Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 29/04/2016
Heure de l'analyse: 18:38
Fichier journal: Malwarebytes rapport 2.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.04.29.05
Base de données de rootkits: v2016.04.17.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Pierre-Arthur
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 386983
Temps écoulé: 31 min, 17 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 0
(Aucun élément malveillant détecté)
Valeurs du Registre: 0
(Aucun élément malveillant détecté)
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 8
PUP.Optional.VBates, C:\Users\Pierre-Arthur\AppData\LocalLow\Company\Product\1.0, En quarantaine, [5445763e5148d75f715ec8a1c3416f91],
PUP.Optional.VBates, C:\Users\Pierre-Arthur\AppData\LocalLow\Company\Product, En quarantaine, [5445763e5148d75f715ec8a1c3416f91],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.GlobalUpdate, C:\Users\Pierre-Arthur\AppData\Local\Temp\comh.58154, En quarantaine, [63367440f8a12016ca4aa57d0af9a65a],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Bin, En quarantaine, [4950635157422016c3fef4802adb11ef],
Fichiers: 97
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\91f0-a7a0-3266-3210.exe, En quarantaine, [aaef397be5b442f4d16f86826e949b65],
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\3ebe-955c-2ef1-c8cd.exe, En quarantaine, [0a8f6d4737628da992ae8b7dc1412ed2],
PUP.Optional.BuzzingDhol, C:\Users\Pierre-Arthur\AppData\Local\Temp\4163-0bee-2c25-e6bf.exe, En quarantaine, [3168e2d29bfea19546ef13eb956c17e9],
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\35f2-8e01-5db7-daf2.exe, En quarantaine, [0e8b268e1b7ef640db65947462a08c74],
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\3aaa-4a23-b654-43ae.exe, En quarantaine, [bedb367e1584bf77152b17f1956da35d],
PUP.Optional.BuzzingDhol, C:\Users\Pierre-Arthur\AppData\Local\Temp\4492-704c-f718-8065.exe, En quarantaine, [eeab9222adec81b5161f57a7847d847c],
PUP.Optional.BuzzingDhol, C:\Users\Pierre-Arthur\AppData\Local\Temp\52a1-5bd6-883f-dcdc.exe, En quarantaine, [6a2f179dbadf53e38aab42bcec151ce4],
PUP.Optional.MultiPlug, C:\Users\Pierre-Arthur\AppData\Local\Temp\563dF.exe, En quarantaine, [0891a41039600b2b0722933004fd2fd1],
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\b2c9-4108-eaa1-97ee.exe, En quarantaine, [d9c01e960c8d35014ff19b6d32d022de],
PUP.Optional.BabylonTB, C:\Users\Pierre-Arthur\AppData\Local\Temp\07439045-BAB0-7891-BCA2-994883907C5A\Setup.exe, En quarantaine, [2970357f4d4c3bfb9556bfaaff01fd03],
PUP.Optional.EZDownloader, C:\Users\Pierre-Arthur\AppData\Local\Temp\C031\temp\EzDownloader_setup.exe, En quarantaine, [3465d5df0891bb7bcfa544e848b8f50b],
PUP.Optional.CheckOffer, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\nsWeb_DispOffr.dll, En quarantaine, [dfba07ad5742f44235315ecc3bc6b64a],
PUP.Optional.CheckOffer, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\nsWeb_DispOffr.dll, En quarantaine, [fd9cecc89ffa38fe6cfa4edca25f3ec2],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-4S3UK.tmp\cibtdmbf1.0.exe, En quarantaine, [8118625286131521537af158cc34eb15],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-CR0KU.tmp\cibtdmbf1.0.exe, En quarantaine, [9aff447005949d99ebe20d3c60a0c739],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-DIAEL.tmp\cibtdmbf1.0.exe, En quarantaine, [5c3d872dbcdd082e89444bfe5aa624dc],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-HU04H.tmp\cibtdmbf1.0.exe, En quarantaine, [5c3ddbd95544f046f5d8df6a4ab6eb15],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-P63DK.tmp\cibtdmbf1.0.exe, En quarantaine, [37624e666039de5889441336a35d4eb2],
PUP.Optional.BabylonTB, C:\Users\Pierre-Arthur\AppData\Local\Temp\567800B4-BAB0-7891-8617-8DA538FBC701\Setup.exe, En quarantaine, [4356d2e29ffac86e59920267a35d2fd1],
PUP.Optional.ProPlusExtender, C:\Users\Pierre-Arthur\AppData\Local\Temp\81429147606\1PVY+TVRQ52.exe, En quarantaine, [1881ddd7b6e3f640529e1b38a9582ed2],
PUP.Optional.StormWatch, C:\Users\Pierre-Arthur\AppData\Local\Temp\81429147606\1PVY+TVRQ53.exe, En quarantaine, [9dfc62526138cb6b6a82b479b44c916f],
PUP.Optional.DownLoadAdmin, C:\Users\Pierre-Arthur\Downloads\LoveROMs_Final Fantasy IX (E)_(Disc_1)_[SLES-02965].7z.exe, En quarantaine, [f9a03a7ad7c2b284da1fb754d82a817f],
Trojan.ExpressDownloader, C:\Users\Pierre-Arthur\Downloads\Titanic.-.Adventure.out.of.time_downloader(1).exe, En quarantaine, [2f6a8b29158464d277091c53917414ec],
Trojan.ExpressDownloader, C:\Users\Pierre-Arthur\Downloads\Titanic.-.Adventure.out.of.time_downloader.exe, En quarantaine, [7128c6ee970237ffbfc10c63f70ec13f],
PUP.Optional.ExpressFiles, C:\Windows\System32\Tasks\Express Files Updater, En quarantaine, [1a7f4470f5a42e08244b10389b68ed13],
Backdoor.Messa, C:\Users\Pierre-Arthur\AppData\Roaming\4ABREJBV4M.exe, En quarantaine, [3d5cd9dbd1c8171fdd2f1bc1ac57748c],
Trojan.Agent.Gen, C:\Users\Pierre-Arthur\AppData\Local\Temp\svchost.exe, En quarantaine, [3e5b31830d8c290d22a9be2d9271817f],
PUP.Optional.MySearchDial, C:\Windows\System32\Tasks\MySearchDial, En quarantaine, [7c1dd6dec6d386b0f26080c412f203fd],
PUP.Optional.Nosibay, C:\Windows\System32\Tasks\WindApp Update, En quarantaine, [5b3e6252d4c53ef8aaac2f1655afdb25],
PUP.Optional.WebTInst, C:\Windows\System32\drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf, En quarantaine, [8712268ee7b2b482c03fd78557ad32ce],
PUP.Optional.ReMarkable, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, En quarantaine, [6138199bebae91a5b20efa6d788c42be],
PUP.Optional.ReMarkable, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, En quarantaine, [1485ae06c5d49d997a46cf98907418e8],
PUP.Optional.ShopperDealsWay, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_shopper.deals-way.com_0.localstorage, En quarantaine, [554462522772aa8ca5b0b0b922e27987],
PUP.Optional.ShopperDealsWay, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_shopper.deals-way.com_0.localstorage-journal, En quarantaine, [5841a410e6b3221434215d0ce71dca36],
PUP.Optional.VBates, C:\Users\Pierre-Arthur\AppData\LocalLow\Company\Product\1.0\localStorageIE.txt, En quarantaine, [5445763e5148d75f715ec8a1c3416f91],
PUP.Optional.VBates, C:\Users\Pierre-Arthur\AppData\LocalLow\Company\Product\1.0\localStorageIE_backup.txt, En quarantaine, [5445763e5148d75f715ec8a1c3416f91],
PUP.Optional.Winsock.WnskRST, C:\Windows\SysWOW64\DCLOff.ini, En quarantaine, [6b2e2391574261d5621f483cbf45e719],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\cool_competitor_helper_service, En quarantaine, [5049e8ccebaedf57ec4f3551fe065ba5],
PUP.Optional.CrossRider, C:\Windows\Tasks\cool_competitor_helper_service.job, En quarantaine, [6a2f1d971881c17545f9a3e35aaa39c7],
PUP.Optional.eShopComp, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_pstatic.eshopcomp.com_0.localstorage, En quarantaine, [6930d0e4564345f1272aaff429db9b65],
PUP.Optional.eShopComp, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_pstatic.eshopcomp.com_0.localstorage-journal, En quarantaine, [a4f5eec62970c76fe968eab95aaa21df],
PUP.Optional.CrossRider, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, En quarantaine, [aeebffb5d4c5ae880270dec80bf9c937],
PUP.Optional.CrossRider, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, En quarantaine, [9ffa1b995c3d2f07d49e74322bd951af],
PUP.Optional.HDApp, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage, En quarantaine, [0d8c5e56138641f5ef932f7841c3c739],
PUP.Optional.HDApp, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage-journal, En quarantaine, [5c3d12a24c4df73f85fd1295fd0709f7],
PUP.Optional.Smeazymo, C:\Users\Pierre-Arthur\AppData\Local\E-how.exe, En quarantaine, [cccd2490d4c5d95d1376ac00a55f05fb],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\OfferScreen_243.html, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\blowfish.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\FirstResult.txt, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\GetVersion.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\header.bmp, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\img12_1.jpg, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\inner.png, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\manlib.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\Math.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\nsDialogs.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\nsisunz.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\Offer1.zip, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\Offer2.zip, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\OfferScreen_12.html, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\registry.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\SecondResult.txt, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\serlib.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\System.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\UserInfo.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\OfferScreen_243.html, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\blowfish.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\FirstResult.txt, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\GetVersion.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\header.bmp, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\img12_1.jpg, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\inner.png, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\manlib.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\Math.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\nsDialogs.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\nsisunz.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\Offer1.zip, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\Offer2.zip, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\OfferScreen_12.html, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\registry.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\SecondResult.txt, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\serlib.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\System.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\UserInfo.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.BundleInstaller, C:\Users\Pierre-Arthur\AppData\Local\Temp\binsis142.xml, En quarantaine, [33666f456e2b55e1c26ac3f410f42cd4],
PUP.Optional.BundleInstaller, C:\Users\Pierre-Arthur\AppData\Local\Temp\binsischeck654.xml, En quarantaine, [6b2e3183485178be72bb962149bba759],
PUP.Optional.GlobalUpdate, C:\Users\Pierre-Arthur\AppData\Local\Temp\comh.58154\GoogleUpdateHelper.msi, En quarantaine, [63367440f8a12016ca4aa57d0af9a65a],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\config.json, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\hello.js, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\manifest.json, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\scriptTagContext.js, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\tmp_bg.js, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\uconfig.json, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Bin\CompBus.dll, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Bin\qevm.dll, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.Amonetize, C:\Users\Pierre-Arthur\AppData\Local\Temp\amipixel.cfg, En quarantaine, [a3f65a5a702931051cc76d0c50b516ea],
PUM.Optional.FireFoxSearchOverride, C:\Users\Pierre-Arthur\AppData\Roaming\Mozilla\Firefox\Profiles\tlaq90dl.default\user.js, En quarantaine, [7e1bd6def2a740f6dc6637427a8b4db3],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.org
Date de l'analyse: 29/04/2016
Heure de l'analyse: 18:38
Fichier journal: Malwarebytes rapport 2.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.04.29.05
Base de données de rootkits: v2016.04.17.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Pierre-Arthur
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 386983
Temps écoulé: 31 min, 17 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 0
(Aucun élément malveillant détecté)
Valeurs du Registre: 0
(Aucun élément malveillant détecté)
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 8
PUP.Optional.VBates, C:\Users\Pierre-Arthur\AppData\LocalLow\Company\Product\1.0, En quarantaine, [5445763e5148d75f715ec8a1c3416f91],
PUP.Optional.VBates, C:\Users\Pierre-Arthur\AppData\LocalLow\Company\Product, En quarantaine, [5445763e5148d75f715ec8a1c3416f91],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.GlobalUpdate, C:\Users\Pierre-Arthur\AppData\Local\Temp\comh.58154, En quarantaine, [63367440f8a12016ca4aa57d0af9a65a],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Bin, En quarantaine, [4950635157422016c3fef4802adb11ef],
Fichiers: 97
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\91f0-a7a0-3266-3210.exe, En quarantaine, [aaef397be5b442f4d16f86826e949b65],
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\3ebe-955c-2ef1-c8cd.exe, En quarantaine, [0a8f6d4737628da992ae8b7dc1412ed2],
PUP.Optional.BuzzingDhol, C:\Users\Pierre-Arthur\AppData\Local\Temp\4163-0bee-2c25-e6bf.exe, En quarantaine, [3168e2d29bfea19546ef13eb956c17e9],
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\35f2-8e01-5db7-daf2.exe, En quarantaine, [0e8b268e1b7ef640db65947462a08c74],
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\3aaa-4a23-b654-43ae.exe, En quarantaine, [bedb367e1584bf77152b17f1956da35d],
PUP.Optional.BuzzingDhol, C:\Users\Pierre-Arthur\AppData\Local\Temp\4492-704c-f718-8065.exe, En quarantaine, [eeab9222adec81b5161f57a7847d847c],
PUP.Optional.BuzzingDhol, C:\Users\Pierre-Arthur\AppData\Local\Temp\52a1-5bd6-883f-dcdc.exe, En quarantaine, [6a2f179dbadf53e38aab42bcec151ce4],
PUP.Optional.MultiPlug, C:\Users\Pierre-Arthur\AppData\Local\Temp\563dF.exe, En quarantaine, [0891a41039600b2b0722933004fd2fd1],
PUP.Optional.Yontoo, C:\Users\Pierre-Arthur\AppData\Local\Temp\b2c9-4108-eaa1-97ee.exe, En quarantaine, [d9c01e960c8d35014ff19b6d32d022de],
PUP.Optional.BabylonTB, C:\Users\Pierre-Arthur\AppData\Local\Temp\07439045-BAB0-7891-BCA2-994883907C5A\Setup.exe, En quarantaine, [2970357f4d4c3bfb9556bfaaff01fd03],
PUP.Optional.EZDownloader, C:\Users\Pierre-Arthur\AppData\Local\Temp\C031\temp\EzDownloader_setup.exe, En quarantaine, [3465d5df0891bb7bcfa544e848b8f50b],
PUP.Optional.CheckOffer, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\nsWeb_DispOffr.dll, En quarantaine, [dfba07ad5742f44235315ecc3bc6b64a],
PUP.Optional.CheckOffer, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\nsWeb_DispOffr.dll, En quarantaine, [fd9cecc89ffa38fe6cfa4edca25f3ec2],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-4S3UK.tmp\cibtdmbf1.0.exe, En quarantaine, [8118625286131521537af158cc34eb15],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-CR0KU.tmp\cibtdmbf1.0.exe, En quarantaine, [9aff447005949d99ebe20d3c60a0c739],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-DIAEL.tmp\cibtdmbf1.0.exe, En quarantaine, [5c3d872dbcdd082e89444bfe5aa624dc],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-HU04H.tmp\cibtdmbf1.0.exe, En quarantaine, [5c3ddbd95544f046f5d8df6a4ab6eb15],
PUP.Optional.AnySend, C:\Users\Pierre-Arthur\AppData\Local\Temp\is-P63DK.tmp\cibtdmbf1.0.exe, En quarantaine, [37624e666039de5889441336a35d4eb2],
PUP.Optional.BabylonTB, C:\Users\Pierre-Arthur\AppData\Local\Temp\567800B4-BAB0-7891-8617-8DA538FBC701\Setup.exe, En quarantaine, [4356d2e29ffac86e59920267a35d2fd1],
PUP.Optional.ProPlusExtender, C:\Users\Pierre-Arthur\AppData\Local\Temp\81429147606\1PVY+TVRQ52.exe, En quarantaine, [1881ddd7b6e3f640529e1b38a9582ed2],
PUP.Optional.StormWatch, C:\Users\Pierre-Arthur\AppData\Local\Temp\81429147606\1PVY+TVRQ53.exe, En quarantaine, [9dfc62526138cb6b6a82b479b44c916f],
PUP.Optional.DownLoadAdmin, C:\Users\Pierre-Arthur\Downloads\LoveROMs_Final Fantasy IX (E)_(Disc_1)_[SLES-02965].7z.exe, En quarantaine, [f9a03a7ad7c2b284da1fb754d82a817f],
Trojan.ExpressDownloader, C:\Users\Pierre-Arthur\Downloads\Titanic.-.Adventure.out.of.time_downloader(1).exe, En quarantaine, [2f6a8b29158464d277091c53917414ec],
Trojan.ExpressDownloader, C:\Users\Pierre-Arthur\Downloads\Titanic.-.Adventure.out.of.time_downloader.exe, En quarantaine, [7128c6ee970237ffbfc10c63f70ec13f],
PUP.Optional.ExpressFiles, C:\Windows\System32\Tasks\Express Files Updater, En quarantaine, [1a7f4470f5a42e08244b10389b68ed13],
Backdoor.Messa, C:\Users\Pierre-Arthur\AppData\Roaming\4ABREJBV4M.exe, En quarantaine, [3d5cd9dbd1c8171fdd2f1bc1ac57748c],
Trojan.Agent.Gen, C:\Users\Pierre-Arthur\AppData\Local\Temp\svchost.exe, En quarantaine, [3e5b31830d8c290d22a9be2d9271817f],
PUP.Optional.MySearchDial, C:\Windows\System32\Tasks\MySearchDial, En quarantaine, [7c1dd6dec6d386b0f26080c412f203fd],
PUP.Optional.Nosibay, C:\Windows\System32\Tasks\WindApp Update, En quarantaine, [5b3e6252d4c53ef8aaac2f1655afdb25],
PUP.Optional.WebTInst, C:\Windows\System32\drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf, En quarantaine, [8712268ee7b2b482c03fd78557ad32ce],
PUP.Optional.ReMarkable, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, En quarantaine, [6138199bebae91a5b20efa6d788c42be],
PUP.Optional.ReMarkable, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, En quarantaine, [1485ae06c5d49d997a46cf98907418e8],
PUP.Optional.ShopperDealsWay, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_shopper.deals-way.com_0.localstorage, En quarantaine, [554462522772aa8ca5b0b0b922e27987],
PUP.Optional.ShopperDealsWay, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_shopper.deals-way.com_0.localstorage-journal, En quarantaine, [5841a410e6b3221434215d0ce71dca36],
PUP.Optional.VBates, C:\Users\Pierre-Arthur\AppData\LocalLow\Company\Product\1.0\localStorageIE.txt, En quarantaine, [5445763e5148d75f715ec8a1c3416f91],
PUP.Optional.VBates, C:\Users\Pierre-Arthur\AppData\LocalLow\Company\Product\1.0\localStorageIE_backup.txt, En quarantaine, [5445763e5148d75f715ec8a1c3416f91],
PUP.Optional.Winsock.WnskRST, C:\Windows\SysWOW64\DCLOff.ini, En quarantaine, [6b2e2391574261d5621f483cbf45e719],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\cool_competitor_helper_service, En quarantaine, [5049e8ccebaedf57ec4f3551fe065ba5],
PUP.Optional.CrossRider, C:\Windows\Tasks\cool_competitor_helper_service.job, En quarantaine, [6a2f1d971881c17545f9a3e35aaa39c7],
PUP.Optional.eShopComp, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_pstatic.eshopcomp.com_0.localstorage, En quarantaine, [6930d0e4564345f1272aaff429db9b65],
PUP.Optional.eShopComp, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_pstatic.eshopcomp.com_0.localstorage-journal, En quarantaine, [a4f5eec62970c76fe968eab95aaa21df],
PUP.Optional.CrossRider, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, En quarantaine, [aeebffb5d4c5ae880270dec80bf9c937],
PUP.Optional.CrossRider, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, En quarantaine, [9ffa1b995c3d2f07d49e74322bd951af],
PUP.Optional.HDApp, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage, En quarantaine, [0d8c5e56138641f5ef932f7841c3c739],
PUP.Optional.HDApp, C:\Users\Pierre-Arthur\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage-journal, En quarantaine, [5c3d12a24c4df73f85fd1295fd0709f7],
PUP.Optional.Smeazymo, C:\Users\Pierre-Arthur\AppData\Local\E-how.exe, En quarantaine, [cccd2490d4c5d95d1376ac00a55f05fb],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\OfferScreen_243.html, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\blowfish.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\FirstResult.txt, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\GetVersion.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\header.bmp, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\img12_1.jpg, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\inner.png, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\manlib.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\Math.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\nsDialogs.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\nsisunz.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\Offer1.zip, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\Offer2.zip, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\OfferScreen_12.html, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\registry.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\SecondResult.txt, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\serlib.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\System.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nst8D8C.tmp\UserInfo.dll, En quarantaine, [adec9f15277256e0ffb81e9230d46c94],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\OfferScreen_243.html, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\blowfish.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\FirstResult.txt, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\GetVersion.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\header.bmp, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\img12_1.jpg, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\inner.png, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\manlib.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\Math.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\nsDialogs.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\nsisunz.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\Offer1.zip, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\Offer2.zip, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\OfferScreen_12.html, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\registry.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\SecondResult.txt, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\serlib.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\System.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.OfferScreen, C:\Users\Pierre-Arthur\AppData\Local\Temp\nsy5157.tmp\UserInfo.dll, En quarantaine, [a4f5a60e3663f244e1d68f2116ee29d7],
PUP.Optional.BundleInstaller, C:\Users\Pierre-Arthur\AppData\Local\Temp\binsis142.xml, En quarantaine, [33666f456e2b55e1c26ac3f410f42cd4],
PUP.Optional.BundleInstaller, C:\Users\Pierre-Arthur\AppData\Local\Temp\binsischeck654.xml, En quarantaine, [6b2e3183485178be72bb962149bba759],
PUP.Optional.GlobalUpdate, C:\Users\Pierre-Arthur\AppData\Local\Temp\comh.58154\GoogleUpdateHelper.msi, En quarantaine, [63367440f8a12016ca4aa57d0af9a65a],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\config.json, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\hello.js, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\manifest.json, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\scriptTagContext.js, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\tmp_bg.js, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Component\uconfig.json, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Bin\CompBus.dll, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.CrossAd.Gen, C:\Users\Pierre-Arthur\AppData\Local\Comp Bus\Bin\qevm.dll, En quarantaine, [4950635157422016c3fef4802adb11ef],
PUP.Optional.Amonetize, C:\Users\Pierre-Arthur\AppData\Local\Temp\amipixel.cfg, En quarantaine, [a3f65a5a702931051cc76d0c50b516ea],
PUM.Optional.FireFoxSearchOverride, C:\Users\Pierre-Arthur\AppData\Roaming\Mozilla\Firefox\Profiles\tlaq90dl.default\user.js, En quarantaine, [7e1bd6def2a740f6dc6637427a8b4db3],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)