Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Malwarebytes Anti-Malware
- www.malwarebytes.org
- Date de l'analyse: 20/11/2015
- Heure de l'analyse: 16:17
- Fichier journal:
- Administrateur: Oui
- Version: 2.2.0.1024
- Base de données de programmes malveillants: v2015.11.20.03
- Base de données de rootkits: v2015.11.14.01
- Licence: Essai
- Protection contre les programmes malveillants: Activé
- Protection contre les sites Web malveillants: Activé
- Autoprotection: Désactivé
- Système d'exploitation: Windows 10
- Processeur: x64
- Système de fichiers: NTFS
- Utilisateur: Thomas Vigier
- Type d'analyse: Analyse des menaces
- Résultat: Terminé
- Objets analysés: 577616
- Temps écoulé: 9 min, 7 s
- Mémoire: Activé
- Démarrage: Activé
- Système de fichiers: Activé
- Archives: Activé
- Rootkits: Désactivé
- Heuristique: Activé
- PUP: Activé
- PUM: Activé
- Processus: 0
- (Aucun élément malveillant détecté)
- Modules: 0
- (Aucun élément malveillant détecté)
- Clés du Registre: 51
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{EAC7DE5C-9520-435D-91AA-4A02E4773CEA}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\TYPELIB\{082D3FEC-D0D0-4DF6-A988-053FECE7B884}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\TYPELIB\{638805C3-4BA3-4AC8-8AAC-71A0BA2BC284}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\TYPELIB\{909A6CCD-6810-46C4-89DF-05BE7EB61E6C}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{0299ECA9-80B6-43C8-A79A-FB1C5F19E7D8}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{0f872661-c863-47a4-863f-c065c182858a}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{79A2A54C-3916-41FD-9FAB-F26ED0BBA755}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{9D613F8A-B30E-4938-8490-CB5677701EBF}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{ACDB5DB0-C9D5-461C-BAAA-5DCE0B980E40}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{F0AF7C30-EAE4-4644-961D-54E6E28708D6}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\TYPELIB\{A195846E-1536-4ACD-A720-9DB32D3AD239}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{5E376961-9097-481C-886C-59A7A3DE24F0}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{6766BB3A-7821-46B3-98BF-41F0402B73D1}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{72C88F85-FE66-4E49-BA23-8E850D607D06}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{76EECC6C-1042-4272-9468-9DF02AFB0A2D}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\TYPELIB\{BAE13F6C-0E2A-4DEB-AA46-B8F55319347C}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{02C98E2C-6C9F-49F8-9B57-3A6E1AA09A67}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{049FED7E-C3EA-4B66-9D92-10E8085D60FB}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{0776ae27-5ab9-4e18-9063-1836da63117a}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{0d4e4444-cb20-4c2b-b8b2-94e5656ecae8}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{10C9242E-D604-49B5-99E4-BF87945EF86C}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{1196AE48-D92B-4BC7-85DE-664EC3F761F1}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{1B71F23B-E61F-45C9-83BA-235D55F50CF9}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{1b7aed4f-fcaf-4da4-8795-c03e635d8edc}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{22A68885-0FD9-42F6-9DED-4FB174DC7344}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{2387C6BD-9A36-41A2-88ED-FF731E529384}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{2EB31403-EBE0-41EA-AE91-A1953104EA55}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{385ED83D-B50C-4580-B2C3-9E64DBE7F511}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{390AF5A7-1390-4255-9BC9-935BFCFA5D57}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{3A4E62AE-45D9-41D5-85F5-A45B77AB44E5}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{3ACA1BFE-DF4B-4A79-B757-457EEB1A0348}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{48F49A60-AFA8-469D-98EA-64075FA6A1D6}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{53de12aa-df96-413d-a25e-c75b6528abf2}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{5d65dd0d-81bf-4ff4-aeea-6effb445cb3f}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{8B9F14F4-9559-4A3F-B7D0-312E992B6D98}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{944903E8-B03F-43A0-8341-872200D2DA9C}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{9E1CD0DF-72E7-4284-9598-342C0A46F96B}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{a7126d4c-f492-4eb9-8a2a-f673dbdd3334}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{AF60000F-661D-472A-9588-F062F6DB7A0E}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{B54E7079-90C9-4C62-A6B8-B2834C33A04A}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{b5c25645-7426-433f-8a5f-42b7ff27a7b2}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{c1439245-96b4-47fc-b391-679386c5d40f}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{C2FE84F5-E036-4A07-950C-9BFD3EAB983A}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{D0ED5C72-6197-4AAD-9B16-53FE461DD85C}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{d8c80ebb-099c-4208-afa3-fbc4d11f8a3c}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{EA23A664-A558-4548-A8FE-A6B94D37C3CF}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{f0440f4e-4884-4a8F-8a45-ba89c00f96f2}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{F062BA81-ADFE-4A92-886A-23FD851D6406}, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- PUP.Optional.MultiPlug, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, En quarantaine, [1c27c3bd1a713ff7eec7d9d824df31cf],
- PUP.Optional.MultiPlug, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001_Classes\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, En quarantaine, [1c27c3bd1a713ff7eec7d9d824df31cf],
- Valeurs du Registre: 7
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Uninstall C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64, C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64", En quarantaine, [c47f18688dfe91a54d377abd72900ef2]
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Uninstall C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5892.0626, C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5892.0626", En quarantaine, [c47f18688dfe91a54d377abd72900ef2]
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Uninstall C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64, C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64", En quarantaine, [c47f18688dfe91a54d377abd72900ef2]
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Uninstall C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5930.0814, C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5930.0814", En quarantaine, [c47f18688dfe91a54d377abd72900ef2]
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Uninstall C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64, C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64", En quarantaine, [c47f18688dfe91a54d377abd72900ef2]
- PUP.Optional.Amonetize, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Uninstall C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5951.0827, C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Thomas Vigier\AppData\Local\Microsoft\OneDrive\17.3.5951.0827", En quarantaine, [c47f18688dfe91a54d377abd72900ef2]
- Hijack.Autoconfig.ShrtCln, HKU\S-1-5-21-3166926752-1464466919-1849669069-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigUrl, http://get-access.me/wpad.dat?fa25a29a624b3759a19dd457f522f9ae1587140, En quarantaine, [ea59552bf4979f97e028a92508fb916f]
- Données du Registre: 1
- PUP.Optional.ASK.Gen, HKU\S-1-5-21-3166926752-1464466919-1849669069-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.search.ask.com/?o=APN10640A&gct=hp&d=473-0&v=u13452-424&t=4, Bon : (www.google.com), Mauvais : (http://www.search.ask.com/?o=APN10640A&gct=hp&d=473-0&v=u13452-424&t=4),Remplacé,[8bb8067abad10135c6577ce3a85c29d7]
- Dossiers: 3
- PUP.Optional.Salus.PrxySvrRST, C:\Program Files (x86)\Umtayyznhndq1ntz, En quarantaine, [2b183d43a7e41422163fde7ecc36fa06],
- PUP.Optional.FastPlayer, C:\Users\Thomas Vigier\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q, En quarantaine, [6cd75f21553654e2a1a2214e12f07e82],
- PUP.Optional.FastPlayer, C:\Users\Thomas Vigier\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.3, En quarantaine, [6cd75f21553654e2a1a2214e12f07e82],
- Fichiers: 8
- PUP.Optional.Amonetize, C:\Users\Thomas, En quarantaine, [c47f18688dfe91a54d377abd72900ef2],
- Adware.Salus.C, C:\Program Files (x86)\Umtayyznhndq1ntz\mwmyzjmzngu1mdy.exe, En quarantaine, [2b18522ea0eb112527a8769ca75af010],
- PUP.Optional.Salus.PrxySvrRST, C:\Program Files (x86)\Umtayyznhndq1ntz\mtuyntm5ndy1yjy.exe, En quarantaine, [2b183d43a7e41422163fde7ecc36fa06],
- PUP.Optional.Salus.PrxySvrRST, C:\Program Files (x86)\Umtayyznhndq1ntz\mtuyntm5ndy1yjy.log, En quarantaine, [2b183d43a7e41422163fde7ecc36fa06],
- PUP.Optional.Salus.PrxySvrRST, C:\Program Files (x86)\Umtayyznhndq1ntz\mwmyzjmzngu1mdy.dat, En quarantaine, [2b183d43a7e41422163fde7ecc36fa06],
- PUP.Optional.Salus.PrxySvrRST, C:\Program Files (x86)\Umtayyznhndq1ntz\mwmyzjmzngu1mdy.exe, En quarantaine, [2b183d43a7e41422163fde7ecc36fa06],
- PUP.Optional.Salus.PrxySvrRST, C:\Program Files (x86)\Umtayyznhndq1ntz\mwmyzjmzngu1mdy.log, En quarantaine, [2b183d43a7e41422163fde7ecc36fa06],
- PUP.Optional.FastPlayer, C:\Users\Thomas Vigier\AppData\Local\com\FastPlayer.exe_Url_ypw5ldaz5xtubzl3ykl5vaw3nmhswq1q\1.0.0.3\user.config, En quarantaine, [6cd75f21553654e2a1a2214e12f07e82],
- Secteurs physiques: 0
- (Aucun élément malveillant détecté)
- (end)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement