Malwarebytes Anti-Malware www.malwarebytes.org Date de l'examen: 31/10/2014 Heure de l'examen: 16:30:33 Fichier journal: malware clean.txt Administrateur: Oui Version: 2.00.3.1025 Base de données Malveillants: v2014.10.31.08 Base de données Rootkits: v2014.10.22.01 Licence: Gratuit Protection contre les malveillants: Désactivé(e) Protection contre les sites Web malveillants: Désactivé(e) Auto-protection: Désactivé(e) Système d'exploitation: Windows Vista Service Pack 2 Processeur: x86 Système de fichiers: NTFS Utilisateur: Acer Type d'examen: Examen "Menaces" Résultat: Terminé Objets analysés: 367706 Temps écoulé: 18 min, 57 sec Mémoire: Activé(e) Démarrage: Activé(e) Système de fichiers: Activé(e) Archives: Activé(e) Rootkits: Désactivé(e) Heuristique: Activé(e) PUP: Activé(e) PUM: Activé(e) Processus: 0 (Aucun élément malicieux detecté) Modules: 0 (Aucun élément malicieux detecté) Clés du Registre: 7 PUP.Optional.Iminent.A, HKU\S-1-5-21-3436055114-4059184391-1602683799-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}, Mis en quarantaine, [ff45a07ba3d9eb4b95419f0bf90904fc], PUP.Optional.Iminent.A, HKU\S-1-5-21-3436055114-4059184391-1602683799-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}, Mis en quarantaine, [ff45a07ba3d9eb4b95419f0bf90904fc], PUP.Optional.Iminent.A, HKU\S-1-5-21-3436055114-4059184391-1602683799-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\Iminent, Mis en quarantaine, [f2529e7dd2aa5ed8b48bf557ec17be42], PUP.Optional.Iminent.A, HKU\S-1-5-21-3436055114-4059184391-1602683799-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Iminent, Mis en quarantaine, [1a2ae3381b61ff37a5b60f528182718f], PUP.Optional.RocketTab.A, HKU\S-1-5-21-3436055114-4059184391-1602683799-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\RocketTabInstalled, Mis en quarantaine, [59ebe63528541d19b2ae3cf27192c33d], PUP.Optional.Softonic.A, HKU\S-1-5-21-3436055114-4059184391-1602683799-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, Mis en quarantaine, [7acac15ac2ba16208e1eb09f17ec718f], PUP.Optional.Iminent.A, HKU\S-1-5-21-3436055114-4059184391-1602683799-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Iminent, Mis en quarantaine, [c084d249b6c695a14c0f164bdb284cb4], Valeurs du Registre: 0 (Aucun élément malicieux detecté) Données du Registre: 0 (Aucun élément malicieux detecté) Dossiers: 2 PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Resources, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], Fichiers: 58 PUP.Optional.VOPackage.Gen, C:\$Recycle.Bin\S-1-5-21-3436055114-4059184391-1602683799-1000\$RXTW5LJ.exe, Mis en quarantaine, [df65b764314b83b35e14b918c14019e7], Adware.PremierOpinion, C:\Windows\System32\pmls.dll, Mis en quarantaine, [47fd4ad1483481b585d15c6806fa8e72], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmls.dll, Mis en quarantaine, [2d17dd3e196369cd76e0e8dc4fb1f010], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmls64.dll, Mis en quarantaine, [da6a7aa1bfbd3006193d794b01ffcf31], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmnx.dll, Mis en quarantaine, [ef55f02b2359f5410254269e817f0cf4], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmph.dll, Mis en quarantaine, [f054ed2e017b181eba9c0abaa45ce917], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmropn.exe, Mis en quarantaine, [bc88100b80fc8bab4511b80c58a8f20e], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmropn32.exe, Mis en quarantaine, [b88ca477bdbf6dc9272ff1d3966a02fe], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmropn64.exe, Mis en quarantaine, [5ce8948736463006ef677e464bb55ea2], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmservice.exe, Mis en quarantaine, [8fb569b2fe7ef93d91c5943027d94cb4], Adware.PremierOpinion, C:\Users\Acer\AppData\Local\Temp\~osDB98.tmp\pmxf.dll, Mis en quarantaine, [ac9857c4bbc16fc7272f7b49c63a7b85], PUP.Optional.AdLyrics, C:\Users\quevens\AppData\Local\Temp\n8788\3333-8000_SpeedChecker.exe, Mis en quarantaine, [fc48f12a3f3d1b1b0633646b43becb35], PUP.Optional.Boxore, C:\Users\quevens\AppData\Local\Temp\n8788\Boxore_2005-a8764a49.exe, Mis en quarantaine, [ff45dd3e5e1e30069bc1f8603dc3ae52], PUP.Optional.PullUpdate, C:\Users\quevens\AppData\Local\Temp\n8788\Setup.exe, Mis en quarantaine, [da6abd5e592394a29c8d4b735ea37d83], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~os1A3A.tmp\pmropn.exe, Mis en quarantaine, [db69c457e7956dc9421416aef20e659b], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~os1A3A.tmp\pmropn32.exe, Mis en quarantaine, [e65edc3f403c0b2bdd793292ed13a35d], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~os1A3A.tmp\pmropn64.exe, Mis en quarantaine, [1a2aff1ca7d59f9781d517ad49b7d729], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~os1A3A.tmp\pmservice.exe, Mis en quarantaine, [ee564bd0205c49edd680fbc9b8487c84], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~os1A3A.tmp\pmxf.dll, Mis en quarantaine, [3a0a65b6fa8244f2d086972dd030e61a], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~os3CF1.tmp\pmropn.exe, Mis en quarantaine, [2e165bc05c2067cf272fc0047090f60a], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~osAA25.tmp\pmropn.exe, Mis en quarantaine, [3311fb20720a49ed05516f55b54b17e9], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~osAA25.tmp\pmropn32.exe, Mis en quarantaine, [93b1ee2df68630065bfb17adcf3124dc], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~osAA25.tmp\pmropn64.exe, Mis en quarantaine, [87bd62b9dd9fdb5bce88596b30d0629e], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~osAA25.tmp\pmservice.exe, Mis en quarantaine, [52f21803502c2f07c3939331877935cb], Adware.PremierOpinion, C:\Users\quevens\AppData\Local\Temp\~osAA25.tmp\pmxf.dll, Mis en quarantaine, [3e06e932b0cce3531d39aa1a04fcef11], PUP.Optional.InstallCore, C:\Users\Acer\Downloads\MioMore_v7_30_0005_SP (1).exe, Mis en quarantaine, [152f47d42b513303f9b63882c93845bb], PUP.Optional.InstallCore, C:\Users\Acer\Downloads\MioMore_v7_30_0005_SP (2).exe, Mis en quarantaine, [044089920f6d2e088e215d5d55acc63a], PUP.Optional.InstallCore, C:\Users\Acer\Downloads\MioMore_v7_30_0005_SP (3).exe, Mis en quarantaine, [8cb8a5765d1f9f972c830caed22f60a0], PUP.Optional.Conduit.A, C:\Users\Acer\Downloads\Default.ashx, Mis en quarantaine, [af95f427116bcc6a82f72b36c839eb15], PUP.Optional.Bandoo.A, C:\Users\quevens\Downloads\iMeshSetup-r1819-n-bc (1).exe, Mis en quarantaine, [73d1ae6db7c535013c53f54fd928bc44], PUP.Optional.Bandoo.A, C:\Users\quevens\Downloads\iMeshSetup-r1819-n-bc.exe, Mis en quarantaine, [8fb5c15ae597b284345b1c28a859d42c], PUP.Optional.InstallCore, C:\Users\quevens\Downloads\installer_virtual_dj_French.exe, Mis en quarantaine, [75cfc754f18b73c37af006111fe632ce], PUP.SmsPay, C:\Users\quevens\Downloads\WINDOWS_MOVIE_MAKER_2014_FR_setup.exe, Mis en quarantaine, [9ca863b8eb91be784375874442bf3dc3], PUP.Optional.Softonic, C:\Users\quevens\Downloads\SoftonicDownloader_pour_autotune (1).exe, Mis en quarantaine, [1e261ffc80fce452a0ec5efc9c64eb15], PUP.Optional.Softonic, C:\Users\quevens\Downloads\SoftonicDownloader_pour_autotune (2).exe, Mis en quarantaine, [5be9ba61c7b5c4724f3def6b9b65cb35], PUP.Optional.Softonic, C:\Users\quevens\Downloads\SoftonicDownloader_pour_autotune.exe, Mis en quarantaine, [ba8ad9423e3e05318705154549b79f61], PUP.Optional.Softonic.A, C:\Users\quevens\Downloads\SoftonicDownloader_pour_virtual-dj.exe, Mis en quarantaine, [fc4855c61a623ef837e642f5d42df907], PUP.Optional.Solimba, C:\Users\quevens\Downloads\AutoTune.exe, Mis en quarantaine, [3d07bf5c304c221451ed349fef12f60a], PUP.Optional.SmartBar, C:\Windows\Installer\1b1a827.msi, Mis en quarantaine, [54f0e338374564d2e76de64860a024dc], PUP.Optional.SmartBar, C:\Windows\Installer\MSI7486.tmp-\Smartbar.Installer.CustomActions.dll, Mis en quarantaine, [8cb843d84c3095a13d17e34beb156f91], PUP.Optional.SpeedChecker.A, C:\Windows\Tasks\SpeedChecker Update.job, Mis en quarantaine, [cf75dd3efe7ed75fb1039a92a162b848], PUP.Optional.SpeedChecker.A, C:\Windows\System32\Tasks\SpeedChecker Update, Mis en quarantaine, [083cf3280c7083b3575ed05cd231ce32], PUP.Optional.Iminent.A, C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_start.iminent.com_0.localstorage, Mis en quarantaine, [c3816caf5725c472526cbfd627dd3dc3], PUP.Optional.Iminent.A, C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_start.iminent.com_0.localstorage-journal, Mis en quarantaine, [192bb665fe7e9e98caf4ace927ddf50b], PUP.Optional.Iminent.A, C:\Users\quevens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_start.iminent.com_0.localstorage, Mis en quarantaine, [b78df823cfad47efdfdf177e44c0f30d], PUP.Optional.Iminent.A, C:\Users\quevens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_start.iminent.com_0.localstorage-journal, Mis en quarantaine, [d86c2fecf28a71c5b00e6e273fc5c43c], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\TrustedRoot.cer, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\certmanager.exe, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Client.exe, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\makecert.exe, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\uninstall.exe, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Resources\certutil.exe, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Resources\libnspr4.dll, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Resources\libplc4.dll, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Resources\libplds4.dll, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Resources\nss3.dll, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Resources\smime3.dll, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], PUP.Optional.SearchExtensions.A, C:\Program Files\Search Extensions\Resources\softokn3.dll, Mis en quarantaine, [024227f4106c6ec8289d0b92a65e44bc], Secteurs physiques: 0 (Aucun élément malicieux detecté) (end)