cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 25/07/2015
Heure de l'analyse: 20:27
Fichier journal: Malwarebytes Anti-Malware.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.07.25.03
Base de données de rootkits: v2015.07.22.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: corinnette

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 496400
Temps écoulé: 25 min, 7 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 21
PUP.Optional.uTorrentBar.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}, En quarantaine, [797ea14493f78ea839789df07c86857b],
PUP.Optional.uTorrentBar.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}, En quarantaine, [797ea14493f78ea839789df07c86857b],
PUP.Optional.PriceGong.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{1631550F-191D-4826-B069-D9439253D926}, En quarantaine, [5d9a796c5a304aec1c636b216d95966a],
PUP.Optional.PriceGong.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{1631550F-191D-4826-B069-D9439253D926}, En quarantaine, [5d9a796c5a304aec1c636b216d95966a],
PUP.Optional.ConduitTB.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{30F9B915-B755-4826-820B-08FBA6BD249D}, En quarantaine, [7e7925c03f4b43f360091776f909867a],
PUP.Optional.ConduitTB.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{30F9B915-B755-4826-820B-08FBA6BD249D}, En quarantaine, [7e7925c03f4b43f360091776f909867a],
PUP.Optional.Blabbers, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{963B125B-8B21-49A2-A3A8-E37092276531}, En quarantaine, [8a6d32b3c8c2a98d596b4c4f61a18f71],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, En quarantaine, [33c46283eaa0a591a266b9e0f31144bc],
PUP.Optional.SpeedTestAnalysis.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kckgnnipheglejoddfhekdjpbdbinhmb, En quarantaine, [37c022c30d7d30067e099db4996ab44c],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, En quarantaine, [d0271dc8494155e10bfdc8d1f212f60a],
PUP.Optional.MediaPlayer.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\video MediaPlay-Air, En quarantaine, [4aade8fd840655e1adb95131f60e41bf],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3357BFB7-CAB3-494F-8DB1-74181A67B567}, En quarantaine, [0aed974ed5b5ed49180e0a8ca85ccb35],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8187BD52-100E-43A2-8348-457A11F52226}, En quarantaine, [7a7dcf168cfe2e08c0658c0a0202bb45],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\Datamngr, En quarantaine, [5b9c826314769b9be683491ea55f46ba],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\APPDATALOW\SOFTWARE\ConduitEngine, En quarantaine, [698e16cf2f5b54e2419aabf0d62e55ab],
PUP.Optional.Conduit.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\APPDATALOW\SOFTWARE\ConduitSearchScopes, En quarantaine, [8e69687d5535e5513f0caf754db6639d],
PUP.Optional.PriceGong.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\APPDATALOW\SOFTWARE\PriceGong, En quarantaine, [2ec9cf16ee9cab8b6f69b66e030021df],
PUP.Optional.uTorrentBar.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\APPDATALOW\SOFTWARE\uTorrentBar_FR, En quarantaine, [b2456e77f4968fa7b8f2121955ae4fb1],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\CONDUIT\DistributionEngine, En quarantaine, [4fa83ea70f7baa8cca60940522e2946c],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3357BFB7-CAB3-494F-8DB1-74181A67B567}, En quarantaine, [e611c0257a1061d528fe5046b054de22],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8187BD52-100E-43A2-8348-457A11F52226}, En quarantaine, [5f98f4f11a70c274ae77c6d0af559d63],

Valeurs du registre: 10
Trojan.FakeMS.ED, HKU\S-1-5-21-288601912-3930166714-3364924389-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Microsoft® Windows® Operating System, C:\Users\corinnette\AppData\Roaming\Microsoft\Windows\Templates\MFC110D.exe, En quarantaine, [95629c496624d264f311f6afcc343dc3]
PUP.Optional.uTorrentBar.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}, ¹î ÷®ŠO—ûƒç°?Ž, En quarantaine, [797ea14493f78ea839789df07c86857b]
PUP.Optional.uTorrentBar.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}, En quarantaine, [807745a02862dc5acae77815f90928d8],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, En quarantaine, [33c46283eaa0a591a266b9e0f31144bc]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, En quarantaine, [d0271dc8494155e10bfdc8d1f212f60a]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3357BFB7-CAB3-494F-8DB1-74181A67B567}|AppName, 260a4114-a81e-433b-82a6-cb34b98d71fb-2.exe-codedownloader.exe, En quarantaine, [0aed974ed5b5ed49180e0a8ca85ccb35]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8187BD52-100E-43A2-8348-457A11F52226}|AppName, 260a4114-a81e-433b-82a6-cb34b98d71fb-2.exe-buttonutil.exe, En quarantaine, [7a7dcf168cfe2e08c0658c0a0202bb45]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3357BFB7-CAB3-494F-8DB1-74181A67B567}|AppName, 260a4114-a81e-433b-82a6-cb34b98d71fb-2.exe-codedownloader.exe, En quarantaine, [e611c0257a1061d528fe5046b054de22]
PUP.Optional.CrossRider.A, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8187BD52-100E-43A2-8348-457A11F52226}|AppName, 260a4114-a81e-433b-82a6-cb34b98d71fb-2.exe-buttonutil.exe, En quarantaine, [5f98f4f11a70c274ae77c6d0af559d63]
Trojan.Agent.MSWGen, HKU\S-1-5-21-288601912-3930166714-3364924389-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Microsoft® Windows® Operating System, C:\Users\compte secours\AppData\Roaming\Microsoft\Windows\Templates\MFC110D.exe, En quarantaine, [41b6796ce2a8a1951872073d877c5da3]

Données du registre: 0
(Aucun élément malveillant détecté)

Dossiers: 0
(Aucun élément malveillant détecté)

Fichiers: 17
Trojan.FakeMS.ED, C:\Users\corinnette\AppData\Roaming\Microsoft\Windows\Templates\MFC110D.exe, En quarantaine, [95629c496624d264f311f6afcc343dc3],
PUP.Optional.Bundle, C:\Users\corinnette\AppData\Roaming\ZHP\Quarantine\FLVPlayer-Chrome.exe, En quarantaine, [75828e570189a98df13e1636c73aba46],
PUP.Optional.Softonic, C:\Users\corinnette\AppData\Roaming\ZHP\Quarantine\SoftonicDownloader_pour_songr.exe, En quarantaine, [27d00fd6b4d6ab8ba8d9d411847ce21e],
PUP.Optional.Softonic, C:\Users\corinnette\AppData\Roaming\ZHP\Quarantine\SoftonicDownloader_pour_zoo-tycoon-2.exe, En quarantaine, [dd1acb1a0b7f10263a478c598d7331cf],
FraudTool.YAC, C:\Users\corinnette\AppData\Roaming\ZHP\Quarantine\yet_another_cleaner_ava.exe, En quarantaine, [e512895c96f4b28460adc1be4fb227d9],
HackTool.Wpakill, C:\Users\corinnette\Downloads\RM.rar, En quarantaine, [c631598cbfcb31052abee37e03fd21df],
PUP.Optional.iBryte, C:\Users\corinnette\Downloads\setup (1).exe, En quarantaine, [24d3cc19a9e1ef479d6097947090d32d],
PUP.Optional.OptimunInstaller, C:\Users\corinnette\Downloads\setup.exe, En quarantaine, [10e77b6a6a203df9c6801425ec1419e7],
PUP.Optional.InstallCore, C:\Users\corinnette\Downloads\cpu-z_1.69-setup-en.exe, En quarantaine, [985f9e47a5e53ef825f465a385807789],
PUP.RiskwareTool.CK, C:\Users\corinnette\Downloads\Crack Photoshop CS6 by xAlexandreful (1).rar, En quarantaine, [ef086d7852383ff78e04bd76dc26c13f],
PUP.Optional.OpenCandy, C:\Users\corinnette\Downloads\attsetup.exe, En quarantaine, [26d13ea7305a46f018dcf86959ac817f],
PUP.Optional.Somoto, C:\Users\corinnette\Downloads\VLCMediaPlayerSetup-44DnyaE.exe, En quarantaine, [9364875ed8b288ae69c3431eba4b2ed2],
PUP.Optional.Somoto, C:\Users\corinnette\Downloads\VLCMediaPlayerSetup-eiHpygS.exe, En quarantaine, [e215cc191b6f0b2bb7757ae76e97b54b],
PUP.Optional.MultiPlug, C:\Users\corinnette\Downloads\WAT_Fix.rar.exe, En quarantaine, [e90ea243107a0b2b1c0ab09bef129769],
HackTool.Wpakill, C:\Users\corinnette\Downloads\RemoveWAT.2.2.8 [www.Expert2Program.net].zip, En quarantaine, [7b7c31b4e4a683b3fcec62ff50b07888],
PUP.Optional.OpenCandy, C:\Users\corinnette\Downloads\ac3filter_2_6_0b.exe, En quarantaine, [1fd8e104bdcdda5c5e02548343be0ff1],
Trojan.Inject, C:\Users\corinnette\Downloads\WL2.1.2.rar, En quarantaine, [cc2b697cbad03afc02fc9723ec148a76],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité