cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 04/07/2015
Heure de l'analyse: 17:58
Fichier journal: Malwar.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.07.04.03
Base de données de rootkits: v2015.07.03.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: nabil

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 349138
Temps écoulé: 9 min, 18 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 1
Backdoor.Agent.JV, C:\Users\nabil\AppData\Roaming\Java\System\tasksgr.exe, 2280, , [754ef7e61377ba7c2ebcb2b83fc64cb4]

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 13
PUP.Optional.Linkey.A, HKLM\SOFTWARE\CLASSES\Linkey.Linkey, , [9e25be1fabdfb680a92a5c217c87d12f],
PUP.Optional.Linkey.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Linkey.Linkey, , [ad16f0ed7a1062d40ac9d0ad6e958f71],
PUP.Optional.Linkey.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Linkey.Linkey, , [ad16f0ed7a1062d40ac9d0ad6e958f71],
PUP.Optional.SensePlus.A, HKLM\SOFTWARE\WOW6432NODE\SensePlus-nv, , [60638f4ea9e16ccae7cc9f685fa5768a],
PUP.Optional.SensePlus.A, HKLM\SOFTWARE\WOW6432NODE\SensePlus-nv-ie, , [fec5835ad0ba181e31829f6855afbc44],
PUP.Optional.SettingsManager.A, HKLM\SOFTWARE\WOW6432NODE\SmdmF, , [636047963e4ce25430a9f62e976db14f],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, , [e1e2dffe92f84de91e7f8c7334cf0cf4],
PUP.Optional.SwiftRecord.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Swift Record, , [1ea537a61575b6804a9cf90aee1656aa],
PUP.Optional.SensePlus.A, HKU\S-1-5-18\SOFTWARE\SensePlus-nv, , [4c772ab3177336005a5a34d3d52ff010],
PUP.Optional.SensePlus.A, HKU\S-1-5-18\SOFTWARE\SensePlus-nv-ie, , [c9fa5687ec9ec670d0e4996e06fef50b],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, , [6b58eaf33a5078be9c66dcb88283b24e],
PUP.Optional.SensePlus.A, HKU\S-1-5-21-3611033843-1339807178-79065574-1001\SOFTWARE\SensePlus-nv, , [2d96ffdeb5d5c96df2c2eb1ccb3950b0],
PUP.Optional.SensePlus.A, HKU\S-1-5-21-3611033843-1339807178-79065574-1001\SOFTWARE\SensePlus-nv-ie, , [f8cb09d4fb8f93a302b2e2251aea768a],

Valeurs du registre: 3
IPH.Trojan.MSIL.GenX, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ad93b436fb8e7983a5561ca585d26696, "C:\Users\nabil\AppData\Local\Temp\counter.exe" .., , [754e4796c6c472c480497c84db25837d]
IPH.Trojan.MSIL.GenX, HKU\S-1-5-21-3611033843-1339807178-79065574-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ad93b436fb8e7983a5561ca585d26696, "C:\Users\nabil\AppData\Local\Temp\counter.exe" .., , [754e4796c6c472c480497c84db25837d]
Backdoor.Agent.JV, HKU\S-1-5-21-3611033843-1339807178-79065574-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Tasksgr(TM), C:\Users\nabil\AppData\Roaming\Java\System\tasksgr.exe, , [754ef7e61377ba7c2ebcb2b83fc64cb4]

Données du registre: 0
(Aucun élément malveillant détecté)

Dossiers: 2
PUP.Optional.GlobalUpdate.A, C:\Users\nabil\AppData\Local\Temp\comh.282799, , [cef5f7e67e0c90a691e52eaff112e31d],
PUP.Optional.GlobalUpdate.A, C:\Users\nabil\AppData\Local\Temp\comh.42221, , [06bdfbe29af0b77f1b5bd20b020151af],

Fichiers: 44
IPH.Trojan.MSIL.GenX, C:\Users\nabil\AppData\Local\Temp\counter.exe, , [754e4796c6c472c480497c84db25837d],
PUP.Optional.Crossrider, C:\Program Files (x86)\1c16601e-30d4-42c2-ac21-97d87eb52e96\50f613dc-121e-4910-9c39-834231556d69.dll, , [7a49e5f83d4d9c9a1a4cf972f50d55ab],
PUP.Optional.Nova.A, C:\Program Files (x86)\1c16601e-30d4-42c2-ac21-97d87eb52e96\616062dd-8e58-4ad8-818f-c73975901ce3.dll, , [893a5e7fc2c8f640e9e8f4226c968c74],
PUP.Optional.Nova.A, C:\Program Files (x86)\Adobe\e3055114-a4ab-40f0-ae01-a1062984a0de.dll, , [f7cc9f3eb9d1b284a22f1ff7eb1745bb],
PUP.Optional.Crossrider, C:\Program Files (x86)\Adobe\e4292541-ba7b-4acc-a37c-71a795556ab5.dll, , [f1d26d70236742f4aeb8f9721fe3b14f],
PUP.Optional.Nova.A, C:\Program Files (x86)\AGEIA Technologies\18c2de28-76e5-4c22-832f-386f724a1d7e.dll, , [6b58726bb2d84fe7953c58be8082e51b],
PUP.Optional.Crossrider, C:\Program Files (x86)\AGEIA Technologies\1c16601e-30d4-42c2-ac21-97d87eb52e96.dll, , [8340b5283f4b56e03a2c214ae1216799],
PUP.Optional.Crossrider, C:\Program Files (x86)\e4292541-ba7b-4acc-a37c-71a795556ab5\14ee8cee-d85f-460a-baf0-8b8091a20b39.dll, , [1fa401dc3753072fcf9775f6748ee020],
PUP.Optional.Nova.A, C:\Program Files (x86)\e4292541-ba7b-4acc-a37c-71a795556ab5\ccdbf7d0-24f9-4bce-a9b7-87c30d64bb78.dll, , [c7fcffde6822de582ea3d64002007d83],
Trojan.MSIL.GenX, C:\Users\nabil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ad93b436fb8e7983a5561ca585d26696.exe, , [fec5ac318dfdfb3b5c7182b3ec152bd5],
PUP.Optional.SwiftRecord.A, C:\Users\nabil\AppData\Local\Temp\4290.tmp, , [d7ec08d5bdcd3bfb899b3a57d234e719],
PUP.Optional.AztecMedia.A, C:\Users\nabil\AppData\Local\Temp\default-search.DLL, , [c9fa8756513938fed77b2d648284e917],
PUP.Optional.IStartSurf.A, C:\Users\nabil\AppData\Local\Temp\smt_istartsurf.exe, , [a023607d206a0b2b9a883d523bcb43bd],
PUP.Optional.Babylon.A, C:\Users\nabil\AppData\Local\Temp\8E5C012E-BAB0-7891-8BC3-C0B648C601E0\Setup.exe, , [5073657899f1ea4c50261f014db3bd43],
PUP.Optional.iWebar.A, C:\Users\nabil\AppData\Local\Temp\Install_30413\ins_iwebar.exe, , [348f528b008ab77fd6804ff242c05ca4],
PUP.Optional.Sense.A, C:\Users\nabil\AppData\Local\Temp\Install_30413\ins_sense.exe, , [f2d184594347f93de7fe65c4f0129769],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\globalupdate.exe, , [e4df0dd0385245f1d90b2c21857d24dc],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\globalupdateBroker.exe, , [d1f20bd2890146f09054d4790cf6e020],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\globalupdateCrashHandler.exe, , [388b28b533573105b72d3e0fe1218e72],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\globalupdateOnDemand.exe, , [873ccd100a80c3737b694409659daa56],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\goopdate.dll, , [eed54f8e6e1c23139450470608fab848],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\goopdateres_en.dll, , [566d55882664330310d4aba2f50d0cf4],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\npglobalupdateUpdate4.dll, , [883bac3149419f97eff57ad37a88bd43],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\psmachine.dll, , [5e65b02df99147ef06dec58834cebd43],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.282799\psuser.dll, , [576cce0f8efcd066bb29331acd35ae52],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\globalupdate.exe, , [f7cc2bb28cfe57dfa63e133a758daf51],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\globalupdateBroker.exe, , [10b3f9e4b5d53cfaf1f3a2ab6999c63a],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\globalupdateCrashHandler.exe, , [497a0dd0058548eea24208453cc67090],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\globalupdateOnDemand.exe, , [3d865e7f8cfe84b27e664b02917111ef],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\goopdate.dll, , [dde60dd07713e056a73d4b02837f01ff],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\goopdateres_en.dll, , [576cb22bd0baa88e8d5714399e64f40c],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\npglobalupdateUpdate4.dll, , [c8fb508d206aeb4b648079d4cc363ec2],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\psmachine.dll, , [477ce9f4e3a7e3530dd72726e71b13ed],
PUP.Optional.ModGoog, C:\Users\nabil\AppData\Local\Temp\comh.42221\psuser.dll, , [bd068558cdbd54e24b991d30e61c8b75],
PUP.Optional.AztecMedia.A, C:\Users\nabil\AppData\Local\Temp\nslACF2.tmp\apphelp.dll, , [467d8e4f167470c6430f8d040afc9868],
PUP.Optional.SpeedBit, C:\Users\nabil\AppData\Local\Installer\Install_414\DCytaiesmt_smtyc_setup.exe, , [bd0622bb94f6ee48844f0d4509f925db],
PUP.Optional.SpeedBit, C:\Users\nabil\AppData\Local\Installer\Install_8976\DCytaiesmt_smtyc_setup.exe, , [eed56974d8b2ab8b488b2131b44e8e72],
Backdoor.Agent.JV, C:\Users\nabil\AppData\Roaming\Java\System\tasksgr.exe, , [754ef7e61377ba7c2ebcb2b83fc64cb4],
PUP.Optional.MindSpark.A, C:\Users\nabil\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_allin1convert.dl.myway.com_0.localstorage, , [a0231dc0721840f6b42a3a5a11f4728e],
PUP.Optional.MindSpark.A, C:\Users\nabil\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_allin1convert.dl.myway.com_0.localstorage-journal, , [fac9f2eb494158de15c93a5ac441758b],
PUP.Optional.Ask.A, C:\Users\nabil\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aaaaddliknddhjhjcofimffekgonpkom_0.localstorage, , [8c374b92d9b1290df944683281840cf4],
PUP.Optional.Ask.A, C:\Users\nabil\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aaaaddliknddhjhjcofimffekgonpkom_0.localstorage-journal, , [7f44fedf8dfd1d19eb529ffb8a7b8f71],
PUP.Optional.GlobalUpdate.A, C:\Users\nabil\AppData\Local\Temp\comh.282799\globalupdateHelper.msi, , [cef5f7e67e0c90a691e52eaff112e31d],
PUP.Optional.GlobalUpdate.A, C:\Users\nabil\AppData\Local\Temp\comh.42221\globalupdateHelper.msi, , [06bdfbe29af0b77f1b5bd20b020151af],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité