cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 15/06/2016
Heure de l'analyse: 17:37
Fichier journal: Rapport MBAM.txt
Administrateur: Oui

Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.06.15.04
Base de données de rootkits: v2016.05.27.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Brigitte

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 316784
Temps écoulé: 19 min, 56 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 5
PUP.Optional.SearchManager, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pilplloabdedfmialnfchjomjmpjcoej, En quarantaine, [5ae6c9348415cb6bb68b7778ba4934cc],
PUP.Optional.SearchManager, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pilplloabdedfmialnfchjomjmpjcoej, En quarantaine, [d868ce2f1e7b2016aa97fef123e025db],
PUP.Optional.SearchManager, HKU\S-1-5-21-689704982-3664856045-3061780247-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pilplloabdedfmialnfchjomjmpjcoej, En quarantaine, [c77916e7d1c8a09631b49a251de543bd],
PUP.Optional.WinYahoo, HKU\S-1-5-21-689704982-3664856045-3061780247-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BFREPORT, En quarantaine, [bf8124d9c4d5a29400f8a44c9370ad53],
PUP.Optional.SystemHealer, HKU\S-1-5-21-689704982-3664856045-3061780247-500\SOFTWARE\SYSTEM HEALER, En quarantaine, [8ab6d7264f4af73f64f6cc03e81bef11],

Valeurs du Registre: 4
PUP.Optional.WinYahoo, HKU\S-1-5-21-689704982-3664856045-3061780247-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BFREPORT|filename, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\uninstall.exe, En quarantaine, [bf8124d9c4d5a29400f8a44c9370ad53]
PUP.Optional.SystemHealer, HKU\S-1-5-21-689704982-3664856045-3061780247-500\SOFTWARE\SYSTEM HEALER|HomePage, http://systemhealer.com/, En quarantaine, [8ab6d7264f4af73f64f6cc03e81bef11]
PUP.Optional.SystemHealer, HKU\S-1-5-21-689704982-3664856045-3061780247-500\SOFTWARE\SYSTEM HEALER|CartURL, http://gen.securedshopgate.com/?t=01&b=35&tid=351002282-IL-318_49DCEACC-0E0D-4777-A512-A0E0DB25756E&clb=1, En quarantaine, [d46c51ac7b1e3501d0a3b73b73905aa6]
PUP.Optional.SystemHealer, HKU\S-1-5-21-689704982-3664856045-3061780247-500\SOFTWARE\SYSTEM HEALER|SupportPage, http://systemhealer.com/support/#contact, En quarantaine, [46fa1be29108fd39cb8fe2ed956ef50b]

Données du Registre: 0
(Aucun élément malveillant détecté)

Dossiers: 6
PUP.Optional.LenovoBrowserGuard.PrxySvrRST, C:\Users\Administrator\AppData\Local\LenovoBrowserGuard, En quarantaine, [360ab449653496a0a4bf06b42dd554ac],
PUP.Optional.LenovoBrowserGuard.PrxySvrRST, C:\Users\Administrator\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard, En quarantaine, [360ab449653496a0a4bf06b42dd554ac],
PUP.Optional.LenovoBrowserGuard.PrxySvrRST, C:\Users\Administrator\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard\rep, En quarantaine, [360ab449653496a0a4bf06b42dd554ac],
PUP.Optional.LenovoBrowserGuard.PrxySvrRST, C:\Users\Administrator\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard\STG, En quarantaine, [360ab449653496a0a4bf06b42dd554ac],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],

Fichiers: 26
PUP.Optional.SysTweak, C:\Users\Brigitte\AppData\Roaming\ZHP\Quarantine\WinThruster_2016_Setup.exe, En quarantaine, [2a163bc20396e94d6ba8e2db867bef11],
PUP.Optional.InstallCore, C:\Users\Brigitte\Downloads\adobe_flash_player.exe, En quarantaine, [1b2531ccbddcec4a12329f8bf1109a66],
PUP.Optional.InstallCore, C:\Users\Brigitte\Downloads\microsoft-word.exe, En quarantaine, [9fa127d6e1b8092d7c424eeb5aa709f7],
PUP.Optional.LenovoBrowserGuard.PrxySvrRST, C:\Users\Administrator\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard\rep\UserRepository.dat, En quarantaine, [360ab449653496a0a4bf06b42dd554ac],
PUP.Optional.LenovoBrowserGuard.PrxySvrRST, C:\Users\Administrator\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard\STG\Init_DF5C.tmp, En quarantaine, [360ab449653496a0a4bf06b42dd554ac],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\HowToRemove.html, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\chromium-min.jpg, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\control panel-min-min.JPG, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\down.png, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\ff menu.JPG, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\ff search engine-min.png, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\hp-min ff.png, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\hp-min ie.png, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\search engine.gif, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\setup pages.gif, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\sp-min.png, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\start-min.jpg, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\HowToRemove\up.png, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\bapi.dat, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\defi, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\info.dat, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\install.log, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\noco, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\Sqlite3.dll, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\tami, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],
PUP.Optional.WinYahoo, C:\Users\Brigitte\AppData\Local\{5CE16ABD-7849-0605-15D1-23ED31B9DF75}\uninst.dat, En quarantaine, [142cf00d2178c17557fc0a83ca3adb25],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité