cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 20/04/2015
Heure de l'examen: 21:24:28
Fichier journal: malware.txt
Administrateur: Oui

Version: 2.01.4.1018
Base de donn�es Malveillants: v2015.04.20.05
Base de donn�es Rootkits: v2015.04.20.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Alberto

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 401535
Temps �coul�: 25 min, 56 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: Activ�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 0
(Aucun �l�ment malicieux d�tect�)

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Valeurs du Registre: 1
PUP.Optional.SmartBar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{ae07101b-46d4-4a98-af68-0333ea26e113}, Smartbar, Mis en quarantaine, [6273561852389e982e1d9f44d23149b7]

Donn�es du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Dossiers: 22
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\1.bin, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\1.bin\chrome, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\1.bin\ThirdPartyInstallers, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\gen1, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\History, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\IE9Mesg, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\Message, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\Settings, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45EI, Mis en quarantaine, [864ff975a4e646f0bcc81183729103fd],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45EI\Installr, Mis en quarantaine, [864ff975a4e646f0bcc81183729103fd],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45EI\Installr\setups, Mis en quarantaine, [864ff975a4e646f0bcc81183729103fd],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\History, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Settings, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\QuotationCafe_45, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\QuotationCafe_45\Cache, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\Roaming\Mozilla\Firefox\Profiles\0xrvfqwn.default\extensions\45ffxtbr@QuotationCafe_45.com, Mis en quarantaine, [5283b7b7ee9c75c1e28815a8986bf30d],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\Roaming\Mozilla\Firefox\Profiles\0xrvfqwn.default\extensions\45ffxtbr@QuotationCafe_45.com\chrome, Mis en quarantaine, [5283b7b7ee9c75c1e28815a8986bf30d],

Fichiers: 45
PUP.Optional.Somoto.A, C:\Users\Alberto\AppData\Roaming\ZHP\Quarantine\appshat-distribution.exe.VIR, Mis en quarantaine, [9c392a44860465d1aabbd153e21e6a96],
Trojan.AutoKMS, C:\Users\Alberto\AppData\Roaming\ZHP\Quarantine\autokms.exe.VIR, Mis en quarantaine, [8253d49af3972c0a2e972fcf40c031cf],
PUP.Optional.Iminent.A, C:\Users\Alberto\AppData\Roaming\ZHP\Quarantine\iminentuninstall.exe85eb69.VIR, Mis en quarantaine, [90455915bfcbbb7b48ae2153c43dfb05],
PUP.Optional.MoviesToolBar.A, C:\Users\Alberto\AppData\Roaming\ZHP\Quarantine\moviestoolbarsetup_somoto_9_10_2013.exe.VIR, Mis en quarantaine, [9b3a323cf1993ef82a741e2f02ff966a],
PUP.Optional.Iminent, C:\Users\Alberto\AppData\Roaming\ZHP\Quarantine\uninstall.exe85eb79.VIR, Mis en quarantaine, [bf163c32a4e655e1c00a330545bc5ea2],
PUP.Optional.Somoto, C:\Users\Alberto\AppData\Roaming\ZHP\Quarantine\updatecheckersetup.exe.VIR, Mis en quarantaine, [439283ebcebc1c1af73b0a1f718f2bd5],
PUP.Optional.Dregol.C, C:\Users\Alberto\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ihokndmjeombjojnfkmapfnjeghjohim_0.localstorage, Mis en quarantaine, [e9ecdc92b3d7aa8ccac4ad13659e39c7],
PUP.Optional.Iminent.A, C:\Users\Alberto\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage, Mis en quarantaine, [0bca125c4644300641b2cc2e16edef11],
Trojan.Agent, C:\Windows\SysWOW64\install\svchost.exe, Mis en quarantaine, [03d2d39bddad87aff1053ee6e51fc53b],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\1.bin\INSTALL.RDF, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\1.bin\LOGO.BMP, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\1.bin\chrome\45ffxtbr.jar, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\gen1\COMMON.T8S, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\IE9Mesg\COMMON.T8S, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\Message\COMMON.T8S, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Program Files (x86)\QuotationCafe_45\bar\Settings\s_pid.dat, Mis en quarantaine, [696c5a14890180b6f490f2a2877c17e9],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\000332E2, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\000345B6, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\000346A0.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\000346DE.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\0003470D.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\0003474C.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\0003478A.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\000347B9.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\000347F7.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\00034836.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\00034864.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\000348A3.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\00035975.jhtml, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\00038094, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Cache\00173958.bmp, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\History\search3, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Settings\prevcfg2.htm, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Settings\setting3.htm, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Settings\s_w1.dat, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Settings\s_w1.dat.bak, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\bar\Settings\s_w2.dat, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\QuotationCafe_45\Cache\PopupProperties204801245.html, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\QuotationCafe_45\Cache\PopupProperties204801270.html, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\QuotationCafe_45\Cache\PopupProperties204801272.html, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\QuotationCafe_45\Cache\PopupProperties204802024.html, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\LocalLow\QuotationCafe_45\QuotationCafe_45\Cache\PopupProperties205320643.html, Mis en quarantaine, [65705a14513957df6fb6b2ead82bae52],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\Roaming\Mozilla\Firefox\Profiles\0xrvfqwn.default\extensions\45ffxtbr@QuotationCafe_45.com\install.rdf, Mis en quarantaine, [5283b7b7ee9c75c1e28815a8986bf30d],
PUP.Optional.Mindspark.A, C:\Users\Alberto\AppData\Roaming\Mozilla\Firefox\Profiles\0xrvfqwn.default\extensions\45ffxtbr@QuotationCafe_45.com\chrome\45ffxtbr.jar, Mis en quarantaine, [5283b7b7ee9c75c1e28815a8986bf30d],
PUP.Optional.Dregol.A, C:\Users\Alberto\AppData\Roaming\Mozilla\Firefox\Profiles\sjb0a9o2.default-1354991563060\prefs.js, Bon: (), Mauvais: (/*user_pref("browser.startup.homepage", "http://www.dregol.com/?*/f=1&a=drg_mlvi_15_15&cd=2XzuyEtN2Y1L1Qzu0CzzyCtDtDtDtC0EtA0A0B0C0D0B0BtDtN0D0Tzu0StCtCzyyDtN1L2XzutAtFzytFzztFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyD0DzztDzyyCzyyCtGtC0B0CtCtGyCyDyD0AtGtDtBtC0FtGtD0F0C0FzztB0FyEtC0CyByB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Azy0E0BzyyDtAyDtG0C0AtBzztGyEtCzytCtGzz0B0DtAtGyC0DtB0Dzz0DyB0FyDtC0ByC2QtN0A0LzuyE&cr=653143615&ir=");), Remplac�,[42932e403456ae8898af2817ed1949b7]

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité