Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'examen: 11/07/2014
Heure de l'examen: 17:17:09
Fichier journal: mlb.txt
Administrateur: Oui
Version: 2.00.2.1012
Base de donn�es Malveillants: v2014.07.11.06
Base de donn�es Rootkits: v2014.07.09.01
Licence: Gratuite
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Self-protection: D�sactiv�(e)
Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Chinoui
Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 274391
Temps �coul�: 12 min, 6 sec
M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Heuristics: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)
Processus: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Cl�s du Registre: 0
(No malicious items detected)
Valeurs du Registre: 0
(No malicious items detected)
Donn�es du Registre: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplac�,[ce74089690eb10265506edaf16ee6f91]
Dossiers: 2
PUP.Optional.Extutil.A, C:\Users\Chinoui\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B, Mis en quarantaine, [9aa86b33e69522149ee6872ef50dea16],
PUP.Optional.Managera.A, C:\Users\Chinoui\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42, Mis en quarantaine, [1f23bae488f3142299ec2e871ce6b947],
Fichiers: 19
Trojan.Agent.AI, C:\Windows\SysWOW64\WIN-svrGA.exe, Mis en quarantaine, [b191cfcfa2d91422157ff9569072f808],
PUP.Optional.BubbleDock.A, C:\Users\Chinoui\AppData\Local\Temp\Install_BubbleDock.exe, Mis en quarantaine, [e55d514dea9134023c4f221f9e63c13f],
PUP.Optional.SearchHijacker.A, C:\Users\Chinoui\AppData\Local\Temp\617_bro_istart_webssearches_com.exe, Mis en quarantaine, [c37fddc1463582b4bea5dbba768b18e8],
PUP.Optional.SearchProtect.A, C:\Users\Chinoui\AppData\Local\Temp\uttA2AC.tmp.exe, Mis en quarantaine, [73cf425cc7b46acc28e37d0b02ff639d],
PUP.Optional.SearchProtect.A, C:\Users\Chinoui\AppData\Local\Temp\nsoB7B3.tmp, Mis en quarantaine, [172b2a74d4a79c9ab195b0e319e813ed],
PUP.Optional.Somoto, C:\Users\Chinoui\AppData\Local\Temp\bitool.dll, Mis en quarantaine, [ba888519a4d75bdb338d181441c1cc34],
PUP.Optional.Conduit.A, C:\Users\Chinoui\AppData\Local\Temp\nsp5F9C.exe, Mis en quarantaine, [73cf09957efd0432d74a3653d9287d83],
PUP.Optional.Conduit.A, C:\Users\Chinoui\AppData\Local\Temp\nsu3B3.exe, Mis en quarantaine, [162ce9b584f7a195b56cc4c5ea17837d],
PUP.Optional.Conduit.A, C:\Users\Chinoui\AppData\Local\Temp\nsu5C12.exe, Mis en quarantaine, [f54d79256219fe381a073c4df70a27d9],
PUP.Optional.Conduit.A, C:\Users\Chinoui\AppData\Local\Temp\nszFF8D.exe, Mis en quarantaine, [9ca6adf14932ed497da40b7ec73a9a66],
PUP.Optional.Skytech.A, C:\Users\Chinoui\AppData\Local\Temp\22508791\22508791.zip, Mis en quarantaine, [53effda199e2999d4050a0ec46bb4ab6],
PUP.Optional.Skytech.A, C:\Users\Chinoui\AppData\Local\Temp\22508791\22508791.zipDir\UninstallManager.exe, Mis en quarantaine, [6dd5544ae29966d07719226ada2754ac],
PUP.Optional.OpenCandy, C:\Users\Chinoui\Downloads\daemon-tools-lite_4-49-1_fr_10729.exe, Mis en quarantaine, [3a081e803348b97d82584977f90bf40c],
PUP.Optional.Extutil.A, C:\Users\Chinoui\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js, Mis en quarantaine, [9aa86b33e69522149ee6872ef50dea16],
PUP.Optional.Extutil.A, C:\Users\Chinoui\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js, Mis en quarantaine, [9aa86b33e69522149ee6872ef50dea16],
PUP.Optional.Extutil.A, C:\Users\Chinoui\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json, Mis en quarantaine, [9aa86b33e69522149ee6872ef50dea16],
PUP.Optional.Managera.A, C:\Users\Chinoui\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js, Mis en quarantaine, [1f23bae488f3142299ec2e871ce6b947],
PUP.Optional.Managera.A, C:\Users\Chinoui\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json, Mis en quarantaine, [1f23bae488f3142299ec2e871ce6b947],
PUP.Optional.WebsSearches.A, C:\Users\Chinoui\AppData\Local\Google\Chrome\User Data\Default\Preferences, Bon: (), Mauvais: ( "startup_urls": [ "http://www.trovi.com/?gd=&ctid=CT3330789&octid=EB_ORIGINAL_CTID&ISID=M1A6B569B-4F32-406C-B73C-699495330A82&SearchSource=55&CUI=&UM=6&UP=SP2A9B215A-35B9-4F2F-80AF-BEEC406A2F55&SSPV=", "http://istart.webssearches.com/?type=hp&ts=1405087801&from=bro&uid=SAMSUNGXHD753LJ_S13UJDWQ722801" ],), Remplac�,[f74b019d9ae1fe382fac5278996b20e0]
Secteurs physiques: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Date de l'examen: 11/07/2014
Heure de l'examen: 17:17:09
Fichier journal: mlb.txt
Administrateur: Oui
Version: 2.00.2.1012
Base de donn�es Malveillants: v2014.07.11.06
Base de donn�es Rootkits: v2014.07.09.01
Licence: Gratuite
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Self-protection: D�sactiv�(e)
Syst�me d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: Chinoui
Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 274391
Temps �coul�: 12 min, 6 sec
M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Heuristics: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)
Processus: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Cl�s du Registre: 0
(No malicious items detected)
Valeurs du Registre: 0
(No malicious items detected)
Donn�es du Registre: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplac�,[ce74089690eb10265506edaf16ee6f91]
Dossiers: 2
PUP.Optional.Extutil.A, C:\Users\Chinoui\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B, Mis en quarantaine, [9aa86b33e69522149ee6872ef50dea16],
PUP.Optional.Managera.A, C:\Users\Chinoui\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42, Mis en quarantaine, [1f23bae488f3142299ec2e871ce6b947],
Fichiers: 19
Trojan.Agent.AI, C:\Windows\SysWOW64\WIN-svrGA.exe, Mis en quarantaine, [b191cfcfa2d91422157ff9569072f808],
PUP.Optional.BubbleDock.A, C:\Users\Chinoui\AppData\Local\Temp\Install_BubbleDock.exe, Mis en quarantaine, [e55d514dea9134023c4f221f9e63c13f],
PUP.Optional.SearchHijacker.A, C:\Users\Chinoui\AppData\Local\Temp\617_bro_istart_webssearches_com.exe, Mis en quarantaine, [c37fddc1463582b4bea5dbba768b18e8],
PUP.Optional.SearchProtect.A, C:\Users\Chinoui\AppData\Local\Temp\uttA2AC.tmp.exe, Mis en quarantaine, [73cf425cc7b46acc28e37d0b02ff639d],
PUP.Optional.SearchProtect.A, C:\Users\Chinoui\AppData\Local\Temp\nsoB7B3.tmp, Mis en quarantaine, [172b2a74d4a79c9ab195b0e319e813ed],
PUP.Optional.Somoto, C:\Users\Chinoui\AppData\Local\Temp\bitool.dll, Mis en quarantaine, [ba888519a4d75bdb338d181441c1cc34],
PUP.Optional.Conduit.A, C:\Users\Chinoui\AppData\Local\Temp\nsp5F9C.exe, Mis en quarantaine, [73cf09957efd0432d74a3653d9287d83],
PUP.Optional.Conduit.A, C:\Users\Chinoui\AppData\Local\Temp\nsu3B3.exe, Mis en quarantaine, [162ce9b584f7a195b56cc4c5ea17837d],
PUP.Optional.Conduit.A, C:\Users\Chinoui\AppData\Local\Temp\nsu5C12.exe, Mis en quarantaine, [f54d79256219fe381a073c4df70a27d9],
PUP.Optional.Conduit.A, C:\Users\Chinoui\AppData\Local\Temp\nszFF8D.exe, Mis en quarantaine, [9ca6adf14932ed497da40b7ec73a9a66],
PUP.Optional.Skytech.A, C:\Users\Chinoui\AppData\Local\Temp\22508791\22508791.zip, Mis en quarantaine, [53effda199e2999d4050a0ec46bb4ab6],
PUP.Optional.Skytech.A, C:\Users\Chinoui\AppData\Local\Temp\22508791\22508791.zipDir\UninstallManager.exe, Mis en quarantaine, [6dd5544ae29966d07719226ada2754ac],
PUP.Optional.OpenCandy, C:\Users\Chinoui\Downloads\daemon-tools-lite_4-49-1_fr_10729.exe, Mis en quarantaine, [3a081e803348b97d82584977f90bf40c],
PUP.Optional.Extutil.A, C:\Users\Chinoui\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js, Mis en quarantaine, [9aa86b33e69522149ee6872ef50dea16],
PUP.Optional.Extutil.A, C:\Users\Chinoui\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js, Mis en quarantaine, [9aa86b33e69522149ee6872ef50dea16],
PUP.Optional.Extutil.A, C:\Users\Chinoui\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json, Mis en quarantaine, [9aa86b33e69522149ee6872ef50dea16],
PUP.Optional.Managera.A, C:\Users\Chinoui\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js, Mis en quarantaine, [1f23bae488f3142299ec2e871ce6b947],
PUP.Optional.Managera.A, C:\Users\Chinoui\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json, Mis en quarantaine, [1f23bae488f3142299ec2e871ce6b947],
PUP.Optional.WebsSearches.A, C:\Users\Chinoui\AppData\Local\Google\Chrome\User Data\Default\Preferences, Bon: (), Mauvais: ( "startup_urls": [ "http://www.trovi.com/?gd=&ctid=CT3330789&octid=EB_ORIGINAL_CTID&ISID=M1A6B569B-4F32-406C-B73C-699495330A82&SearchSource=55&CUI=&UM=6&UP=SP2A9B215A-35B9-4F2F-80AF-BEEC406A2F55&SSPV=", "http://istart.webssearches.com/?type=hp&ts=1405087801&from=bro&uid=SAMSUNGXHD753LJ_S13UJDWQ722801" ],), Remplac�,[f74b019d9ae1fe382fac5278996b20e0]
Secteurs physiques: 0
(No malicious items detected)
(end)