cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 01/06/2015
Heure de l'examen: 10:11:40
Fichier journal: mbam.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de donn�es Malveillants: v2015.05.31.03
Base de donn�es Rootkits: v2015.05.31.01
Licence: Gratuit
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Maggand

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 357392
Temps �coul�: 33 min, 42 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: Activ�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 3
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\NyjRZE.exe, 424, Supprim�-au-red�marrage, [002f702a266485b1dbe176f6ea1cdd23]
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee\1.0.1.0\oiuxroih.exe, 3784, Supprim�-au-red�marrage, [d15e1c7eef9be6503b212f4e7b8aad53]
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee\1.0.1.0\oiuxroih.exe, 3720, Supprim�-au-red�marrage, [d15e1c7eef9be6503b212f4e7b8aad53]

Modules: 1
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee\1.0.1.0\sqlite3.dll, Supprim�-au-red�marrage, [d15e1c7eef9be6503b212f4e7b8aad53],

Cl�s du Registre: 18
PUP.Optional.PullUpdate.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NyjRZE, Mis en quarantaine, [002f702a266485b1dbe176f6ea1cdd23],
PUP.Optional.BrowserApps.A, HKLM\SOFTWARE\WOW6432NODE\BrowserV30.05-nv-ie, Mis en quarantaine, [101f6f2b53373df99c7ddb097c87f40c],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\Cinema_Plus-1.2V31.05-nv-ie, Mis en quarantaine, [42edc0da0e7c8ea8d21c38c71de6d030],
PUP.Optional.Infonaut.A, HKLM\SOFTWARE\WOW6432NODE\Infonaut_1.10.0.14, Mis en quarantaine, [6fc0f2a8cbbf85b110e3b430c53e768a],
PUP.Optional.SuperClick.A, HKLM\SOFTWARE\WOW6432NODE\SuperClick_1.10.0.16, Mis en quarantaine, [f8378614d6b493a30c542d4fb055fb05],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, Mis en quarantaine, [8ca3504a5f2b0b2b6e786d76db28d030],
PUP.Optional.Linkey.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fpmeembnagmagppkgghhfjfdfajdfcah, Mis en quarantaine, [4ce37b1fccbe2c0a7d4da481b54f3bc5],
PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{1146AC44-2F03-4431-B4FD-889BC837521F}{caa89563}, Mis en quarantaine, [49e60e8cbad0de58917c97e6957037c9],
PUP.Optional.SuperClick.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\scfd_1_10_0_16, Mis en quarantaine, [19160595484232049cc52755d82d817f],
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\Plus HD Video 3.1cV27.05-nv-ie, Mis en quarantaine, [4ae57b1f602a6bcb720b02ecdc27817f],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, Mis en quarantaine, [101fb4e6e5a555e1b4c2c0b9010430d0],
PUP.Optional.BrowserApps.A, HKU\S-1-5-21-3112621733-4035136266-2448611496-1001\SOFTWARE\BrowserV30.05-nv-ie, Mis en quarantaine, [c9662476d3b791a5d5457f658d76ac54],
PUP.Optional.CinemaPlus.A, HKU\S-1-5-21-3112621733-4035136266-2448611496-1001\SOFTWARE\CinemaPlus-3.2cV28.05-nv-ie, Mis en quarantaine, [ea45a8f2c4c64de92426c83256ad2ed2],
PUP.Optional.CinemaPlus.A, HKU\S-1-5-21-3112621733-4035136266-2448611496-1001\SOFTWARE\CinemaPlus-3.2cV30.05-nv-ie, Mis en quarantaine, [230c03977218270f88c278828e75bd43],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3112621733-4035136266-2448611496-1001\SOFTWARE\Cinema_Plus-1.2V31.05-nv-ie, Mis en quarantaine, [aa85d7c35f2bef47af40609f59aabf41],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3112621733-4035136266-2448611496-1001\SOFTWARE\Plus HD Video 3.1cV27.05-nv-ie, Mis en quarantaine, [b37ccbcfef9b5adcb8c5ed01b94a51af],
PUP.Optional.ProPCCleaner.A, HKU\S-1-5-21-3112621733-4035136266-2448611496-1001\SOFTWARE\ProPCCleanerLanguage, Mis en quarantaine, [75bac3d7058555e13aa64a3041c48d73],
PUP.Optional.Iminent.A, HKU\S-1-5-21-3112621733-4035136266-2448611496-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\Iminent, Mis en quarantaine, [a788c9d1662405316906b46bcf3511ef],

Valeurs du Registre: 3
PUP.Optional.Shopperz.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{2395B860-45E4-42fd-96E6-50BA597C1C42}, C:\Program Files\shopperz\Firefox, Mis en quarantaine, [5fd00694602a86b0d71df580b451738d]
PUP.Optional.GamesDesktop.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|gmsd_fr_574, Mis en quarantaine, [6ec12773711988aea19cbc3c08fbb749],
PUP.Optional.GamesDesktop.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|gmsd_fr_579, Mis en quarantaine, [db541e7c3e4c48ee6bd2e5135fa43dc3],

Donn�es du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Dossiers: 7
PUP.Optional.ProPCCleaner.A, C:\Windows\Installer\{C3060724-6AC7-4BEF-B516-4F6B1D90887D}, Mis en quarantaine, [b87751491278c175012da9d445c02ed2],
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee\1.0.1.0, Supprim�-au-red�marrage, [d15e1c7eef9be6503b212f4e7b8aad53],
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee, Supprim�-au-red�marrage, [d15e1c7eef9be6503b212f4e7b8aad53],
Rogue.Multiple, C:\ProgramData\1837308050, Mis en quarantaine, [6fc02a707d0d39fd9b92524e1fe4d030],
Rogue.Multiple, C:\ProgramData\2355320829, Mis en quarantaine, [fd32a9f14d3d300630fd673957ac51af],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\dat, Supprim�-au-red�marrage, [85aa4e4cd4b69a9caba43a34f5116c94],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh, Supprim�-au-red�marrage, [85aa4e4cd4b69a9caba43a34f5116c94],

Fichiers: 23
PUP.Optional.WebTInst.A, C:\Windows\System32\drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf, Supprim�-au-red�marrage, ,
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\NyjRZE.exe, Supprim�-au-red�marrage, [002f702a266485b1dbe176f6ea1cdd23],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\dat\tcIroaMwoW.exe, Supprim�-au-red�marrage, [f936c0da9bef0135b408036949bdfb05],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\dat\vcPpUYhY.exe, Supprim�-au-red�marrage, [1f10c7d387031b1bedcff775858141bf],
PUP.Optional.ZombieInvasion.A, C:\ProgramData\qDfiFlh\dat\VuPICq.dll, Supprim�-au-red�marrage, [78b796043b4f76c0a2bb6cac897db947],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\dat\xxgWOd.dll, Supprim�-au-red�marrage, [1b14c0da395185b1efcd5319b056aa56],
PUP.Optional.CrossRider.A, C:\Users\Maggand\AppData\Roaming\mgo7oqmOE9xDB9yVUT.exe, Mis en quarantaine, [39f63763fa90f04692e9f562c53ba759],
PUP.Optional.AnyProtect, C:\Users\Maggand\AppData\Local\nsm5E95.tmp, Mis en quarantaine, [c36c95056e1c50e6208bc891857e7d83],
PUP.Optional.AnyProtect, C:\Users\Maggand\AppData\Local\nspBFA.tmp, Mis en quarantaine, [c56a76245f2b78be426970e9a85b47b9],
PUP.Optional.ProPCCleaner.A, C:\Windows\System32\Tasks\ProPCCleaner_Popup, Mis en quarantaine, [f23d5c3eacde62d4da032d4d47be35cb],
PUP.Optional.ProPCCleaner.A, C:\Windows\System32\Tasks\ProPCCleaner_Start, Mis en quarantaine, [f23d62381674e452be1f661452b36c94],
PUP.Optional.WinYahoo, C:\Users\Maggand\AppData\LocalLow\Microsoft\Internet Explorer\Services\WinYahoo.ico, Mis en quarantaine, [f23d4357b2d8e650b2f698e315f024dc],
PUP.Optional.Multiplug.A, C:\Windows\System32\Tasks\Bidaily Synchronize Task[3c32], Mis en quarantaine, [c16e168469216dc9e79063191aebb749],
PUP.Optional.ProPCCleaner.A, C:\Windows\Installer\{C3060724-6AC7-4BEF-B516-4F6B1D90887D}\Pro_PC_Cleaner_Icon.exe, Mis en quarantaine, [b87751491278c175012da9d445c02ed2],
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee\1.0.1.0\oiuxroih.exe.config, Mis en quarantaine, [d15e1c7eef9be6503b212f4e7b8aad53],
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee\1.0.1.0\oiuxroih.exe, Supprim�-au-red�marrage, [d15e1c7eef9be6503b212f4e7b8aad53],
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee\1.0.1.0\sqlite3.dll, Supprim�-au-red�marrage, [d15e1c7eef9be6503b212f4e7b8aad53],
PUP.Optional.Amonetize.A, C:\ProgramData\Avwemawee\dat.dat, Mis en quarantaine, [d15e1c7eef9be6503b212f4e7b8aad53],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\dat\tcIroaMwoW.exe.config, Supprim�-au-red�marrage, [85aa4e4cd4b69a9caba43a34f5116c94],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\dat\vcPpUYhY.exe.config, Supprim�-au-red�marrage, [85aa4e4cd4b69a9caba43a34f5116c94],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\info.dat, Supprim�-au-red�marrage, [85aa4e4cd4b69a9caba43a34f5116c94],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\NyjRZE.dat, Supprim�-au-red�marrage, [85aa4e4cd4b69a9caba43a34f5116c94],
PUP.Optional.PullUpdate.A, C:\ProgramData\qDfiFlh\NyjRZE.exe.config, Mis en quarantaine, [85aa4e4cd4b69a9caba43a34f5116c94],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité