cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 25/07/2015
Heure de l'analyse: 00:00
Fichier journal: Malwarebytes_Logs.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.07.24.07
Base de données de rootkits: v2015.07.22.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Mathias

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 404805
Temps écoulé: 22 min, 38 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 19
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, En quarantaine, [0b8c4f9674161620ac18c0071fe3d030],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, En quarantaine, [0b8c4f9674161620ac18c0071fe3d030],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, En quarantaine, [0b8c4f9674161620ac18c0071fe3d030],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, En quarantaine, [0b8c4f9674161620ac18c0071fe3d030],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, En quarantaine, [0b8c4f9674161620ac18c0071fe3d030],
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, En quarantaine, [0b8c4f9674161620ac18c0071fe3d030],
PUP.Optional.BrowserApps.A, HKLM\SOFTWARE\WOW6432NODE\Br0wsrApVs4.1, En quarantaine, [6037eef77614290d27b54d427391bc44],
PUP.Optional.MediaPlayer.A, HKLM\SOFTWARE\WOW6432NODE\MediaPlayerVid2.4, En quarantaine, [2374bd28c4c6db5bc81ee031cb382fd1],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, En quarantaine, [efa8fce9c7c33df9201d0a03a162966a],
PUP.Optional.BrowserApps.A, HKU\S-1-5-18\SOFTWARE\Br0wsrApVs4.1-nv, En quarantaine, [2671865fe4a679bde3f8bcd32cd85ba5],
PUP.Optional.BrowserApps.A, HKU\S-1-5-18\SOFTWARE\Br0wsrApVs4.1-nv-ie, En quarantaine, [296ed510e4a650e63f9c94fb46be01ff],
PUP.Optional.BrowserApps.A, HKU\S-1-5-18\SOFTWARE\BrowserV23.07-nv, En quarantaine, [d6c18c5911791c1a6011957815ee5ea2],
PUP.Optional.BrowserApps.A, HKU\S-1-5-18\SOFTWARE\BrowserV23.07-nv-ie, En quarantaine, [880f2fb6800a4cea145dfd10dd262dd3],
PUP.Optional.MediaPlayer.A, HKU\S-1-5-18\SOFTWARE\MediaPlayerVid2.4-nv, En quarantaine, [4e49974ebbcfa0966e791ef322e1926e],
PUP.Optional.MediaPlayer.A, HKU\S-1-5-18\SOFTWARE\MediaPlayerVid2.4-nv-ie, En quarantaine, [4552be27dbafd165fdea71a0956efe02],
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\Plus HD Video 3.1cV22.07-nv, En quarantaine, [c9ce25c00d7d7db9b2fc8394ba49be42],
PUP.Optional.CrossRider.A, HKU\S-1-5-18\SOFTWARE\Plus HD Video 3.1cV22.07-nv-ie, En quarantaine, [e7b0727314760e287d31e13612f1c937],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, En quarantaine, [a8efbd28ddad45f1ca92850ea75d847c],
PUP.Optional.MediaPlayer.A, HKU\S-1-5-21-2730760158-407406096-3506655445-1000\SOFTWARE\MediaPlayerVid2.4, En quarantaine, [c4d323c27b0f94a234b39e7309fac739],

Valeurs du registre: 1
PUP.Optional.IEAudioAds.A, HKU\S-1-5-21-2730760158-407406096-3506655445-1000\SOFTWARE\INSTALLPATH\STATUS|NuvisionDataRemarketer, Y, En quarantaine, [0d8a7471e0aaf93de2f79ffb43c1ec14]

Données du registre: 0
(Aucun élément malveillant détecté)

Dossiers: 2
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Igoahsiata\1.0.4.1, En quarantaine, [9afd4e97503a68ce45324b527391b34d],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Igoahsiata, En quarantaine, [9afd4e97503a68ce45324b527391b34d],

Fichiers: 45
Backdoor.Agent.IMN, C:\Users\Mathias\AppData\Roaming\Google Chrome\Google\chrome.exe, En quarantaine, [0b8c42a38ffb5cda81b02940679a32ce],
Backdoor.Agent.IMN, C:\Users\Mathias\AppData\Roaming\Google Chrome\Google\csrss.exe, En quarantaine, [5047faebb2d881b5230e4722b1507888],
PUP.Optional.SoftwareUpdate.A, C:\Users\Mathias\AppData\Roaming\ZHP\Quarantine\bc.exe, En quarantaine, [4354eafb2367191da03cf25a679af50b],
PUP.Optional.Amonentize.A, C:\Users\Mathias\AppData\Roaming\ZHP\Quarantine\bundle_flowsurfcb.exe, En quarantaine, [d1c601e424663600faea8a1a7f827b85],
Trojan.MSIL.Dropper, C:\Users\Mathias\AppData\Roaming\ZHP\Quarantine\maxdrivrupdater.exe, En quarantaine, [14835c8999f1b97dd153be062fd2dc24],
PUP.Optional.MixVideoPlayer.A, C:\Users\Mathias\AppData\Roaming\ZHP\Quarantine\mixvideoplayersetup.exe, En quarantaine, [2d6a13d26921bc7acba0113aca36bf41],
Backdoor.Agent.IMN, C:\Users\Mathias\Desktop\Dolphin v1.0.exe, En quarantaine, [bfd8d1143357979fd160ee7b768b30d0],
PUP.Optional.Crossrider, C:\Program Files (x86)\Adobe\18192ca5-f5c2-4c0f-95f3-f51846180920.dll, En quarantaine, [187f5491addd66d06e794a63857c44bc],
PUP.Optional.Nova.A, C:\Program Files (x86)\Adobe\47781794-bdbe-44e7-94ae-249bea59805b.dll, En quarantaine, [27704c997119033307699dbdd42d05fb],
PUP.Optional.Crossrider, C:\Program Files (x86)\Age of Empires II HD\58e6be78-5584-4246-91cb-70098ddac7d9.dll, En quarantaine, [b1e69b4ac7c384b2b136ad00f908a858],
PUP.Optional.Nova.A, C:\Program Files (x86)\Age of Empires II HD\defb5f2c-033e-45d5-9e0c-03cce7e01bf0.dll, En quarantaine, [e4b3c124a6e45ed878f872e87091f30d],
PUP.Optional.MultiPlug, C:\Windows\SysWOW64\setup.exe, En quarantaine, [0d8ade07ec9e7fb776251e264ab76799],
PUP.Optional.CrossRider.A, C:\Users\Mathias\AppData\Local\Temp\91.exe, En quarantaine, [e6b12cb9464488aed82f3636b550ba46],
PUP.Optional.CrossRider.A, C:\Users\Mathias\AppData\Local\Temp\2585.exe, En quarantaine, [f99e75705436c37328dfcd9f9a6b619f],
PUP.Optional.Crossbrowse.C, C:\Users\Mathias\AppData\Local\Temp\3102.exe, En quarantaine, [2770dd08b7d3989e4ed45e3f1fe20af6],
Trojan.Agent, C:\Users\Mathias\AppData\Local\Temp\nsi6DB9.tmp, En quarantaine, [e3b428bdd6b406305d016ec048bd2ad6],
PUP.Optional.WebShield.A, C:\Users\Mathias\AppData\Local\Temp\d094e84e-4e8c-42b7-8995-980404996afe\setup.exe, En quarantaine, [8413cb1a7713dd595ce667eac040c937],
PUP.Optional.SkyTech.A, C:\Users\Mathias\AppData\Local\Temp\20150724195915\I.zip, En quarantaine, [07909e479af0b581b43784d025dc926e],
PUP.Optional.EORezo, C:\Users\Mathias\AppData\Local\Temp\21d8070c-22d6-46c7-b6fb-f698cffc5ff7\setup_gmsd.exe, En quarantaine, [b2e53da8f793ee4888deef7f8e777090],
PUP.Optional.StormWatch.A, C:\Users\Mathias\AppData\Local\Temp\2c67d37c-7e75-440c-9843-436f65d74a80\setup.exe, En quarantaine, [6f289055375384b22caa0b31e21e748c],
Trojan.Dropper, C:\Users\Mathias\AppData\Local\Temp\2e70f0e2-960d-4cfb-962f-e18ae3503d9a\setup.exe, En quarantaine, [0394fde88cfe26107a763f4171902ad6],
PUP.Optional.Amonentize.A, C:\Users\Mathias\AppData\Local\Temp\58f146e1-ef4c-42b9-ac04-d10d86371d7a\bundle_nuvisiondataremarketer.exe, En quarantaine, [6532bd28434791a52db7c0e4ab56ae52],
PUP.Optional.Crossbrowse.C, C:\Users\Mathias\AppData\Local\Temp\63310100-f3c1-418a-b903-9f35af8b040a\installer.exe, En quarantaine, [cccb3fa6e2a86ccae43e108def120ef2],
Trojan.Dropper, C:\Users\Mathias\AppData\Local\Temp\80ce6867-d8d2-4368-a5ca-88049c549b13\setup.exe, En quarantaine, [445332b32b5f94a2f9f727598e737987],
PasswordStealer.MSIL, C:\Users\Mathias\Downloads\Riot Points Generator.zip, En quarantaine, [e1b67b6a0882251187b69beb946c9868],
PUP.Optional.SmartSec, C:\Users\Mathias\Downloads\Setup (1).exe, En quarantaine, [f3a4d015f694c274274b85ce7b866d93],
PUP.Optional.Downloader, C:\Users\Mathias\Downloads\d3dx9.dll__6969_il166.exe, En quarantaine, [d8bf52936b1f3bfb3ba2b1fac44049b7],
PUP.Optional.MultiPlug, C:\Users\Mathias\Downloads\DriverToolkit 8.3 Full Download With Crack _ AtoZ Softs Zone.exe, En quarantaine, [c6d15491276338fe4dc7bf8ca45dd030],
PUP.Optional.DomaIQ, C:\Users\Mathias\Downloads\Setup.exe, En quarantaine, [682f3aaba6e42b0bec9eaf8d7f816a96],
PUP.Optional.OpenCandy, C:\Users\Mathias\Downloads\daemon-tools-lite_4-49-1_fr_10729.exe, En quarantaine, [aceb41a45a30a294e75976eb5da8b749],
PUP.Optional.InstallCore.A, C:\Users\Mathias\Downloads\installcptfree.exe, En quarantaine, [7720bb2afb8f5dd92d01c9e31ae71ee2],
PUP.Optional.InstallCore, C:\Users\Mathias\Downloads\ccsetup415.exe, En quarantaine, [c9ce3da84f3bd462d06d0ff875902dd3],
PUP.Optional.OpenCandy, C:\Users\Mathias\Downloads\CDex-1.77-win32.exe, En quarantaine, [4156ab3a3a503ff768d8ee735baa827e],
PUP.Optional.CrossRider.A, C:\Users\Mathias\Downloads\b0b6.exe, En quarantaine, [0394fde8c2c8c76fc4a5990306fba060],
PUP.Optional.CrossRider.A, C:\Users\Mathias\Downloads\41d30.exe, En quarantaine, [583f8a5b0486d36376f3debef40d59a7],
Trojan.Agent.Gen, C:\Users\Mathias\AppData\Roaming\Microsoft\chrome.exe, En quarantaine, [564103e2cdbde6507e2a25d3e81bd030],
PUP.Optional.WinYahoo, C:\Users\Mathias\AppData\LocalLow\Microsoft\Internet Explorer\Services\WinYahoo.ico, En quarantaine, [62357273127842f4078b2471a55fad53],
PUP.Optional.Abengine.A, C:\Users\Mathias\AppData\Local\Temp\lengine.ini.log, En quarantaine, [4a4d1acb4e3c79bd3d64e4b218ecd828],
PUP.Optional.Abengine.A, C:\Windows\Temp\lengine.ini.log, En quarantaine, [bdda21c41674c274d2cf41559e660ef2],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Igoahsiata\1.0.4.1\aalifuvt.exe.config, En quarantaine, [9afd4e97503a68ce45324b527391b34d],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Igoahsiata\1.0.4.1\aalifuvt.exe, En quarantaine, [9afd4e97503a68ce45324b527391b34d],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Igoahsiata\1.0.4.1\sqlite3.dll, En quarantaine, [9afd4e97503a68ce45324b527391b34d],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Igoahsiata\1.0.4.1\time.dat, En quarantaine, [9afd4e97503a68ce45324b527391b34d],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Igoahsiata\dat.dat, En quarantaine, [9afd4e97503a68ce45324b527391b34d],
PUP.Optional.Acengine.A, C:\Windows\Temp\acengine.log, En quarantaine, [3c5b4a9b751575c14a2b78275fa5dd23],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité