cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 04/12/2015
Heure de l'analyse: 21:54
Fichier journal: rapport2.txt
Administrateur: Oui

Version: 2.2.0.1024
Base de données de programmes malveillants: v2015.12.04.05
Base de données de rootkits: v2015.11.26.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 8
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Perdy

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 320502
Temps écoulé: 1 h, 50 min, 30 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 7
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}, En quarantaine, [24f1752c53381a1c14bda4b4c63cdb25],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}, En quarantaine, [24f1752c53381a1c14bda4b4c63cdb25],
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32LDR , En quarantaine, [82931190f49738fe4ea0d2de5ca706fa],
PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, En quarantaine, [13029c055b30f640e76ecf2560a3fc04],
PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, En quarantaine, [b1647a278407e353c591fafa897a28d8],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, En quarantaine, [1bfa48598cff0a2cdef0661eed16b050],
PUP.Optional.DriverUpdate, HKLM\SOFTWARE\WOW6432NODE\SLIMWARE UTILITIES INC\DriverUpdate, En quarantaine, [70a59b0698f35dd9855584033ac9b947],

Valeurs du Registre: 7
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\chrome.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130760849775103700, En quarantaine, [35e0e1c06e1d171f8e5fa50b51b2e917]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\explorer.xxx|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130760849775103700, En quarantaine, [f322eab7088356e02dc0149c699ad42c]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\firefox.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130760849775103700, En quarantaine, [a273722fd1ba77bf1ecf9d13df245ea2]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\iexplore.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130760849775103700, En quarantaine, [0e0768397318bf772dc0ebc5f310a15f]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\software_removal_tool.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130760849775103700, En quarantaine, [5db8c5dc6f1c76c0509d862a4fb4718f]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\software_reporter_tool.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130760849775103700, En quarantaine, [b065f6abdcafb68048a590209370ef11]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32Ldr |{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130760849775103700, En quarantaine, [82931190f49738fe4ea0d2de5ca706fa]

Données du Registre: 0
(Aucun élément malveillant détecté)

Dossiers: 1
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],

Fichiers: 22
PUP.Optional.Nova, C:\Users\Perdy\AppData\Roaming\ZHP\Quarantine\536e745b-dc6f-4a59-b9d3-92c172aa0f8d\6da72385-bf00-4853-a73b-5c84e51dd615.dll, En quarantaine, [60b5178a5a31a6900d1cf13d55acbd43],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Roaming\ZHP\Quarantine\536e745b-dc6f-4a59-b9d3-92c172aa0f8d\d06e12c4-11bb-492f-9d40-6b0ee49ecaf5.dll, En quarantaine, [c64f1f829eedd660029486a1d42db749],
PUP.Optional.ClickCaption, C:\Users\Perdy\AppData\Roaming\ZHP\Quarantine\ClickCaption_1.10.0.2\Uninstall.exe, En quarantaine, [6da8920fd1bafb3bee8a4bdff1108080],
PUP.Optional.ClickCaption, C:\Users\Perdy\AppData\Roaming\ZHP\Quarantine\ClickCaption_1.10.0.2\IE\ClickCaptionClientIE.dll, En quarantaine, [2ce9cdd48b00191df385ba70dc256c94],
PUP.Optional.ClickCaption, C:\Users\Perdy\AppData\Roaming\ZHP\Quarantine\ClickCaption_1.10.0.2\Service\ccsvc.exe, En quarantaine, [29ec1d8456353cfac6b2a189fd0403fd],
PUP.Optional.CrossRider, C:\Program Files (x86)\AMD AVT\536e745b-dc6f-4a59-b9d3-92c172aa0f8d.dll, En quarantaine, [f223bde40b802610bbdb4ed938c902fe],
PUP.Optional.Nova, C:\Program Files (x86)\AMD AVT\f0dd2ea7-f8a6-4621-b5b1-ceea51e5f97d.dll, En quarantaine, [22f3d3ce0e7d9c9a0f1a3cf2c83929d7],
PUP.Optional.Vittalia, C:\Users\Perdy\Downloads\installer_microsoft_excel_French (1).exe, En quarantaine, [5eb7841d55360a2c22b7b2f68a766b95],
PUP.Optional.Vittalia, C:\Users\Perdy\Downloads\installer_microsoft_excel_French (2).exe, En quarantaine, [36df90116a21c3738356f3b58d738e72],
PUP.Optional.Vittalia, C:\Users\Perdy\Downloads\installer_microsoft_excel_French (3).exe, En quarantaine, [ed286e33dfacd95d68713177ad53847c],
PUP.Optional.Vittalia, C:\Users\Perdy\Downloads\installer_microsoft_excel_French (4).exe, En quarantaine, [e62fd3ceb2d9340225b42d7b8f7126da],
PUP.Optional.Vittalia, C:\Users\Perdy\Downloads\installer_microsoft_excel_French (5).exe, En quarantaine, [56bf1d84157635018356575129d7b14f],
PUP.Optional.Vittalia, C:\Users\Perdy\Downloads\installer_microsoft_excel_French (6).exe, En quarantaine, [878e1e83008bf343cf0a159335cb946c],
PUP.Optional.APNToolBar, C:\Users\Perdy\AppData\Local\AviraResume\offercast_avirav7_.exe, En quarantaine, [ed28e1c05239f442644137f2c938827e],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi\000003.ldb, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi\000006.ldb, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi\000007.log, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi\CURRENT, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi\LOCK, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi\LOG, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi\LOG.old, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],
PUP.Optional.CrossRider, C:\Users\Perdy\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkadffjmnaiokkdncgdlecdegajoiemi\MANIFEST-000001, En quarantaine, [2de85b465e2d3501ec61acee53af60a0],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité