cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 29/07/2014
Scan Time: 20:43:23
Logfile: MAM1.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.29.05
Rootkit Database: v2014.07.17.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7
CPU: x64
File System: NTFS
User: Nadia

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 398911
Time Elapsed: 11 min, 33 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 1
PUP.Optional.PremiumSoftware.A, C:\Program Files (x86)\Premium Software\systerm32.exe, 2276, Delete-on-Reboot, [fe4b2481aad12d09bb897b54ba48ec14]

Modules: 1
PUP.Optional.PremiumSoftware.A, C:\Program Files (x86)\Premium Software\sqlite3.dll, Delete-on-Reboot, [aa9fdbca14673df9cb7ed5fa44be9d63],

Registry Keys: 12
PUP.Optional.Babylon.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, Quarantined, [99b01a8b67143204b5e3acb155adbf41],
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1188775700-430288152-656061381-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{338B4DFE-2E2C-4338-9E41-E176D497299E}, Quarantined, [b891366f17645adcfbca84da33cfac54],
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1188775700-430288152-656061381-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{338B4DFE-2E2C-4338-9E41-E176D497299E}, Quarantined, [b891366f17645adcfbca84da33cfac54],
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1188775700-430288152-656061381-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}, Quarantined, [2e1b7e27d0ab75c1a71fc09e53aff20e],
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1188775700-430288152-656061381-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}, Quarantined, [2e1b7e27d0ab75c1a71fc09e53aff20e],
PUP.Optional.LemurLeap.A, HKLM\SOFTWARE\WOW6432NODE\LemurLeap, Quarantined, [93b6d3d293e8c07676336da8cc3838c8],
PUP.Optional.BrowserSafeGuard.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BrowsersafeguardInstalled, Quarantined, [54f58520c4b76cca0a462ca7b84ab54b],
PUP.Optional.CouponDownloader.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Coupon Downloader, Quarantined, [6adf2283c2b96acc018e627e14eeb44c],
PUP.Optional.Pricora.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Pricora 10.3, Quarantined, [70d975306615bc7ae991b62326dce21e],
PUP.Optional.SupraSavings.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Supra Savings, Quarantined, [a6a3fbaa06753ff7f1ebcd1a8d754bb5],
PUP.Optional.RegCleanerPro.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\RegClean Pro, Quarantined, [da6ffaabc7b468ce454841d1798bc63a],
PUP.Optional.BuzzIT.A, HKU\S-1-5-21-1188775700-430288152-656061381-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BuzzitOB, Quarantined, [b396c6dffd7e5adc3ea4894f8979f20e],

Registry Values: 6
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1188775700-430288152-656061381-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{338B4DFE-2E2C-4338-9E41-E176D497299E}, ䷾�??⸬�?��??�?��??鸩, Quarantined, [b891366f17645adcfbca84da33cfac54]
PUP.Optional.BestToolbar.A, HKU\S-1-5-21-1188775700-430288152-656061381-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{338B4DFE-2E2C-4338-9E41-E176D497299E}, Quarantined, [e069b9ecff7c0a2c6362aeb0bd4544bc],
PUP.Optional.PremiumSoftware.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Windows FUPM Service Manager, C:\Program Files (x86)\Premium Software\systerm32.exe, Delete-on-Reboot, [fe4b2481aad12d09bb897b54ba48ec14]
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\Mysearchdial\1.8.29.0\, Quarantined, [4108efb699e2d95d4626cf5d8c78a759]
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_251, Delete-on-Reboot, [40093d68bebda69090e8984b5fa3fd03],
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_216, Delete-on-Reboot, [5fea4e5758230d29b1c7d90ace348779],

Registry Data: 0
(No malicious items detected)

Folders: 3
PUP.Optional.PremiumSoftware.A, C:\Program Files (x86)\Premium Software, Delete-on-Reboot, [aa9fdbca14673df9cb7ed5fa44be9d63],
PUP.Optional.PremiumSoftware.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Premium Software, Quarantined, [1b2e119417641f1751fa0fc0887a05fb],
PUP.Optional.Conduit, C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl, Quarantined, [2c1d3d68f88321150914dece3cc647b9],

Files: 19
PUP.Optional.SupraSavings.A, C:\temp\t.msi, Quarantined, [a9a03a6b215af73fbbc183192ed64eb2],
PUP.Optional.ZombieAlert.A, C:\Windows\SysWOW64\Websteroids.B324755F3F87.dll, Quarantined, [00496c3983f8023494a30993fc082fd1],
PUP.Optional.OutBrowse, C:\Users\Nadia\Downloads\setup (1).exe, Quarantined, [d673ebba047759dd92b2bdd116eba45c],
PUP.Optional.Firseria, C:\Users\Nadia\Downloads\Setup.exe, Quarantined, [c881b8ede5960e28180d7a653fc52bd5],
PUP.Optional.OptimumInstaller.A, C:\Users\Nadia\Downloads\Flash_Player_Pro_Update_Setup (1).exe, Quarantined, [e366b9ec2c4f74c2d3fab89e52af2ad6],
PUP.Optional.OptimumInstaller.A, C:\Users\Nadia\Downloads\Flash_Player_Pro_Update_Setup.exe, Quarantined, [2821dcc9ed8efd39a7263b1b9c65d42c],
PUP.Optional.Firseria, C:\Users\Nadia\Downloads\Geogebra.exe, Quarantined, [db6e871eb1cad3634fd633acc044e020],
PUP.Optional.InstallCore, C:\Users\Nadia\Downloads\ccleaner2.exe, Quarantined, [55f4edb8b7c442f4fb3d34747f8519e7],
PUP.Optional.SuperCool, C:\Users\Nadia\Downloads\CCleanerSetup.exe, Quarantined, [1435990cd8a388ae9268721eea17cc34],
PUP.Optional.InstallCore, C:\Users\Nadia\Downloads\ccsetup414.exe, Quarantined, [d9709213314a92a4bb7a455ebe46a55b],
PUP.Optional.PremiumSoftware.A, C:\Program Files (x86)\Premium Software\systerm32.exe, Delete-on-Reboot, [fe4b2481aad12d09bb897b54ba48ec14],
PUP.Optional.PremiumSoftware.A, C:\Program Files (x86)\Premium Software\sqlite3.dll, Delete-on-Reboot, [aa9fdbca14673df9cb7ed5fa44be9d63],
PUP.Optional.PremiumSoftware.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Premium Software\systerm32.exe.lnk, Quarantined, [1b2e119417641f1751fa0fc0887a05fb],
PUP.Optional.BitGuard.A, C:\Windows\System32\Tasks\BitGuard, Quarantined, [ff4af4b1f289bc7a9350cf04659d9f61],
Malware.Trace, C:\Users\Nadia\Desktop\internet explorer.url, Quarantined, [4009d7ce95e6ea4c924ed259de25d927],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job, Quarantined, [c881edb89ae17db9e8dfec41f60e5ca4],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore, Quarantined, [a3a66f36e59661d5e1e7c06d40c49769],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job, Quarantined, [ad9ce5c0c2b93ff70dbc5fcede266799],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA, Quarantined, [0f3a782dc3b88fa746849d9000049f61],

Physical Sectors: 0
(No malicious items detected)


(end)

Publicité


Signaler le contenu de ce document

Publicité