Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 14/07/2015
Heure de l'analyse: 02:17
Fichier journal: journal1mbam.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.07.13.06
Base de données de rootkits: v2015.07.10.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x86
Système de fichiers: NTFS
Utilisateur: laet

Type d'analyse: Analyse personnalisée
Résultat: Terminé
Objets analysés: 537178
Temps écoulé: 3 h, 38 min, 18 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 4
PUP.Optional.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CzechsXness, En quarantaine, [44065988573339fd1dc3b50554ad22de], 
PUP.Optional.MultiPlug, HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}, En quarantaine, [2822667b0783d264fc9ae3dc6b9736ca], 
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, En quarantaine, [bf8b637ef9910234e3e50ff4927107f9], 
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, En quarantaine, [3218a33ec2c896a039c4028735cfdd23], 

Valeurs du registre: 2
PUP.Optional.Astromenda.C, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files\WSE_Astromenda\\, En quarantaine, [fb4f875a6624191d2a9823e0dc27d729]
PUM.Bad.Proxy, HKU\S-1-5-21-213642649-178377738-3602818869-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, http=127.0.0.1:9880, En quarantaine, [3e0ce7fa68229e9810b74fd621e213ed]

Données du registre: 0
(Aucun élément malveillant détecté)

Dossiers: 3
PUP.Optional.Obrona.Gen, C:\Program Files\CzechsXness, En quarantaine, [4bff6e73296162d445a6c43c0df69f61], 
PUP.Optional.Obrona.Gen, C:\Program Files\CzechsXness\platforms, En quarantaine, [4bff6e73296162d445a6c43c0df69f61], 
PUP.Optional.GlobalUpdate.A, C:\Users\laet\AppData\Local\Temp\comh.400457, En quarantaine, [80ca12cfe0aa88ae713b17cb22e004fc], 

Fichiers: 58
PUP.Optional.PrxySvrRST, C:\Program Files\CzechsXness\CzechsXness.exe, En quarantaine, [44065988573339fd1dc3b50554ad22de], 
PUP.Optional.CrossRider.A, C:\Users\laet\AppData\Local\Temp\2076.exe, En quarantaine, [79d1e5fc553563d37a2174e68d7857a9], 
PUP.Optional.CrossRider.A, C:\Users\laet\AppData\Local\Temp\2602.exe, En quarantaine, [ea60459c2b5f87afe2b98ecc7293f907], 
PUP.Optional.CrossRider.A, C:\Users\laet\AppData\Local\Temp\3712.exe, En quarantaine, [bc8e6e73d7b3b87e1388afabd53060a0], 
PUP.Optional.Installcore, C:\Users\laet\AppData\Local\Temp\Criminal Case Hack 2015 Downloader__3687_i1556465595_il120292.exe, En quarantaine, [66e411d0cdbd32049c2cc49eee1745bb], 
PUP.Optional.CrossRider.A, C:\Users\laet\AppData\Local\Temp\5133.exe, En quarantaine, [301a677a8ffbf541e1baafabcf364db3], 
PUP.Optional.CrossRider.A, C:\Users\laet\AppData\Local\Temp\9441.exe, En quarantaine, [a9a1538ec7c38fa70d8ea7b3669f4fb1], 
PUP.Optional.CrossRider.A, C:\Users\laet\AppData\Local\Temp\9872.exe, En quarantaine, [6ddd7f62fa9079bd4952d387d72e4cb4], 
PUP.Optional.Nosibay.A, C:\Users\laet\AppData\Local\Temp\1372015162920\Bubble Dock Uninstall.exe, En quarantaine, [f05ac12094f62214252a431e08fd29d7], 
PUP.Optional.Nosibay.A, C:\Users\laet\AppData\Local\Temp\1372015163355\WindApp Uninstall.exe, En quarantaine, [aaa015cc543670c6aaa569f87a8b9a66], 
PUP.Optional.Nosibay.A, C:\Users\laet\AppData\Local\Temp\1372015164343\Selection Tools Uninstall.exe, En quarantaine, [0248ae330c7e2313113ed9880500a759], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\globalupdate.exe, En quarantaine, [0f3bbd244b3f072fcc5b8c03d031a060], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\globalupdateBroker.exe, En quarantaine, [4703429f6f1ba49232f58a05bf420ef2], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\globalupdateCrashHandler.exe, En quarantaine, [71d910d1187267cf41e6cdc2837e6d93], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\globalupdateOnDemand.exe, En quarantaine, [5cee835eafdba49268bf8e0178894fb1], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\goopdate.dll, En quarantaine, [f05a7e63d6b486b05fc8dcb341c09f61], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\goopdateres_en.dll, En quarantaine, [62e8d20f6e1c1d19c067e7a8758ce818], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\npglobalupdateUpdate4.dll, En quarantaine, [e961bd24f991ca6c8c9b2f601ce5bf41], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\psmachine.dll, En quarantaine, [1b2fc021573388aede49b7d81be612ee], 
PUP.Optional.ModGoog, C:\Users\laet\AppData\Local\Temp\comh.400457\psuser.dll, En quarantaine, [a9a1edf40d7d41f59c8bfd929d641be5], 
PUP.Optional.Tuto4PC.A, C:\Users\laet\AppData\Local\Temp\is-OBTRD.tmp\gentlemjmp_ieu.exe, En quarantaine, [21295d84dfabe5513efd461b15f03ec2], 
PUP.Optional.WebBar.A, C:\Users\laet\AppData\Local\Temp\is-15SUH.tmp\AirWebbar.exe, En quarantaine, [da70598808824fe7e7c3790cab5658a8], 
PUP.Optional.Tuto4PC.A, C:\Users\laet\AppData\Local\Temp\is-4AHCR.tmp\gentlemjmp_ieu.exe, En quarantaine, [a8a21ac77416181eb4875a077a8ba65a], 
PUP.Optional.Tuto4PC.A, C:\Users\laet\AppData\Local\Temp\is-7B99J.tmp\package_airwebbar_installer_multilang.exe, En quarantaine, [ae9c2eb314765fd70c76a2ae38c915eb], 
PUP.Optional.Tuto4PC.A, C:\Users\laet\AppData\Local\Temp\is-EOHJ7.tmp\package_airwebbar_installer_multilang.exe, En quarantaine, [94b67b662a607bbb3c46de72c43de719], 
PUP.Optional.Tuto4PC.A, C:\Users\laet\AppData\Local\Temp\is-EOHJ7.tmp\package_BubbleSound_installer_multilang.exe, En quarantaine, [da70b42daddda98d9de5ee625fa21de3], 
PUP.Optional.Tuto4PC.A, C:\Users\laet\AppData\Local\Temp\is-EOHJ7.tmp\package_vuupc_installer_multilang.exe, En quarantaine, [fd4d835ef892f442add5074918e931cf], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\globalupdate.exe.vir, En quarantaine, [43078c55f59564d26fb87916c33e36ca], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\globalupdate.exe.vir, En quarantaine, [bf8bdc055337043242e5503fc9387789], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\globalupdateBroker.exe.vir, En quarantaine, [d4762bb61e6c89ad25026a2505fca15f], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\globalupdateCrashHandler.exe.vir, En quarantaine, [b892a23f028886b06dbaade2ff02748c], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\globalupdateOnDemand.exe.vir, En quarantaine, [4ffb38a98406de58a3847f1040c14db3], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\goopdate.dll.vir, En quarantaine, [430713ceb5d5a09685a2098655ac659b], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir, En quarantaine, [490178692e5c171fd84fc6c9857c52ae], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll.vir, En quarantaine, [68e2eef37e0cbb7bbe6991fefd04a35d], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\psmachine.dll.vir, En quarantaine, [ba90dc05dab00d29b86face3d829926e], 
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\psuser.dll.vir, En quarantaine, [df6b70710585e74f6abd6b2433ceca36], 
PUP.Optional.Browserwatch, C:\AdwCleaner\Quarantine\C\Program Files\miuitab\BrowerWatchCH.dll.vir, En quarantaine, [c882f2efef9bd264742f8b8c8b7ab64a], 
PUP.Optional.Browserwatch, C:\AdwCleaner\Quarantine\C\Program Files\miuitab\BrowerWatchFF.dll.vir, En quarantaine, [3a10b62be4a631053c679e795fa66a96], 
PUP.Optional.SearchProtect, C:\AdwCleaner\Quarantine\C\Program Files\miuitab\BrowserAction.dll.vir, En quarantaine, [3119f6eb3555fa3cfb38107b7b86649c], 
PUP.Optional.XTab.A, C:\AdwCleaner\Quarantine\C\Program Files\miuitab\ProtectService.exe.vir, En quarantaine, [d7731fc2543681b59ea83b20c9388977], 
PUP.Optional.WProtectManager.A, C:\AdwCleaner\Quarantine\C\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.vir, En quarantaine, [7ecc19c83555350108481f4316ef6799], 
PUP.Optional.CrossRider.A, C:\AdwCleaner\Quarantine\C\Users\laet\AppData\Roaming\lGuqBZxqC3yucam7xTwS84wwEa.exe.vir, En quarantaine, [8bbf3aa76921e84e8b86d0c3b150a15f], 
PUP.Optional.CrossRider.A, C:\AdwCleaner\Quarantine\C\Users\laet\AppData\Roaming\orhQDaN.exe.vir, En quarantaine, [08425f822a6016207f4459e338c802fe], 
PUP.Optional.Nosibay.A, C:\AdwCleaner\Quarantine\C\Users\laet\AppData\Roaming\Nosibay\Bubble Dock\Bubble Dock Update.exe.vir, En quarantaine, [a9a14f92335765d16ae5e978be4748b8], 
PUP.Optional.Nova.A, C:\Program Files\8ab85273-8b60-4cf9-a586-604b126d3cfc\6be0d034-23ef-442d-83e0-4e94fcb3b41f.dll, En quarantaine, [f951e001d7b37fb7c06abf9a9869e11f], 
PUP.Optional.Nova.A, C:\Program Files\8ab85273-8b60-4cf9-a586-604b126d3cfc\edb030f7-c456-4df7-a442-7680afe39d65.dll, En quarantaine, [80ca24bdddadb0860e1c4118b05135cb], 
PUP.RiskwareTool.CK, C:\Program Files\Adobe\Adobe Extension Manager CS6\amtlib.dll, En quarantaine, [0644855cd7b34fe7e070fd304bb76c94], 
PUP.Optional.APNToolBar.A, C:\Program Files\FreeTime\FormatFactory\FFModules\Package\Ask\AskPIP_FF_.exe, En quarantaine, [57f3469b781231052fc06b3bb84906fa], 
PUP.Optiona.ConduitTB.Gen, E:\Laet old profile\AppData\LocalLow\Vuze_Remote\ldrtbVuze.dll, En quarantaine, [3b0f33ae860468ce1d75ff61c63fee12], 
PUP.Optiona.ConduitTB.Gen, E:\Laet old profile\AppData\LocalLow\Vuze_Remote\tbVuze.dll, En quarantaine, [391118c94d3d0f272e641848778e30d0], 
PUP.Optional.Obrona.Gen, C:\Program Files\CzechsXness\LoopbackForWin8.exe, En quarantaine, [4bff6e73296162d445a6c43c0df69f61], 
PUP.Optional.Obrona.Gen, C:\Program Files\CzechsXness\msvcp120.dll, En quarantaine, [4bff6e73296162d445a6c43c0df69f61], 
PUP.Optional.Obrona.Gen, C:\Program Files\CzechsXness\msvcr120.dll, En quarantaine, [4bff6e73296162d445a6c43c0df69f61], 
PUP.Optional.Obrona.Gen, C:\Program Files\CzechsXness\Qt5Core.dll, En quarantaine, [4bff6e73296162d445a6c43c0df69f61], 
PUP.Optional.Obrona.Gen, C:\Program Files\CzechsXness\Qt5Network.dll, En quarantaine, [4bff6e73296162d445a6c43c0df69f61], 
PUP.Optional.Obrona.Gen, C:\Program Files\CzechsXness\platforms\qwindows.dll, En quarantaine, [4bff6e73296162d445a6c43c0df69f61], 
PUP.Optional.GlobalUpdate.A, C:\Users\laet\AppData\Local\Temp\comh.400457\globalupdateHelper.msi, En quarantaine, [80ca12cfe0aa88ae713b17cb22e004fc], 

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)