cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 08-12-15
Heure de l'analyse: 00:33
Fichier journal: Mlw.txt
Administrateur: Oui

Version: 2.2.0.1024
Base de données de programmes malveillants: v2015.12.07.06
Base de données de rootkits: v2015.12.07.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: moi

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 344731
Temps écoulé: 44 min, 18 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 4
PUP.Optional.BrowserWeb, HKLM\SOFTWARE\MICROSOFT\TRACING\BrowserWeb_RASMANCS, En quarantaine, [09399d0518736fc7c6d18e5ec83b9e62],
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32LDR , En quarantaine, [e85a5e445239270fc27b5d571ae9ee12],
PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, En quarantaine, [87bb8919c7c4ec4a712e1dda798a38c8],
PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, En quarantaine, [d56d11915536f93d326ef1064bb8ff01],

Valeurs du Registre: 7
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\chrome.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130651868145055554, En quarantaine, [fa48ccd6672473c3e359e1d3de25f30d]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\explorer.xxx|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130651868145055554, En quarantaine, [f74b237f5437ef478bb1298b45be3bc5]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\firefox.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130651868145055554, En quarantaine, [1d25841e1b7084b2c4781a9ab84b936d]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\iexplore.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130651868145055554, En quarantaine, [ec563b6718733600f646773d3ac9639d]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\software_removal_tool.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130651868145055554, En quarantaine, [1b27336f7b10eb4b41fb31833fc4e21e]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\software_reporter_tool.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130651868145055554, En quarantaine, [fd450a98cfbc9d995fdd8430ba498977]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\VC32Ldr |{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130651868145055554, En quarantaine, [e85a5e445239270fc27b5d571ae9ee12]

Données du Registre: 0
(Aucun élément malveillant détecté)

Dossiers: 5
PUP.Optional.WindowsProtectManager, C:\ProgramData\Tmp0x0x\log, En quarantaine, [e161bde5692251e5537a1f804fb3b44c],
PUP.Optional.WindowsProtectManager, C:\ProgramData\Tmp0x0x, En quarantaine, [e161bde5692251e5537a1f804fb3b44c],
PUP.Optional.WindowsProtectManager, C:\ProgramData\Tmp0x0x\update, En quarantaine, [e161bde5692251e5537a1f804fb3b44c],
PUP.Optional.ExTutil, C:\Users\jason\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B, En quarantaine, [87bb0b972b606bcb68028bf6a75b7d83],
PUP.Optional.Managera, C:\Users\jason\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42, En quarantaine, [a39fa6fce5a6d3638d54f4934ab8916f],

Fichiers: 46
PUP.Optional.PayByAds, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\dsrsetup.exe, En quarantaine, [4df5287a96f59d997d5ad05dec14a55b],
PUP.Optional.Conduit, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\embededstub.exe, En quarantaine, [fe444b57e0ab4de978beff2dbb452cd4],
PUP.Optional.PayByAds, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\res.dll, En quarantaine, [1a28bfe3d1bab185693f395b83818e72],
PUP.Optional.SearchProtect.AppFlsh, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\sp-downloader[1].exe, En quarantaine, [340e7032bad1d85e7c8fe1c8847dfc04],
PUP.Optional.SearchProtect.AppFlsh, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\SPSetup[1].exe, En quarantaine, [ac962a78830850e6cc3e0e9baa57eb15],
PUP.Optional.SwiftSearch, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\SwiftSearchAutoUpdateClient.exe, En quarantaine, [dc66980accbf5adc575f7a216b9957a9],
PUP.Optional.SwiftSearch, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\swsedrvr_vt_1_10_0_25.sys, En quarantaine, [4ff3d7cb513a59dd13a3d5c61ee615eb],
PUP.Optional.SwiftSearch, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\swsedrvr_vw_1_10_0_25.sys, En quarantaine, [4df58a18f695da5cf0c6c8d36f95dd23],
PUP.Optional.SearchProtect.AppFlsh, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\VC32Loader.dll, En quarantaine, [dd65742e6427979f5bafa306de2337c9],
PUP.Optional.BrowseFox, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\{eb4e7e90-fd6c-4834-ad52-01d7f03a916f}Gw64.sys, En quarantaine, [95ad5b47bad194a20ecdf1a757ada25e],
PUP.Optional.MixiVideoPlayer, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\mixvideoplayersetup.exe, En quarantaine, [1929f0b21d6e49ed8e0f8f26936e23dd],
PUP.Optional.MixiVideoPlayer, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\MixVideoPlayerSetup[1].exe, En quarantaine, [fd45d4ce7c0fc76f79241d9834cd9d63],
PUP.Optional.Conduit, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\OrbiterInstaller[1].exe, En quarantaine, [c280356d0d7e1b1bf5347d43c43c01ff],
PUP.Optional.SwiftSearch, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\SwiftSearch_1.10.0.25\Uninstall.exe, En quarantaine, [d9696e34216a7cba2d89d9d454ad5ea2],
PUP.Optional.SwiftSearch, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\SwiftSearch_1.10.0.25\Service\swsesrvc.exe, En quarantaine, [370b1b875f2c33033482c9d218ec10f0],
PUP.Optional.MultiPlug, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\uNNisales\dusnRtqhQKQ6Bk.dll, En quarantaine, [281a831f7615b383a0b6c85fa55c35cb],
PUP.Optional.MultiPlug, C:\Users\jason\AppData\Roaming\ZHP\Quarantine\uNNisales\dusnRtqhQKQ6Bk.x64.dll, En quarantaine, [330f554d642710263226f82f9c65e818],
PUP.Optional.MultiPlug, C:\Program Files (x86)\OpoToOn\2JjjBUJWL885m5.dll, En quarantaine, [75cd465c1a710f27e96d8c9bb54c7f81],
Trojan.Agent, C:\Program Files (x86)\OpoToOn\2JjjBUJWL885m5.exe, En quarantaine, [1032158d82098aac401a22b6a9577789],
PUP.Optional.MultiPlug, C:\Program Files (x86)\OpoToOn\2JjjBUJWL885m5.x64.dll, En quarantaine, [73cfd5cd69223006fe5a11160df4d030],
PUP.Optional.SoftPulse, C:\$Recycle.Bin\S-1-5-21-2566753931-117062762-439125391-1002\$RHS78GG.exe, En quarantaine, [b38f2280d4b75cda19e0cf81ef124ab6],
Trojan.BitCoinMiner, C:\$Recycle.Bin\S-1-5-21-2566753931-117062762-439125391-1002\$RBDYJZP.rar, En quarantaine, [e35f7f238308092d894970af798b3ec2],
PUP.Optional.OutBrowse, C:\$Recycle.Bin\S-1-5-21-2566753931-117062762-439125391-1002\$R5CIAP3.exe, En quarantaine, [3e04c8da028951e5b9ca8f1ce71aca36],
PUP.Optional.Somoto, C:\$Recycle.Bin\S-1-5-21-2566753931-117062762-439125391-1002\$RZ0TYA3.exe, En quarantaine, [92b06e34deadae8879321982c53f7789],
PUP.Optional.BrowseFox, C:\Users\jason\AppData\Local\Temp\SmarterPowerUntemp.exe, En quarantaine, [370b168c8506072f93eef1bb788916ea],
PUP.Optional.MyPCBackup, C:\Users\jason\AppData\Local\Temp\CloudBackup8021.exe, En quarantaine, [81c1f3af0883fe387c56a78781803bc5],
PUP.Optional.Conduit, C:\Users\jason\AppData\Local\Temp\verifier.exe, En quarantaine, [2022a8fa018ac175fd2481abd62a847c],
PUP.Optional.Conduit, C:\Users\jason\AppData\Local\Temp\dlLogic.exe, En quarantaine, [80c2d0d21c6fe056c86ee844fc04837d],
PUP.Optional.Conduit, C:\Users\jason\AppData\Local\Temp\dltr.exe, En quarantaine, [7dc5a9f9ef9c56e047da1b11a65a8878],
PUP.Optional.Conduit, C:\Users\jason\AppData\Local\Temp\GCVerifier.dll, En quarantaine, [af93aef4dfacdb5b42f6909c37c938c8],
PUP.Optional.BrowseFox, C:\Users\jason\AppData\Local\Temp\0973b233-ad48-434f-acf0-f0c34cfa2298\primarycolorsetup.exe, En quarantaine, [69d9e1c16625db5b486e5556738e6c94],
PUP.Optional.SwiftSearch, C:\Users\jason\AppData\Local\Temp\is-7L0FM.tmp\473.exe, En quarantaine, [182a851d9fec1f172c8abdf04bb67d83],
PUP.Optional.Tuto4PC, C:\Users\jason\AppData\Local\Temp\is-M522S.tmp\465.exe, En quarantaine, [f949673bd0bb3402605fded9fa073dc3],
PUP.Optional.SwiftSearch, C:\Users\jason\AppData\Local\Temp\is-V54T2.tmp\473.exe, En quarantaine, [083a3c66cdbe0f274571357837cae11f],
PUP.Optional.EZDownloader, C:\Users\jason\AppData\Local\Temp\C34757057116\temp\EzDownloader_setup.exe, En quarantaine, [0b374b571f6ca195e9e1bd6f30d0f60a],
PUP.Optional.EZDownloader, C:\Users\jason\AppData\Local\Temp\EfB9292\temp\EzDownloader_setup.exe, En quarantaine, [0c36178b91fae94dfcce33f9e61a8080],
PUP.Optional.MyPCBackup, C:\Users\jason\AppData\Local\Temp\EfB9292\temp\MyPCBackup.exe, En quarantaine, [b092b4ee701be94d0a545348fb09e020],
PUP.Optional.WindowsProtectManager, C:\ProgramData\Tmp0x0x\log\ProtectWindowsManager_2015-12-04[14-00-01-688].log, En quarantaine, [e161bde5692251e5537a1f804fb3b44c],
PUP.Optional.WindowsProtectManager, C:\ProgramData\Tmp0x0x\log\ProtectWindowsManager_2015-12-07[23-58-10-559].log, En quarantaine, [e161bde5692251e5537a1f804fb3b44c],
PUP.Optional.WindowsProtectManager, C:\ProgramData\Tmp0x0x\update\conf, En quarantaine, [e161bde5692251e5537a1f804fb3b44c],
PUP.Optional.ExTutil, C:\Users\jason\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js, En quarantaine, [87bb0b972b606bcb68028bf6a75b7d83],
PUP.Optional.ExTutil, C:\Users\jason\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js, En quarantaine, [87bb0b972b606bcb68028bf6a75b7d83],
PUP.Optional.ExTutil, C:\Users\jason\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json, En quarantaine, [87bb0b972b606bcb68028bf6a75b7d83],
PUP.Optional.Managera, C:\Users\jason\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js, En quarantaine, [a39fa6fce5a6d3638d54f4934ab8916f],
PUP.Optional.Managera, C:\Users\jason\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json, En quarantaine, [a39fa6fce5a6d3638d54f4934ab8916f],
PUP.Optional.YourSearching.ShrtCln, C:\Users\jason\AppData\Local\Temp\HomePage.dat, En quarantaine, [56ec1c866d1ea690c08f2e75669ea957],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité