API tools faq
paste
Advertisement
Guest User

test

a guest
Oct 25th, 2016
155
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.36 KB | None | 0 0
raw download clone embed print report
  1. Malwarebytes Anti-Malware
  2. www.malwarebytes.org
  3.  
  4. Date de l'analyse: 2016-10-09
  5. Heure de l'analyse: 12:03
  6. Fichier journal:
  7. Administrateur: Oui
  8.  
  9. Version: 2.2.1.1043
  10. Base de données de programmes malveillants: v2016.10.09.07
  11. Base de données de rootkits: v2016.09.26.02
  12. Licence: Essai
  13. Protection contre les programmes malveillants: Activé
  14. Protection contre les sites Web malveillants: Activé
  15. Autoprotection: Désactivé
  16.  
  17. Système d'exploitation: Windows 7 Service Pack 1
  18. Processeur: x64
  19. Système de fichiers: NTFS
  20. Utilisateur: Barra
  21.  
  22. Type d'analyse: Analyse personnalisée
  23. Résultat: Terminé
  24. Objets analysés: 2319342
  25. Temps écoulé: 8 h, 40 min, 19 s
  26.  
  27. Mémoire: Activé
  28. Démarrage: Activé
  29. Système de fichiers: Activé
  30. Archives: Activé
  31. Rootkits: Activé
  32. Heuristique: Activé
  33. PUP: Activé
  34. PUM: Activé
  35.  
  36. Processus: 0
  37. (Aucun élément malveillant détecté)
  38.  
  39. Modules: 0
  40. (Aucun élément malveillant détecté)
  41.  
  42. Clés du Registre: 19
  43. PUP.Optional.VBates.Gen, HKLM\SOFTWARE\AIDUWB, En quarantaine, [c4672e693268989e9cfd1bde0df6e020],
  44. PUP.Optional.Amonetize, HKLM\SOFTWARE\MICROSOFT\TRACING\amztab_RASAPI32, En quarantaine, [34f766319505dc5a2d20b52944bf6f91],
  45. PUP.Optional.Amonetize, HKLM\SOFTWARE\MICROSOFT\TRACING\amztab_RASMANCS, En quarantaine, [ba714354a3f7a4928ac34c92bf4427d9],
  46. PUP.Optional.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\gplyra, En quarantaine, [c06bf5a2881294a23aca60720202ae52],
  47. PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, En quarantaine, [30fb6a2d8c0ec86e0215e3f6c043857b],
  48. PUP.Optional.CouponMarvel, HKLM\SOFTWARE\WOW6432NODE\{9E6892AE-EDB8-490A-9FDD-5A9770E7909E}, En quarantaine, [2902ddba009adf57a32235a7ed16ba46],
  49. PUP.Optional.VBates.Gen, HKLM\SOFTWARE\WOW6432NODE\AIDUWB, En quarantaine, [6ebdb8df079346f07524887126dd8779],
  50. PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, En quarantaine, [fb30a2f51c7e65d1d93eb1288c776b95],
  51. PUP.Optional.PCSpeedUp, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PCSUUCDRV, En quarantaine, [8f9c67301e7ca096e13300af0ef5649c],
  52. Adware.Hicosmea, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\cylandin, En quarantaine, [fc2f6d2ab0ea2a0cbb7cde06b44f9a66],
  53. PUP.Optional.OneSystemCare, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\One System Care, En quarantaine, [b07b9afd88123ef88e680dad01035aa6],
  54. PUP.Optional.ProPCCleaner, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\ProPCCleanerLanguage, En quarantaine, [1813880fd4c637ff616d8d23917221df],
  55. PUP.Optional.SysTweak, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\systweak, En quarantaine, [2ffcc6d13862999de48cac4ae61e8d73],
  56. PUP.Optional.Birds, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\3DODO, En quarantaine, [66c5910603972b0b3232a63bcd36837d],
  57. PUP.Optional.Birds, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\ARAPONGA, En quarantaine, [b2798611a3f71a1c98cdf9e8758e0ff1],
  58. PUP.Optional.Birds, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\BIRDS, En quarantaine, [2605b4e3653522141d49f7eadd26cc34],
  59. PUP.Optional.Searching, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\jlcgehabolcakkjhgmgpkagpolbjlhfa, En quarantaine, [2a01f2a58a108bab96547f58f70b11ef],
  60. PUP.Optional.Vitruvian, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\INSTALLPATH\STATUS, En quarantaine, [96951b7c88129c9a209c04e070932ed2],
  61. PUP.Optional.SystemSpeedup, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\SYSTWEAK\ssd, En quarantaine, [63c83e59e6b4191daee32dbb05fdfe02],
  62.  
  63. Valeurs du Registre: 16
  64. PUP.Optional.VBates.Gen, HKLM\SOFTWARE\Aiduwb|installer_name, vbates_cubeCAex4_.exe, En quarantaine, [c4672e693268989e9cfd1bde0df6e020]
  65. PUP.Optional.Groover.BrwsrFlsh, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{5C8EFD10-63D3-407B-85F6-E981AF3E1C97}, C:\Program Files\groover311220152041\Firefox\{5C8EFD10-63D3-407B-85F6-E981AF3E1C97}.xpi, En quarantaine, [d655e5b2ecaec96d0817296c9e65fb05]
  66. PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, En quarantaine, [30fb6a2d8c0ec86e0215e3f6c043857b]
  67. PUP.Optional.VBates.Gen, HKLM\SOFTWARE\WOW6432NODE\Aiduwb|installer_name, vbates_cubeCAex4_.exe, En quarantaine, [6ebdb8df079346f07524887126dd8779]
  68. PUP.Optional.Groover.BrwsrFlsh, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{5C8EFD10-63D3-407B-85F6-E981AF3E1C97}, C:\Program Files\groover311220152041\Firefox\{5C8EFD10-63D3-407B-85F6-E981AF3E1C97}.xpi, En quarantaine, [f6359403297159dd0718900541c24cb4]
  69. PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, En quarantaine, [fb30a2f51c7e65d1d93eb1288c776b95]
  70. PUP.Optional.DownServe, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{82850030-F2A8-4D6C-8A54-EA8493995BE2}, v2.10|Action=Allow|Active=TRUE|Dir=In|App=C:\Program Files (x86)\Microsoft.NET\v2.0.507237\client.exe|Name=Microsoft .Net Framework v2.0.507237 ALP (X86)_Client|Security=Authenticate|Security2_9=An-NoEncap|, En quarantaine, [2902c3d44f4b0135e157d41992718080]
  71. PUP.Optional.Birds, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\3DODO|path, C:\Users\Usager\AppData\Local\Birds365, En quarantaine, [66c5910603972b0b3232a63bcd36837d]
  72. PUP.Optional.Birds, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\ARAPONGA|Araponga, http://love.bengalflorican.com/birds247/installs.html, En quarantaine, [b2798611a3f71a1c98cdf9e8758e0ff1]
  73. PUP.Optional.Birds, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\BIRDS|play, start, En quarantaine, [2605b4e3653522141d49f7eadd26cc34]
  74. PUP.Optional.IEAudioAds, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\INSTALLPATH\STATUS|NuvisionDataRemarketer, I, En quarantaine, [cb602f683c5ec076fceedacbf50ef907]
  75. PUP.Optional.Vitruvian, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\INSTALLPATH\STATUS|SwiftSearch, I, En quarantaine, [96951b7c88129c9a209c04e070932ed2]
  76. PUP.Optional.DeskBar, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|DeskBar.exe, 8888, En quarantaine, [bc6f197e1585e2548fa58161a45ff40c]
  77. PUP.Optional.OneSystemCare, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\ONE SYSTEM CARE|OSID, 6.1, En quarantaine, [a586f99ecccecd697aac486660a35ca4]
  78. PUP.Optional.OneSystemCare, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\ONE SYSTEM CARE|AdvertsLink1, http://dl.softservers.net/121002826/DriverPro.exe, En quarantaine, [fa314354aaf0043226ff5f4f08fb0cf4]
  79. PUP.Optional.OneSystemCare, HKU\S-1-5-21-1113095909-1052334430-274988008-1004\SOFTWARE\ONE SYSTEM CARE|AdvertsLink2, http://od.onesaveservers.net/291002826/OneSaveSetup.exe, En quarantaine, [76b51780f8a2e353e93c921c6a9908f8]
  80.  
  81. Données du Registre: 0
  82. (Aucun élément malveillant détecté)
  83.  
  84. Dossiers: 6
  85. PUP.Optional.VBates, C:\Users\Barra\AppData\LocalLow\Company\Product\1.0, En quarantaine, [06251285dac048ee9c9b6064729127d9],
  86. PUP.Optional.VBates, C:\Users\Barra\AppData\LocalLow\Company\Product, En quarantaine, [06251285dac048ee9c9b6064729127d9],
  87. PUP.Optional.DownServe, C:\Program Files (x86)\Microsoft.NET\v2.0.507237, En quarantaine, [cd5e494e38623cfa985a2eb14ab9f808],
  88. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  89. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\content, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  90. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\META-INF, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  91.  
  92. Fichiers: 26
  93. PUP.Optional.Tuto4PC, C:\AdwCleaner\quarantine\files\schunegindacagjzlcgsjirkuxbdxptd\wincom_S2L.exe, En quarantaine, [ee3d77204c4eeb4b0f8ac8215aa76e92],
  94. Trojan.Agent, C:\Program Files (x86)\Autodesk\3ds Max 2010\Keygen Autodesk 2010 x32.exe, En quarantaine, [85a6d1c6950510269e06c04f2fd34eb2],
  95. PUP.Optional.Conduit, C:\Users\Usager\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\03Q85CON\OrbiterInstaller[1].exe, En quarantaine, [0526b4e3fb9f77bf8a694883728e6b95],
  96. PUP.Optional.SolidDownloader, C:\Users\Usager\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A1J0KLGA\youtube-downloader-im[1].exe, En quarantaine, [ba71fa9dd3c7e74f3fbfb5c1936e44bc],
  97. PUP.Optional.ConvertAd, C:\Users\Usager\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D5M5N4W8\2e417c30332af14bdc6593fbf1d8e64f[1].exe, En quarantaine, [af7c76217c1e2b0ba57258fc45bf27d9],
  98. PUP.Optional.ConvertAd, C:\Users\Usager\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GFT0JPW8\tiwr[1].exe, En quarantaine, [79b26b2cfe9c1f178800f55d29d9936d],
  99. PUP.Optional.ConvertAd, C:\Users\Usager\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MAXK2C86\setup[1].exe, En quarantaine, [56d599fe41590b2b28312dc649b8fd03],
  100. PUP.Optional.Komodia.WnskRST, C:\Windows\SysWOW64\Hattag.dll, En quarantaine, [f8330b8cb2e8bf771630b0b06d9415eb],
  101. Spyware.OnlineGames, E:\Lineage-Jeux\Embryo - Copie - Copie\L2Rampage.exe, En quarantaine, [23085e39aaf061d5061eef7861a044bc],
  102. Trojan.Agent, I:\Save3d\keygen autodesk 2010 en español.rar, En quarantaine, [93983661683272c420845ab5729034cc],
  103. PUP.Optional.VBates, C:\Users\Barra\AppData\LocalLow\Company\Product\1.0\localStorageIE.txt, En quarantaine, [06251285dac048ee9c9b6064729127d9],
  104. PUP.Optional.VBates, C:\Users\Barra\AppData\LocalLow\Company\Product\1.0\localStorageIE_backup.txt, En quarantaine, [06251285dac048ee9c9b6064729127d9],
  105. PUP.Optional.DownServe, C:\Program Files (x86)\Microsoft.NET\v2.0.507237\corecfg.ini, En quarantaine, [cd5e494e38623cfa985a2eb14ab9f808],
  106. PUP.Optional.DownServe, C:\Program Files (x86)\Microsoft.NET\v2.0.507237\client.exe, En quarantaine, [cd5e494e38623cfa985a2eb14ab9f808],
  107. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\001d4599, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  108. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\chrome.manifest, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  109. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\install.rdf, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  110. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\content\browser.xul, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  111. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\content\content.js, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  112. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\content\icon-48.png, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  113. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\content\icon-64.png, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  114. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\META-INF\manifest.mf, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  115. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\META-INF\mozilla.rsa, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  116. PUP.Optional.FastSearch, C:\Users\Barra\AppData\Roaming\Mozilla\Firefox\Profiles\3riovls4.default\extensions\amcontextmenu@loucypher\META-INF\mozilla.sf, En quarantaine, [29026b2c9dfd270f424a2dd1a460926e],
  117. PUP.Optional.HijackHosts.Gen, C:\Windows\System32\baum\fep\kyep.dat, En quarantaine, [ed3e2c6babef171f297abddc8e76c040],
  118. PUP.Optional.HijackHosts.Gen, C:\Windows\System32\ripb\tik\nupi.dat, En quarantaine, [131880175d3dff37acf7d6c30301a45c],
  119.  
  120. Secteurs physiques: 0
  121. (Aucun élément malveillant détecté)
  122.  
  123.  
  124. (end)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!