cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 13/06/2015
Heure de l'examen: 13:06:13
Fichier journal: malware.txt
Administrateur: Oui

Version: 2.01.6.1022
Base de donn�es Malveillants: v2015.06.13.02
Base de donn�es Rootkits: v2015.06.02.01
Licence: Essai
Protection contre les malveillants: Activ�(e)
Protection contre les sites Web malveillants: Activ�(e)
Auto-protection: D�sactiv�(e)

Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x86
Syst�me de fichiers: NTFS
Utilisateur: TOU

Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 316619
Temps �coul�: 21 min, 23 sec

M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: Activ�(e)
Heuristique: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)

Processus: 0
(Aucun �l�ment malicieux d�tect�)

Modules: 0
(Aucun �l�ment malicieux d�tect�)

Cl�s du Registre: 12
PUP.Optional.CommonDots.A, HKLM\SOFTWARE\CLASSES\CLSID\{c3842ff3-4633-4f81-a633-a8175a7f2884}, , [80b69723a1e989ad0c397c2fb64d0000],
PUP.Optional.CommonDots.A, HKU\S-1-5-21-1894183599-49920124-606662643-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{C3842FF3-4633-4F81-A633-A8175A7F2884}, , [80b69723a1e989ad0c397c2fb64d0000],
PUP.Optional.CommonDots.A, HKU\S-1-5-21-1894183599-49920124-606662643-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C3842FF3-4633-4F81-A633-A8175A7F2884}, , [80b69723a1e989ad0c397c2fb64d0000],
PUP.Optional.MultiPlug, HKU\S-1-5-21-1894183599-49920124-606662643-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}, , [a591fbbf5d2d3cfabf004f5b08fbf60a],
PUP.Optional.SkiSearch.A, HKU\S-1-5-21-1894183599-49920124-606662643-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{33ADDF4A-B82F-4514-A1BA-09BD8726AAE1}, , [62d47c3ea2e8fc3a96ae307a7a89e917],
PUP.Optional.SkiSearch.A, HKU\S-1-5-21-1894183599-49920124-606662643-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{33ADDF4A-B82F-4514-A1BA-09BD8726AAE1}, , [62d47c3ea2e8fc3a96ae307a7a89e917],
PUP.Optional.SkiSearch.A, HKLM\SOFTWARE\Ski Search, , [280e8f2bf2984de99395a7dae520ac54],
PUP.Optional.TermBlazer.A, HKLM\SOFTWARE\TermBlazer_1.10.0.16, , [5dd97a407812280efb38c7c18d7826da],
PUP.Optional.MyStartToolbar.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\${IEUTILSLIGHTELEVATIONPOLICYID}, , [1f17d6e427630d29b77f2f5a38cd817f],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, , [1a1c398199f1ce68b3f6751543c26a96],
PUP.Optional.TermBlazer.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\tbfd_1_10_0_16, , [87af4f6bc4c6df577f1be89e0bfa18e8],
PUP.Optional.ProductSetup.A, HKU\S-1-5-21-1894183599-49920124-606662643-1000\SOFTWARE\PRODUCTSETUP, , [6ec82d8d59312016571c91fb8c797b85],

Valeurs du Registre: 3
PUP.Optional.MyStartToolbar.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\${IEUTILSLIGHTELEVATIONPOLICYID}|AppPath, C:\Program Files\mystarttb, , [1f17d6e427630d29b77f2f5a38cd817f]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, , [1a1c398199f1ce68b3f6751543c26a96]
PUP.Optional.ProductSetup.A, HKU\S-1-5-21-1894183599-49920124-606662643-1000\SOFTWARE\PRODUCTSETUP|tb, 0E1G1J1H, , [6ec82d8d59312016571c91fb8c797b85]

Donn�es du Registre: 0
(Aucun �l�ment malicieux d�tect�)

Dossiers: 10
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin\plugins, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin\TEMP, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.SkiSearch.A, C:\Users\TOU\AppData\Local\Temp\Ski Search, , [73c31f9ba1e951e57e3724c56b98936d],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\common, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\settings, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\_metadata, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],

Fichiers: 35
PUP.Optional.InstallCore.SID.C, C:\Users\TOU\AppData\Local\Temp\ICReinstall_ALZip 6.exe, , [a096ceec434789ad7a731e5ecc3a34cc],
Trojan.Agent.AI, C:\Users\TOU\AppData\Local\Temp\Quarantine.exe, , [33038832f397e155fcff1e4f5ba77c84],
PUP.Optional.APNToolBar.A, C:\Users\TOU\Desktop\lbp3010\DriverUpdaterSetup-2.4.1.3369.exe, , [0333c3f725651c1a9d974a1b7989d52b],
PUP.Hacktool.Patcher, C:\Users\TOU\Desktop\~SpyHunter 4.13.6.4253 + Patch\Patch.By_Sco\spyhunter.4.3.32-patch.exe, , [4aecb00a098116200dbde22528d8619f],
PUP.Optional.MyStart.A, C:\Users\TOU\AppData\Local\Temp\mystart-toolbar.xml, , [2610467491f9e6505510c549ce36936d],
PUP.Optional.Vitruvian.A, C:\Users\TOU\AppData\Local\Temp\vitruvian-installer-hardwareprofile-v0001, , [90a6f4c6e1a9092d6bbcb3c8040111ef],
PUP.Optional.Vitruvian.A, C:\Users\TOU\AppData\Local\Temp\vitruvian-installer-install-v0003, , [0531b30736540630cb5cc3b810f58b75],
PUP.Optional.Vitruvian.A, C:\Users\TOU\AppData\Local\Temp\vitruvian-installer-processes-v0002, , [74c2ad0d95f5dc5ad5529cdf4cb9f50b],
PUP.Optional.Vitruvian.A, C:\Users\TOU\AppData\Local\Temp\vitruvian-installer-scheduledtasks-v0001, , [f93d79412466c47231f664171ce9da26],
PUP.Optional.Vitruvian.A, C:\Users\TOU\AppData\Local\Temp\vitruvian-installer-softwareregkeys-v0002, , [132367531d6d4cea6cbbe3982dd8fa06],
PUP.Optional.Vitruvian.A, C:\Users\TOU\AppData\Local\Temp\vitruvian-installer-uninstall-v0002, , [4beb84364446ac8a53d464176b9a8977],
PUP.Optional.MyStartTB.A, C:\Users\TOU\AppData\Local\Temp\mystarttb_Install_Log.txt, , [8babfbbfb3d7c373b91b830057aef40c],
PUP.Optional.MyStartTB.A, C:\Users\TOU\AppData\Local\Temp\mystarttb_Uninstall_Log.txt, , [0f2702b81d6d82b4ede76d16a16450b0],
PUP.Optional.Multiplug.A, C:\Windows\Tasks\Bidaily Synchronize Task[973b].job, , [9c9ac6f4e2a870c682ecaeda9c6932ce],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin\BrowserAdapter.7z, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin\7za.exe, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin\bau, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin\eula.txt, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin\SkiSearch.PurBrowseG.zip, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.Sanbreel.A, C:\Program Files\Ski Search\bin\utilSkiSearch.InstallState, , [c472befcaedce74f3aa68bfe47bee020],
PUP.Optional.CommonDots.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_commondots-a.akamaihd.net_0.localstorage, , [b4822c8e810938fe22077f0ee91cc838],
PUP.Optional.CommonDots.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_commondots-a.akamaihd.net_0.localstorage-journal, , [181e04b62763e74f6fbabbd26f96c040],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\manifest.json, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\favicon.ico, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\icon128.png, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\icon16.png, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\icon48.png, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\newtab.html, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\common\aes.js, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\common\mode-ecb.js, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\settings\brand.js, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\settings\params.js, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\settings\redirect.js, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\settings\stats.js, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],
PUP.Optional.DefaultSearch.A, C:\Users\TOU\AppData\Local\Google\Chrome\User Data\Default\Extensions\akfphecggdoefopaooikpjihabjbmjea\1.4.1_1\_metadata\verified_contents.json, , [3cfa61592f5bfa3c6d96daa5ab5b02fe],

Secteurs physiques: 0
(Aucun �l�ment malicieux d�tect�)


(end)

Publicité


Signaler le contenu de ce document

Publicité