cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 26/09/2015
Heure de l'analyse: 19:36
Fichier journal: MAM.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.09.26.03
Base de données de rootkits: v2015.09.22.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Andy

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 413799
Temps écoulé: 34 min, 13 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 7
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7B6B49BF-65CF-4982-871D-096E21D8F18E}, En quarantaine, [75062014becdd6602ca2e0b8ab593bc5],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7B6B49BF-65CF-4982-871D-096E21D8F18E}, En quarantaine, [dd9ee153bad1b77f14ba8b0d59ab9769],
PUP.Optional.HQVideo, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\HQ-Video-Pro-1.9, En quarantaine, [7704d1633952280e3ea1673d6f95b848],
PUP.Optional.HQVideo, HKU\S-1-5-21-1296521943-943836454-2395904297-1000\SOFTWARE\APPDATALOW\SOFTWARE\HQ-Video-Pro-1.9, En quarantaine, [e497250fb9d296a008d7366e17ed758b],
PUP.Optional.SupraSavings, HKU\S-1-5-21-1296521943-943836454-2395904297-1000\SOFTWARE\APPDATALOW\SOFTWARE\suprasavings, En quarantaine, [b8c3c272414a2115baf401c27a8aa45c],
PUP.Optional.CrossRider, HKU\S-1-5-21-1296521943-943836454-2395904297-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7B6B49BF-65CF-4982-871D-096E21D8F18E}, En quarantaine, [18632212b3d83303466655435fa526da],
PUP.Optional.Iminent, HKU\S-1-5-21-1296521943-943836454-2395904297-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\Iminent, En quarantaine, [80fb1c18a2e9f83e32d1634305ff629e],

Valeurs du registre: 5
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7b6b49bf-65cf-4982-871d-096e21d8f18e}|AppName, HQ-Video-Pro-1.9-codedownloader.exe, En quarantaine, [75062014becdd6602ca2e0b8ab593bc5]
PUP.Optional.Astromenda, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\WSE_Astromenda\\, En quarantaine, [007b38fce8a36ec8940c1873c143738d]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7b6b49bf-65cf-4982-871d-096e21d8f18e}|AppName, HQ-Video-Pro-1.9-codedownloader.exe, En quarantaine, [dd9ee153bad1b77f14ba8b0d59ab9769]
PUP.Optional.CrossRider, HKU\S-1-5-21-1296521943-943836454-2395904297-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7b6b49bf-65cf-4982-871d-096e21d8f18e}|AppName, HQ-Video-Pro-1.9-codedownloader.exe, En quarantaine, [18632212b3d83303466655435fa526da]
PUP.Optional.AceWebExtension, HKU\S-1-5-21-1296521943-943836454-2395904297-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|AceWebException, C:\Users\Amandine\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe, En quarantaine, [611a35ff83080e280d42296036ce36ca]

Données du registre: 2
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon : ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais : ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplacé,[15665fd5f39882b487e9c8b0f411c53b]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon : ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais : ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplacé,[2655bd77e5a64de92d4387f1f80d926e]

Dossiers: 1
PUP.Optional.CrossRider, C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\deghekbbihbapplmbffglehkdhkeibbm, En quarantaine, [9dde6ec6acdf4fe7a5196da8a55eb947],

Fichiers: 23
PUP.Optional.ClientConnect, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\01net_Recuva.exe, En quarantaine, [8cef63d10e7dea4cde43c36d05fc23dd],
PUP.Optional.Nosibay, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\Bubble Dock Uninstall.exe, En quarantaine, [fe7dec48d4b72214e8fb04ab0cf9768a],
PUP.Optional.Nosibay, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\WindApp Uninstall.exe, En quarantaine, [7803bb79f9928fa7cd167d32bd4850b0],
PUP.Optional.SoftwareUpdate, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\npSoftwareUpdate3.dll, En quarantaine, [e9929c985a315cdac6f1c2feb24f817f],
PUP.Optional.SoftwareUpdate, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\SoftwareUpdate.exe, En quarantaine, [b1ca0d27602b0f2743748838ff029070],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\mbot_fr_014010096\mbot_fr_014010096.exe, En quarantaine, [2358d064cebd9f97a1363a741ee7ea16],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\mbot_fr_014010096\mybestofferstoday_widget.exe, En quarantaine, [b8c3ab897c0f84b27e595e50eb1a28d8],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\mbot_fr_014010096\mbot_fr_014010096\upmbot_fr_014010096.exe, En quarantaine, [98e3c76d315a67cf4e89bbf309fcd32d],
PUP.Optional.PhraseProfessor, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\PhraseProfessor_1.10.0.21\Uninstall.exe, En quarantaine, [13687cb8c7c43cfaf200109f9e675ca4],
PUP.Optional.Elex, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\RayDld\ihpmServer.exe, En quarantaine, [1c5f260e1378f046ba20c32310f17b85],
PUP.Optional.Elex, C:\Users\Andy\AppData\Roaming\ZHP\Quarantine\RayDld\ihpmServer.ini, En quarantaine, [5427be76cac1c76f9b3fd016c23f29d7],
PUP.Optional.Amonetize, C:\Users\Andy\AppData\Local\Temp\16ResolutionChangerbyBlackRider1993.zip__15047_i1677262759_il2341202.exe, En quarantaine, [23581f159fec57dfd2f6ab39d928dc24],
PUP.Optional.PhraseProfessor, C:\Users\Andy\AppData\Local\Temp\PhraseProfessor-setup-1.10.0.21.exe, En quarantaine, [b4c7d85c5437a294c42e9916f015d927],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Local\Temp\is-N25KA.tmp\package_BubbleSound_installer_multilang.exe, En quarantaine, [ee8da193751633039aaa7d3fb849d927],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Local\Temp\is-N25KA.tmp\420.exe, En quarantaine, [116ae351a9e2211569db47755da4c13f],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Local\Temp\is-N25KA.tmp\583.exe, En quarantaine, [255643f1eaa14beb54f05e5eb74acb35],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Local\Temp\is-N25KA.tmp\607.exe, En quarantaine, [2457df55f09bfc3a2c18fdbfb34ede22],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Local\Temp\is-N25KA.tmp\643.exe, En quarantaine, [7704072d0685cc6a31139c20e41dd12f],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Local\Temp\is-N25KA.tmp\package_airwebbar_installer_multilang.exe, En quarantaine, [5a21ec48276422145be9922a49b8669a],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Local\Temp\is-N25KA.tmp\package_bubbledock_installer_multilang.exe, En quarantaine, [7605290bcbc06ccaa1a3f2caa16037c9],
PUP.Optional.EoRezo, C:\Users\Andy\AppData\Local\Temp\is-N25KA.tmp\package_bubblefoot_installer_multilang.exe, En quarantaine, [d8a3fc38cac1b28447fdae0e728fee12],
PUP.Optional.Tuto4PC, C:\Users\Andy\AppData\Local\Temp\is-SDK81.tmp\gentlemjmp_ieu.exe, En quarantaine, [1e5d2f05dab1989ef18cb1fd848126da],
PUP.Optional.APNToolBar, C:\Users\Andy\Documents\Setup-SopCast-4.0.0-2015-8-21.exe, En quarantaine, [98e3092bd6b5bf7786f59426f70a1ae6],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité