Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 20/04/2019
Heure de l'analyse: 14:39
Fichier journal: mbam rapport galaxy book 20_4_2019.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2019.04.20.03
Base de données de rootkits: v2019.04.20.03
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Activé
Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: EFM_UEFM_Barrow_U
Type d'analyse: Analyse personnalisée
Résultat: Terminé
Objets analysés: 488259
Temps écoulé: 4 h, 24 min, 57 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 13
PUP.Optional.BabylonToolBar, HKLM\SOFTWARE\CLASSES\esrv.BabylonESrvc, En quarantaine, [61723542d9ee3ff71624078eb54b6b95],
PUP.Optional.BabylonToolBar, HKLM\SOFTWARE\CLASSES\esrv.BabylonESrvc.1, En quarantaine, [e9eac3b4d7f046f0bf7b55402cd437c9],
PUP.Optional.Restoro, HKLM\SOFTWARE\CLASSES\Restoro.Engine, En quarantaine, [498a215612b5003682c7fcb6f70919e7],
PUP.Optional.Restoro, HKLM\SOFTWARE\CLASSES\Restoro.Engine.1, En quarantaine, [0fc45027527576c01e2b70424fb1bb45],
Adware.WebCompass, HKLM\SOFTWARE\CLASSES\wbappbar, En quarantaine, [755e65124384bd79b8a05d55df21f10f],
PUP.Optional.Restoro, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Restoro.exe, En quarantaine, [399a6116e1e6072f89205f700cf4748c],
PUP.Optional.BabylonToolBar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.BabylonESrvc, En quarantaine, [5a794c2bf0d7270f5cde8e07e9179f61],
PUP.Optional.BabylonToolBar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.BabylonESrvc.1, En quarantaine, [02d19fd8596eb08656e43d589070926e],
PUP.Optional.Restoro, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Restoro.Engine, En quarantaine, [1bb83047339406301c2debc731cf35cb],
PUP.Optional.Restoro, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Restoro.Engine.1, En quarantaine, [e3f07ef97057e0561d2c2c86f60a8878],
Adware.WebCompass, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wbappbar, En quarantaine, [0dc698dfc8ff4ee81048288ad828ab55],
PUP.Optional.Babylon, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\dhkplhfnhceodhffomolpfigojocbpcb, En quarantaine, [993a9cdbb80fce68bf4bbbf941bf718f],
PUP.Optional.Restoro, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Restoro.exe, En quarantaine, [7360a5d224a3251136732da25ba5ac54],
Valeurs du Registre: 0
(Aucun élément malveillant détecté)
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 1
PUP.Optional.UniversalDriverUpdater, C:\Windows\System32\Tasks\Universal\Driver Updater, En quarantaine, [676c85f2ae197eb879691f17df211ce4],
Fichiers: 27
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\AdvancedSystemRepairPro.exe#3FE13DF979008661, En quarantaine, [359eabcc7f48cc6acf82939ced1757a9],
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\asrlauncher.exe#93A729465343B83D, En quarantaine, [c11284f33196bb7b2e23b27d23e104fc],
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\asrscan.sys#15DA3B216F25D423, En quarantaine, [f1e2dd9afacd46f0a1b0151a35cfb64a],
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\pcw.dll#7C475E6E4600BC47, En quarantaine, [775c1a5d9730989e63eec56a54b0728e],
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\tscmon.exe#545C109CAFF295A4, En quarantaine, [ab28c4b33691ff3764ed08270202718f],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\cloud.exe, En quarantaine, [ede6e592b314f93d5cc38a84ee168d73],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\ffmpeg.dll, En quarantaine, [d7fc4730bc0bb6807828d131837d7a86],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\libEGL.dll, En quarantaine, [6c676611d5f27eb8938c6ea03acac937],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\libGLESv2.dll, En quarantaine, [c0130b6c755284b2859aa5697193af51],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\node.dll, En quarantaine, [1bb8492e289fe55178a79e708d77956b],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\nw_elf.dll, En quarantaine, [e5ee6710844342f420ff4ec0f1138878],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\Uninstall.exe, En quarantaine, [a52e393e6760d75fd04f31ddf90b4fb1],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\node_modules\sqlite3\lib\binding\node-webkit-v0.25.2-win32-ia32\node_sqlite3.node, En quarantaine, [973c1a5dfec9e1552f714cb67b8553ad],
PUP.Optional.PCOptimizerPro, C:\QuickDiag\Quarantine\L\PC Optimizer Pro.QuickScript\PCOptProCtxMenu.dll, En quarantaine, [15be86f1a423c274487f199a41c1b749],
PUP.Optional.PCOptimizerPro, C:\QuickDiag\Quarantine\L\PC Optimizer Pro.QuickScript\PCOptProTrays.exe, En quarantaine, [9d365c1b3790eb4bba0d2c8725dd619f],
PUP.Optional.PCOptimizerPro, C:\QuickDiag\Quarantine\L\PC Optimizer Pro.QuickScript\uninst.exe, En quarantaine, [4291c7b0e5e2c96d928a55dfb84cce32],
PUP.Optional.WinSweeper, C:\Users\EFM_UEFM_Barrow_U\Desktop\Setup_WinSweeper_2019.exe, En quarantaine, [c60dcdaa8e393df9b7e59d14b44ef907],
PUP.Optional.InstallCore.Generic, C:\Users\EFM_UEFM_Barrow_U\Documents\bitlord_3713582453.exe, En quarantaine, [389b80f73d8a41f58d1d5019b949eb15],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP1, En quarantaine, [7a59a0d783448da944cdbcbef808a957],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP2_1, En quarantaine, [07cca1d6a6213afcff120b6fa25e14ec],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP2_2, En quarantaine, [50838aedb21551e5030e7dfd54ac46ba],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP2_3, En quarantaine, [0fc480f71bac999d1cf58eec1be5f20e],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP3_1, En quarantaine, [e5ee1a5d982f1521c74ad3a7916f9e62],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_STRTP, En quarantaine, [8152e196d7f0f14533de5b1fe31de719],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_TIME, En quarantaine, [3d964c2b66611a1c66ab4535fd03738d],
PUP.Optional.UniversalDriverUpdater, C:\Windows\System32\Tasks\Universal\Driver Updater\Start Driver Updater automatic scanning, En quarantaine, [676c85f2ae197eb879691f17df211ce4],
PUP.Optional.UniversalDriverUpdater, C:\Windows\System32\Tasks\Universal\Driver Updater\Start Driver Updater ?n logon, En quarantaine, [676c85f2ae197eb879691f17df211ce4],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.org
Date de l'analyse: 20/04/2019
Heure de l'analyse: 14:39
Fichier journal: mbam rapport galaxy book 20_4_2019.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2019.04.20.03
Base de données de rootkits: v2019.04.20.03
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Activé
Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: EFM_UEFM_Barrow_U
Type d'analyse: Analyse personnalisée
Résultat: Terminé
Objets analysés: 488259
Temps écoulé: 4 h, 24 min, 57 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 13
PUP.Optional.BabylonToolBar, HKLM\SOFTWARE\CLASSES\esrv.BabylonESrvc, En quarantaine, [61723542d9ee3ff71624078eb54b6b95],
PUP.Optional.BabylonToolBar, HKLM\SOFTWARE\CLASSES\esrv.BabylonESrvc.1, En quarantaine, [e9eac3b4d7f046f0bf7b55402cd437c9],
PUP.Optional.Restoro, HKLM\SOFTWARE\CLASSES\Restoro.Engine, En quarantaine, [498a215612b5003682c7fcb6f70919e7],
PUP.Optional.Restoro, HKLM\SOFTWARE\CLASSES\Restoro.Engine.1, En quarantaine, [0fc45027527576c01e2b70424fb1bb45],
Adware.WebCompass, HKLM\SOFTWARE\CLASSES\wbappbar, En quarantaine, [755e65124384bd79b8a05d55df21f10f],
PUP.Optional.Restoro, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Restoro.exe, En quarantaine, [399a6116e1e6072f89205f700cf4748c],
PUP.Optional.BabylonToolBar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.BabylonESrvc, En quarantaine, [5a794c2bf0d7270f5cde8e07e9179f61],
PUP.Optional.BabylonToolBar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.BabylonESrvc.1, En quarantaine, [02d19fd8596eb08656e43d589070926e],
PUP.Optional.Restoro, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Restoro.Engine, En quarantaine, [1bb83047339406301c2debc731cf35cb],
PUP.Optional.Restoro, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Restoro.Engine.1, En quarantaine, [e3f07ef97057e0561d2c2c86f60a8878],
Adware.WebCompass, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wbappbar, En quarantaine, [0dc698dfc8ff4ee81048288ad828ab55],
PUP.Optional.Babylon, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\dhkplhfnhceodhffomolpfigojocbpcb, En quarantaine, [993a9cdbb80fce68bf4bbbf941bf718f],
PUP.Optional.Restoro, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Restoro.exe, En quarantaine, [7360a5d224a3251136732da25ba5ac54],
Valeurs du Registre: 0
(Aucun élément malveillant détecté)
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 1
PUP.Optional.UniversalDriverUpdater, C:\Windows\System32\Tasks\Universal\Driver Updater, En quarantaine, [676c85f2ae197eb879691f17df211ce4],
Fichiers: 27
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\AdvancedSystemRepairPro.exe#3FE13DF979008661, En quarantaine, [359eabcc7f48cc6acf82939ced1757a9],
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\asrlauncher.exe#93A729465343B83D, En quarantaine, [c11284f33196bb7b2e23b27d23e104fc],
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\asrscan.sys#15DA3B216F25D423, En quarantaine, [f1e2dd9afacd46f0a1b0151a35cfb64a],
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\pcw.dll#7C475E6E4600BC47, En quarantaine, [775c1a5d9730989e63eec56a54b0728e],
PUP.Optional.AdvancedSystemRepair, C:\AdwCleaner\Quarantine\v1\20190420.141140\27\ADVANCED SYSTEM REPAIR PRO 1.8.1.3.0\tscmon.exe#545C109CAFF295A4, En quarantaine, [ab28c4b33691ff3764ed08270202718f],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\cloud.exe, En quarantaine, [ede6e592b314f93d5cc38a84ee168d73],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\ffmpeg.dll, En quarantaine, [d7fc4730bc0bb6807828d131837d7a86],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\libEGL.dll, En quarantaine, [6c676611d5f27eb8938c6ea03acac937],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\libGLESv2.dll, En quarantaine, [c0130b6c755284b2859aa5697193af51],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\node.dll, En quarantaine, [1bb8492e289fe55178a79e708d77956b],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\nw_elf.dll, En quarantaine, [e5ee6710844342f420ff4ec0f1138878],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\Uninstall.exe, En quarantaine, [a52e393e6760d75fd04f31ddf90b4fb1],
PUP.Optional.DriverPack, C:\Program Files (x86)\DriverPack Cloud\node_modules\sqlite3\lib\binding\node-webkit-v0.25.2-win32-ia32\node_sqlite3.node, En quarantaine, [973c1a5dfec9e1552f714cb67b8553ad],
PUP.Optional.PCOptimizerPro, C:\QuickDiag\Quarantine\L\PC Optimizer Pro.QuickScript\PCOptProCtxMenu.dll, En quarantaine, [15be86f1a423c274487f199a41c1b749],
PUP.Optional.PCOptimizerPro, C:\QuickDiag\Quarantine\L\PC Optimizer Pro.QuickScript\PCOptProTrays.exe, En quarantaine, [9d365c1b3790eb4bba0d2c8725dd619f],
PUP.Optional.PCOptimizerPro, C:\QuickDiag\Quarantine\L\PC Optimizer Pro.QuickScript\uninst.exe, En quarantaine, [4291c7b0e5e2c96d928a55dfb84cce32],
PUP.Optional.WinSweeper, C:\Users\EFM_UEFM_Barrow_U\Desktop\Setup_WinSweeper_2019.exe, En quarantaine, [c60dcdaa8e393df9b7e59d14b44ef907],
PUP.Optional.InstallCore.Generic, C:\Users\EFM_UEFM_Barrow_U\Documents\bitlord_3713582453.exe, En quarantaine, [389b80f73d8a41f58d1d5019b949eb15],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP1, En quarantaine, [7a59a0d783448da944cdbcbef808a957],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP2_1, En quarantaine, [07cca1d6a6213afcff120b6fa25e14ec],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP2_2, En quarantaine, [50838aedb21551e5030e7dfd54ac46ba],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP2_3, En quarantaine, [0fc480f71bac999d1cf58eec1be5f20e],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_PP3_1, En quarantaine, [e5ee1a5d982f1521c74ad3a7916f9e62],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_STRTP, En quarantaine, [8152e196d7f0f14533de5b1fe31de719],
PUP.Optional.WinThruster, C:\Windows\System32\Tasks\WINTHRUSTER_TIME, En quarantaine, [3d964c2b66611a1c66ab4535fd03738d],
PUP.Optional.UniversalDriverUpdater, C:\Windows\System32\Tasks\Universal\Driver Updater\Start Driver Updater automatic scanning, En quarantaine, [676c85f2ae197eb879691f17df211ce4],
PUP.Optional.UniversalDriverUpdater, C:\Windows\System32\Tasks\Universal\Driver Updater\Start Driver Updater ?n logon, En quarantaine, [676c85f2ae197eb879691f17df211ce4],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)