Publicité
Publicité
Commentaire : lien Malwarebytes
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 06/09/2016
Heure de l'analyse: 18:28
Fichier journal: Malwarebytes.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.09.06.07
Base de données de rootkits: v2016.08.15.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: MERCELLE
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 321552
Temps écoulé: 52 min, 44 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 18
PUP.Optional.Explorary, HKU\S-1-5-21-3168768775-2118220415-2004576553-1000\SOFTWARE\explorary, En quarantaine, [e906e6884f4bb97d39681f8222e19769],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\TYPELIB\{BDFD5DC3-6585-4536-8763-2A0AAB556F25}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\INTERFACE\{D2CEF475-E7E5-4F78-BE80-86FBB92E37CE}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D2CEF475-E7E5-4F78-BE80-86FBB92E37CE}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D2CEF475-E7E5-4F78-BE80-86FBB92E37CE}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{BDFD5DC3-6585-4536-8763-2A0AAB556F25}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{BDFD5DC3-6585-4536-8763-2A0AAB556F25}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\ExploraryToolbar.IEHook.1, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\ExploraryToolbar.IEHook, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ExploraryToolbar.IEHook, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ExploraryToolbar.IEHook, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ExploraryToolbar.IEHook.1, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ExploraryToolbar.IEHook.1, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKU\S-1-5-21-3168768775-2118220415-2004576553-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKU\S-1-5-21-3168768775-2118220415-2004576553-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKU\S-1-5-21-3168768775-2118220415-2004576553-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ExploraryToolbar, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
Valeurs du Registre: 1
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, Explorary Toolbar, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 4
PUP.Optional.ASK, C:\Users\MERCELLE\AppData\Local\Temp\APNLogs, En quarantaine, [43ac7af4e8b2ea4c9687f0e1857ddb25],
PUP.Optional.Explorary, C:\Program Files (x86)\Explorary, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, C:\Program Files (x86)\Explorary\Toolbar, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.ASK.Gen, C:\Users\MERCELLE\AppData\Local\Temp\APN-Stub, En quarantaine, [c42beb8335659f97754cae15798906fa],
Fichiers: 12
PUP.Optional.InstallCore, C:\Users\MERCELLE\Downloads\adobe_flash_setup(1).exe, En quarantaine, [bd32cf9f1e7c9e984de3b9de857fdb25],
PUP.Optional.InstallCore, C:\Users\MERCELLE\Downloads\adobe_flash_setup.exe, En quarantaine, [b738d19db8e277bfb8786f288c7839c7],
PUP.Optional.PerionTB, C:\Users\MERCELLE\Downloads\incredimail_install(1).exe, En quarantaine, [e9067cf2ecaeb5812eeec12334cd23dd],
PUP.Optional.ClientConnect, C:\Users\MERCELLE\Downloads\IncrediMail_TSA2756SJ.exe, En quarantaine, [b23d3d31366469cdaeadeddfad53dd23],
PUP.Optional.ClientConnect, C:\Users\MERCELLE\Downloads\IncrediMail_TSA2756ST.exe, En quarantaine, [67882846e4b61f170d4e16b6946ce719],
PUP.Optional.ASK, C:\Windows\Installer\292c8e6.msi, En quarantaine, [c32c3c32dac0bd79dafef16b07fdf907],
PUP.Optional.ASK, C:\Users\MERCELLE\AppData\Local\Temp\APNLogs\ci.log, En quarantaine, [43ac7af4e8b2ea4c9687f0e1857ddb25],
PUP.Optional.ASK, C:\Users\MERCELLE\AppData\Local\Temp\APNLogs\iw.log, En quarantaine, [43ac7af4e8b2ea4c9687f0e1857ddb25],
PUP.Optional.APNToolBar.Gen, C:\Users\MERCELLE\AppData\Local\Temp\ApnStub.exe, En quarantaine, [5b945915f6a4aa8c152adb1724df7a86],
PUP.Optional.Explorary, C:\Program Files (x86)\Explorary\Toolbar\Explorary.dll, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, C:\Program Files (x86)\Explorary\Toolbar\ExploraryInstall.exe, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.ASK.Gen, C:\Users\MERCELLE\AppData\Local\Temp\APN-Stub\Stb115ba1f4-5426-490c-89a7-d52646e11850.log, En quarantaine, [c42beb8335659f97754cae15798906fa],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.org
Date de l'analyse: 06/09/2016
Heure de l'analyse: 18:28
Fichier journal: Malwarebytes.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.09.06.07
Base de données de rootkits: v2016.08.15.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: MERCELLE
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 321552
Temps écoulé: 52 min, 44 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 18
PUP.Optional.Explorary, HKU\S-1-5-21-3168768775-2118220415-2004576553-1000\SOFTWARE\explorary, En quarantaine, [e906e6884f4bb97d39681f8222e19769],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\TYPELIB\{BDFD5DC3-6585-4536-8763-2A0AAB556F25}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\INTERFACE\{D2CEF475-E7E5-4F78-BE80-86FBB92E37CE}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D2CEF475-E7E5-4F78-BE80-86FBB92E37CE}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D2CEF475-E7E5-4F78-BE80-86FBB92E37CE}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{BDFD5DC3-6585-4536-8763-2A0AAB556F25}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{BDFD5DC3-6585-4536-8763-2A0AAB556F25}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\ExploraryToolbar.IEHook.1, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\ExploraryToolbar.IEHook, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ExploraryToolbar.IEHook, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ExploraryToolbar.IEHook, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ExploraryToolbar.IEHook.1, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ExploraryToolbar.IEHook.1, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKU\S-1-5-21-3168768775-2118220415-2004576553-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKU\S-1-5-21-3168768775-2118220415-2004576553-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, HKU\S-1-5-21-3168768775-2118220415-2004576553-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ExploraryToolbar, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
Valeurs du Registre: 1
PUP.Optional.Explorary, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{93985B2E-BE81-4E41-AB81-78D43E7E85BC}, Explorary Toolbar, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 4
PUP.Optional.ASK, C:\Users\MERCELLE\AppData\Local\Temp\APNLogs, En quarantaine, [43ac7af4e8b2ea4c9687f0e1857ddb25],
PUP.Optional.Explorary, C:\Program Files (x86)\Explorary, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, C:\Program Files (x86)\Explorary\Toolbar, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.ASK.Gen, C:\Users\MERCELLE\AppData\Local\Temp\APN-Stub, En quarantaine, [c42beb8335659f97754cae15798906fa],
Fichiers: 12
PUP.Optional.InstallCore, C:\Users\MERCELLE\Downloads\adobe_flash_setup(1).exe, En quarantaine, [bd32cf9f1e7c9e984de3b9de857fdb25],
PUP.Optional.InstallCore, C:\Users\MERCELLE\Downloads\adobe_flash_setup.exe, En quarantaine, [b738d19db8e277bfb8786f288c7839c7],
PUP.Optional.PerionTB, C:\Users\MERCELLE\Downloads\incredimail_install(1).exe, En quarantaine, [e9067cf2ecaeb5812eeec12334cd23dd],
PUP.Optional.ClientConnect, C:\Users\MERCELLE\Downloads\IncrediMail_TSA2756SJ.exe, En quarantaine, [b23d3d31366469cdaeadeddfad53dd23],
PUP.Optional.ClientConnect, C:\Users\MERCELLE\Downloads\IncrediMail_TSA2756ST.exe, En quarantaine, [67882846e4b61f170d4e16b6946ce719],
PUP.Optional.ASK, C:\Windows\Installer\292c8e6.msi, En quarantaine, [c32c3c32dac0bd79dafef16b07fdf907],
PUP.Optional.ASK, C:\Users\MERCELLE\AppData\Local\Temp\APNLogs\ci.log, En quarantaine, [43ac7af4e8b2ea4c9687f0e1857ddb25],
PUP.Optional.ASK, C:\Users\MERCELLE\AppData\Local\Temp\APNLogs\iw.log, En quarantaine, [43ac7af4e8b2ea4c9687f0e1857ddb25],
PUP.Optional.APNToolBar.Gen, C:\Users\MERCELLE\AppData\Local\Temp\ApnStub.exe, En quarantaine, [5b945915f6a4aa8c152adb1724df7a86],
PUP.Optional.Explorary, C:\Program Files (x86)\Explorary\Toolbar\Explorary.dll, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.Explorary, C:\Program Files (x86)\Explorary\Toolbar\ExploraryInstall.exe, En quarantaine, [5b94beb0099177bf8c9a189bb54d1de3],
PUP.Optional.ASK.Gen, C:\Users\MERCELLE\AppData\Local\Temp\APN-Stub\Stb115ba1f4-5426-490c-89a7-d52646e11850.log, En quarantaine, [c42beb8335659f97754cae15798906fa],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)