cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 11/09/2015
Heure de l'analyse: 22:43
Fichier journal: malwarebytes.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.09.11.06
Base de données de rootkits: v2015.08.16.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: titi

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 359250
Temps écoulé: 19 min, 16 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 41
PUP.Optional.SoftwareUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SOFTWAREUPDATE.EXE, En quarantaine, [178bab832a61f93d1dce6d51946d22de],
PUP.Optional.SoftwareUpdate, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SOFTWAREUPDATE.EXE, En quarantaine, [178bab832a61f93d1dce6d51946d22de],
PUP.Optional.ModGoog, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GLOBALUPDATE.EXE, En quarantaine, [534fe34bc8c31a1cba8cff77ab56cd33],
PUP.Optional.ModGoog, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GLOBALUPDATE.EXE, En quarantaine, [534fe34bc8c31a1cba8cff77ab56cd33],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService, En quarantaine, [e8bac6686e1dfe38292aeea7fa0a8d73],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\globalUpdateUpdate.Update3COMClassService.1.0, En quarantaine, [a101df4f0a819a9ce86b7025b84c8878],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\APPID\GLOBALUPDATE.EXE, En quarantaine, [3c6651dd2962270fdd745a3b60a4de22],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\GLOBALUPDATE.EXE, En quarantaine, [742ef43a5c2f59dd54fdefa6d0346898],
PUP.Optional.CrossRider, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\25257, En quarantaine, [148ebe705c2f9e98a29a35572ada3dc3],
PUP.Optional.AmiUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\amiupdaterExd, Supprimer au redémarrage, [683ab07eaae1f640c3431767c3416f91],
PUP.Optional.AmiUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\amiupdaterExi, Supprimer au redémarrage, [911106287516cc6a16f0a1ddca3a7090],
PUP.Optional.BoBrowser, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\bobrowser.exe, En quarantaine, [228067c7acdfe0567f88e49db450758b],
Adware.Boxore, HKLM\SOFTWARE\WOW6432NODE\Boxore, En quarantaine, [3c66240aeba0b482a157978833d1dd23],
PUP.Optional.FFPluginHp, HKLM\SOFTWARE\WOW6432NODE\FFPluginHp, En quarantaine, [a5fdf9357f0c71c55d912b667e86b44c],
PUP.Optional.ICinema, HKLM\SOFTWARE\WOW6432NODE\I - Cinema, En quarantaine, [01a1f737f99237ff119ce1b7768e27d9],
PUP.Optional.MBot, HKLM\SOFTWARE\WOW6432NODE\MYBESTOFFERSTODAY, En quarantaine, [1a88ee40e8a32f07f33ac9d6b74d847c],
PUP.Optional.OurSurfing.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\oursurfingSoftware, En quarantaine, [435fb9759cef1d19c5476cbeda296d93],
PUP.Optional.WdsManPro, HKLM\SOFTWARE\WOW6432NODE\WdsManPro, En quarantaine, [465c48e6b9d2ca6cb5a99c2cb2523ec2],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, En quarantaine, [a9f98ba36a21fe3871c2751733d133cd],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\WOW6432NODE\CLASSES\globalUpdateUpdate.Update3COMClassService, En quarantaine, [a6fc2d01335865d19db6eaaba65e9b65],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\WOW6432NODE\CLASSES\globalUpdateUpdate.Update3COMClassService.1.0, En quarantaine, [3072cd61a5e655e18ec5365f25df0cf4],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\GLOBALUPDATE.EXE, En quarantaine, [732f07273358c86e5100efa6b054b848],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE\Clients, En quarantaine, [732f1717503b32046fe64352a0648a76],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\25257, En quarantaine, [c8da042adcaf75c18dafd0bcf0149967],
PUP.Optional.BoBrowser, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\MEDIAPLAYER\SHIMINCLUSIONLIST\bobrowser.exe, En quarantaine, [e1c1d15d810a7abc20e51071d62e16ea],
PUP.Optional.BoBrowser, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\bobrowser.exe, En quarantaine, [534f2b03adde6fc759ae9de40afadc24],
PUP.Optional.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\TUTORIALS, En quarantaine, [277b131b1a711a1cd2636853eb19c53b],
PUP.Optional.CrossRider, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, En quarantaine, [0e94ee40018a3afc539bf496ae56d927],
PUP.Optional.Boxore, HKU\S-1-5-18\SOFTWARE\BOXORE, En quarantaine, [fca6220cee9d39fd9ed3fd7cb94b17e9],
PUP.Optional.BoBrowser, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\BoBrowser, En quarantaine, [f6ac6ec0fe8d181e30d3a6dba0643ec2],
PUP.Optional.ICinema, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\I - Cinema, En quarantaine, [158db876206b9b9baa01f8a009fb7789],
PUP.Optional.Nosibay, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\Nosibay, En quarantaine, [89192509f79489ad290e1e883bc9c33d],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\TutoTag, En quarantaine, [713131fdc3c866d0eb465d5ece365fa1],
PUP.Optional.CrossRider, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, En quarantaine, [475b012d1477c86e0ee0c7c33ec66799],
PUP.Optional.Boxore, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\BOXORE, En quarantaine, [792978b68ffcbe78cda4b7c27e86857b],
PUP.Optional.GlobalUpdate, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY, En quarantaine, [346eff2fc7c4ac8a193bdabb20e45ea2],
PUP.Optional.CrossRider, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\25257, En quarantaine, [f5adba747d0e42f49f64107bc242966a],
PUP.Optional.CrossRider, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\iCinema, En quarantaine, [a9f9a38b424994a26817fe8d39cb728e],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\TUTORIALS\updatetutorialeshp, En quarantaine, [9f033bf3c9c2ee481c12318a93718d73],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\TUTORIALS\updatetutorialshp, En quarantaine, [c4debc72d6b5fb3b5ed1388356ae20e0],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\TUTORIALS\updv, En quarantaine, [802277b7711a8aac31ff69527a8a20e0],

Valeurs du registre: 7
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, En quarantaine, [3c6651dd2962270fdd745a3b60a4de22]
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, En quarantaine, [742ef43a5c2f59dd54fdefa6d0346898]
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\GLOBALUPDATE.EXE|AppID, {3278F5CF-48F3-4253-A6BB-004CE84AF492}, En quarantaine, [732f07273358c86e5100efa6b054b848]
PUP.Optional.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\TUTORIALS|HostGUID, A107033A-85D8-4D11-9082-F29472BC5975, En quarantaine, [277b131b1a711a1cd2636853eb19c53b]
PUP.Optional.Boxore, HKU\S-1-5-18\SOFTWARE\BOXORE|id, {11D1B57B-6AC9-42C7-82EB-AA354EE1B0A9}, En quarantaine, [fca6220cee9d39fd9ed3fd7cb94b17e9]
PUP.Optional.Boxore, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\BOXORE|id, {040D1CF2-F926-4EBC-97E9-E5552981C887}, En quarantaine, [792978b68ffcbe78cda4b7c27e86857b]
PUP.Optional.GlobalUpdate, HKU\S-1-5-21-1071979386-968605658-4005628278-1000\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY|source, IE, En quarantaine, [346eff2fc7c4ac8a193bdabb20e45ea2]

Données du registre: 0
(Aucun élément malveillant détecté)

Dossiers: 4
PUP.Optional.GamesDesktop, C:\Users\titi\AppData\Local\gmsd_us_005010074, En quarantaine, [bfe382ac42493cfa673c739c05fe2bd5],
PUP.Optional.GamesDesktop, C:\Users\titi\AppData\Local\gmsd_us_005010074\gmsd_us_005010074, En quarantaine, [bfe382ac42493cfa673c739c05fe2bd5],
PUP.Optional.GamesDesktop, C:\Users\titi\AppData\Local\gmsd_us_005010074\gmsd_us_005010074\1.20, En quarantaine, [bfe382ac42493cfa673c739c05fe2bd5],
PUP.Optional.GlobalUpdate, C:\Users\titi\AppData\Local\Temp\comh.72350, En quarantaine, [485a43eb13780a2cd0459779ab58e719],

Fichiers: 48
PUP.Optional.BubbleDock, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\63100.Bubble_Dock.BBD023.no.exe, En quarantaine, [ecb675b92566e74fdb545c66ff02b050],
PUP.Optional.Clara, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\bobrowser.exe, En quarantaine, [7929909ed7b4e6509ba7d4caa65fa25e],
PUP.Optional.Boxore, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\boxore.exe, En quarantaine, [c6dc022cd6b5b87e1c82644eca370af6],
PUP.Optional.ICinema, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\c1bf95b7-9d21-4302-bbde-c1ab4ab9ccf5-10.exe, En quarantaine, [8c16e44aa3e872c47ef2dbe051b0827e],
PUP.Optional.Clara, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\ClaraUpdater.exe, En quarantaine, [a1011717711a1e18172bfea09d68fe02],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\npglobalupdateUpdate4.dll, En quarantaine, [544e30fe018a003669ddfa7c3cc5cd33],
PUP.Optional.SoftwareUpdate, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\npSoftwareUpdate3.dll, En quarantaine, [554d141a652670c6a942c9f5748daa56],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\psmachine.dll, En quarantaine, [0d959f8ffd8e67cfa1a51d5944bdb44c],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\psuser.dll, En quarantaine, [5f43b17da5e66bcbd0766b0b6f926799],
PUP.Optional.SoftwareUpdate, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\SoftwareUpdate.exe, En quarantaine, [178bab832a61f93d1dce6d51946d22de],
PUP.Optional.ICinema, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\temp.exe, En quarantaine, [198970be99f2e45274fc2d8e3cc525db],
PUP.Optional.WProtectManager, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\WdsManPro.exe, En quarantaine, [c6dc64ca3853d6605f11d9c68e77f50b],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\globalupdate.exe, En quarantaine, [534fe34bc8c31a1cba8cff77ab56cd33],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\globalupdateBroker.exe, En quarantaine, [426015197a11e84e82c4690d659cc63a],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\globalupdateCrashHandler.exe, En quarantaine, [e9b90f1f3c4f78be2422e88edd240bf5],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\globalupdateOnDemand.exe, En quarantaine, [732ff43ac2c92f0789bd35411fe2c040],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\goopdate.dll, En quarantaine, [772b9c92d1bacd6959edf77f40c15ca4],
PUP.Optional.ModGoog, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\goopdateres_en.dll, En quarantaine, [346eaf7fbccf47ef4600294d748de41c],
PUP.Optional.Nosibay, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\Bubble Dock BSetup.exe, En quarantaine, [fca6ce6054370234f0f9a5f95da87987],
PUP.Optional.ICinema, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\c1bf95b7-9d21-4302-bbde-c1ab4ab9ccf5-1-6.exe, En quarantaine, [772b35f99bf088ae620e33883fc29070],
PUP.Optional.Clara, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\BoBrowser.DIR\Application\bobrowser.exe, En quarantaine, [00a28ea0cbc06cca4af808966e9724dc],
PUP.Optional.Clara, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\BoBrowser.DIR\Application\chrome_elf.dll, En quarantaine, [3c668ba3018a999dfc46bfdf16efe21e],
PUP.Optional.Clara, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\BoBrowser.DIR\Application\crash_service.exe, En quarantaine, [5e441c12c6c56accda68e6b816eff907],
PUP.Optional.Nosibay, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\Bubble Dock Uninstall.exe, En quarantaine, [51512905d9b2dc5aaf3acfcfa65fd030],
PUP.Optional.Nosibay, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\Bubble Dock.exe, En quarantaine, [9d05eb43d9b27abcdb0e97079b6a6c94],
PUP.Optional.Nosibay, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\Nosibay\Bubble Dock\LBubble Dock.exe, En quarantaine, [d0d241edcfbcae8808e13d6175905fa1],
PUP.Optional.ICinema, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\I - Cinema\utils.exe, En quarantaine, [356d39f5bfcca88e7bf5e8d348b9718f],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\mbot_fr_014010084\mbot_fr_014010084.exe, En quarantaine, [e6bca48a3b5044f223ba099427def50b],
PUP.Optional.Tuto4PC, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\mbot_fr_014010084\predm.exe, En quarantaine, [f0b2a58936553ef8ea98e0bde91c43bd],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Roaming\ZHP\Quarantine\mbot_fr_014010084\mbot_fr_014010084\upmbot_fr_014010084.exe, En quarantaine, [f9a96fbf7b1061d5914c5746669f9769],
PUP.Optional.Amonetize, C:\Users\titi\AppData\Local\Temp\Public+N%B0635++11+au+17+Septembre+2015.pdf__15047_i1640641161_il2570168.exe, En quarantaine, [1b872c02c1caef472c19d902827f16ea],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\380.exe, En quarantaine, [2d75b27cd3b80c2a5720e6d4857c916f],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\382.exe, En quarantaine, [b4ee72bc1d6e47efb2c56b4f4eb30cf4],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\420.exe, En quarantaine, [3c66d658800be94daacdf7c37d84e917],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\473.exe, En quarantaine, [7230131b06851f17b3c49822b8492cd4],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\491.exe, En quarantaine, [aef41a14206bcc6ad7a03783c23f6e92],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\583.exe, En quarantaine, [6939fa348b00e5515f181b9f02ffb24e],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\623.exe, En quarantaine, [cbd771bd97f47bbb3641ab0f2ed3e11f],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\package_airwebbar_installer_multilang.exe, En quarantaine, [5d45919d434844f221563783926fee12],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\package_bubbledock_installer_multilang.exe, En quarantaine, [a6fcee4066258da91463704a09f85ea2],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\package_bubblefoot_installer_multilang.exe, En quarantaine, [1c86c16d2962c571185f8a309e636c94],
PUP.Optional.EoRezo, C:\Users\titi\AppData\Local\Temp\is-FKMQD.tmp\package_BubbleSound_installer_multilang.exe, En quarantaine, [445eb777dab19a9c354219a16e93e61a],
PUP.Optional.Tuto4PC, C:\Users\titi\AppData\Local\Temp\is-QB30V.tmp\gentlemjmp_ieu.exe, En quarantaine, [f9a9949a85061620b5cdd5c85baa18e8],
PUP.Optional.Boxore, C:\Windows\Installer\397a5b.msi, En quarantaine, [376b50de91fa8aac4658446e5aa76d93],
PUP.Optional.Clara, C:\claraInstaller.txt, En quarantaine, [1a881b13315ada5caa18ceb728dc9d63],
PUP.Optional.GamesDesktop, C:\Users\titi\AppData\Local\gmsd_us_005010074\gmsd_us_005010074\1.20\cnf.cyl, En quarantaine, [bfe382ac42493cfa673c739c05fe2bd5],
PUP.Optional.GlobalUpdate, C:\Users\titi\AppData\Local\Temp\comh.72350\globalupdateHelper.msi, En quarantaine, [485a43eb13780a2cd0459779ab58e719],
PUP.Optional.QuickStart, C:\Users\titi\AppData\Roaming\Mozilla\Firefox\Profiles\03u5x5rj.default-1436002402312\prefs.js, Bon : (), Mauvais : (user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");), Remplacé,[089a1e10e3a8c274671d6f321bea837d]

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité