cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 15/07/2014
Scan Time: 14:59:33
Logfile: Rapport_Mbam_1.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.07.15.06
Rootkit Database: v2014.07.14.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8
CPU: x64
File System: NTFS
User: thibault

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 273570
Time Elapsed: 10 min, 7 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 12
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{6c0944d8-b49f-4f69-8ce8-524e562a2250}Gw64, Quarantined, [09c95e410b70af87b475160305ff15eb],
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{9f93bd66-d3d2-427d-b37f-743603e2388d}Gw64, Quarantined, [e3efe3bc760545f157d2eb2e857f51af],
PUP.Optional.Feven.A, HKLM\SOFTWARE\WOW6432NODE\Fpro1.2, Quarantined, [d101504f85f646f01f4d6b5e57abb64a],
PUP.Optional.MusicPlayer.A, HKLM\SOFTWARE\WOW6432NODE\MPlayerplus, Quarantined, [e8ea6d32bcbfae88a20979501ce6da26],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE, Quarantined, [fcd68b146e0d03335c17516a0bf740c0],
PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Fpro1.2, Delete-on-Reboot, [d200534cb8c375c1c6a83495867c817f],
PUP.Optional.MPlayerplus.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MPlayerplus, Delete-on-Reboot, [d9f9544bf883270f3f6ea425e41ef40c],
PUP.Optional.SmartSaver.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\SmartSaver+ 3, Delete-on-Reboot, [a42e3f60cdae0e289fa1736a3fc3b44c],
PUP.Optional.Feven.A, HKU\S-1-5-21-3916890881-2572506913-137140828-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Fpro1.2, Delete-on-Reboot, [9f33633cea91ae888be34980778b03fd],
PUP.Optional.MPlayerplus.A, HKU\S-1-5-21-3916890881-2572506913-137140828-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MPlayerplus, Delete-on-Reboot, [854da3fc6417290d09a466631ae84eb2],
PUP.Optional.SmartSaver.A, HKU\S-1-5-21-3916890881-2572506913-137140828-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\SmartSaver+ 3, Delete-on-Reboot, [c60cc9d62f4c1a1ca997e2fbaf53f808],
PUP.Optional.DealPly.A, HKU\S-1-5-21-3916890881-2572506913-137140828-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\gaiilaahiahdejapggenmdmafpmbipje, Delete-on-Reboot, [daf88a1590eb0432a4c5fbcdaf535ba5],

Registry Values: 6
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE|path, C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe, Quarantined, [fcd68b146e0d03335c17516a0bf740c0]
PUP.Optional.CertifiedToolBar.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si=77302&st=bs&tid=18195&ver=5.7&ts=1404142714026&tguid=77302-18195-1404142714026-B12BF7F33B3E212979D1F4600EFB0CE6&q=%s, Quarantined, [cc06f4aba3d8cf674c231aa712f011ef]
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_179, Quarantined, [d0021689dc9fd561c709a12e8f7357a9],
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_178, Quarantined, [bc16524daad1c86e28a81fb07a8801ff],
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_187, Quarantined, [448eadf285f63006e3ed458a679b42be],
PUP.Optional.QuickStart.A, HKU\S-1-5-21-3916890881-2572506913-137140828-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS|appid, quick_start@gmail.com, Delete-on-Reboot, [07cb2d7297e4c07683e31ea3e61c33cd]

Registry Data: 4
PUP.Optional.SimplyTech.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\ABOUTURLS|newtab, %appdata%\SimplyTech\home\home.htm, Good: (www.google.com), Bad: (%appdata%\SimplyTech\home\home.htm),Replaced,[17bbf5aae992ff3738ffcdc9c143e917]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[a230aef1384371c55ea9425fbd47b749]
PUP.Optional.SimplyTech.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\ABOUTURLS|newtab, %appdata%\SimplyTech\home\home.htm, Good: (www.google.com), Bad: (%appdata%\SimplyTech\home\home.htm),Replaced,[8e44dcc33e3dcb6b0f28b2e4b74d2dd3]
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-3916890881-2572506913-137140828-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si=77302&st=bs&tid=18195&ver=5.7&ts=1404142714026&tguid=77302-18195-1404142714026-B12BF7F33B3E212979D1F4600EFB0CE6&q=%s, Good: (www.google.com), Bad: (http://search.certified-toolbar.com?si=77302&st=bs&tid=18195&ver=5.7&ts=1404142714026&tguid=77302-18195-1404142714026-B12BF7F33B3E212979D1F4600EFB0CE6&q=%s),Delete-on-Reboot,[7a586936adcef93d3f75c3de5da75da3]

Folders: 2
PUP.Optional.CrossRider.A, C:\Users\thibault\AppData\Local\Google\Chrome\User Data\Default\Extensions\apkalmfikjgojeiiadpmfebhfodmgpag, Quarantined, [a82a732cc7b40f27809a9d09fe040df3],
PUP.Optional.CrossRider.A, C:\Users\thibault\AppData\Local\Google\Chrome\User Data\Default\Extensions\apkalmfikjgojeiiadpmfebhfodmgpag\1.26.53_0, Quarantined, [a82a732cc7b40f27809a9d09fe040df3],

Files: 3
PUP.Optional.Somoto, C:\Users\thibault\Downloads\7ZipSetup-6d8bYLC.exe, Quarantined, [557d66390d6e171f9833ba0ac93bd62a],
PUP.Optional.Sanbreel.A, C:\Windows\System32\Drivers\{6c0944d8-b49f-4f69-8ce8-524e562a2250}Gw64.sys, Quarantined, [09c95e410b70af87b475160305ff15eb],
PUP.Optional.Sanbreel.A, C:\Windows\System32\Drivers\{9f93bd66-d3d2-427d-b37f-743603e2388d}Gw64.sys, Quarantined, [e3efe3bc760545f157d2eb2e857f51af],

Physical Sectors: 0
(No malicious items detected)


(end)

Publicité


Signaler le contenu de ce document

Publicité