cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 24/08/2015
Heure de l'analyse: 20:04
Fichier journal: résultats.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.08.24.05
Base de données de rootkits: v2015.08.16.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Maison

Type d'analyse: Analyse personnalisée
Résultat: Terminé
Objets analysés: 472128
Temps écoulé: 44 min, 54 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 4
PUP.Optional.WombatUpdater.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\SERVICE7609.EXE, , [cdd843c93457a096932bae6e42c1fc04],
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{478472F9-9E09-492A-BDAB-42EE595EF1AD}, , [891c0507d3b87cba8f2d54d86c97a65a],
PUP.Optional.PCSpeedUp.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PCSUUCDRV, , [4f5655b78704c96d4b4a743810f4dd23],
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2318114551-2168346931-3526595610-1000\SOFTWARE\OB, , [446159b3305b270ff5166354be46dd23],

Valeurs du registre: 8
PUP.Optional.WombatUpdater.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\Service7609.exe|{a53dd3e5-0283-4ab3-b77c-7bd1bc7550c6}.sdb, 130846355176246206, , [cdd843c93457a096932bae6e42c1fc04]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2318114551-2168346931-3526595610-1000\SOFTWARE\OB|monitype1, 8/21/15 21:32:6, , [446159b3305b270ff5166354be46dd23]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2318114551-2168346931-3526595610-1000\SOFTWARE\OB|monitype6, 8/21/15 21:26:26, , [62430903aedd60d63dce675053b1ad53]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2318114551-2168346931-3526595610-1000\SOFTWARE\OB|monitype10, 8/21/15 21:28:34, , [a8fdd13b57347eb8957605b2d92b58a8]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2318114551-2168346931-3526595610-1000\SOFTWARE\OB|monitype4, 8/21/15 21:30:47, , [9411e6262f5c2610b15ab106c53fa25e]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2318114551-2168346931-3526595610-1000\SOFTWARE\OB|monitype34, 8/21/15 21:30:47, , [822373991576d06633d86552aa5ae21e]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2318114551-2168346931-3526595610-1000\SOFTWARE\OB|monitype35, 8/21/15 21:30:47, , [fda88e7e2764053148c3f3c4eb19c43c]
PUP.Optional.OutBrowse.A, HKU\S-1-5-21-2318114551-2168346931-3526595610-1000\SOFTWARE\OB|monitype20, 8/21/15 21:32:6, , [dacbfe0ea0eb88ae07049a1dca3a29d7]

Données du registre: 2
Windows.Tool.Disabled, HKLM\SOFTWARE\POLICIES\MICROSOFT\WINDOWS NT\SYSTEMRESTORE|DisableConfig, 1, Bon : (0), Mauvais : (1),,[4164fe0e4d3e70c6a9faf066cf36827e]
Windows.Tool.Disabled, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\WINDOWS NT\SYSTEMRESTORE|DisableConfig, 1, Bon : (0), Mauvais : (1),,[5055f21a850654e22a790254c540ce32]

Dossiers: 6
PUP.Optional.WhiteWindow.A, C:\ProgramData\WhiteWindow, , [9114be4e256674c24d4708b1c24209f7],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\MWinManProM, , [277e24e8dfac1a1cb3e18397a85b946c],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\MWinManProM\update, , [277e24e8dfac1a1cb3e18397a85b946c],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\QWinManProQ, , [f3b20b01f09b8caaeca887935ca722de],
PUP.Optional.PullUpdate.A, C:\ProgramData\hgdcwGS\dat, , [00a568a4afdcd95de913246b54b159a7],
PUP.Optional.PullUpdate.A, C:\ProgramData\hgdcwGS, , [00a568a4afdcd95de913246b54b159a7],

Fichiers: 32
PUP.Optional.Multiplug.A, C:\Program Files (x86)\nCage\nCage.exe, , [aafb3ece7516be7811d6abebd52c07f9],
PUP.Optional.MultiPlug, C:\Program Files (x86)\HMA IP Checker\HMA IP Checker.exe, , [762fc9434645a096e057d7b933cef40c],
PUP.Optional.Multiplug.A, C:\Program Files (x86)\CSS Dig\CSS Dig.exe, , [9312f8146823ce683d718bee986945bb],
PUP.Optional.CrossRider.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\3hn3sdpEJUyx.exe, , [dacb2ae21279a88edf9cee4d0bf57c84],
PUP.Optional.CrossRider.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\dNyFdbJM3iPGdk0kXx5i8Ae.exe, , [32734cc04546c47290eb24173bc5d22e],
PUP.Optional.CrossRider.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\DqdFpavOljG.exe, , [7c29a864becd1620a6d591aace328d73],
PUP.Optional.PullUpdate.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\fVaVyLjCkiS.exe, , [cadbe527d3b8bd792a213855eb1a57a9],
PUP.Optional.AnyProtect, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\nsbA27E.tmp, , [980d27e52a61c27466066720689a5ca4],
PUP.Optional.AnyProtect, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\nshCDAF.tmp, , [d3d2f913008bab8bc4a83e4912f07090],
PUP.Optional.AnyProtect, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\nsr84C.tmp, , [e4c136d6c8c341f54329d7b0e51dc040],
PUP.Optional.AnyProtect, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\nsy7553.tmp, , [bee7ea22c0cbca6c81eb7c0b7d8547b9],
PUP.Optional.PullUpdate.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\OVoyNy.exe, , [b4f141cbc1cace6869e2fb92669f738d],
PUP.Optional.PullUpdate.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\qzccuj.exe.VIR, , [adf823e90a81ab8b1f2cf7965ca9b64a],
PUP.Optional.CrossRider.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\Udm2CsmlYsKj5.exe, , [3471af5dd2b99e982d4eab9019e79769],
PUP.Optional.CrossRider.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\uptDMN0TWtzQF3fup.exe, , [b1f4f814ec9f60d6ec8ffd3e2ad67a86],
PUP.Optional.ScreenFlip.A, C:\Users\Maison\AppData\Roaming\ZHP\Quarantine\{7e32afc8-eeb0-4b51-9afa-1cfe1fa60f6f}gw64.sys.VIR, , [d4d176960f7c56e011515e2fe32258a8],
Adware.PullUpdate, C:\ProgramData\hgdcwGS\dat\VypPyHEstEA.dll, , [465f818b642773c3ba81ae1f6899af51],
PUP.Optional.ZombieInvasion.A, C:\ProgramData\hgdcwGS\dat\YSNxobkWkB.dll, , [f1b499734f3ce74f1d01ab8745c09868],
PUP.Optional.Winsock.HijackBoot, C:\Windows\System32\Piiujkau64.dll, , [2e777399e3a87abc6ed4c10c5da4916f],
PUP.Optional.CrossRider.A, C:\Windows\SysWOW64\6.exe, , [7a2b83899deee94deb377525926fce32],
PUP.Optional.Winsock.HijackBoot, C:\Windows\SysWOW64\Piiujkau.dll, , [564f19f3aedda59148f92ba2c140b050],
PUP.Optional.WombatUpdater.A, C:\Windows\AppPatch\Custom\{a53dd3e5-0283-4ab3-b77c-7bd1bc7550c6}.sdb, , [4f5626e64744af8779440a12ba49c040],
PUP.Optional.Goobzo.A, C:\Windows\Tasks\Inst_Rep.job, , [178ea9630a81171f9f9b2600e71c56aa],
PUP.Optional.PhraseProfessor.A, C:\Windows\Tasks\PhraseProfessor Auto Updater 1.10.0.22 Core.job, , [e0c514f828632d099857961dfd079c64],
PUP.Optional.WhiteWindow.A, C:\ProgramData\WhiteWindow\install.log, , [9114be4e256674c24d4708b1c24209f7],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\MWinManProM\updateconf, , [277e24e8dfac1a1cb3e18397a85b946c],
PUP.Optional.PullUpdate.A, C:\ProgramData\hgdcwGS\dat\fVaVyLjCkiS.exe.config, , [00a568a4afdcd95de913246b54b159a7],
PUP.Optional.PullUpdate.A, C:\ProgramData\hgdcwGS\dat\OVoyNy.exe.config, , [00a568a4afdcd95de913246b54b159a7],
PUP.Optional.PullUpdate.A, C:\ProgramData\hgdcwGS\dat\VypPyHEstEA.dll, , [00a568a4afdcd95de913246b54b159a7],
PUP.Optional.PullUpdate.A, C:\ProgramData\hgdcwGS\info.dat, , [00a568a4afdcd95de913246b54b159a7],
PUP.Optional.PullUpdate.A, C:\ProgramData\hgdcwGS\QZcCuJ.dat, , [00a568a4afdcd95de913246b54b159a7],
PUP.Optional.PullUpdate.A, C:\ProgramData\hgdcwGS\QZcCuJ.exe.config, , [00a568a4afdcd95de913246b54b159a7],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité