Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'examen: 02/05/2014
Heure de l'examen: 17:34:35
Fichier journal: rapport.txt
Administrateur: Oui
Version: 2.00.1.1004
Base de donn�es Malveillants: v2014.05.02.08
Base de donn�es Rootkits: v2014.03.27.01
Licence: Essai
Protection contre les malveillants: Activ�(e)
Protection contre les sites Web malveillants: Activ�(e)
Chameleon: D�sactiv�(e)
Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Florian
Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 263576
Temps �coul�: 15 min, 51 sec
M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Shuriken: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)
Processus: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Cl�s du Registre: 3
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM, Mis en quarantaine, [455b67e5d6a5c57118e4188ade257c84],
PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Freeven pro 1.2, Mis en quarantaine, [7828bc902b50cb6b9b52e895d929a957],
PUP.Optional.MediaPlayerplus.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MediaPlayerplus, Mis en quarantaine, [0f91ef5d98e303337897b8c64bb79d63],
Valeurs du Registre: 2
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_169, Mis en quarantaine, [8f11e369ff7c2412f8b0a9ce46bc2dd3],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM|simapp_id, {0FA439B8-90C9-4F90-864B-AB0B56B35E3C}, Mis en quarantaine, [455b67e5d6a5c57118e4188ade257c84]
Donn�es du Registre: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplac�,[38680943d9a2de5840d8ef496f950af6]
Dossiers: 6
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c],
Rogue.Multiple, C:\ProgramData\374311380, Mis en quarantaine, [e3bd94b8cead51e5d0afe77003ff1ce4],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save, Mis en quarantaine, [40604dff5427bf77b261571061a1847c],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a],
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94],
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\update, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94],
Fichiers: 24
PUP.Optional.SilentInstall.A, C:\ProgramData\Browse2save\uninstall.exe, Mis en quarantaine, [4f51f45818635dd9fceb0ef7fc054bb5],
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\PluginService.exe, Mis en quarantaine, [534dda7204771a1c9ad890c3fd04ee12],
PUP.Optional.InstallCore.A, C:\Users\Florian\AppData\Local\Temp\nsfD476.tmp, Mis en quarantaine, [8917eb611764d26476ee91dddb267090],
PUP.Optional.InstallCore.A, C:\Users\Florian\AppData\Local\Temp\ICReinstall_nsfD476.tmp, Mis en quarantaine, [cdd33616433891a575effb73d829728e],
PUP.Optional.DomaIQ, C:\Users\Florian\AppData\Local\Temp\dfsB3E8.tmp, Mis en quarantaine, [851bde6e99e286b0de7eb2c3f60b768a],
PUP.Optional.IePluginService.A, C:\Users\Florian\AppData\Local\Temp\fullpackage_temp1398948036\tmp\SupTab.exe, Mis en quarantaine, [a3fdd07c03780e289ed42e252fd2ea16],
PUP.Optional.WpManager, C:\Users\Florian\AppData\Local\Temp\fullpackage_temp1398948036\tmp\wpm.exe, Mis en quarantaine, [168ae6666a1141f501c6d28bf90820e0],
Adware.EoRezo, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\Freesofttoday.exe, Mis en quarantaine, [ebb53d0fd8a3d75fc84a234bb05139c7],
Heuristics.Shuriken, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\freeven-pr2.exe, Mis en quarantaine, [ffffffffffffffffffffffffffffffff],
PUP.Optional.SkyTech.A, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\lly_webssearches.exe .exe, Mis en quarantaine, [138d89c32754fe383d15ec67e918cd33],
PUP.Optional.CrossRider.A, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\mediaplayerpluuss.exe, Mis en quarantaine, [89175fed86f543f3533b271b847c11ef],
Trojan.Agent.CK, C:\Users\Florian\Downloads\keygen.exe, Mis en quarantaine, [742cf8545724f5417f8caec7a858639d],
PUP.Optional.Somoto, C:\Users\Florian\Downloads\7ZipSetup-aBrZZig.exe, Mis en quarantaine, [dfc1c68687f469cdebfd5208867e17e9],
PUP.Optional.Incredibar.A, C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dlnembnfbcpjnepmfjmngjenhhajpdfd_0.localstorage, Mis en quarantaine, [8a163f0d13688fa7c2cbb8c0946e5ea2],
PUP.Optional.Wajam.A, C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jpmbfleldcgkldadpdinhjjopdfpjfjp_0.localstorage, Mis en quarantaine, [c4dc3d0fc2b9ed49d0b4493419e9966a],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\coordinator.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\general.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\S-1-5-21-1102061308-1966254936-2478125045-1000.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c],
Rogue.Multiple, C:\ProgramData\374311380\BITAD20.tmp, Mis en quarantaine, [e3bd94b8cead51e5d0afe77003ff1ce4],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save\515aefc377af7.tlb, Mis en quarantaine, [40604dff5427bf77b261571061a1847c],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save\settings.ini, Mis en quarantaine, [40604dff5427bf77b261571061a1847c],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save\Browse2save.lnk, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save\Uninstall.lnk, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a],
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\update\conf, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94],
Secteurs physiques: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Date de l'examen: 02/05/2014
Heure de l'examen: 17:34:35
Fichier journal: rapport.txt
Administrateur: Oui
Version: 2.00.1.1004
Base de donn�es Malveillants: v2014.05.02.08
Base de donn�es Rootkits: v2014.03.27.01
Licence: Essai
Protection contre les malveillants: Activ�(e)
Protection contre les sites Web malveillants: Activ�(e)
Chameleon: D�sactiv�(e)
Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Florian
Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 263576
Temps �coul�: 15 min, 51 sec
M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Shuriken: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)
Processus: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Cl�s du Registre: 3
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM, Mis en quarantaine, [455b67e5d6a5c57118e4188ade257c84],
PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Freeven pro 1.2, Mis en quarantaine, [7828bc902b50cb6b9b52e895d929a957],
PUP.Optional.MediaPlayerplus.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MediaPlayerplus, Mis en quarantaine, [0f91ef5d98e303337897b8c64bb79d63],
Valeurs du Registre: 2
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_169, Mis en quarantaine, [8f11e369ff7c2412f8b0a9ce46bc2dd3],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM|simapp_id, {0FA439B8-90C9-4F90-864B-AB0B56B35E3C}, Mis en quarantaine, [455b67e5d6a5c57118e4188ade257c84]
Donn�es du Registre: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplac�,[38680943d9a2de5840d8ef496f950af6]
Dossiers: 6
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c],
Rogue.Multiple, C:\ProgramData\374311380, Mis en quarantaine, [e3bd94b8cead51e5d0afe77003ff1ce4],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save, Mis en quarantaine, [40604dff5427bf77b261571061a1847c],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a],
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94],
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\update, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94],
Fichiers: 24
PUP.Optional.SilentInstall.A, C:\ProgramData\Browse2save\uninstall.exe, Mis en quarantaine, [4f51f45818635dd9fceb0ef7fc054bb5],
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\PluginService.exe, Mis en quarantaine, [534dda7204771a1c9ad890c3fd04ee12],
PUP.Optional.InstallCore.A, C:\Users\Florian\AppData\Local\Temp\nsfD476.tmp, Mis en quarantaine, [8917eb611764d26476ee91dddb267090],
PUP.Optional.InstallCore.A, C:\Users\Florian\AppData\Local\Temp\ICReinstall_nsfD476.tmp, Mis en quarantaine, [cdd33616433891a575effb73d829728e],
PUP.Optional.DomaIQ, C:\Users\Florian\AppData\Local\Temp\dfsB3E8.tmp, Mis en quarantaine, [851bde6e99e286b0de7eb2c3f60b768a],
PUP.Optional.IePluginService.A, C:\Users\Florian\AppData\Local\Temp\fullpackage_temp1398948036\tmp\SupTab.exe, Mis en quarantaine, [a3fdd07c03780e289ed42e252fd2ea16],
PUP.Optional.WpManager, C:\Users\Florian\AppData\Local\Temp\fullpackage_temp1398948036\tmp\wpm.exe, Mis en quarantaine, [168ae6666a1141f501c6d28bf90820e0],
Adware.EoRezo, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\Freesofttoday.exe, Mis en quarantaine, [ebb53d0fd8a3d75fc84a234bb05139c7],
Heuristics.Shuriken, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\freeven-pr2.exe, Mis en quarantaine, [ffffffffffffffffffffffffffffffff],
PUP.Optional.SkyTech.A, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\lly_webssearches.exe .exe, Mis en quarantaine, [138d89c32754fe383d15ec67e918cd33],
PUP.Optional.CrossRider.A, C:\Users\Florian\AppData\Local\Temp\a145f868-603f-47f5-888f-dff5a0fd9712\software\mediaplayerpluuss.exe, Mis en quarantaine, [89175fed86f543f3533b271b847c11ef],
Trojan.Agent.CK, C:\Users\Florian\Downloads\keygen.exe, Mis en quarantaine, [742cf8545724f5417f8caec7a858639d],
PUP.Optional.Somoto, C:\Users\Florian\Downloads\7ZipSetup-aBrZZig.exe, Mis en quarantaine, [dfc1c68687f469cdebfd5208867e17e9],
PUP.Optional.Incredibar.A, C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dlnembnfbcpjnepmfjmngjenhhajpdfd_0.localstorage, Mis en quarantaine, [8a163f0d13688fa7c2cbb8c0946e5ea2],
PUP.Optional.Wajam.A, C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jpmbfleldcgkldadpdinhjjopdfpjfjp_0.localstorage, Mis en quarantaine, [c4dc3d0fc2b9ed49d0b4493419e9966a],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\coordinator.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\general.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c],
PUP.Optional.Datamngr.A, C:\ProgramData\Datamngr\S-1-5-21-1102061308-1966254936-2478125045-1000.cfg, Mis en quarantaine, [2b755eee99e28caa1e16cadd699ac43c],
Rogue.Multiple, C:\ProgramData\374311380\BITAD20.tmp, Mis en quarantaine, [e3bd94b8cead51e5d0afe77003ff1ce4],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save\515aefc377af7.tlb, Mis en quarantaine, [40604dff5427bf77b261571061a1847c],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Browse2save\settings.ini, Mis en quarantaine, [40604dff5427bf77b261571061a1847c],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save\Browse2save.lnk, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a],
PUP.Optional.BrowseToSave.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browse2save\Uninstall.lnk, Mis en quarantaine, [465aaf9d85f67abcfd172146bb47768a],
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\update\conf, Mis en quarantaine, [584872daa0db092dd81e14553dc56c94],
Secteurs physiques: 0
(No malicious items detected)
(end)