cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 30/05/2015
Heure de l'examen: 21:05:46
Fichier journal: scanlooooggggg.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de donn�es Malveillants: v2015.04.05.02
Base de donn�es Rootkits: v2015.05.24.01
Licence: Essai
Protection contre les malveillants: Activ�(e)
Protection contre les sites Web malveillants: Activ�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Arcobaleno

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 395293
Temps �coul�: 8 min, 48 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 0
(Aucun �l�ment malicieux d�tect�)

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 11
PUP.Optional.BreakingNewsAlert.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\gjTHPi, Mis en quarantaine, [02f4b0b8becc0e287eac121d0af8e21e],
PUP.Optional.Multiplug, HKU\S-1-5-21-3096266805-3059104077-305653466-1000_Classes\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, Mis en quarantaine, [688eb4b4deacaf87b0ecce64ff04817f],
PUP.Optional.Multiplug, HKU\S-1-5-21-3096266805-3059104077-305653466-1000_Classes\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, Mis en quarantaine, [688eb4b4deacaf87b0ecce64ff04817f],
PUP.Optional.VMNToolBar.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}, Mis en quarantaine, [3db93b2dbecccb6bf5c0fb7332d143bd],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, Mis en quarantaine, [0beb1256ddad0a2c90039aca659b55ab],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, Mis en quarantaine, [0beb1256ddad0a2c90039aca659b55ab],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, Mis en quarantaine, [0beb1256ddad0a2c90039aca659b55ab],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, Mis en quarantaine, [0beb1256ddad0a2c90039aca659b55ab],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, Mis en quarantaine, [0beb1256ddad0a2c90039aca659b55ab],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, Mis en quarantaine, [0beb1256ddad0a2c90039aca659b55ab],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3096266805-3059104077-305653466-500\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\30935, Mis en quarantaine, [ba3ce286a2e88fa7bcf09f383bc8f50b],

Valeurs du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Donn�es du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Dossiers: 4
PUP.Optional.GlobalUpdate.A, C:\Users\Arcobaleno\AppData\Local\Temp\comh.462624, Mis en quarantaine, [b046313746448fa7e45bd2c530d3936d],
PUP.Optional.Popcornew.A, C:\Users\Arcobaleno\AppData\Local\Google\Chrome\User Data\Default\Extensions\engaigpbgdjjmanonjcjkcmomgibneba, Mis en quarantaine, [49adb9af0b7f6dc99c384e5623e0d927],
PUP.Optional.Popcornew.A, C:\Users\Arcobaleno\AppData\Local\Google\Chrome\User Data\Default\Extensions\engaigpbgdjjmanonjcjkcmomgibneba\1.6_0, Mis en quarantaine, [49adb9af0b7f6dc99c384e5623e0d927],
PUP.Optional.Popcornew.A, C:\Users\Arcobaleno\AppData\Local\Google\Chrome\User Data\Default\Extensions\engaigpbgdjjmanonjcjkcmomgibneba\1.6_0\_metadata, Mis en quarantaine, [49adb9af0b7f6dc99c384e5623e0d927],

Fichiers: 17
PUP.Optional.BreakingNewsAlert.A, C:\ProgramData\QxgibvjeCEF\gjTHPi.exe, Mis en quarantaine, [02f4b0b8becc0e287eac121d0af8e21e],
PUP.Optional.BreakingNewsAlert.A, C:\ProgramData\QxgibvjeCEF\dat\McrwBHWnZI.exe, Mis en quarantaine, [f501115704861620d159d857837ffe02],
PUP.Optional.ZombieInvasion.A, C:\ProgramData\QxgibvjeCEF\dat\mlYpeFaSlNL.dll, Mis en quarantaine, [08ee2d3b69210c2a766cfee711f4e21e],
PUP.Optional.SkyTech.A, C:\Users\Arcobaleno\AppData\Roaming\ZHP\Quarantine\QQBrowserFrame.dll, Mis en quarantaine, [ea0c53154e3c53e3c026fc087c863dc3],
PUP.Optional.CrossRider.A, C:\Users\Arcobaleno\AppData\Local\Temp\29755.exe, Mis en quarantaine, [b73faabe98f29c9a129c82a8957145bb],
PUP.Optional.OfferInstaller.C, C:\Users\Arcobaleno\AppData\Local\Temp\sdf2AE8.exe, Mis en quarantaine, [48ae42264b3f70c65ce8e2589171847c],
PUP.Optional.OfferInstaller.C, C:\Users\Arcobaleno\AppData\Local\Temp\sdf94C2.exe, Mis en quarantaine, [a74fbbad5733e74f8abacd6d1fe3966a],
PUP.Optional.IStartSurf.A, C:\Users\Arcobaleno\AppData\Local\Temp\is-C90UM.tmp\istartsurfp.exe, Mis en quarantaine, [bf37e385a5e59e9842bcc26fbc4a7e82],
PUP.Optional.Boxore.A, C:\Users\Arcobaleno\AppData\Local\Temp\is-F0HN0.tmp\package_boxore_installer_multilang.exe, Mis en quarantaine, [5f976602e9a1082e3418ab4bf40dd729],
PUP.Optional.Boxore.A, C:\Users\Arcobaleno\AppData\Local\Temp\is-LJNRA.tmp\package_boxore_installer_multilang.exe, Mis en quarantaine, [12e4fb6d2664c47252fa8b6b6b96be42],
PUP.Optional.MyStartSearch.A, C:\Users\Arcobaleno\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_76.exe, Mis en quarantaine, [a1556404d2b885b1bedb32fe26e049b7],
PUP.Optional.XTab.A, C:\Users\Arcobaleno\AppData\Local\Temp\xtmp382998\tmp\XTab_Setup(2421).exe, Mis en quarantaine, [14e29cccd1b90b2b7716809256ac2cd4],
PUP.Optional.Amonetize.A, C:\Users\Arcobaleno\AppData\Local\26693\Updater.exe, Mis en quarantaine, [0beb1256ddad0a2c90039aca659b55ab],
PUP.Optional.MyStart.A, C:\Users\Arcobaleno\AppData\Local\Temp\mystart-toolbar.xml, Mis en quarantaine, [6a8c73f5800a71c5fc65f8dd9370fd03],
Stolen.Data, C:\Users\Arcobaleno\AppData\Local\Temp\dclogs.sys, Mis en quarantaine, [777f8fd99cee9f97243cb9f236ce9868],
PUP.Optional.Popcornew.A, C:\Users\Arcobaleno\AppData\Local\Google\Chrome\User Data\Default\Extensions\engaigpbgdjjmanonjcjkcmomgibneba\1.6_0\_metadata\computed_hashes.json, Mis en quarantaine, [49adb9af0b7f6dc99c384e5623e0d927],
PUP.Optional.Popcornew.A, C:\Users\Arcobaleno\AppData\Local\Google\Chrome\User Data\Default\Extensions\engaigpbgdjjmanonjcjkcmomgibneba\1.6_0\_metadata\verified_contents.json, Mis en quarantaine, [49adb9af0b7f6dc99c384e5623e0d927],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité