cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 07/04/2016
Heure de l'analyse: 19:52
Fichier journal: malawarebyte.txt
Administrateur: Oui

Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.04.07.04
Base de données de rootkits: v2016.04.03.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: MickaelCaeyman

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 360157
Temps écoulé: 17 min, 12 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 3
PUP.Optional.Joomborio, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73CD434E-8E1E-46B6-BB8D-7DD935140717}, En quarantaine, [ab5598146f2a063014b40b8ed4306c94],
PUP.Optional.Joomborio, HKU\S-1-5-21-1222873816-2857048112-2288130733-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73CD434E-8E1E-46B6-BB8D-7DD935140717}, En quarantaine, [d12fe3c99bfea88e8f386c2dbb49a25e],
PUP.Optional.ProductSetup, HKU\S-1-5-21-1222873816-2857048112-2288130733-1001\SOFTWARE\PRODUCTSETUP, En quarantaine, [9f61426a02970e28606ff43ecf35f60a],

Valeurs du Registre: 5
PUP.Optional.Joomborio, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73cd434e-8e1e-46b6-bb8d-7dd935140717}|URL, https://fr.search.yahoo.com/yhs/search?hspart=itm&hsimp=yhs-001&type=jmb_togoo_16_11¶m1=1¶m2=f[ab5598146f2a063014b40b8ed4306c94]D4%26b[ab5598146f2a063014b40b8ed4306c94]DIE%26cc[ab5598146f2a063014b40b8ed4306c94]Dfr%26pa[ab5598146f2a063014b40b8ed4306c94]DJoomborio%26cd[ab5598146f2a063014b40b8ed4306c94]D2XzuyEtN2Y1L1Qzu0B0C0A0E0CyDtD0ByCyC0DtB0EtDyBtCtN0D0Tzu0StCyDtAyCtN1L2XzutAtFtCzytFtAtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StCyD0FtDyByB0EtCtGyCyEtByDtG0CyE0ByBtGyC0A0CzytGyCyCyDyCyD0DyBtDtC0D0ByD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0DtB0AtCyCyE0FtGyDtAyByDtGyEzytDtDtG0B0CyE0CtGyB0C0Dzz0AyDtDyBtDyB0Azy2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEzy%26cr[ab5598146f2a063014b40b8ed4306c94]D1293238547%26a[ab5598146f2a063014b40b8ed4306c94]Djmb_togoo_16_11%26os_ver[ab5598146f2a063014b40b8ed4306c94]D10.0%26os[ab5598146f2a063014b40b8ed4306c94]DWindowsEn quarantaineB10En quarantaineBPro&p={searchTerms}, %4, %5
PUP.Optional.Joomborio, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73cd434e-8e1e-46b6-bb8d-7dd935140717}|TopResultURLFallback, https://fr.search.yahoo.com/yhs/search?hspart=itm&hsimp=yhs-001&type=jmb_togoo_16_11¶m1=1¶m2=f[d62a129a2d6c0c2a7256cfca23e1ba46]D4%26b[d62a129a2d6c0c2a7256cfca23e1ba46]DIE%26cc[d62a129a2d6c0c2a7256cfca23e1ba46]Dfr%26pa[d62a129a2d6c0c2a7256cfca23e1ba46]DJoomborio%26cd[d62a129a2d6c0c2a7256cfca23e1ba46]D2XzuyEtN2Y1L1Qzu0B0C0A0E0CyDtD0ByCyC0DtB0EtDyBtCtN0D0Tzu0StCyDtAyCtN1L2XzutAtFtCzytFtAtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StCyD0FtDyByB0EtCtGyCyEtByDtG0CyE0ByBtGyC0A0CzytGyCyCyDyCyD0DyBtDtC0D0ByD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0DtB0AtCyCyE0FtGyDtAyByDtGyEzytDtDtG0B0CyE0CtGyB0C0Dzz0AyDtDyBtDyB0Azy2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEzy%26cr[d62a129a2d6c0c2a7256cfca23e1ba46]D1293238547%26a[d62a129a2d6c0c2a7256cfca23e1ba46]Djmb_togoo_16_11%26os_ver[d62a129a2d6c0c2a7256cfca23e1ba46]D10.0%26os[d62a129a2d6c0c2a7256cfca23e1ba46]DWindowsEn quarantaineB10En quarantaineBPro&p={searchTerms}, %4, %5
PUP.Optional.Joomborio, HKU\S-1-5-21-1222873816-2857048112-2288130733-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73cd434e-8e1e-46b6-bb8d-7dd935140717}|URL, https://fr.search.yahoo.com/yhs/search?hspart=itm&hsimp=yhs-001&type=jmb_togoo_16_11¶m1=1¶m2=f[d12fe3c99bfea88e8f386c2dbb49a25e]D4%26b[d12fe3c99bfea88e8f386c2dbb49a25e]DIE%26cc[d12fe3c99bfea88e8f386c2dbb49a25e]Dfr%26pa[d12fe3c99bfea88e8f386c2dbb49a25e]DJoomborio%26cd[d12fe3c99bfea88e8f386c2dbb49a25e]D2XzuyEtN2Y1L1Qzu0B0C0A0E0CyDtD0ByCyC0DtB0EtDyBtCtN0D0Tzu0StCyDtAyCtN1L2XzutAtFtCzytFtAtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StCyD0FtDyByB0EtCtGyCyEtByDtG0CyE0ByBtGyC0A0CzytGyCyCyDyCyD0DyBtDtC0D0ByD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0DtB0AtCyCyE0FtGyDtAyByDtGyEzytDtDtG0B0CyE0CtGyB0C0Dzz0AyDtDyBtDyB0Azy2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEzy%26cr[d12fe3c99bfea88e8f386c2dbb49a25e]D1293238547%26a[d12fe3c99bfea88e8f386c2dbb49a25e]Djmb_togoo_16_11%26os_ver[d12fe3c99bfea88e8f386c2dbb49a25e]D10.0%26os[d12fe3c99bfea88e8f386c2dbb49a25e]DWindowsEn quarantaineB10En quarantaineBPro&p={searchTerms}, %4, %5
PUP.Optional.Joomborio, HKU\S-1-5-21-1222873816-2857048112-2288130733-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{73cd434e-8e1e-46b6-bb8d-7dd935140717}|TopResultURLFallback, https://fr.search.yahoo.com/yhs/search?hspart=itm&hsimp=yhs-001&type=jmb_togoo_16_11¶m1=1¶m2=f[6a964b61e7b2bb7bc1061a7f56ae639d]D4%26b[6a964b61e7b2bb7bc1061a7f56ae639d]DIE%26cc[6a964b61e7b2bb7bc1061a7f56ae639d]Dfr%26pa[6a964b61e7b2bb7bc1061a7f56ae639d]DJoomborio%26cd[6a964b61e7b2bb7bc1061a7f56ae639d]D2XzuyEtN2Y1L1Qzu0B0C0A0E0CyDtD0ByCyC0DtB0EtDyBtCtN0D0Tzu0StCyDtAyCtN1L2XzutAtFtCzytFtAtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StCyD0FtDyByB0EtCtGyCyEtByDtG0CyE0ByBtGyC0A0CzytGyCyCyDyCyD0DyBtDtC0D0ByD2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0A0DtB0AtCyCyE0FtGyDtAyByDtGyEzytDtDtG0B0CyE0CtGyB0C0Dzz0AyDtDyBtDyB0Azy2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyByEzy%26cr[6a964b61e7b2bb7bc1061a7f56ae639d]D1293238547%26a[6a964b61e7b2bb7bc1061a7f56ae639d]Djmb_togoo_16_11%26os_ver[6a964b61e7b2bb7bc1061a7f56ae639d]D10.0%26os[6a964b61e7b2bb7bc1061a7f56ae639d]DWindowsEn quarantaineB10En quarantaineBPro&p={searchTerms}, %4, %5
PUP.Optional.ProductSetup, HKU\S-1-5-21-1222873816-2857048112-2288130733-1001\SOFTWARE\PRODUCTSETUP|tb, 0W1S1L2Y1N1F0W1S, En quarantaine, [9f61426a02970e28606ff43ecf35f60a]

Données du Registre: 0
(Aucun élément malveillant détecté)

Dossiers: 0
(Aucun élément malveillant détecté)

Fichiers: 1
PUP.Optional.SearchManager.ChrPRST, C:\Users\MickaelCaeyman\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bahkljhhdeciiaodlkppoonappfnheoi_0.localstorage, En quarantaine, [bc4434789bfe0630c95b9706e1233fc1],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité