cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 14/05/2015
Heure de l'examen: 13:55:35
Fichier journal: ScanLog.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de donn�es Malveillants: v2015.05.14.02
Base de donn�es Rootkits: v2015.04.21.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 8
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: localooholic

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 342188
Temps �coul�: 42 min, 26 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 0
(Aucun �l�ment malicieux d�tect�)

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 19
Trojan.Sathurbot, HKLM\SOFTWARE\CLASSES\CLSID\{3B5B973C-92A4-4855-9D3F-0F3D23332208}, Mis en quarantaine, [6f1b2a69b0da65d14e02e1b0788b9b65],
PUP.Optional.Agent, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{34BE6615-ADA0-46D1-9457-ABE77C82B0AD}, Mis en quarantaine, [3753fe95fc8e15216125282970931de3],
PUP.Optional.Agent, HKLM\SOFTWARE\CLASSES\TYPELIB\{EAB5257A-1FB3-474C-9B42-231F52622E72}, Mis en quarantaine, [3753fe95fc8e15216125282970931de3],
PUP.Optional.Agent, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{EAB5257A-1FB3-474C-9B42-231F52622E72}, Mis en quarantaine, [3753fe95fc8e15216125282970931de3],
PUP.Optional.Agent, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{EAB5257A-1FB3-474C-9B42-231F52622E72}, Mis en quarantaine, [3753fe95fc8e15216125282970931de3],
PUP.Optional.Agent, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{34BE6615-ADA0-46D1-9457-ABE77C82B0AD}, Mis en quarantaine, [3753fe95fc8e15216125282970931de3],
PUP.Optional.SupTab.A, HKU\S-1-5-21-3523617717-2807223436-3896671887-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Mis en quarantaine, [7e0c5b38781248eefb944611d033a35d],
PUP.Optional.SupTab.A, HKU\S-1-5-21-3523617717-2807223436-3896671887-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Mis en quarantaine, [7e0c5b38781248eefb944611d033a35d],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Mis en quarantaine, [7e0c5b38781248eefb944611d033a35d],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\WajIntEnhance, Mis en quarantaine, [13773360c3c796a0bd3d19c7a0638779],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, Mis en quarantaine, [d8b2b8db1a709c9ae82e11cd0bf8dd23],
PUP.Optional.Vosteran, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, Mis en quarantaine, [3357c1d294f6ff37d6fae10a3ac9748c],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, Mis en quarantaine, [c5c59300cac0ec4a17fd0cd20df6c33d],
PUP.Optional.IEPluginServices.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices, Mis en quarantaine, [1b6f345f008a42f4b679c32b45bef907],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, Mis en quarantaine, [2e5c197a7a10092d5ad604eadc27ce32],
PUP.Optional.Wajam.A, HKU\S-1-5-21-3523617717-2807223436-3896671887-1001\SOFTWARE\WajIntEnhance, Mis en quarantaine, [9feb741ff5952c0a4daee8f89f643dc3],
PUP.Optional.Linkey.A, HKU\S-1-5-21-3523617717-2807223436-3896671887-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Linkey, Mis en quarantaine, [06843360fd8d6cca614f0fcb42c1f30d],
PUP.Optional.Vosteran.A, HKU\S-1-5-21-3523617717-2807223436-3896671887-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, Mis en quarantaine, [c4c632614c3e1c1a268b5387689bce32],
PUP.Optional.Wajam.A, HKU\S-1-5-21-3523617717-2807223436-3896671887-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, Mis en quarantaine, [a6e44c473f4b46f05c564793a75c7789],

Valeurs du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Donn�es du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Dossiers: 6
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config, Mis en quarantaine, [8307d5be7515cf67277b11ee996a0bf5],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\cache, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\data, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],

Fichiers: 42
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\PerformanceMonitor.dll, Mis en quarantaine, [6f1b2a69b0da65d14e02e1b0788b9b65],
PUP.Optional.Agent, C:\Users\localooholic\AppData\Local\15555\a7419.exe, Mis en quarantaine, [3753fe95fc8e15216125282970931de3],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityHelper.dll, Mis en quarantaine, [5e2cc1d2008af046ff07f75d12f08977],
PUP.Optional.Browserwatch, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\BrowerWatchCH.dll, Mis en quarantaine, [3e4c276c6822e254a6cb32db937341bf],
PUP.Optional.Browserwatch, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\BrowerWatchFF.dll, Mis en quarantaine, [800a3b58a3e7b6801b56b45906007f81],
PUP.Optional.SearchProtect, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\BrowserAction.dll, Mis en quarantaine, [74164f44b2d8a591a5948fb6b44ea55b],
PUP.Optional.Giner, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\CmdShell.exe, Mis en quarantaine, [a7e34251deac65d1f92a0a4d49bd7987],
PUP.Optional.ELEX, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\HPNotify.exe, Mis en quarantaine, [59317e158a009d9918a79c9914ee7a86],
PUP.Optional.SearchProtect, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\IeWatchDog.dll, Mis en quarantaine, [c8c20093206aea4c24777a909e68ae52],
PUP.Optional.XTab.A, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\ProtectService.exe, Mis en quarantaine, [fe8c6231b4d6a88e3ea0b95bc83a0ff1],
PUP.Optional.SupTab.A, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\SupTab.dll, Mis en quarantaine, [c5c5d8bb9befab8bcdcca4934fb1b14f],
PUP.Optional.SupTab.A, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\XTab.DIR\SupTab_Bak.dll, Mis en quarantaine, [a3e79af9deac4ee82a6fdf58639dbc44],
PUP.Optional.MultiPlug, C:\Users\localooholic\AppData\Roaming\ZHP\Quarantine\{15a9c315-8c70-f94b-15a9-9c3158c70c56}.DIR\Rich Girl-Hall .exe, Mis en quarantaine, [2b5f5e359febb2842926a6aa30d22cd4],
PUP.Optional.OptimunInstaller, C:\Users\localooholic\Downloads\javaupdate_setup (1).exe, Mis en quarantaine, [7e0c3c575a301b1b7b6ac4876d933dc3],
PUP.Optional.OptimunInstaller, C:\Users\localooholic\Downloads\javaupdate_setup.exe, Mis en quarantaine, [bfcb9df6c9c17eb8b134f35856aadd23],
PUP.Optional.DigiPlug, C:\Users\localooholic\Downloads\Setup (1).exe, Mis en quarantaine, [1a70474cd1b96ccae2dbc8192fd22cd4],
PUP.Optional.PremiumInstaller, C:\Users\localooholic\Downloads\setup (2).exe, Mis en quarantaine, [3c4ed2c1d0bafa3c59d177817095926e],
PUP.Optional.PremiumInstaller, C:\Users\localooholic\Downloads\setup (3).exe, Mis en quarantaine, [8bff9df67812cf675dcd03f53ec7c937],
PUP.Optional.DomaIQ, C:\Users\localooholic\Downloads\Setup (5).exe, Mis en quarantaine, [1e6c96fdaedc80b68665213c738d2fd1],
PUP.Optional.DomaIQ, C:\Users\localooholic\Downloads\Setup (6).exe, Mis en quarantaine, [0f7bf99a01893105d0ef61fd27d936ca],
PUP.Optional.DomaIQ, C:\Users\localooholic\Downloads\Setup (7).exe, Mis en quarantaine, [107a534025657bbb3f9c90ce4fb153ad],
PUP.Optional.DomaIQ, C:\Users\localooholic\Downloads\Setup (8).exe, Mis en quarantaine, [543663300e7c979fc20c0df6b54dfa06],
PUP.Optional.DomaIQ, C:\Users\localooholic\Downloads\Setup v2 1 (1).exe, Mis en quarantaine, [3753761d236761d51ba487d7a95701ff],
PUP.Optional.DomaIQ, C:\Users\localooholic\Downloads\Setup v2 1.exe, Mis en quarantaine, [8604761dc8c205315df06af4c937bf41],
PUP.Optional.DomaIQ, C:\Users\localooholic\Downloads\Setup.exe, Mis en quarantaine, [e9a1e7acbeccf93d4dcbbe97db2530d0],
PUP.Optional.MultiPlug, C:\Users\localooholic\Downloads\Rich Girl-Hall .exe, Mis en quarantaine, [2367a0f3aedc8ea8d7785ff1dd259f61],
PUP.Optional.DomaIQ, C:\Users\localooholic\Downloads\Setup (4).exe, Mis en quarantaine, [04863d562c5ece683dae75e831cf8779],
PUP.Optional.MultiPlug, C:\Users\localooholic\Downloads\Download Kingsman The Secret Service 2015 720p HDCAM x264 Pimp4003 Torrent - KickassTorrents.exe, Mis en quarantaine, [4e3c98fb3f4bab8b3688f34fd032f30d],
PUP.Optional.SelectionTools.A, C:\Users\localooholic\AppData\Roaming\Selection Tools.installation.log, Mis en quarantaine, [c4c681124644c0765c859e43c241629e],
PUP.Optional.Bubbledock.A, C:\Users\localooholic\AppData\Roaming\Bubble Dock.boostrap.log, Mis en quarantaine, [29619bf8b4d61620afb7e700768d34cc],
PUP.Optional.Bubbledock.A, C:\Users\localooholic\AppData\Roaming\Bubble Dock.installation.log, Mis en quarantaine, [1a70a3f029610630135307e0b94a53ad],
PUP.Optional.WindApp.A, C:\Users\localooholic\AppData\Roaming\WindApp.boostrap.log, Mis en quarantaine, [8802682bd2b82b0b92d5905709fa8d73],
PUP.Optional.WindApp.A, C:\Users\localooholic\AppData\Roaming\WindApp.installation.log, Mis en quarantaine, [76147c17622878bee1869c4bd82bc53b],
PUP.Optional.InstallD.A, C:\Windows\SysWOW64\installd.exe, Mis en quarantaine, [86045c37800a2a0ce614fb01649f9070],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\ver.xml, Mis en quarantaine, [8307d5be7515cf67277b11ee996a0bf5],
PUP.Optional.OffersWizard.A, C:\Program Files (x86)\Common Files\Config\uninstinethnfd.exe, Mis en quarantaine, [8307d5be7515cf67277b11ee996a0bf5],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\SecurityCache\zepplauncher.mif, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp259B.tmp, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp691E.exe, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmp691E.tmp, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\tmpB8D1.tmp, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],
Trojan.Sathurbot, C:\ProgramData\Microsoft\Performance\Monitor\temp\{E771AC48-6FBA-E4F2-8A39-07030DFD30BF}, Mis en quarantaine, [1c6ecdc67f0b0a2c1d6d02d030d3966a],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité