Publicité
Publicité
Commentaire : Compte-rendu Malwarebytes (3)
Format du document : text/plain
Prévisualisation
Malwarebytes
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 16/08/2017
Heure de l'analyse: 16:50
Fichier journal: Conpte-rendu Malwarebytes.txt
Administrateur: Oui
-Informations du logiciel-
Version: 3.1.2.1733
Version de composants: 1.0.139
Version de pack de mise à jour: 1.0.2601
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Edouard-HP\Edouard
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 416857
Menaces détectées: 46
Menaces mises en quarantaine: 46
Temps écoulé: 10 min, 34 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 6
PUP.Optional.Koyote, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Free mp3 Wma Converter, En quarantaine, [6493], [76873],1.0.2601
Adware.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SILENTPROCESSEXIT\Plusdax.exe, En quarantaine, [2222], [383093],1.0.2601
Adware.REOptimizer, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\119, En quarantaine, [6942], [417947],1.0.2601
RiskWare.Extension.NFCS, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\iinglghmhcgdgjjlafobajghjamdchik, En quarantaine, [8649], [419391],1.0.2601
PUP.Optional.ASK, HKU\S-1-5-21-1062090314-4260578108-3390622513-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2fa28606-de77-4029-af96-b231e3b8f827}, En quarantaine, [510], [184156],1.0.2601
PUP.Optional.SpyHunter, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ESGSCANNER, En quarantaine, [918], [331708],1.0.2601
Valeur du registre: 7
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, [232], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, [232], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, En quarantaine, [232], [259988],1.0.2601
Adware.REOptimizer, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\119|DISPLAYNAME, En quarantaine, [6942], [417947],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-18\ENVIRONMENT|SNP, En quarantaine, [232], [259518],1.0.2601
PUP.Optional.ASK, HKU\S-1-5-21-1062090314-4260578108-3390622513-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2fa28606-de77-4029-af96-b231e3b8f827}|URL, En quarantaine, [510], [184156],1.0.2601
PUP.Optional.SpyHunter, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ESGSCANNER|IMAGEPATH, En quarantaine, [918], [331708],1.0.2601
Données du registre: 5
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, Remplacé, [232], [293486],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Remplacé, [232], [293485],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH PAGE, Remplacé, [232], [293485],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, Remplacé, [232], [293485],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, Remplacé, [232], [293485],1.0.2601
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 4
PUP.Optional.BrowserSecurity, C:\Users\Edouard\AppData\Roaming\Mozilla\Firefox\Profiles\pt0a9d9b.default\jetpack\firefox@browser-security.de\simple-storage, En quarantaine, [1179], [347817],1.0.2601
PUP.Optional.BrowserSecurity, C:\USERS\EDOUARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PT0A9D9B.DEFAULT\JETPACK\FIREFOX@BROWSER-SECURITY.DE, En quarantaine, [1179], [347817],1.0.2601
PUP.Optional.BundleInstaller, C:\USERS\EDOUARD\APPDATA\LOCAL\TEMP\4493249, En quarantaine, [20], [341982],1.0.2601
PUP.Optional.Linkury.ACMB1, C:\PROGRAM FILES (X86)\COMMON FILES\TEMPLOTFIND, En quarantaine, [232], [302556],1.0.2601
Fichier: 24
PUP.Optional.Linkury.ACMB1, C:\USERS\EDOUARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PT0A9D9B.DEFAULT\PREFS.JS, Remplacé, [232], [302805],1.0.2601
PUM.Optional.FireFoxSecurityOverride, C:\USERS\EDOUARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PT0A9D9B.DEFAULT\USER.JS, En quarantaine, [14815], [302435],1.0.2601
PUP.Optional.Koyote, C:\PROGRAM FILES (X86)\FREE MP3 WMA CONVERTER\UNINSTALL.EXE, En quarantaine, [6493], [76873],1.0.2601
PUP.Optional.SpyHunter, C:\$RECYCLE.BIN\S-1-5-21-1062090314-4260578108-3390622513-1002\$RXRQ53X.EXE, En quarantaine, [918], [345850],1.0.2601
PUP.Optional.FastDataX, C:\USERS\EDOUARD\APPDATA\LOCAL\TEMP\4493249\IC-0.FC8D97F1A6EF7.EXE, En quarantaine, [8308], [407240],1.0.2601
Adware.Linkury, C:\USERS\EDOUARD\APPDATA\LOCAL\TEMP\4493249\IC-0.558AA4EC14FC48.EXE, En quarantaine, [1967], [414962],1.0.2601
Adware.Amonetize, C:\USERS\EDOUARD\APPDATA\LOCAL\TEMP\NSN3A24.EXE, En quarantaine, [666], [379844],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\AGENT.DAT, En quarantaine, [1859], [404872],1.0.2601
PUP.Optional.REOptimizer, C:\USERS\EDOUARD\APPDATA\LOCAL\UNINSTALLCE.EXE, En quarantaine, [7519], [412227],1.0.2601
PUP.Optional.Linkury, C:\USERS\EDOUARD\APPDATA\LOCAL\SPANTOM.BIN, En quarantaine, [312], [331415],1.0.2601
PUP.Optional.LogicHandler, C:\USERS\EDOUARD\APPDATA\LOCAL\SALTLUX.BIN, En quarantaine, [3615], [24306],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\CONFIG.XML, En quarantaine, [1859], [404859],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\NOAH.DAT, En quarantaine, [1859], [404865],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\ZONSTRING.TST, En quarantaine, [1859], [404871],1.0.2601
Adware.Linkury, C:\USERS\EDOUARD\APPDATA\LOCAL\BETALAM.BIN, En quarantaine, [1967], [396520],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\MD.XML, En quarantaine, [1859], [404866],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\UNINSTALL_TEMP.ICO, En quarantaine, [1859], [404862],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\PO.DB, En quarantaine, [1859], [412180],1.0.2601
Adware.Linkury.Generic, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\PO.DB, En quarantaine, [1859], [418250],1.0.2601
PUP.Optional.MyRadioXP, C:\USERS\INVITé.EDOUARD-HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\chrome-extension_fnhfdmnphmbbjbgppnpcddkefmeokfho_0.localstorage, En quarantaine, [2621], [360496],1.0.2601
PUP.Optional.BundleInstaller, C:\Users\Edouard\AppData\Local\Temp\4493249\dlreport, En quarantaine, [20], [341982],1.0.2601
PUP.Optional.Linkury.ACMB1, C:\PROGRAM FILES (X86)\COMMON FILES\TEMPLOTFIND\INSTALLATIONCONFIGURATION.XML, En quarantaine, [232], [302556],1.0.2601
PUP.Optional.Linkury.ACMB1, C:\Program Files (x86)\Common Files\Templotfind\uninstall.dat, En quarantaine, [232], [302556],1.0.2601
PUP.Optional.Linkury.ACMB1, C:\Program Files (x86)\Common Files\Templotfind\uninstall.ico, En quarantaine, [232], [302556],1.0.2601
Secteur physique: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 16/08/2017
Heure de l'analyse: 16:50
Fichier journal: Conpte-rendu Malwarebytes.txt
Administrateur: Oui
-Informations du logiciel-
Version: 3.1.2.1733
Version de composants: 1.0.139
Version de pack de mise à jour: 1.0.2601
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Edouard-HP\Edouard
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 416857
Menaces détectées: 46
Menaces mises en quarantaine: 46
Temps écoulé: 10 min, 34 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 6
PUP.Optional.Koyote, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Free mp3 Wma Converter, En quarantaine, [6493], [76873],1.0.2601
Adware.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SILENTPROCESSEXIT\Plusdax.exe, En quarantaine, [2222], [383093],1.0.2601
Adware.REOptimizer, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\119, En quarantaine, [6942], [417947],1.0.2601
RiskWare.Extension.NFCS, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\iinglghmhcgdgjjlafobajghjamdchik, En quarantaine, [8649], [419391],1.0.2601
PUP.Optional.ASK, HKU\S-1-5-21-1062090314-4260578108-3390622513-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2fa28606-de77-4029-af96-b231e3b8f827}, En quarantaine, [510], [184156],1.0.2601
PUP.Optional.SpyHunter, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ESGSCANNER, En quarantaine, [918], [331708],1.0.2601
Valeur du registre: 7
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, [232], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, [232], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, En quarantaine, [232], [259988],1.0.2601
Adware.REOptimizer, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\119|DISPLAYNAME, En quarantaine, [6942], [417947],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-18\ENVIRONMENT|SNP, En quarantaine, [232], [259518],1.0.2601
PUP.Optional.ASK, HKU\S-1-5-21-1062090314-4260578108-3390622513-501\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2fa28606-de77-4029-af96-b231e3b8f827}|URL, En quarantaine, [510], [184156],1.0.2601
PUP.Optional.SpyHunter, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ESGSCANNER|IMAGEPATH, En quarantaine, [918], [331708],1.0.2601
Données du registre: 5
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, Remplacé, [232], [293486],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Remplacé, [232], [293485],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH PAGE, Remplacé, [232], [293485],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, Remplacé, [232], [293485],1.0.2601
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-1062090314-4260578108-3390622513-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, Remplacé, [232], [293485],1.0.2601
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 4
PUP.Optional.BrowserSecurity, C:\Users\Edouard\AppData\Roaming\Mozilla\Firefox\Profiles\pt0a9d9b.default\jetpack\firefox@browser-security.de\simple-storage, En quarantaine, [1179], [347817],1.0.2601
PUP.Optional.BrowserSecurity, C:\USERS\EDOUARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PT0A9D9B.DEFAULT\JETPACK\FIREFOX@BROWSER-SECURITY.DE, En quarantaine, [1179], [347817],1.0.2601
PUP.Optional.BundleInstaller, C:\USERS\EDOUARD\APPDATA\LOCAL\TEMP\4493249, En quarantaine, [20], [341982],1.0.2601
PUP.Optional.Linkury.ACMB1, C:\PROGRAM FILES (X86)\COMMON FILES\TEMPLOTFIND, En quarantaine, [232], [302556],1.0.2601
Fichier: 24
PUP.Optional.Linkury.ACMB1, C:\USERS\EDOUARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PT0A9D9B.DEFAULT\PREFS.JS, Remplacé, [232], [302805],1.0.2601
PUM.Optional.FireFoxSecurityOverride, C:\USERS\EDOUARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PT0A9D9B.DEFAULT\USER.JS, En quarantaine, [14815], [302435],1.0.2601
PUP.Optional.Koyote, C:\PROGRAM FILES (X86)\FREE MP3 WMA CONVERTER\UNINSTALL.EXE, En quarantaine, [6493], [76873],1.0.2601
PUP.Optional.SpyHunter, C:\$RECYCLE.BIN\S-1-5-21-1062090314-4260578108-3390622513-1002\$RXRQ53X.EXE, En quarantaine, [918], [345850],1.0.2601
PUP.Optional.FastDataX, C:\USERS\EDOUARD\APPDATA\LOCAL\TEMP\4493249\IC-0.FC8D97F1A6EF7.EXE, En quarantaine, [8308], [407240],1.0.2601
Adware.Linkury, C:\USERS\EDOUARD\APPDATA\LOCAL\TEMP\4493249\IC-0.558AA4EC14FC48.EXE, En quarantaine, [1967], [414962],1.0.2601
Adware.Amonetize, C:\USERS\EDOUARD\APPDATA\LOCAL\TEMP\NSN3A24.EXE, En quarantaine, [666], [379844],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\AGENT.DAT, En quarantaine, [1859], [404872],1.0.2601
PUP.Optional.REOptimizer, C:\USERS\EDOUARD\APPDATA\LOCAL\UNINSTALLCE.EXE, En quarantaine, [7519], [412227],1.0.2601
PUP.Optional.Linkury, C:\USERS\EDOUARD\APPDATA\LOCAL\SPANTOM.BIN, En quarantaine, [312], [331415],1.0.2601
PUP.Optional.LogicHandler, C:\USERS\EDOUARD\APPDATA\LOCAL\SALTLUX.BIN, En quarantaine, [3615], [24306],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\CONFIG.XML, En quarantaine, [1859], [404859],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\NOAH.DAT, En quarantaine, [1859], [404865],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\ZONSTRING.TST, En quarantaine, [1859], [404871],1.0.2601
Adware.Linkury, C:\USERS\EDOUARD\APPDATA\LOCAL\BETALAM.BIN, En quarantaine, [1967], [396520],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\MD.XML, En quarantaine, [1859], [404866],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\UNINSTALL_TEMP.ICO, En quarantaine, [1859], [404862],1.0.2601
Adware.Linkury.Generic, C:\USERS\EDOUARD\APPDATA\LOCAL\PO.DB, En quarantaine, [1859], [412180],1.0.2601
Adware.Linkury.Generic, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\PO.DB, En quarantaine, [1859], [418250],1.0.2601
PUP.Optional.MyRadioXP, C:\USERS\INVITé.EDOUARD-HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\LOCAL STORAGE\chrome-extension_fnhfdmnphmbbjbgppnpcddkefmeokfho_0.localstorage, En quarantaine, [2621], [360496],1.0.2601
PUP.Optional.BundleInstaller, C:\Users\Edouard\AppData\Local\Temp\4493249\dlreport, En quarantaine, [20], [341982],1.0.2601
PUP.Optional.Linkury.ACMB1, C:\PROGRAM FILES (X86)\COMMON FILES\TEMPLOTFIND\INSTALLATIONCONFIGURATION.XML, En quarantaine, [232], [302556],1.0.2601
PUP.Optional.Linkury.ACMB1, C:\Program Files (x86)\Common Files\Templotfind\uninstall.dat, En quarantaine, [232], [302556],1.0.2601
PUP.Optional.Linkury.ACMB1, C:\Program Files (x86)\Common Files\Templotfind\uninstall.ico, En quarantaine, [232], [302556],1.0.2601
Secteur physique: 0
(Aucun élément malveillant détecté)
(end)