cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 03/03/2016
Heure de l'analyse: 15:01
Fichier journal: mbam.txt
Administrateur: Oui

Version: 2.2.0.1024
Base de données de programmes malveillants: v2016.03.03.03
Base de données de rootkits: v2016.02.27.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 8
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Beretta

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 415007
Temps écoulé: 24 min, 34 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 6
PUP.Optional.CloudScout, HKLM\SOFTWARE\5da059a482fd494db3f252126fbc3d5b, En quarantaine, [530c196a8d0cab8b5e3b5dd10df77987],
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2C2FEAAD-96CC-4345-A1AA-17DACD931ECE}, Supprimer au redémarrage, [194696edd2c7e254660e1d59dc28847c],
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, En quarantaine, [96c9bcc77e1b66d0131e4f0d58ac33cd],
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, En quarantaine, [a1be33503267f3435cd5213bda2a9a66],
PUP.Optional.MultiPlug, HKU\S-1-5-21-1329310717-2582346470-2141987118-1001_Classes\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, En quarantaine, [4e1199ea7623b77fddb23ef37e8620e0],
PUP.Optional.MultiPlug, HKU\S-1-5-21-1329310717-2582346470-2141987118-1001_Classes\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, En quarantaine, [4e1199ea7623b77fddb23ef37e8620e0],

Valeurs du Registre: 3
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2C2FEAAD-96CC-4345-A1AA-17DACD931ECE}|Path, \Microsoft\Windows\Setup\8.1 auto install v2, Supprimer au redémarrage, [194696edd2c7e254660e1d59dc28847c]
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, En quarantaine, [96c9bcc77e1b66d0131e4f0d58ac33cd]
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, En quarantaine, [a1be33503267f3435cd5213bda2a9a66]

Données du Registre: 1
Trojan.DNSChanger.DNSRst, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, 82.163.142.3 95.211.158.130, Bon : (8.8.8.8), Mauvais : (82.163.142.3 95.211.158.130),Remplacé,[411e85fedebb41f5654e986d8382c23e]

Dossiers: 3
PUP.Optional.OneSafePCCleaner, C:\Users\Beretta\Documents\OneSafe PC Cleaner, En quarantaine, [75ea1c672b6ef83e45637e726e94fe02],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\databases\http_charmsavings.com_0, En quarantaine, [adb2dca7f5a4d5610a276f9026dc6e92],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb, En quarantaine, [67f8a0e34851fa3c122020df3ac80ff1],

Fichiers: 44
PUP.Optional.OneSafePCCleaner, C:\Users\Beretta\Downloads\OneSafe_PC_Cleaner_FR.exe, En quarantaine, [fe619be8bedbec4a28fc0c1e39c852ae],
PUP.Optional.OptimumInstaller, C:\Users\Beretta\Downloads\Player-Chrome.exe, En quarantaine, [4d12bcc70f8a989e0d9e221e04fd5ba5],
PUP.Optional.Yontoo, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage, En quarantaine, [1847384b9aff1c1a720c43cac63d56aa],
PUP.Optional.Yontoo, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal, En quarantaine, [8ad5176c9ffad85e354921eca26142be],
PUP.Optional.PricePeep, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, Supprimer au redémarrage, [401fccb72178a294b06416fbb64e1be5],
PUP.Optional.PricePeep, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal, En quarantaine, [114efc87dfba53e354c01100fe06857b],
PUP.Optional.ReMarkable, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Supprimer au redémarrage, [1b44473c6f2a231345deaa694db72ad6],
PUP.Optional.ReMarkable, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Supprimer au redémarrage, [6af588fb118878beaa79c35050b4e818],
PUP.Optional.PastaLeads, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_nps.pastaleads.com_0.localstorage, En quarantaine, [d38cbac98e0ba88e44e068c8bb495da3],
PUP.Optional.PastaLeads, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_nps.pastaleads.com_0.localstorage-journal, En quarantaine, [144b077c28716cca83a1b08024e08a76],
PUP.Optional.PastaLeads, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage, Supprimer au redémarrage, [8dd201823c5dc373b76d48e8f90bed13],
PUP.Optional.PastaLeads, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nps.pastaleads.com_0.localstorage-journal, Supprimer au redémarrage, [401fd3b09900c1759292250b689cc33d],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_charmsavings.com_0.localstorage, En quarantaine, [48175b28d9c03df921a789b64bb94eb2],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_charmsavings.com_0.localstorage-journal, En quarantaine, [3629b4cf049549ed6d5b9da2c4407f81],
PUP.Optional.ShopperDealsWay, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopper.deals-way.com_0.localstorage, En quarantaine, [81de354ea2f79d99a44373f252b241bf],
PUP.Optional.ShopperDealsWay, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shopper.deals-way.com_0.localstorage-journal, En quarantaine, [2c33443ff0a987afc91ecc9946be0af6],
PUP.Optional.BestPriceNinja, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage, En quarantaine, [0c533f44afea82b44e20e7806b99f709],
PUP.Optional.BestPriceNinja, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage-journal, En quarantaine, [de81453e841514225915b6b1f4106898],
PUP.Optional.BestPriceNinja, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage, En quarantaine, [c29df78c8118e74fcf9f6afd2adaa35d],
PUP.Optional.BestPriceNinja, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal, En quarantaine, [cc932d56435674c20c62e87f8084a55b],
PUP.Optional.eShopComp, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.eshopcomp.com_0.localstorage, En quarantaine, [3f20067d7029bf77f75eff6d43c1bc44],
PUP.Optional.eShopComp, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.eshopcomp.com_0.localstorage-journal, En quarantaine, [62fd067d445569cd4b0a2b4135cf27d9],
PUP.Optional.eShopComp, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage, Supprimer au redémarrage, [acb3156ee4b570c6a6af81ebe123c63a],
PUP.Optional.eShopComp, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage-journal, En quarantaine, [7de287fc643567cfabaab8b4a75db050],
PUP.Optional.CrossRider, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, Supprimer au redémarrage, [c49b196a03964cea2a8af67959ab30d0],
PUP.Optional.CrossRider, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, Supprimer au redémarrage, [9dc28bf8ebaebc7a0ca8a8c794703bc5],
PUP.Optional.HDApp, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage, En quarantaine, [451ae99a13867bbb19aa125e0afa39c7],
PUP.Optional.HDApp, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_hdapp1008-a.akamaihd.net_0.localstorage-journal, En quarantaine, [a6b9a6ddfd9c3ff73b88125ee91b2fd1],
PUP.Optional.ReMarkIt.PrxySvrRST, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage, En quarantaine, [411e0d766c2dcb6b7444cca8996be020],
PUP.Optional.ReMarkIt.PrxySvrRST, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal, En quarantaine, [2b34ec97cfca8caa1b9de78d7292fd03],
PUP.Optional.UTop, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_utop.it_0.localstorage, En quarantaine, [c8976b18bfda300687ea9adef410bf41],
PUP.Optional.UTop, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_utop.it_0.localstorage-journal, En quarantaine, [3827d8abedace74f2948d2a67d876b95],
PUP.Optional.UTop, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_utop.it_0.localstorage, Supprimer au redémarrage, [d08ff09346531a1c84ed97e118eca25e],
PUP.Optional.UTop, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_utop.it_0.localstorage-journal, En quarantaine, [5f007d06e1b8f83e3140740417ed54ac],
PUP.Optional.OneSafePCCleaner, C:\Users\Beretta\Documents\OneSafe PC Cleaner\CookieExclusions.txt, En quarantaine, [75ea1c672b6ef83e45637e726e94fe02],
PUP.Optional.OneSafePCCleaner, C:\Users\Beretta\Documents\OneSafe PC Cleaner\img1.png, En quarantaine, [75ea1c672b6ef83e45637e726e94fe02],
PUP.Optional.OneSafePCCleaner, C:\Users\Beretta\Documents\OneSafe PC Cleaner\img2.png, En quarantaine, [75ea1c672b6ef83e45637e726e94fe02],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\databases\http_charmsavings.com_0\1, En quarantaine, [adb2dca7f5a4d5610a276f9026dc6e92],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\000003.log, En quarantaine, [67f8a0e34851fa3c122020df3ac80ff1],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\CURRENT, En quarantaine, [67f8a0e34851fa3c122020df3ac80ff1],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOCK, En quarantaine, [67f8a0e34851fa3c122020df3ac80ff1],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOG, En quarantaine, [67f8a0e34851fa3c122020df3ac80ff1],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOG.old, En quarantaine, [67f8a0e34851fa3c122020df3ac80ff1],
PUP.Optional.CharmSavings, C:\Users\Beretta\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\MANIFEST-000001, En quarantaine, [67f8a0e34851fa3c122020df3ac80ff1],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité