Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 26/09/2016
Heure de l'analyse: 23:14
Fichier journal: scan log.txt
Administrateur: Oui

Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.09.26.11
Base de données de rootkits: v2016.09.26.02
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Pascal BASTIEN

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 326340
Temps écoulé: 11 min, 25 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 8
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp3\TCPnP3.exe, 2232, Supprimer au redémarrage, [f7cc6412dcbe40f6b48b4da9719353ad]
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp4\TCPnP4.exe, 2240, Supprimer au redémarrage, [31926d0957438ea82e116492fa0a6c94]
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp5\TCPnP5.exe, 2348, Supprimer au redémarrage, [ecd7cbabf0aa2313ae91e412788c9070]
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp6\TCPnP6.exe, 2256, Supprimer au redémarrage, [b2116c0a1b7fb284fd420ceab94b19e7]
PUP.Optional.Elex.Generic, D:\Program Files\UDPdp\UDPnp3\UDPdp33.exe, 2472, Supprimer au redémarrage, [7d464f27ecae57dfc678e21445bf30d0]
PUP.Optional.Elex.Generic, D:\Program Files\UDPdp\UDPnp4\UDPdp44.exe, 2392, Supprimer au redémarrage, [10b334421684d85ec47a96609d6738c8]
PUP.Optional.Elex.Generic, D:\Program Files\UDPdp\UDPnp5\UDPdp55.exe, 2408, Supprimer au redémarrage, [6261c9ad3664a98daf8fe3137d87f20e]
PUP.Optional.Elex.Generic, D:\Program Files\UDPdp\UDPnp6\UDPdp66.exe, 2400, Supprimer au redémarrage, [3c87ff77e2b8b6805fdf66909371a060]

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 10
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2A80B664-3DD4-4C71-BB96-37116E991A6F}, Supprimer au redémarrage, [eed587ef5644340225d0892b63a1d42c], 
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Rotockclajent Core, Supprimer au redémarrage, [01c26214603a84b255a3e3d122e2cb35], 
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPNP3, En quarantaine, [f7cc6412dcbe40f6b48b4da9719353ad], 
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPNP4, En quarantaine, [31926d0957438ea82e116492fa0a6c94], 
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPNP5, En quarantaine, [ecd7cbabf0aa2313ae91e412788c9070], 
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPNP6, En quarantaine, [b2116c0a1b7fb284fd420ceab94b19e7], 
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDPNP33, En quarantaine, [7d464f27ecae57dfc678e21445bf30d0], 
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDPNP44, En quarantaine, [10b334421684d85ec47a96609d6738c8], 
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDPNP55, En quarantaine, [6261c9ad3664a98daf8fe3137d87f20e], 
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDPNP66, En quarantaine, [3c87ff77e2b8b6805fdf66909371a060], 

Valeurs du Registre: 11
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2A80B664-3DD4-4C71-BB96-37116E991A6F}|Path, \Rotockclajent Core, Supprimer au redémarrage, [eed587ef5644340225d0892b63a1d42c]
PUP.Optional.Elex.Generic, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGIN, C:\Program Files (x86)\004b0xoo\sv8ss.js, En quarantaine, [744fc4b2d6c4df574b4015dfa65e16ea]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPnP3|ImagePath, "C:\Program Files (x86)\TCPnp3\TCPnP3.exe" c54102ea829e4d458c86147e71427a8f, En quarantaine, [f7cc6412dcbe40f6b48b4da9719353ad]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPnP4|ImagePath, "C:\Program Files (x86)\TCPnp4\TCPnP4.exe" 420f678469254505a655a4b567f7c9a0, En quarantaine, [31926d0957438ea82e116492fa0a6c94]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPnP5|ImagePath, "C:\Program Files (x86)\TCPnp5\TCPnP5.exe" ae2ce54ab1294744903dca4a5f8539bf, En quarantaine, [ecd7cbabf0aa2313ae91e412788c9070]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPnP6|ImagePath, "C:\Program Files (x86)\TCPnp6\TCPnP6.exe" e47b5abf08794d6b8b774f94eeb062f4, En quarantaine, [b2116c0a1b7fb284fd420ceab94b19e7]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDPnP33|ImagePath, "D:\Program Files\UDPdp\UDPnp3\UDPdp33.exe" 3e19779b2974487e881c2174c0562504, En quarantaine, [7d464f27ecae57dfc678e21445bf30d0]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDPnP44|ImagePath, "D:\Program Files\UDPdp\UDPnp4\UDPdp44.exe" b48f42ba07304dd38f2ef02dfd46c678, En quarantaine, [10b334421684d85ec47a96609d6738c8]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDPnP55|ImagePath, "D:\Program Files\UDPdp\UDPnp5\UDPdp55.exe" 388837891c4f496ea6203a5f71b2a421, En quarantaine, [6261c9ad3664a98daf8fe3137d87f20e]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UDPnP66|ImagePath, "D:\Program Files\UDPdp\UDPnp6\UDPdp66.exe" affe6dc7e5264e7e8e5695737342bee0, En quarantaine, [3c87ff77e2b8b6805fdf66909371a060]
PUM.Optional.ProxyHijacker, HKU\S-1-5-21-2956164877-2974894146-3845520675-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, 127.0.0.1:8118, En quarantaine, [2b98d5a1841681b55e57a42d48bbe41c]

Données du Registre: 0
(Aucun élément malveillant détecté)

Dossiers: 6
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp3, Supprimer au redémarrage, [03c0c1b5e4b69f971328ba3c3fc5936d], 
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp4, Supprimer au redémarrage, [962db9bd1d7de74fb98249ad1fe5de22], 
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp5, Supprimer au redémarrage, [13b04e285b3fc0761a21cc2a6c98e11f], 
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp6, Supprimer au redémarrage, [c8fb89ed0397cb6b58e3a84eca3a22de], 
PUP.Optional.ProxyGate.ShrtCln, C:\Program Files (x86)\004b0xoo, En quarantaine, [9c274135c2d8a78fea2828d27e8637c9], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 

Fichiers: 42
Adware.PremierOpinion, C:\Windows\System32\pmls64.dll, En quarantaine, [626171056b2f6ccabef84645d12f5aa6], 
PUP.Optional.NetworkProtector, C:\Users\Pascal BASTIEN\AppData\Local\Temp\nst807E.tmp, En quarantaine, [873cd1a5514943f375351cb7798bdd23], 
Adware.FileTour, C:\Users\Pascal BASTIEN\AppData\Local\Temp\pps-qq-19.exe, En quarantaine, [a81b9cda148661d52e6718e2689c50b0], 
Trojan.Agent, C:\Users\Pascal BASTIEN\AppData\Local\Temp\bundle.exe, En quarantaine, [3a894f27b1e92d0986430ebebd47837d], 
PUP.Optional.Amonetize, C:\Users\Pascal BASTIEN\AppData\Local\Temp\sdf912B.exe, En quarantaine, [5b681c5a5545a6904ba0daf2c041d32d], 
PUP.Optional.NetSecure, C:\Users\Pascal BASTIEN\AppData\Local\Temp\setup.exe, En quarantaine, [30938fe76535ca6c98f1327639cb827e], 
PUP.Optional.YesSearches, C:\Users\Pascal BASTIEN\AppData\Local\Temp\trotux.exe, En quarantaine, [8241f77fdebcd363ee4a4e8329d89f61], 
Adware.FileTour, C:\Users\Pascal BASTIEN\AppData\Local\Temp\ucbrabs.exe, En quarantaine, [fec5185eb5e57eb8593cdb1f1ce818e8], 
PUP.Optional.Elex, C:\Windows\System32\Tasks\Rotockclajent Core, En quarantaine, [14afd4a25d3dd95da655caeaed17bd43], 
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp3\TCPnP3.exe, Supprimer au redémarrage, [f7cc6412dcbe40f6b48b4da9719353ad], 
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp4\TCPnP4.exe, Supprimer au redémarrage, [31926d0957438ea82e116492fa0a6c94], 
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp5\TCPnP5.exe, Supprimer au redémarrage, [ecd7cbabf0aa2313ae91e412788c9070], 
PUP.Optional.Elex.Generic, C:\Program Files (x86)\TCPnp6\TCPnP6.exe, Supprimer au redémarrage, [b2116c0a1b7fb284fd420ceab94b19e7], 
PUP.Optional.Elex.Generic, D:\Program Files\UDPdp\UDPnp3\UDPdp33.exe, Supprimer au redémarrage, [7d464f27ecae57dfc678e21445bf30d0], 
PUP.Optional.Elex.Generic, D:\Program Files\UDPdp\UDPnp4\UDPdp44.exe, Supprimer au redémarrage, [10b334421684d85ec47a96609d6738c8], 
PUP.Optional.Elex.Generic, D:\Program Files\UDPdp\UDPnp5\UDPdp55.exe, Supprimer au redémarrage, [6261c9ad3664a98daf8fe3137d87f20e], 
PUP.Optional.Elex.Generic, D:\Program Files\UDPdp\UDPnp6\UDPdp66.exe, Supprimer au redémarrage, [3c87ff77e2b8b6805fdf66909371a060], 
PUP.Optional.ProxyGate.ShrtCln, C:\Program Files (x86)\004b0xoo\sv8ss.js, En quarantaine, [9c274135c2d8a78fea2828d27e8637c9], 
PUP.Optional.Trotux, C:\Users\Pascal BASTIEN\AppData\Roaming\Profiles\Nernegh.default\prefs.js, Bon : (), Mauvais : (user_pref("browser.newtab.url", "http://www.trotux.com/?z=9399fd4b1761460d19e4387gez0m2z4bezfc0o9c8g&from=icb&uid=TOSHIBAXMQ01ABD075_73IYC2BGTXX73IYC2BGT&type=hp");), Remplacé,[10b331457b1fcf67713d08e446bebe42]
PUP.Optional.Trotux, C:\Users\Pascal BASTIEN\AppData\Roaming\Profiles\Nernegh.default\prefs.js, Bon : (), Mauvais : (cation", 1474835203);
user_pref("browser.bookmarks.rest), Remplacé,[2c9775015941e35300ae84680bf927d9]
PUP.Optional.Trotux, C:\Users\Pascal BASTIEN\AppData\Roaming\Profiles\Nernegh.default\prefs.js, Bon : (), Mauvais : (s file.
 *
 * If you make changes to this file while the application is running,
 * the changes will be overwritten when the application exits.
 *
 * To make a manual chan), Remplacé,[2f9413630298a2949d118c60cb39669a]
PUP.Optional.Trotux, C:\Users\Pascal BASTIEN\AppData\Roaming\Profiles\Nernegh.default\prefs.js, Bon : (), Mauvais : (on is running,
 * the changes will be overwritten when the application exits.
 *
 * To make a manual change to preferences, you can visit the URL about:config
 */

user_pref("accessibility.type), Remplacé,[4182f87ed4c683b34f5fa9438282f40c]
PUP.Optional.Trotux, C:\Users\Pascal BASTIEN\AppData\Roaming\Profiles\Nernegh.default\prefs.js, Bon : (), Mauvais : ( preferences, you can visit the URL about:config
 */

user_pref("accessibility.typeaheadfind", true);
user_pref("app.update.auto", false);
user_pref("app.update.enabled", false);
user_pref("app.), Remplacé,[13b0dd994b4f77bf347afbf1d72dc13f]
PUP.Optional.Trotux, C:\Users\Pascal BASTIEN\AppData\Roaming\Profiles\Nernegh.default\prefs.js, Bon : (), Mauvais : (changes will be overwritten when the application exit), Remplacé,[23a0db9b7d1d70c646680be1a95b2bd5]
PUP.Optional.Trotux, C:\Users\Pascal BASTIEN\AppData\Roaming\Profiles\Nernegh.default\prefs.js, Bon : (), Mauvais : (("app.update.lastUpdateTime.addon-background-update-timer", 1474834963);
user_pref("app.update.lastUpdateTime.background-update-timer", 1474800121);
user_pref("app.upda), Remplacé,[279c2e4804966bcb535bb13b000431cf]
PUP.Optional.Trotux, C:\Users\Pascal BASTIEN\AppData\Roaming\Profiles\Nernegh.default\searchplugins\7awx6w0k.xml, En quarantaine, [1fa46d097c1e4cea654637b5cb39e818], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\config.txt, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\default.action, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\default.filter, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\Interop.SHDocVw.dll, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\mgwz.dll, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\netsafe.exe, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\netsafe.exe.config, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\oxy.exe, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\oxy.log, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\tbconfig.xml, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\tbinfo.xml, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\tblog.log, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\Trackerbird.Tracker.dll, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\Trackerbird.Tracker.xml, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\Trackerbird.x64.dll, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 
PUP.Optional.Privoxy, C:\Windows\desktop-qepmb8r_020716\Trackerbird.x86.dll, En quarantaine, [f9cadf97a2f823138409228611f33cc4], 

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)