cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 24/04/2015
Heure de l'examen: 14:26:19
Fichier journal: examen 25.04.2015.txt
Administrateur: Oui

Version: 2.00.4.1028
Base de donn�es Malveillants: v2015.04.24.02
Base de donn�es Rootkits: v2015.04.21.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: KARIM

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 342698
Temps �coul�: 22 min, 53 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 0
(Aucun �l�ment malicieux detect�)

Modules: 0
(Aucun �l�ment malicieux detect�)

Cl�s du Registre: 29
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0400EBCA-042C-4000-AA89-9713FBEDB671}, Mis en quarantaine, [fa685e124545fb3ba8f20b727291a957],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\TypeLib\{FBC322D5-407E-4854-8C0B-555B951FD8E3}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0BD19251-4B4B-4B94-AB16-617106245BB7}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{3281114F-BCAB-45E3-80D9-A6CD64D4E636}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{44533FCB-F9FB-436A-8B6B-CF637B2D465A}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{44B29DDD-CF7A-454A-A275-A322A398D93F}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{AA0F50A8-2618-4AE4-A779-9F7378555A8F}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B2DB115C-8278-4947-9A07-57B53D1C4215}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B97FC455-DB33-431D-84DB-6F1514110BD5}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E72E9312-0367-4216-BFC7-21485FA8390B}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{F6CCB6C9-127E-44AE-8552-B94356F39FFE}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FFD25630-2734-4AE9-88E6-21BF6525F3FE}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0BD19251-4B4B-4B94-AB16-617106245BB7}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3281114F-BCAB-45E3-80D9-A6CD64D4E636}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{44533FCB-F9FB-436A-8B6B-CF637B2D465A}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{44B29DDD-CF7A-454A-A275-A322A398D93F}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{AA0F50A8-2618-4AE4-A779-9F7378555A8F}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B2DB115C-8278-4947-9A07-57B53D1C4215}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B97FC455-DB33-431D-84DB-6F1514110BD5}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{E72E9312-0367-4216-BFC7-21485FA8390B}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{F6CCB6C9-127E-44AE-8552-B94356F39FFE}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FFD25630-2734-4AE9-88E6-21BF6525F3FE}, Mis en quarantaine, [40227ef26723a393ddbdf28b7f846b95],
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TypeLib\{FBC322D5-407E-4854-8C0B-555B951FD8E3}, Mis en quarantaine, [d48ef37d701ad1651585384514ef966a],
PUP.Optional.SweetIM.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SweetIM, Mis en quarantaine, [72f02f41e3a7ec4a966e29adb44f4bb5],
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, Mis en quarantaine, [fa683f315337f73fa56188a7b25316ea],

Valeurs du Registre: 1
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, MYSTART, Mis en quarantaine, [fa683f315337f73fa56188a7b25316ea]

Donn�es du Registre: 4
PUP.Optional.NationZoom.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.nationzoom.com/?type=hp&ts=1385844214&from=tugs&uid=FUJITSUXMJA2500BHXG2_K937TA22H4EBTA22H4EBX, Bon: (www.google.com), Mauvais: (http://www.nationzoom.com/?type=hp&ts=1385844214&from=tugs&uid=FUJITSUXMJA2500BHXG2_K937TA22H4EBTA22H4EBX),Remplac�,[174b39376e1c989e9fced32a9b6ade22]
PUP.Optional.NationZoom.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.nationzoom.com/web/?type=ds&ts=1385844214&from=tugs&uid=FUJITSUXMJA2500BHXG2_K937TA22H4EBTA22H4EBX&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.nationzoom.com/web/?type=ds&ts=1385844214&from=tugs&uid=FUJITSUXMJA2500BHXG2_K937TA22H4EBTA22H4EBX&q={searchTerms}),Remplac�,[243e89e7c1c9221481ec2bd2986d01ff]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplac�,[9fc3bfb1d9b1270f5d7958ae59add32d]
PUP.Optional.NationZoom.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.nationzoom.com/web/?type=ds&ts=1385844214&from=tugs&uid=FUJITSUXMJA2500BHXG2_K937TA22H4EBTA22H4EBX&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.nationzoom.com/web/?type=ds&ts=1385844214&from=tugs&uid=FUJITSUXMJA2500BHXG2_K937TA22H4EBTA22H4EBX&q={searchTerms}),Remplac�,[4b17343c5e2c87af44296499b4518e72]

Dossiers: 0
(Aucun �l�ment malicieux detect�)

Fichiers: 2
PUP.Optional.JumpyApps.A, C:\Users\KARIM\Downloads\ZipExtractorSetup.exe, Mis en quarantaine, [451d353b62285bdb756cb7f221e4659b],
PUP.Optional.Babylon.A, C:\Users\KARIM\AppData\Local\Google\Chrome\User Data\Default\BrowserMngrPreferences, Bon: (), Mauvais: ( "homepage" : "http://search.babylon.com/?affID=113357&tt=120912_pcp_3712_4&babsrc=HP_ss&mntrId=f623668f0000000000001c659d3c7bea",), Remplac�,[1052700062282a0c7bcfeb5c6e98fb05]

Secteurs physiques: 0
(Aucun �l�ment malicieux detect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité