cjoint

Publicité


Publicité

Commentaire : Scan durée 9 h 30 environ

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 20/05/2015
Heure de l'examen: 00:22:10
Fichier journal: SCAN MBAM du 20 mai � 10 h 30.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de donn�es Malveillants: v2015.05.19.05
Base de donn�es Rootkits: v2015.05.16.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x86
Syst�me de fichiers: NTFS
Utilisateur: Bernard M

Type d'examen: Examen "Personnalis�"
R�sultat: Termin�
Objets analys�s: 734357
Temps �coul�: 10 h, 9 min, 28 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: Activ�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 0
(Aucun �l�ment malicieux d�tect�)

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 23
PUP.Optional.CinemaPlus.A, HKLM\SOFTWARE\CinemaPlus-3.2cV25.04-nv-ie, , [f1908213107a7abc5149846bd82bf60a],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [255cd0c5deacd66078bc03d68c77cb35],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{00B9A3C2-DDF7-4FF1-88E1-BC2C346660D4}, , [b6cb8e078cfe61d502353140808560a0],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5B1C2C9A-3EBD-4832-988E-CDC6E2FF7BB8}, , [94eda1f4e2a870c6fd388ae7986d35cb],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FAA51951-F8FF-4D32-8D32-F97C8280E1DC}, , [5a273164fe8c3bfb1421234e31d46997],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FD43DE97-DF70-4645-82E7-60D59C2619A1}, , [037e41545c2eed49f63fbcb50ff69967],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{22134214}, , [255cebaa8dfd8ea8e08ed89a52b3b14f],
PUP.Optional.CinemaPlus.A, HKU\S-1-5-18\SOFTWARE\CinemaPlus-3.2cV25.04-nv-ie, , [70115e37404a6cca3a61836c8a7927d9],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, , [a0e1039283073df9e8ef412de81d9868],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{00B9A3C2-DDF7-4FF1-88E1-BC2C346660D4}, , [cbb6c0d54545280edd57f081887d07f9],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2A35FDA9-9536-40BA-8DBA-45221D798CB1}, , [ccb56431c4c69a9cde567df44bba2ad6],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2DE13C0B-7386-4440-A768-13EE482C3F31}, , [c7ba34610a80b086c07431401ce99c64],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4613F793-5316-4CDC-8B60-E3B95CC110CA}, , [ea97bed74c3e092d5dd7c9a89075e21e],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5B1C2C9A-3EBD-4832-988E-CDC6E2FF7BB8}, , [d2af722342480c2a2e0488e96f9621df],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{673245CB-93EB-4896-A2B9-B458C3486592}, , [5d249ef7563441f569cbbcb5b055b34d],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7F93F4C0-BD69-4BB6-9E14-50525B6530E5}, , [522fefa66a20b185092b86ebd4316898],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{91D50DC8-E18C-462A-84C9-FCDB9A7BB898}, , [98e9f69fc6c43303260d5a17b74eec14],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{BF3E8342-61E4-48A9-B4E9-C498CDF2F21D}, , [84fda2f3e9a1b581aa89b2bf4db8cf31],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{D2B323CB-D4DF-441A-BF92-155A3FED6E74}, , [354cbcd91872bf7744efb5bc82836f91],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F50F8E8D-35FB-475C-AF34-2BF422C37583}, , [97eabed7e1a94aec5fd48be617ee827e],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F55AE4F9-43A3-4FC9-A152-9855BE5B2CE1}, , [91f098fd55358babf043e48dde2721df],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FAA51951-F8FF-4D32-8D32-F97C8280E1DC}, , [a8d9dabb6a208babaf838ee3e81d2ed2],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FD43DE97-DF70-4645-82E7-60D59C2619A1}, , [69187c19bdcdbf7753dfdc95eb1a08f8],

Valeurs du Registre: 18
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{00b9a3c2-ddf7-4ff1-88e1-bc2c346660d4}|AppName, winservice86-codedownloader.exe, , [b6cb8e078cfe61d502353140808560a0]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5b1c2c9a-3ebd-4832-988e-cdc6e2ff7bb8}|AppName, winservice86-bg.exe, , [94eda1f4e2a870c6fd388ae7986d35cb]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{faa51951-f8ff-4d32-8d32-f97c8280e1dc}|AppName, winservice86-bg.exe, , [5a273164fe8c3bfb1421234e31d46997]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{fd43de97-df70-4645-82e7-60d59c2619a1}|AppName, winservice86-bg.exe, , [037e41545c2eed49f63fbcb50ff69967]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{00b9a3c2-ddf7-4ff1-88e1-bc2c346660d4}|AppName, winservice86-codedownloader.exe, , [cbb6c0d54545280edd57f081887d07f9]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2A35FDA9-9536-40BA-8DBA-45221D798CB1}|AppName, 05719bba-a182-42d3-9110-570e1a8819a8-2.exe-codedownloader.exe, , [ccb56431c4c69a9cde567df44bba2ad6]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{2DE13C0B-7386-4440-A768-13EE482C3F31}|AppName, 43eb0b95-b4c6-46f9-b19c-822418fd8952-2.exe-codedownloader.exe, , [c7ba34610a80b086c07431401ce99c64]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4613F793-5316-4CDC-8B60-E3B95CC110CA}|AppName, ae7d3263-ac08-4923-859c-00482fdf1dd5-2.exe-codedownloader.exe, , [ea97bed74c3e092d5dd7c9a89075e21e]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5b1c2c9a-3ebd-4832-988e-cdc6e2ff7bb8}|AppName, winservice86-bg.exe, , [d2af722342480c2a2e0488e96f9621df]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{673245CB-93EB-4896-A2B9-B458C3486592}|AppName, ae7d3263-ac08-4923-859c-00482fdf1dd5-2.exe-codedownloader.exe, , [5d249ef7563441f569cbbcb5b055b34d]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7F93F4C0-BD69-4BB6-9E14-50525B6530E5}|AppName, ae7d3263-ac08-4923-859c-00482fdf1dd5-2.exe-codedownloader.exe, , [522fefa66a20b185092b86ebd4316898]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{91D50DC8-E18C-462A-84C9-FCDB9A7BB898}|AppName, ae7d3263-ac08-4923-859c-00482fdf1dd5-2.exe-buttonutil.exe, , [98e9f69fc6c43303260d5a17b74eec14]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{BF3E8342-61E4-48A9-B4E9-C498CDF2F21D}|AppName, 43eb0b95-b4c6-46f9-b19c-822418fd8952-2.exe-buttonutil.exe, , [84fda2f3e9a1b581aa89b2bf4db8cf31]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{D2B323CB-D4DF-441A-BF92-155A3FED6E74}|AppName, ae7d3263-ac08-4923-859c-00482fdf1dd5-2.exe-buttonutil.exe, , [354cbcd91872bf7744efb5bc82836f91]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F50F8E8D-35FB-475C-AF34-2BF422C37583}|AppName, ae7d3263-ac08-4923-859c-00482fdf1dd5-2.exe-buttonutil.exe, , [97eabed7e1a94aec5fd48be617ee827e]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F55AE4F9-43A3-4FC9-A152-9855BE5B2CE1}|AppName, ae7d3263-ac08-4923-859c-00482fdf1dd5-2.exe-buttonutil.exe, , [91f098fd55358babf043e48dde2721df]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{faa51951-f8ff-4d32-8d32-f97c8280e1dc}|AppName, winservice86-bg.exe, , [a8d9dabb6a208babaf838ee3e81d2ed2]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-4129522692-3208001977-903311515-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{fd43de97-df70-4645-82e7-60d59c2619a1}|AppName, winservice86-bg.exe, , [69187c19bdcdbf7753dfdc95eb1a08f8]

Donn�es du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Dossiers: 2
PUP.Optional.PullUpdate.A, C:\ProgramData\BLnevmJfcVI\dat, , [92ef781d206af2448a55e37c46c0c33d],
PUP.Optional.PullUpdate.A, C:\ProgramData\BLnevmJfcVI, , [92ef781d206af2448a55e37c46c0c33d],

Fichiers: 23
HackTool.Wpakill, C:\Users\Bernard M\AppData\Local\IM\Identities\{8025C1D5-48B8-4B23-BE1C-C3A2FFAB8C1C}\Message Store\Attachments\RemoveWAT.EXE, , [3e43e9ac484292a4e5373f418f71b54b],
HackTool.Wpakill, C:\Users\Bernard M\AppData\Local\IM\Identities\{98E7A68C-FD36-44A1-A1A6-C663F1630851}\Message Store\Attachments\RemoveWAT.dat, , [5b265b3a078371c50616542cd12f867a],
HackTool.Wpakill, C:\Users\Bernard M\AppData\Local\IM\Identities\{98E7A68C-FD36-44A1-A1A6-C663F1630851}\Message Store\Attachments\RemoveWAT.EXE, , [176a53429af08ea80e0e0779c73954ac],
HackTool.Wpakill, C:\Users\Bernard M\AppData\Local\IM\Identities\{98E7A68C-FD36-44A1-A1A6-C663F1630851}\Message Store\Attachments\{0282A928-D800-483E-AEF5-026482ABF1FF}\RemoveWAT.dat, , [19684b4a2961989e48d4750b768a9f61],
HackTool.Wpakill, C:\Users\Bernard M\AppData\Local\IM\Identities\{98E7A68C-FD36-44A1-A1A6-C663F1630851}\Message Store\Attachments\{0F40E384-E37C-4EBD-A903-492A837FCA12}\RemoveWAT.EXE, , [4a379401f496181ec854ed933dc336ca],
PUP.Optional.CrossRider.A, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\7fdf23c7-ae1c-49f5-a3d5-a4758b8052f6-1-6.exe, , [2e536d28f09a72c492f4a4b1986ea45c],
PUP.Optional.Bundle, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\LibDownloadManagement.dll, , [bec3cacb2d5dae88774fd83c837f49b7],
PUP.Optional.Elex, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\ProtectWindowsManager.exe, , [0081b7deaae060d6f309a4d1b34dfc04],
PUP.Optional.EORezo, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\mbot_fr_606\mybestofferstoday_widget.exe, , [a8d93b5a4149033325ebe876a6609e62],
PUP.Optional.Browserwatch, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\XTab\BrowerWatchCH.dll, , [166b3b5a553569cd475e55beec1a8e72],
PUP.Optional.Browserwatch, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\XTab\BrowerWatchFF.dll, , [324f8f0692f8e056a500f2213acc42be],
PUP.Optional.SearchProtect, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\XTab\BrowserAction.dll, , [5f227e1708821521974e9da8a26016ea],
PUP.Optional.Giner, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\XTab\CmdShell.exe, , [6b16a1f4018993a3d164a1bd1fe704fc],
PUP.Optional.ELEX, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\XTab\HPNotify.exe, , [dfa241547317bd793438d85e877b7c84],
PUP.Optional.SearchProtect, C:\Users\Bernard M\AppData\Roaming\ZHP\Quarantine\XTab\IeWatchDog.dll, , [6e132471236771c5f5da26eae91d837d],
PUP.Optional.Amonetize, C:\Users\Bernard M\Downloads\copernic desktop search_10924_i2418656_il345.exe, , [dba68312a6e4b77ff025f742c63ce020],
HackTool.Wpakill, C:\Users\Public\Desktop\Extra\Activateurs Supplémentaires\RemoveWAT\RemoveWAT.exe, , [c7ba2a6b6129a59199837808c63a51af],
Trojan.Agent.W, C:\Users\Public\Desktop\Extra\Activateurs Supplémentaires\Windows 7 Loader (Daz 1.7.2)\Windows 7 Loader.exe, , [f28f53422c5eba7ca8bfdce864a10000],
PUP.Optional.RecentlyFix.C, C:\Users\Bernard M\AppData\Local\recently-fix.db, , [1f6299fc3d4dd363d8f1bd1f8d76cd33],
PUP.Optional.PullUpdate.A, C:\ProgramData\BLnevmJfcVI\dat\jVbRvaDha.exe.config, , [92ef781d206af2448a55e37c46c0c33d],
PUP.Optional.PullUpdate.A, C:\ProgramData\BLnevmJfcVI\info.dat, , [92ef781d206af2448a55e37c46c0c33d],
PUP.Optional.PullUpdate.A, C:\ProgramData\BLnevmJfcVI\nJsESe.dat, , [92ef781d206af2448a55e37c46c0c33d],
PUP.Optional.PullUpdate.A, C:\ProgramData\BLnevmJfcVI\nJsESe.exe.config, , [92ef781d206af2448a55e37c46c0c33d],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité