cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 17/05/2015
Heure de l'examen: 14:54:12
Fichier journal: rapport malw.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de donn�es Malveillants: v2015.05.17.01
Base de donn�es Rootkits: v2015.05.16.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 8.1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Alexandrine

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 447101
Temps �coul�: 50 min, 3 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 0
(Aucun �l�ment malicieux d�tect�)

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 16
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\CLASSES\APPID\GLOBALUPDATE.EXE, Mis en quarantaine, [bbfa791bf199cb6b5c8df17ca3623fc1],
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\GLOBALUPDATE.EXE, Mis en quarantaine, [5f56385c2b5f61d526c315583bcac53b],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, Mis en quarantaine, [00b5ade75535ee48dee0c511b74cf20e],
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\GLOBALUPDATE.EXE, Mis en quarantaine, [4c69b2e2d3b770c6df0a7feebe4724dc],
PUP.Optional.ICinema.A, HKU\S-1-5-18\SOFTWARE\I - Cinema-nv, Mis en quarantaine, [3f765c3884061b1bbe007e7e2dd69d63],
PUP.Optional.ICinema.A, HKU\S-1-5-18\SOFTWARE\I - Cinema-nv-ie, Mis en quarantaine, [af06157ff397e74f4f6ff10b669d8977],
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\Plus HD Video 3.1cV12.05-nv, Mis en quarantaine, [a60f3262f496181e0a50e100847f3dc3],
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\Plus HD Video 3.1cV12.05-nv-ie, Mis en quarantaine, [882dd1c33951fc3af5658f528f748c74],
PUP.Optional.SmartSaver.A, HKU\S-1-5-18\SOFTWARE\SmartSaver+ 15-nv, Mis en quarantaine, [b2031a7a3e4c0b2b19f64ad5d82c41bf],
PUP.Optional.SmartSaver.A, HKU\S-1-5-18\SOFTWARE\SmartSaver+ 15-nv-ie, Mis en quarantaine, [5461375df39796a07b942af5fb0911ef],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, Mis en quarantaine, [f6bf2b6978126acc5c0cc6a6b2536f91],
PUP.Optional.ICinema.A, HKU\S-1-5-21-4047375858-346601598-2036337449-1002\SOFTWARE\I - Cinema-nv-ie, Mis en quarantaine, [169f0b89d1b970c6dce2718bf310f709],
PUP.Optional.ICinema.A, HKU\S-1-5-21-4047375858-346601598-2036337449-1002\SOFTWARE\I-Cinema, Mis en quarantaine, [d2e3336166245bdb63afeb1017ec8a76],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4047375858-346601598-2036337449-1002\SOFTWARE\Plus HD Video 3.1cV12.05-nv-ie, Mis en quarantaine, [8035157f0a80c3732c2e20c10ef5a35d],
PUP.Optional.SmartSaver.A, HKU\S-1-5-21-4047375858-346601598-2036337449-1002\SOFTWARE\SmartSaver+ 15-nv-ie, Mis en quarantaine, [cfe64351fd8dfc3ae827bc6370943ec2],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4047375858-346601598-2036337449-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{EE10FEE6-DAAB-4894-9B4B-3590498CCE74}, Mis en quarantaine, [af066d27454583b373525e10cd389e62],

Valeurs du Registre: 4
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\CLASSES\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, Mis en quarantaine, [bbfa791bf199cb6b5c8df17ca3623fc1]
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, Mis en quarantaine, [5f56385c2b5f61d526c315583bcac53b]
PUP.Optional.GlobalUpdate.C, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, Mis en quarantaine, [4c69b2e2d3b770c6df0a7feebe4724dc]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4047375858-346601598-2036337449-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{EE10FEE6-DAAB-4894-9B4B-3590498CCE74}|AppName, e7104812-3611-4f73-963c-e7a95ea9508a-2.exe-codedownloader.exe, Mis en quarantaine, [af066d27454583b373525e10cd389e62]

Donn�es du Registre: 2
PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|CustomizeSearch, http://www.oursurfing.com/web/?type=dspp&ts=1431514957&z=8a2b84fd874c2b3c3cdb54dg8z1c5g4w1g4zet6w8o&from=smt&uid=HitachiXHTS547575A9E384_J2190020DZRL6DDZRL6DX&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.oursurfing.com/web/?type=dspp&ts=1431514957&z=8a2b84fd874c2b3c3cdb54dg8z1c5g4w1g4zet6w8o&from=smt&uid=HitachiXHTS547575A9E384_J2190020DZRL6DDZRL6DX&q={searchTerms}),Remplac�,[b0051d77751564d2869c1d04a363c63a]
PUP.Optional.OurSurfing.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, http://www.oursurfing.com/web/?type=dspp&ts=1431514957&z=8a2b84fd874c2b3c3cdb54dg8z1c5g4w1g4zet6w8o&from=smt&uid=HitachiXHTS547575A9E384_J2190020DZRL6DDZRL6DX&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.oursurfing.com/web/?type=dspp&ts=1431514957&z=8a2b84fd874c2b3c3cdb54dg8z1c5g4w1g4zet6w8o&from=smt&uid=HitachiXHTS547575A9E384_J2190020DZRL6DDZRL6DX&q={searchTerms}),Remplac�,[dfd69103b1d9e650b2701011dc2a59a7]

Dossiers: 1
PUP.Optional.WebBar.A, C:\Windows\System32\config\systemprofile\AppData\Local\WebBar, Mis en quarantaine, [cfe6791bc4c6cc6ae61096419a69946c],

Fichiers: 7
PUP.Optional.CrossRider.A, C:\Users\Alexandrine\AppData\Roaming\ZHP\Quarantine\ipzqpfcf8w.exe.VIR, Mis en quarantaine, [763f2272167443f3e39c321b6f930df3],
PUP.Optional.BundleInstaller.A, C:\Users\Alexandrine\Downloads\Player_Setup.exe, Mis en quarantaine, [d9dc9301365473c3155e2d2db15527d9],
PUP.Optional.Somoto.SID.A, C:\Users\Alexandrine\Downloads\Grace-MadeforChange[2012]_downloader-N5ROLJCsK.exe, Mis en quarantaine, [9223761e7c0eed49ef96bf9b33d3de22],
PUP.Optional.SwiftBrowse, C:\Users\Alexandrine\Downloads\Flash_Player_Pro_Setup (1).exe, Mis en quarantaine, [83324e46503af541c27660bb46bc5da3],
PUP.Optional.SwiftBrowse, C:\Users\Alexandrine\Downloads\Flash_Player_Pro_Setup.exe, Mis en quarantaine, [03b2573dd3b783b3b385fb2010f2fd03],
PUP.Optional.WebBar.A, C:\Windows\System32\config\systemprofile\AppData\Local\WebBar\wb.log, Mis en quarantaine, [cfe6791bc4c6cc6ae61096419a69946c],
PUP.Optional.SuperOptimizer.A, C:\Users\Alexandrine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk, Mis en quarantaine, [05b09bf9dfab0a2ca73009659b6a30d0],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité