cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 06/03/2016
Heure de l'analyse: 12:20
Fichier journal: marlwarebyte _diag.txt
Administrateur: Oui

Version: 2.2.0.1024
Base de données de programmes malveillants: v2016.03.06.02
Base de données de rootkits: v2016.02.27.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: ALOLO

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 371878
Temps écoulé: 40 min, 9 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 1
Trojan.Agent.CK, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\TNod, En quarantaine, [e9a16024c4d543f39d9e6fa70500a65a],

Valeurs du Registre: 0
(Aucun élément malveillant détecté)

Données du Registre: 1
PUM.Optional.DisabledSecurityCenter, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SECURITY CENTER|UpdatesDisableNotify, 1, Bon : (0), Mauvais : (1),Remplacé,[4149c4c01089da5c740b5eabcc39ae52]

Dossiers: 4
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\databases\http_charmsavings.com_0, En quarantaine, [6c1ecdb78316f5411ffb659d24df6799],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb, En quarantaine, [8406dca84c4d67cfb764689a6d967d83],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\databases\http_charmsavings.com_0, En quarantaine, [b4d60f753069221439fc8082fb08a65a],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb, En quarantaine, [ee9c4a3a34654de985b1fa0862a13ac6],

Fichiers: 62
Trojan.Agent.CK, C:\Program Files\TNod User & Password Finder\uninst-tnod.exe, En quarantaine, [e9a16024c4d543f39d9e6fa70500a65a],
Trojan.LogixoftKeyLogger, C:\Windows\System32\rvlkl.exe, En quarantaine, [74168afa3d5ce551dba0091c63a25ba5],
PUP.Optional.MyPCBackup, C:\Users\ALOLO\AppData\Local\Temp\BackupSetup.exe, En quarantaine, [d7b33a4abfda7fb78288012adb2a13ed],
PUP.Optional.DigitalMore, C:\Users\ALOLO\AppData\Local\Temp\{70CE13F5-BA56-4F2E-8F98-ED4F2E42DED3}.dll, En quarantaine, [91f9daaafb9ec67024a770e4bb4658a8],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n7386\s7386.exe, En quarantaine, [cebcff8573261323039c64c76b95f907],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n7739\s7739.exe, En quarantaine, [addd6a1a0990d75fccd30427da2656aa],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n887\s887.exe, En quarantaine, [5c2eb7cd8d0cd462821de744c739946c],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n5914\s5914.exe, En quarantaine, [3f4be2a2316868ce455afe2d46bab749],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n4248\s4248.exe, En quarantaine, [107a1e666e2b082e1f80d8537c842ed2],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n5100\s5100.exe, En quarantaine, [ec9e4d37544501356f3052d96d938b75],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n5313\s5313.exe, En quarantaine, [b0da4c38c5d42610d2cda28997698080],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n5457\s5457.exe, En quarantaine, [ec9e6b1968318fa7712e250604fc04fc],
PUP.Optional.BundleInstaller, C:\Users\ALOLO\AppData\Local\Temp\n5491\s5491.exe, En quarantaine, [41497e06970274c26936a18ae11f2bd5],
PUP.Optional.Somoto, C:\Users\ALOLO\Downloads\amel_bent_-_ma_philosophie_downloader-I3FJiyMng.exe, En quarantaine, [83073a4ae1b86bcb882ea1a1837e827e],
PUP.Optional.Somoto, C:\Users\ALOLO\Downloads\amel_bent_-_ma_philosophie_downloader-IerO2fc7l.exe, En quarantaine, [fd8d5e26b3e62f0709ad8eb40df410f0],
PUP.Optional.DLSecure, C:\Users\ALOLO\Downloads\dlsecureTb_1.0.1.5.exe, En quarantaine, [7f0b6a1a3861f64013142a149d64e61a],
PUP.Optional.DLSecure, C:\Users\ALOLO\Downloads\dlsecureTb_1.0.4.1 (1).exe, En quarantaine, [5337840066335adc2ef963db14ede917],
PUP.Optional.DLSecure, C:\Users\ALOLO\Downloads\dlsecureTb_1.0.4.1 (2).exe, En quarantaine, [8505f68e1a7f33031a0d86b8f60b3ec2],
PUP.Optional.DLSecure, C:\Users\ALOLO\Downloads\dlsecureTb_1.0.4.1 (3).exe, En quarantaine, [c1c9e2a2cdcc45f1a0872b13ee137a86],
PUP.Optional.DLSecure, C:\Users\ALOLO\Downloads\dlsecureTb_1.0.4.1.exe, En quarantaine, [a1e90a7a3e5b082e9d8ac37bba47bc44],
PUP.Optional.InstallCore, C:\Users\ALOLO\Downloads\adobe_flash_player.exe, En quarantaine, [8505bdc70e8bb383e88d67fa2ed31ee2],
PUP.Optional.DLSecure, C:\Users\ALOLO\Downloads\Non confirmé 120090.crdownload, En quarantaine, [1971fe867623ad892700ff3fc53cc13f],
PUP.Optional.Yontoo, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage, En quarantaine, [e5a502823762a393ac609081c63d43bd],
PUP.Optional.Yontoo, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal, En quarantaine, [bccea4e05d3c7eb8808c66ab4eb53ac6],
Trojan.Agent, C:\Users\ALOLO\1348039169-ENX501Inst.exe, En quarantaine, [1b6faadacfca9d998c5db0f139ca758b],
PUP.Optional.DigitalMore, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_digitalmore-a.akamaihd.net_0.localstorage, En quarantaine, [8901691bdcbde452b40601f842c1b44c],
PUP.Optional.DigitalMore, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_digitalmore-a.akamaihd.net_0.localstorage-journal, En quarantaine, [7c0edca85e3bcd69ecce25d449baaa56],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_charmsavings.com_0.localstorage, En quarantaine, [1e6cd7ad34655dd9c272ea4aff053ec2],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_charmsavings.com_0.localstorage-journal, En quarantaine, [b8d26123e5b4ae8888ac5dd7cc38e11f],
PUP.Optional.KingTopDeals, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage, En quarantaine, [375343416534a3930139211363a1c23e],
PUP.Optional.KingTopDeals, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal, En quarantaine, [a0eaf98be4b568ce73c78ea6a85c52ae],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_charmsavings.com_0.localstorage, En quarantaine, [31596321029782b485c7390a8480d828],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_charmsavings.com_0.localstorage-journal, En quarantaine, [028853313564bd7926263d06a064f709],
PUP.Optional.AdNetworkPerformance, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_www.adnetworkperformance.com_0.localstorage, En quarantaine, [a8e25a2ac7d2dc5a098ff774b351a060],
PUP.Optional.AdNetworkPerformance, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_www.adnetworkperformance.com_0.localstorage-journal, En quarantaine, [37535d27e4b5dd596038ec7f3aca1ee2],
PUP.Optional.AdNetworkPerformance, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.adnetworkperformance.com_0.localstorage, En quarantaine, [ddad770d4e4b92a43466105b18ec43bd],
PUP.Optional.AdNetworkPerformance, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.adnetworkperformance.com_0.localstorage-journal, En quarantaine, [becc8202b8e15dd9afebfe6d56aed12f],
PUP.Optional.PriceMoon, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage, En quarantaine, [cdbda8dc445554e2309c2e3fe12306fa],
PUP.Optional.PriceMoon, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.pricemoon.co_0.localstorage-journal, En quarantaine, [fd8d176d9bfe3ef87e4e214ccf3510f0],
PUP.Optional.PriceMoon, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_pstatic.pricemoon.co_0.localstorage, En quarantaine, [9febd8ac93066bcb05e0a7caa55f42be],
PUP.Optional.PriceMoon, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\http_pstatic.pricemoon.co_0.localstorage-journal, En quarantaine, [a7e389fb53467cba4a9b40318c78eb15],
PUP.Optional.OnClickAds, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_onclickads.net_0.localstorage, En quarantaine, [e8a27a0a9900e94d825f8fe3b54fbb45],
PUP.Optional.OnClickAds, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_onclickads.net_0.localstorage-journal, En quarantaine, [bfcb384c8d0ce056d20fcea47f85ec14],
PUP.Optional.CrossRider, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, En quarantaine, [6e1c2064990088ae6ec493e0897bc937],
PUP.Optional.CrossRider, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, En quarantaine, [4f3b1371039644f254de7af9ed1713ed],
PUP.Optional.CrossRider, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, En quarantaine, [1575d7addcbdbe78fa3e314211f304fc],
PUP.Optional.CrossRider, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, En quarantaine, [1a70394b96032a0ce454bfb4ca3a4bb5],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\databases\http_charmsavings.com_0\2, En quarantaine, [6c1ecdb78316f5411ffb659d24df6799],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\000003.log, En quarantaine, [8406dca84c4d67cfb764689a6d967d83],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\CURRENT, En quarantaine, [8406dca84c4d67cfb764689a6d967d83],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOCK, En quarantaine, [8406dca84c4d67cfb764689a6d967d83],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOG, En quarantaine, [8406dca84c4d67cfb764689a6d967d83],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOG.old, En quarantaine, [8406dca84c4d67cfb764689a6d967d83],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\MANIFEST-000001, En quarantaine, [8406dca84c4d67cfb764689a6d967d83],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\databases\http_charmsavings.com_0\5, En quarantaine, [b4d60f753069221439fc8082fb08a65a],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\000003.log, En quarantaine, [ee9c4a3a34654de985b1fa0862a13ac6],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\CURRENT, En quarantaine, [ee9c4a3a34654de985b1fa0862a13ac6],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOCK, En quarantaine, [ee9c4a3a34654de985b1fa0862a13ac6],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOG, En quarantaine, [ee9c4a3a34654de985b1fa0862a13ac6],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\LOG.old, En quarantaine, [ee9c4a3a34654de985b1fa0862a13ac6],
PUP.Optional.CharmSavings, C:\Users\ALOLO\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_charmsavings.com_0.indexeddb.leveldb\MANIFEST-000001, En quarantaine, [ee9c4a3a34654de985b1fa0862a13ac6],
PUP.Optional.Yontoo, C:\Users\ALOLO\AppData\Roaming\Opera Software\Opera Stable\Preferences, Bon : (http://Google.com/), Mauvais : (http://searchinterneat-a.akamaihd.net/), Remplacé,[5634d1b3cacfa195e72e3700f60f11ef]

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité