cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 05/04/2015
Heure de l'examen: 11:49:35
Fichier journal: MALWARE.txt
Administrateur: Oui

Version: 2.01.4.1018
Base de donn�es Malveillants: v2015.04.05.01
Base de donn�es Rootkits: v2015.03.31.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows XP Service Pack 2
Processeur: x86
Syst�me de fichiers: NTFS
Utilisateur: Ayachi

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 294241
Temps �coul�: 21 min, 51 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 1
PUP.Optional.Protect, C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe, 1384, , [9b5afc6cef9ba591bfd00ddda560619f]

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 5
PUP.Optional.Protect, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WindowsMangerProtect, , [9b5afc6cef9ba591bfd00ddda560619f],
Adware.2020search, HKU\S-1-5-21-4150122495-2509778530-122729115-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D}, , [b144c99fabdf90a6bed2212e4db6dd23],
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\sweet-pageSoftware, , [6491a2c69ceeb1850d566ec38085fa06],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, , [6d88f375e4a676c0ab03fad69d6638c8],
PUP.Optional.DigitalMore.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Digital More, , [7a7bd4941674aa8cdedd0ca89e6526da],

Valeurs du Registre: 3
Adware.2020search, HKU\S-1-5-21-4150122495-2509778530-122729115-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D}, O�?{N+žF èíj¶�?�ú}, , [b144c99fabdf90a6bed2212e4db6dd23]
Adware.2020search, HKU\S-1-5-21-4150122495-2509778530-122729115-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{4E7BD74F-2B8D-469E-A0E8-ED6AB685FA7D}, , [b5400e5ad8b259dd612f5df249ba6898],
PUP.Optional.SearchEngine.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|searchengine@gmail.com, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com, , [42b376f263275bdb04badb6d8b7a619f]

Donn�es du Registre: 6
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.sweet-page.com/web/?type=ds&ts=1430394342&from=corfr&uid=ST3200826A_3ND1BZR0XXXX3ND1BZR0&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.sweet-page.com/web/?type=ds&ts=1430394342&from=corfr&uid=ST3200826A_3ND1BZR0XXXX3ND1BZR0&q={searchTerms}),,[b243e97f1e6c16208a95e018a164c53b]
PUP.Optional.SweetPage.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.sweet-page.com/web/?type=ds&ts=1430394342&from=corfr&uid=ST3200826A_3ND1BZR0XXXX3ND1BZR0&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.sweet-page.com/web/?type=ds&ts=1430394342&from=corfr&uid=ST3200826A_3ND1BZR0XXXX3ND1BZR0&q={searchTerms}),,[20d5baaef199023479a6b8405baaaf51]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|AntiVirusDisableNotify, 1, Bon: (0), Mauvais: (1),,[6e87adbb1c6e03334a6717dbe91c936d]
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|FirewallDisableNotify, 1, Bon: (0), Mauvais: (1),,[fafb3a2ee7a3a88ebef4b0424abbdf21]
PUP.Optional.SweetPage.A, HKU\S-1-5-21-4150122495-2509778530-122729115-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.sweet-page.com/web/?type=ds&ts=1430394342&from=corfr&uid=ST3200826A_3ND1BZR0XXXX3ND1BZR0&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.sweet-page.com/web/?type=ds&ts=1430394342&from=corfr&uid=ST3200826A_3ND1BZR0XXXX3ND1BZR0&q={searchTerms}),,[3fb63335266479bd0715b642679e2fd1]
PUP.Optional.SweetPage.A, HKU\S-1-5-21-4150122495-2509778530-122729115-1006\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.sweet-page.com/web/?type=ds&ts=1430394342&from=corfr&uid=ST3200826A_3ND1BZR0XXXX3ND1BZR0&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.sweet-page.com/web/?type=ds&ts=1430394342&from=corfr&uid=ST3200826A_3ND1BZR0XXXX3ND1BZR0&q={searchTerms}),,[7184eb7d593114227aa2c137b84de917]

Dossiers: 10
PUP.Optional.WPM.A, C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect, , [aa4bf2766129b1852d8fc1d4828129d7],
PUP.Optional.WPM.A, C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\update, , [aa4bf2766129b1852d8fc1d4828129d7],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com\chrome, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com\chrome\content, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com\chrome\skin, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.DigitalMore.A, C:\Documents and Settings\All Users\Application Data\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e, , [3eb7e5835238e452a216169e0af9cd33],
PUP.Optional.DigitalMore.A, C:\Program Files\Fichiers communs\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e, , [2dc88edaf892a98d8e2ba50f55ae2ad6],
PUP.Optional.DigitalMore.A, C:\Program Files\Digital More, , [7a7bd4941674aa8cdedd0ca89e6526da],
PUP.Optional.DigitalMore.A, C:\Program Files\Digital More\Extensions, , [7a7bd4941674aa8cdedd0ca89e6526da],

Fichiers: 22
PUP.Optional.Protect, C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe, , [9b5afc6cef9ba591bfd00ddda560619f],
PUP.Optional.InstallCore.SID.A, C:\RECYCLER\S-1-5-21-4150122495-2509778530-122729115-1006\Dc13.exe, , [8075b0b8ff8bf5411d06c46efa0c29d7],
PUP.Optional.InstallCore.SID.A, C:\RECYCLER\S-1-5-21-4150122495-2509778530-122729115-1006\Dc14.exe, , [4baadb8d0c7e171fd54e87ab51b53fc1],
PUP.Optional.InstallCore.SID.A, C:\RECYCLER\S-1-5-21-4150122495-2509778530-122729115-1006\Dc15.exe, , [df160e5a2d5d95a1f231f141e71f13ed],
PUP.Optional.InstallCore.SID.A, C:\RECYCLER\S-1-5-21-4150122495-2509778530-122729115-1006\Dc17.exe, , [14e1a0c8e4a65bdbaa7c3bf7986ed32d],
PUP.Optional.InstallCore.SID.A, C:\RECYCLER\S-1-5-21-4150122495-2509778530-122729115-1006\Dc21.exe, , [da1bafb96c1eb185a083092930d6aa56],
PUP.Optional.InstallCore.SID.A, C:\RECYCLER\S-1-5-21-4150122495-2509778530-122729115-1006\Dc22.exe, , [7e7734343b4f3303e43fbb770afc4bb5],
Adware.2020search, C:\WINDOWS\system32\pbfrv2.dll, , [965f75f3fc8e9b9bcb0cd6b8c042c739],
PUP.Optional.InstallCore.SID.A, C:\Documents and Settings\Ayachi\Local Settings\Temp\LJVRZkFV.exe.part, , [876e254397f32d09150eb18131d56799],
PUP.Optional.InstallCore.SID.A, C:\Documents and Settings\Ayachi\Local Settings\Temp\ICReinstall_AthanBasic1.exe, , [25d001676129c571ba6c1c16ab5bda26],
PUP.Optional.InstallCore.SID.A, C:\Documents and Settings\Ayachi\Local Settings\Temp\ICReinstall_install_flashplayer17x32_mssd_aaa_aih.exe, , [8372de8adbafd660a680c27010f68b75],
PUP.Optional.SweetPage.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\searchplugins\sweet-page.xml, , [b73ec0a8beccd561d284b22a07fc3ac6],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com\chrome.manifest, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com\install.rdf, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com\chrome\content\toolbar.js, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com\chrome\content\toolbar.xul, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.SearchEngine.A, C:\Documents and Settings\Ayachi\Application Data\Mozilla\Firefox\Profiles\lga0m0mm.default\extensions\searchengine@gmail.com\chrome\skin\icon.png, , [f8fd3d2b6d1d83b32864edc35aa958a8],
PUP.Optional.DigitalMore.A, C:\Documents and Settings\All Users\Application Data\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\PluginContainer.exe, , [3eb7e5835238e452a216169e0af9cd33],
PUP.Optional.DigitalMore.A, C:\Program Files\Fichiers communs\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\Updater.exe, , [2dc88edaf892a98d8e2ba50f55ae2ad6],
PUP.Optional.DigitalMore.A, C:\Program Files\Digital More\7za.exe, , [7a7bd4941674aa8cdedd0ca89e6526da],
PUP.Optional.DigitalMore.A, C:\Program Files\Digital More\Uninstaller.exe, , [7a7bd4941674aa8cdedd0ca89e6526da],
PUP.Optional.DigitalMore.A, C:\Program Files\Digital More\Extensions\{873fdd19-b4ce-4390-b74b-4a66e748d691}.xpi, , [7a7bd4941674aa8cdedd0ca89e6526da],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité