Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 14/01/2017
Heure de l'analyse: 15:05
Fichier journal: mbam.txt
Administrateur: Oui
-Informations du logiciel-
Version: 3.0.5.1299
Version de composants: 1.0.43
Version de pack de mise à jour: 1.0.1009
Licence: Essai
-Informations système-
Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: MOUMOUTTE\julie
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 398686
Temps écoulé: 7 min, 29 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé
-Détails de l'analyse-
Processus: 1
PUP.Optional.Plumbytes, C:\PROGRAM FILES\PLUMBYTES SOFTWARE\PLUMBYTES ANTI-MALWARE\AMWSERVICE.EXE, En quarantaine, [10675], [262041],1.0.1009
Module: 1
PUP.Optional.Plumbytes, C:\PROGRAM FILES\PLUMBYTES SOFTWARE\PLUMBYTES ANTI-MALWARE\AMWSERVICE.EXE, En quarantaine, [10675], [262041],1.0.1009
Clé du registre: 5
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, En quarantaine, [1317], [327206],1.0.1009
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, En quarantaine, [1317], [327205],1.0.1009
PUP.Optional.ReMarkIt.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, En quarantaine, [17842], [-1],0.0.0
PUP.Optional.Plumbytes, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PBAMW_SERVICE, En quarantaine, [10675], [262041],1.0.1009
PUP.Optional.Plumbytes, HKLM\SOFTWARE\Plumbytes Software, En quarantaine, [10675], [262040],1.0.1009
Valeur du registre: 4
PUP.Optional.ReMarkIt.PrxySvrRST, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Échec de la suppression, [17842], [-1],0.0.0
PUP.Optional.ReMarkIt.PrxySvrRST, HKU\S-1-5-21-194285682-3511173861-3578778010-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En quarantaine, [17842], [-1],0.0.0
PUP.Optional.ReMarkIt.PrxySvrRST, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Échec de la suppression, [17842], [-1],0.0.0
PUP.Optional.Plumbytes, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PBAMW_SERVICE|DESCRIPTION, En quarantaine, [10675], [262041],1.0.1009
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 6
PUP.Optional.Plumbytes, C:\USERS\JULIE\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\PLUMBYTES ANTI-MALWARE, En quarantaine, [10675], [262039],1.0.1009
PUP.Optional.ThreatSupport, C:\USERS\JULIE\APPDATA\LOCAL\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD}, En quarantaine, [2322], [343538],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\_metadata, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\icons, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\KCBOAFODFIDHKJHHAGEKCBEEPEGNCCHA, En quarantaine, [1882], [302088],1.0.1009
Fichier: 18
PUP.Optional.Plumbytes, C:\USERS\JULIE\DESKTOP\PLUMBYTES ANTI-MALWARE.LNK, En quarantaine, [10675], [262035],1.0.1009
PUP.Optional.Plumbytes, C:\USERS\JULIE\APPDATA\LOCAL\TEMP\PAI3433.TMP, En quarantaine, [10675], [123575],1.0.1009
PUP.Optional.Reimage, C:\WINDOWS\TEMP\REIMAGE.LOG, En quarantaine, [1317], [334717],1.0.1009
PUP.Optional.Plumbytes, C:\USERS\JULIE\DOWNLOADS\ANTIMALWARESETUP.EXE, En quarantaine, [10675], [123575],1.0.1009
PUP.Optional.Plumbytes, C:\USERS\JULIE\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\PLUMBYTES ANTI-MALWARE\PLUMBYTES ANTI-MALWARE.LNK, En quarantaine, [10675], [262039],1.0.1009
PUP.Optional.Plumbytes, C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plumbytes Anti-Malware\Uninstall.lnk, En quarantaine, [10675], [262039],1.0.1009
PUP.Optional.ThreatSupport, C:\USERS\JULIE\APPDATA\LOCAL\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD}\SCANLOGS.XML, En quarantaine, [2322], [343538],1.0.1009
PUP.Optional.SearchAlgo, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\KCBOAFODFIDHKJHHAGEKCBEEPEGNCCHA\1.0.0_0\MANIFEST.JSON, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\icons\icon128.png, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\icons\icon16.png, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\_metadata\computed_hashes.json, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\_metadata\verified_contents.json, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\background.js, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.ReMarkIt.PrxySvrRST, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\https_ad.re-markit00.re-markit.co_0.localstorage, En quarantaine, [17842], [257824],1.0.1009
PUP.Optional.ReMarkIt.PrxySvrRST, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\https_static.re-markit00.re-markit.co_0.localstorage, En quarantaine, [17842], [257824],1.0.1009
PUP.Optional.Yontoo, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_ad.coupontime00.coupontime.co_0.localstorage, En quarantaine, [70], [304355],1.0.1009
PUP.Optional.Yontoo, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_static.coupontime00.coupontime.co_0.localstorage, En quarantaine, [70], [304355],1.0.1009
PUP.Optional.Plumbytes, C:\PROGRAM FILES\PLUMBYTES SOFTWARE\PLUMBYTES ANTI-MALWARE\AMWSERVICE.EXE, En quarantaine, [10675], [262041],1.0.1009
Secteur physique: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 14/01/2017
Heure de l'analyse: 15:05
Fichier journal: mbam.txt
Administrateur: Oui
-Informations du logiciel-
Version: 3.0.5.1299
Version de composants: 1.0.43
Version de pack de mise à jour: 1.0.1009
Licence: Essai
-Informations système-
Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: MOUMOUTTE\julie
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 398686
Temps écoulé: 7 min, 29 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé
-Détails de l'analyse-
Processus: 1
PUP.Optional.Plumbytes, C:\PROGRAM FILES\PLUMBYTES SOFTWARE\PLUMBYTES ANTI-MALWARE\AMWSERVICE.EXE, En quarantaine, [10675], [262041],1.0.1009
Module: 1
PUP.Optional.Plumbytes, C:\PROGRAM FILES\PLUMBYTES SOFTWARE\PLUMBYTES ANTI-MALWARE\AMWSERVICE.EXE, En quarantaine, [10675], [262041],1.0.1009
Clé du registre: 5
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, En quarantaine, [1317], [327206],1.0.1009
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, En quarantaine, [1317], [327205],1.0.1009
PUP.Optional.ReMarkIt.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, En quarantaine, [17842], [-1],0.0.0
PUP.Optional.Plumbytes, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PBAMW_SERVICE, En quarantaine, [10675], [262041],1.0.1009
PUP.Optional.Plumbytes, HKLM\SOFTWARE\Plumbytes Software, En quarantaine, [10675], [262040],1.0.1009
Valeur du registre: 4
PUP.Optional.ReMarkIt.PrxySvrRST, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Échec de la suppression, [17842], [-1],0.0.0
PUP.Optional.ReMarkIt.PrxySvrRST, HKU\S-1-5-21-194285682-3511173861-3578778010-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En quarantaine, [17842], [-1],0.0.0
PUP.Optional.ReMarkIt.PrxySvrRST, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Échec de la suppression, [17842], [-1],0.0.0
PUP.Optional.Plumbytes, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PBAMW_SERVICE|DESCRIPTION, En quarantaine, [10675], [262041],1.0.1009
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 6
PUP.Optional.Plumbytes, C:\USERS\JULIE\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\PLUMBYTES ANTI-MALWARE, En quarantaine, [10675], [262039],1.0.1009
PUP.Optional.ThreatSupport, C:\USERS\JULIE\APPDATA\LOCAL\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD}, En quarantaine, [2322], [343538],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\_metadata, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\icons, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\KCBOAFODFIDHKJHHAGEKCBEEPEGNCCHA, En quarantaine, [1882], [302088],1.0.1009
Fichier: 18
PUP.Optional.Plumbytes, C:\USERS\JULIE\DESKTOP\PLUMBYTES ANTI-MALWARE.LNK, En quarantaine, [10675], [262035],1.0.1009
PUP.Optional.Plumbytes, C:\USERS\JULIE\APPDATA\LOCAL\TEMP\PAI3433.TMP, En quarantaine, [10675], [123575],1.0.1009
PUP.Optional.Reimage, C:\WINDOWS\TEMP\REIMAGE.LOG, En quarantaine, [1317], [334717],1.0.1009
PUP.Optional.Plumbytes, C:\USERS\JULIE\DOWNLOADS\ANTIMALWARESETUP.EXE, En quarantaine, [10675], [123575],1.0.1009
PUP.Optional.Plumbytes, C:\USERS\JULIE\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\PLUMBYTES ANTI-MALWARE\PLUMBYTES ANTI-MALWARE.LNK, En quarantaine, [10675], [262039],1.0.1009
PUP.Optional.Plumbytes, C:\Users\julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plumbytes Anti-Malware\Uninstall.lnk, En quarantaine, [10675], [262039],1.0.1009
PUP.Optional.ThreatSupport, C:\USERS\JULIE\APPDATA\LOCAL\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD}\SCANLOGS.XML, En quarantaine, [2322], [343538],1.0.1009
PUP.Optional.SearchAlgo, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\KCBOAFODFIDHKJHHAGEKCBEEPEGNCCHA\1.0.0_0\MANIFEST.JSON, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\icons\icon128.png, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\icons\icon16.png, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\_metadata\computed_hashes.json, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\_metadata\verified_contents.json, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.SearchAlgo, C:\Users\julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcboafodfidhkjhhagekcbeepegnccha\1.0.0_0\background.js, En quarantaine, [1882], [302088],1.0.1009
PUP.Optional.ReMarkIt.PrxySvrRST, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\https_ad.re-markit00.re-markit.co_0.localstorage, En quarantaine, [17842], [257824],1.0.1009
PUP.Optional.ReMarkIt.PrxySvrRST, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\https_static.re-markit00.re-markit.co_0.localstorage, En quarantaine, [17842], [257824],1.0.1009
PUP.Optional.Yontoo, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_ad.coupontime00.coupontime.co_0.localstorage, En quarantaine, [70], [304355],1.0.1009
PUP.Optional.Yontoo, C:\USERS\JULIE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\LOCAL STORAGE\http_static.coupontime00.coupontime.co_0.localstorage, En quarantaine, [70], [304355],1.0.1009
PUP.Optional.Plumbytes, C:\PROGRAM FILES\PLUMBYTES SOFTWARE\PLUMBYTES ANTI-MALWARE\AMWSERVICE.EXE, En quarantaine, [10675], [262041],1.0.1009
Secteur physique: 0
(Aucun élément malveillant détecté)
(end)