cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 28/05/2015
Heure de l'examen: 18:27:21
Fichier journal: Examen menaces.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de donn�es Malveillants: v2015.05.28.05
Base de donn�es Rootkits: v2015.05.24.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 8.1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: JessyCh

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 344689
Temps �coul�: 19 min, 32 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: Activ�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 0
(Aucun �l�ment malicieux d�tect�)

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 11
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [cd388a0fbbcfc4724844039557ac1de3],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [cd388a0fbbcfc4724844039557ac1de3],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [cd388a0fbbcfc4724844039557ac1de3],
PUP.Optional.Dregol.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ihokndmjeombjojnfkmapfnjeghjohim, , [38cdbbde8ffbbd79a3d7c12510f36799],
PUP.Optional.EduApp.A, HKLM\SOFTWARE\WOW6432NODE\Edu App, , [a0658910f199e056d644915200037b85],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, , [ad5827725733d75f6a37a53cc340f010],
PUP.Optional.Dregol.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\ihokndmjeombjojnfkmapfnjeghjohim, , [2ed75445f3971f173a40b432ef14b34d],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{23cb3056}, , [ef1625741b6faf87517a275301047b85],
PUP.Optional.SuperClick.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\scfd_1_10_0_16, , [b84d2f6a8109c571f7280377ed1805fb],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, , [57aee0b9b1d925112311d5a2e223c33d],
PUP.Optional.Dregol.A, HKU\S-1-5-21-3257673348-2816036121-1438904280-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\ihokndmjeombjojnfkmapfnjeghjohim, , [46bf59405c2e61d5d8a3f1f529dabd43],

Valeurs du Registre: 1
PUP.Optional.Dregol.C, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\Run_Dregol\\, , [f015683118726ccad5bf439eac5733cd]

Donn�es du Registre: 1
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~3\{3048D~1\1172~1.1\rati.dll , Bon: (), Mauvais: (C:\PROGRA~3\{3048D~1\1172~1.1\rati.dll),,[f11473262367b086d7c80e6d54b1758b]

Dossiers: 8
PUP.Optional.WebBar.A, C:\Windows\System32\config\systemprofile\AppData\Local\WebBar, , [55b03e5b5d2d69cd4a8fa43ee91af50b],
PUP.Optional.MultiPlug.Gen, C:\Users\JessyCh\AppData\Roaming\00000011-1432676924-0000-0000-10C37BB6C1D3, , [bd488a0fe7a3ac8afefcfa79b451a45c],
PUP.Optional.MultiPlug.Gen, C:\Users\JessyCh\AppData\Roaming\00000011-1432677036-0000-0000-10C37BB6C1D3, , [0ef724751476a591ea10bfb4f213a060],
PUP.Optional.Amonetize.A, C:\ProgramData\Croeaefit\1.0.1.0, , [7a8b34656525ae88d248abd0b74e0cf4],
PUP.Optional.Amonetize.A, C:\ProgramData\Croeaefit, , [7a8b34656525ae88d248abd0b74e0cf4],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}\1.17.2.1, , [f11473262367b086d7c80e6d54b1758b],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}, , [f11473262367b086d7c80e6d54b1758b],
Rogue.Multiple, C:\ProgramData\374311380, , [0afbf7a20d7dd75fe2215e405ea5a957],

Fichiers: 32
PUP.Optional.Infonaut.A, C:\WINDOWS\SYSTEM32\drivers\innfd_1_10_0_14.sys, , [9a3a331881a112551748860edd857a26],
PUP.Optional.BreakingNewsAlert.A, C:\ProgramData\MWKlgBnSUL\dat\uhHHGaxzucK.exe, , [25e0fc9d8bff57df67f386ad11f144bc],
PUP.Optional.ZombieInvasion.A, C:\ProgramData\MWKlgBnSUL\dat\yEBFyZBKC.dll, , [10f56f2a8703a3934a664acb57af5aa6],
PUP.Optional.CrossRider.A, C:\Users\JessyCh\AppData\Roaming\ZHP\Quarantine\1b55f14c-e369-45fe-a152-4eb0c6c7954e\810d6ec9-be00-4ebb-9074-75c052ddbd92.dll, , [80853465701a6bcbabebd29721e50ff1],
PUP.Optional.Nova.A, C:\Users\JessyCh\AppData\Roaming\ZHP\Quarantine\1b55f14c-e369-45fe-a152-4eb0c6c7954e\b98f11f6-fe5a-4302-82f3-adf5a04d886c.dll, , [3ec77d1c6c1ead89d9bc27ecf40e17e9],
PUP.Optional.Nova.A, C:\Users\JessyCh\AppData\Roaming\ZHP\Quarantine\8eb6b49d-3c54-4bc8-9a37-e9d20ec0bba8\320a0ae6-5768-45f0-9532-13b5bbbbf25b.dll, , [3bca7920296162d47e170d06639f9d63],
PUP.Optional.Nova.A, C:\Users\JessyCh\AppData\Roaming\ZHP\Quarantine\8eb6b49d-3c54-4bc8-9a37-e9d20ec0bba8\469b1b67-3a2a-44f7-8bdf-277c0aecff7d.dll, , [0bfa37622c5e67cfa3f2bc5757ab9868],
PUP.Optional.CrossRider.A, C:\Users\JessyCh\AppData\Roaming\ZHP\Quarantine\8eb6b49d-3c54-4bc8-9a37-e9d20ec0bba8\47d6b683-afb6-4e35-a035-19c22f494b9a.dll, , [a95ccacf3a5090a61581dd8cbf470000],
PUP.Optional.CrossRider.A, C:\Users\JessyCh\AppData\Roaming\ZHP\Quarantine\8eb6b49d-3c54-4bc8-9a37-e9d20ec0bba8\8eb6b49d-3c54-4bc8-9a37-e9d20ec0bba8.dll, , [28dd1584d3b76ccad0c66ffa2bdb47b9],
PUP.Optional.MultiPlug.Uns, C:\Users\JessyCh\AppData\Roaming\ZHP\Quarantine\LizardSales\LizardSales.exe, , [7c899dfcd9b116207f1e163eb251c838],
PUP.Optional.InstallCore, C:\Users\JessyCh\Downloads\36.0.1985.143_chrome_installer.exe, , [f80d1980d8b241f54841d91fc540c23e],
PUP.Optional.InstallCore, C:\Users\JessyCh\Downloads\uTorrent.exe, , [5ea71782fe8c12245a2f0fe9ec192cd4],
PUP.Optional.Multiplug, C:\Users\JessyCh\Downloads\flashflayer.exe, , [a362e4b5fc8e88aec78300dc8879ae52],
PUP.Optional.DomaIQ, C:\Users\JessyCh\Downloads\New_Player (1).exe, , [02032574276342f48395b89ddc2457a9],
PUP.Optional.DomaIQ, C:\Users\JessyCh\Downloads\New_Player.exe, , [8e778c0d4f3bd75fba4e153fab55926e],
PUP.Optional.AnyProtect, C:\Users\JessyCh\AppData\Local\nsr70BA.tmp, , [dc294d4cdfab64d21f9a78df7a8925db],
PUP.Optional.Dregol.C, C:\Users\JessyCh\AppData\LocalLow\Microsoft\Internet Explorer\Services\Run_Dregol.ico, , [2fd61980a3e784b24e3c5c85bc4731cf],
PUP.Optional.WebBar.A, C:\Windows\System32\config\systemprofile\AppData\Local\WebBar\wb.log, , [55b03e5b5d2d69cd4a8fa43ee91af50b],
PUP.Optional.MultiPlug.Gen, C:\Users\JessyCh\AppData\Roaming\00000011-1432676924-0000-0000-10C37BB6C1D3\vnswBD73.tmp, , [bd488a0fe7a3ac8afefcfa79b451a45c],
PUP.Optional.MultiPlug.Gen, C:\Users\JessyCh\AppData\Roaming\00000011-1432676924-0000-0000-10C37BB6C1D3\Uninstall.exe, , [bd488a0fe7a3ac8afefcfa79b451a45c],
PUP.Optional.MultiPlug.Gen, C:\Users\JessyCh\AppData\Roaming\00000011-1432677036-0000-0000-10C37BB6C1D3\vnsi7285.tmp, , [0ef724751476a591ea10bfb4f213a060],
PUP.Optional.MultiPlug.Gen, C:\Users\JessyCh\AppData\Roaming\00000011-1432677036-0000-0000-10C37BB6C1D3\Uninstall.exe, , [0ef724751476a591ea10bfb4f213a060],
PUP.Optional.Amonetize.A, C:\ProgramData\Croeaefit\1.0.1.0\nluciema.exe.config, , [7a8b34656525ae88d248abd0b74e0cf4],
PUP.Optional.Amonetize.A, C:\ProgramData\Croeaefit\1.0.1.0\sqlite3.dll, , [7a8b34656525ae88d248abd0b74e0cf4],
PUP.Optional.Amonetize.A, C:\ProgramData\Croeaefit\dat.dat, , [7a8b34656525ae88d248abd0b74e0cf4],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}\1.17.2.1\Sqlite3.dll, , [f11473262367b086d7c80e6d54b1758b],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}\1.17.2.1\dExtent, , [f11473262367b086d7c80e6d54b1758b],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}\1.17.2.1\extent, , [f11473262367b086d7c80e6d54b1758b],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}\1.17.2.1\fiber.js, , [f11473262367b086d7c80e6d54b1758b],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}\1.17.2.1\hdat1, , [f11473262367b086d7c80e6d54b1758b],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}\1.17.2.1\hdat2, , [f11473262367b086d7c80e6d54b1758b],
PUP.Optional.Amonetize.A, C:\ProgramData\{3048D88B-60CA-090D-D14C-798F01CEAA01}\1.17.2.1\rati.dll, , [f11473262367b086d7c80e6d54b1758b],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité