cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 04/10/2015
Heure de l'analyse: 12:13
Fichier journal: malwarebytesantimalware-rapport.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.10.04.02
Base de données de rootkits: v2015.10.02.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Loly

Type d'analyse: Analyse personnalisée
Résultat: Terminé
Objets analysés: 612314
Temps écoulé: 2 h, 40 min, 26 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 2
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32LDR , , [e70b76dc0883fc3ac22a1db319eb32ce],
PUP.Optional.Trovi, HKU\S-1-5-21-3309792837-1292512679-1278930556-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, , [ef035df5117acf67a93f4888a064cb35],

Valeurs du registre: 10
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\chrome.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130735999046006638, , [876b183a5d2e38fefbf011bf64a01ae6]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\explorer.xxx|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130735999046006638, , [d81a500294f795a141aa1ab6ba4af50b]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\firefox.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130735999046006638, , [8a6853ff46458bab08e3b719b64e45bb]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\iexplore.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130735999046006638, , [36bc85cdabe0be7842a9339d59abcc34]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\software_removal_tool.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130735999046006638, , [856d064c7a11b680effc6070b64ed62a]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\software_reporter_tool.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130735999046006638, , [b33fcf83672450e6d2196e629272a35d]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32Ldr |{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130735999046006638, , [e70b76dc0883fc3ac22a1db319eb32ce]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS, Crossbrowse, , [668cb39f8dfe06303c2a544bdc28a55b]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|StubPath, "C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.4.2171.95\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level, , [fbf793bfe3a8bf77cd99bfe0c4400000]
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS|Localized Name, Crossbrowse, , [f200fa580487b87e96d0dac5c53fa759]

Données du registre: 0
(Aucun élément malveillant détecté)

Dossiers: 2
PUP.Optional.PullUpdate, C:\ProgramData\bKATnJiPC\dat, , [e40e1b3709827bbb61a7f3cf37ce03fd],
PUP.Optional.PullUpdate, C:\ProgramData\bKATnJiPC, , [e40e1b3709827bbb61a7f3cf37ce03fd],

Fichiers: 14
Adware.PullUpdate, C:\ProgramData\bKATnJiPC\dat\hVnqgwIzxjE.dll, , [836fe36f2962cd6978b2bff381809868],
PUP.Optional.CrossBrowse, C:\Users\Loly\AppData\Local\Temp\9412.exe, , [ca28e66cbbd0da5cd694f9c4eb1622de],
PUP.Optional.OptimizerPro, C:\Users\Loly\AppData\Roaming\ZHP\Quarantine\optprosetup.exe, , [ad4556fc414a3df9908dedd4f40d8e72],
PUP.Optional.WinYahoo, C:\Users\Loly\AppData\LocalLow\Microsoft\Internet Explorer\Services\WinYahoo.ico, , [dd151240226961d57b4440488183dc24],
PUP.Optional.PricePeep, C:\Users\Loly\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, , [0ce651016e1d0b2b9783b0115aaacb35],
PUP.Optional.PricePeep, C:\Users\Loly\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal, , [955db39f305ba4923ddd863be81c817f],
PUP.Optional.ReMarkable, C:\Users\Loly\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, , [579b2131cbc045f1b18bbd06cb39f20e],
PUP.Optional.ReMarkable, C:\Users\Loly\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, , [658ddb773d4ee551ee4ed5eeb450de22],
PUP.Optional.PullUpdate, C:\ProgramData\bKATnJiPC\dat\dnsqOsMQjSq.exe.config, , [e40e1b3709827bbb61a7f3cf37ce03fd],
PUP.Optional.PullUpdate, C:\ProgramData\bKATnJiPC\dat\hVnqgwIzxjE.dll, , [e40e1b3709827bbb61a7f3cf37ce03fd],
PUP.Optional.PullUpdate, C:\ProgramData\bKATnJiPC\dat\nJWZVKBtRbj.exe.config, , [e40e1b3709827bbb61a7f3cf37ce03fd],
PUP.Optional.PullUpdate, C:\ProgramData\bKATnJiPC\info.dat, , [e40e1b3709827bbb61a7f3cf37ce03fd],
PUP.Optional.PullUpdate, C:\ProgramData\bKATnJiPC\QheLhq.dat, , [e40e1b3709827bbb61a7f3cf37ce03fd],
PUP.Optional.PullUpdate, C:\ProgramData\bKATnJiPC\QheLhq.exe.config, , [e40e1b3709827bbb61a7f3cf37ce03fd],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité