dll, En quarantaine, [ef5c62f392f93df95dc15c5f12ef18e8],
PUP.Optional.Nova, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\ae958e1b-3c48-4edc-a9e3-4fa790f06969\3fb15282-dd4f-4ad1-8f03-0ea7367b1798.dll, En quarantaine, [85c6de778605c57129495270847d8e72],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\ae958e1b-3c48-4edc-a9e3-4fa790f06969\fd785ac7-6039-4747-b8f3-d97adc9e3107.dll, En quarantaine, [301b90c5cac137ff5fbf05b6897851af],
PUP.Optional.Perion, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\shopperz081020151355\csrcc.exe, En quarantaine, [044713421d6ee55140474375a859ce32],
PUP.Optional.Perion, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\shopperz081020151355\Orewgobi.dll, En quarantaine, [42093124a5e63600b8d05860837e2cd4],
PUP.Optional.Perion, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\shopperz081020151355\Orewgobi64.dll, En quarantaine, [3f0c98bde8a37db95d53397ffd04fa06],
PUP.Optional.PullUpdate, C:\Users\Marjory\AppData\Roaming\ZHP\Quarantine\ZombieNews\Uninstall.exe, En quarantaine, [b09be372206b4ee8019b6f56cd38e41c],
Rootkit.Agent.A, C:\Windows\System32\drivers\bsdriver.sys, Supprimer au redémarrage, [e467173e90fb78be6ac710686f92ec14],
PUP.Optional.Shopperz.BrwsrFlsh, C:\Windows\System32\drivers\cherimoya.sys, Supprimer au redémarrage, [6dde3d18b3d83ef870fe745018ed827e],
PUP.Optional.Tuto4PC, C:\Users\Marjory\AppData\Local\Temp\nshF90E.tmp, En quarantaine, [4cff9fb65f2c2b0be236457fe91c1ee2],
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Marjory\AppData\Local\Temp\nsk5396.tmp, En quarantaine, [c388c09598f344f21a4a8d328a7b8080],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\Marjory\AppData\Local\Temp\nszE96B.tmp, En quarantaine, [0348f85d4f3c74c212bbeed1d134f808],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Local\Temp\1641.exe, En quarantaine, [dd6e60f52f5c12244c97fdc76f9604fc],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Local\Temp\1887.exe, En quarantaine, [de6ddd7899f22c0affe43a8aee17926e],
PUP.Optional.OneSystemCare, C:\Users\Marjory\AppData\Local\Temp\1946.exe, En quarantaine, [440774e1c9c2a98dfe8001c4e3227888],
PUP.Optional.MyBrowser, C:\Users\Marjory\AppData\Local\Temp\2105.exe, En quarantaine, [55f671e405866accf15820a29e679769],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Local\Temp\2158.exe, En quarantaine, [69e2f85d573472c41bc8e8dcc34249b7],
PUP.Optional.MyBrowser, C:\Users\Marjory\AppData\Local\Temp\2230.exe, En quarantaine, [d873bc996c1f280e92b7279b8a7bcf31],
PUP.Optional.MyBrowser, C:\Users\Marjory\AppData\Local\Temp\2741.exe, En quarantaine, [d77459fc0e7dc274e267833fe4213fc1],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Local\Temp\3897.exe, En quarantaine, [9bb098bd23689a9cb52ecef65aab4bb5],
PUP.Optional.CrossRider, C:\Users\Marjory\AppData\Local\Temp\7822.exe, En quarantaine, [9ead352009828fa7875ca51fd0352fd1],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\Marjory\AppData\Local\Temp\nsmA03E.tmp, En quarantaine, [bb902233c3c8e94dc20b7c4334d14bb5],
PUP.Optional.ConvertAd, C:\Users\Marjory\AppData\Local\Temp\nsr31D7.tmp, En quarantaine, [3f0c0b4af89364d27d9db9023ac8ef11],
PUP.Optional.ABengine, C:\Users\Marjory\AppData\Local\Temp\nsrF89C.tmp, En quarantaine, [ca816aebe9a23ef8830d934d9f62ca36],
PUP.Optional.ConvertAd, C:\Users\Marjory\AppData\Local\Temp\nss74B0.tmp, En quarantaine, [eb603e178605af87b268f6c56b974db3],
PUP.Optional.PreInstaller, C:\Users\Marjory\AppData\Local\Temp\nss93CD.tmp, En quarantaine, [1b30de77256639fdae50dde5847def11],
PUP.Optional.ConvertAd, C:\Users\Marjory\AppData\Local\Temp\nst766D.tmp, En quarantaine, [eb60c590e5a681b5b466922933cff10f],
PUP.Optional.ConvertAd, C:\Users\Marjory\AppData\Local\Temp\nsv6203.tmp, En quarantaine, [ce7d6de826653ff72deda01b16ec9a66],
PUP.Optional.Bundler, C:\Users\Marjory\AppData\Local\Temp\fsd16EA.exe, En quarantaine, [73d8470eec9f2e0896033b2118e89070],
PUP.Optional.Bundler, C:\Users\Marjory\AppData\Local\Temp\fsd99CD.exe, En quarantaine, [1c2fb1a4f99249ed0594203c4fb17e82],
PUP.Optional.CrossBrowse, C:\Users\Marjory\AppData\Local\Temp\D569.tmp, En quarantaine, [c784d97cb2d9b284477f6d54c5404cb4],
PUP.Optional.Tuto4PC, C:\Users\Marjory\AppData\Local\Temp\is-C1MJ1.tmp\nshF90E.tmp, En quarantaine, [a8a30550b6d5bb7b8098e5df6e9744bc],
PUP.Optional.EoRezo, C:\Users\Marjory\AppData\Local\Temp\is-FT4I8.tmp\package_pzombie_installer_multilang.exe, En quarantaine, [6cdf4510c1caa0967f1207b83dc4bd43],
PUP.Optional.EoRezo, C:\Users\Marjory\AppData\Local\Temp\is-FT4I8.tmp\420.exe, En quarantaine, [90bbc2935d2e3ef8eaa76f5058a93cc4],
PUP.Optional.EoRezo, C:\Users\Marjory\AppData\Local\Temp\is-FT4I8.tmp\package_BubbleSound_installer_multilang.exe, En quarantaine, [e863193c47443ef8820f3a859968df21],
PUP.Optional.CrossBrowse, C:\Users\Marjory\AppData\Local\Temp\3176\setup.exe, En quarantaine, [ba9172e3c8c39a9c6f57e0e127de53ad],
PUP.Optional.Tuto4PC, C:\Users\Marjory\AppData\Local\Temp\is-46FJH.tmp\gentlemjmp_ieu.exe, En quarantaine, [6be0b0a5fe8da78f55c39a2ac4417c84],
PUP.Optional.Perion, C:\Users\Marjory\AppData\Local\Temp\is-785J2.tmp\Rafmy.dll, En quarantaine, [490285d096f5082e76145f59dd245aa6],
Trojan.MSIL.Dropper, C:\Users\Marjory\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe, En quarantaine, [c18a391c612acf676aefa3ce1aeba858],
PUP.Optional.Delta.ShrtCln, C:\Users\Marjory\Downloads\unlocker_1-9-2_fr_20237.exe, En quarantaine, [60eb44110e7dd462468209dcaf51946c],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Crsoft\crsvc.exe, Supprimer au redémarrage, [7ecd3421ed9e072f391041045fa45ea2],
Rootkit.Agent.A, C:\Windows\System32\drivers\cherimoya.sys, Supprimer au redémarrage, [a2a9fe57a3e82610d727420a56ad26da],
PUP.Optional.ABengine, C:\Users\Marjory\AppData\Local\Temp\lengine.ini.log, En quarantaine, [173494c1bdced264a0a66931e321ab55],
PUP.Optional.Acengine, C:\Windows\Temp\acengine.log, En quarantaine, [5af1f36234572b0b65ecf5a5fd0719e7],
PUP.Optional.SearchModule, C:\Windows\Temp\SM_cache_chrome.exe.cache, En quarantaine, [cf7cbe97f497b284b6f6eae356ae07f9],
PUP.Optional.NetService, C:\Users\Marjory\AppData\Roaming\NetService\netservice.exe, Supprimer au redémarrage, [f2592134444744f2dc70a79e996a02fe],
PUP.Optional.GlobalUpdate, C:\Users\Marjory\AppData\Local\Temp\comh.294466\globalupdateHelper.msi, En quarantaine, [400be372f893211505201e0e5ea542be],
PUP.Optional.GlobalUpdate, C:\Users\Marjory\AppData\Local\Temp\comh.42618\globalupdateHelper.msi, En quarantaine, [d3781e37c4c7cf6744e1ad7fec17be42],
PUP.Optional.GlobalUpdate, C:\Users\Marjory\AppData\Local\Temp\comh.469904\globalupdateHelper.msi, En quarantaine, [4a01c590f794251174b160cc748f6f91],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\background.html, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\background.js, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\ga.js, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\icon_128.png, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\icon_16.png, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\main.js, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\manifest.json, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\popup.html, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\popup.js, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_locales\en\messages.json, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_locales\en_US\messages.json, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_locales\pt_BR\messages.json, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_metadata\computed_hashes.json, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.EasyCalendar.ChrPRST, C:\Users\Marjory\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcgcoifbkbphhjnekfkmohklfaimhikk\1.0.0_1\_metadata\verified_contents.json, En quarantaine, [ce7dc68f16753afce6f265dfdf241ae6],
PUP.Optional.PullUpdate, C:\ProgramData\llUfrHN\dat\VeQPTUelv.exe.config, En quarantaine, [123971e4711a45f1d4a34e7dd62f2cd4],
PUP.Optional.PullUpdate, C:\ProgramData\llUfrHN\dat\vRZYgWi.exe.config, En quarantaine, [123971e4711a45f1d4a34e7dd62f2cd4],
PUP.Optional.PullUpdate, C:\ProgramData\llUfrHN\info.dat, En quarantaine, [123971e4711a45f1d4a34e7dd62f2cd4],
PUP.Optional.PullUpdate, C:\ProgramData\llUfrHN\xQrENEQKB.dat, En quarantaine, [123971e4711a45f1d4a34e7dd62f2cd4],
PUP.Optional.PullUpdate, C:\ProgramData\llUfrHN\xQrENEQKB.exe.config, En quarantaine, [123971e4711a45f1d4a34e7dd62f2cd4],
PUP.Optional.VBSLoader, C:\task.vbs, En quarantaine, [6fdc78dd7f0c85b173784e7e5da8f010],
PUP.Optional.NetService, C:\Users\Marjory\AppData\Roaming\NetService\conf.ini, En quarantaine, [1a318ec7afdcc47249b07755e421d729],
PUP.Optional.NetService, C:\Users\Marjory\AppData\Roaming\NetService\sc.exe, En quarantaine, [1a318ec7afdcc47249b07755e421d729],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité