cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 16-12-15
Heure de l'analyse: 00:10
Fichier journal: MBAM.txt
Administrateur: Oui

Version: 2.2.0.1024
Base de données de programmes malveillants: v2015.12.15.07
Base de données de rootkits: v2015.12.07.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Samuel

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 383741
Temps écoulé: 41 min, 38 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 1
PUP.Optional.CovertAd, C:\Users\Samuel\AppData\Local\Temp\nsnC3AB.tmp, 2240, Supprimer au redémarrage, [6cf77b2aabe00f271e723c7eb64b60a0]

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 16
PUP.Optional.CovertAd, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ginoquci, En quarantaine, [6cf77b2aabe00f271e723c7eb64b60a0],
PUP.Optional.TorrentSearch, HKLM\SOFTWARE\CLASSES\CLSID\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}, En quarantaine, [e57e7d2894f7c076e322b7ad0bf718e8],
PUP.Optional.TorrentSearch, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}, En quarantaine, [e57e7d2894f7c076e322b7ad0bf718e8],
PUP.Optional.TorrentSearch, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}, En quarantaine, [e57e7d2894f7c076e322b7ad0bf718e8],
PUP.Optional.TorrentSearch, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}, En quarantaine, [e57e7d2894f7c076e322b7ad0bf718e8],
PUP.Optional.TorrentSearch, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{03AE1B7B-A9E7-4D5A-9D34-89999C31B659}, En quarantaine, [e57e7d2894f7c076e322b7ad0bf718e8],
PUP.Optional.TorrentSearch, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{DCFCC2EC-3F33-45A8-8ADF-A6C81F11232F}, En quarantaine, [30330b9a2863003670964321f111758b],
PUP.Optional.TorrentSearch, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{DCFCC2EC-3F33-45A8-8ADF-A6C81F11232F}, En quarantaine, [30330b9a2863003670964321f111758b],
PUP.Optional.TorrentSearch, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{DCFCC2EC-3F33-45A8-8ADF-A6C81F11232F}, En quarantaine, [30330b9a2863003670964321f111758b],
Trojan.ProxyHijacker, HKLM\SOFTWARE\CLASSES\setup.DynamicNS, En quarantaine, [0b5802a3a7e410266220dc8814eea25e],
Trojan.ProxyHijacker, HKLM\SOFTWARE\WOW6432NODE\CLASSES\setup.DynamicNS, En quarantaine, [9ec56d38a1ea0a2c5929bca8f60cde22],
Trojan.ProxyHijacker, HKLM\SOFTWARE\CLASSES\WOW6432NODE\setup.DynamicNS, En quarantaine, [9ec56d38a1ea0a2c5929bca8f60cde22],
PUP.Optional.SoundPlus, HKLM\SOFTWARE\CLASSES\CLSID\{5013A5D0-34A9-489F-BF9A-3A0E34D8902B}, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, HKLM\SOFTWARE\CLASSES\CLSID\{B43F10EC-BD1C-48D5-A123-3DCA3321C187}, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.MultiPlug, HKU\S-1-5-21-1138241796-1455463042-1066786371-1001_Classes\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, En quarantaine, [342ffaab7813ca6cb72fbd11c63d37c9],
PUP.Optional.MultiPlug, HKU\S-1-5-21-1138241796-1455463042-1066786371-1001_Classes\INTERFACE\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}, En quarantaine, [342ffaab7813ca6cb72fbd11c63d37c9],

Valeurs du Registre: 2
PUP.Optional.SoundPlus, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Sound+, "C:\Program Files\Sound+\Sound+.exe", En quarantaine, [97cc545196f5979fd2d6629eba4a6b95]
PUP.Optional.BundleInstaller, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ginoquci|ImagePath, C:\Users\Samuel\AppData\Local\Temp\nsnC3AB.tmp, En quarantaine, [85de426390fb2115c69ec33d4db7af51]

Données du Registre: 0
(Aucun élément malveillant détecté)

Dossiers: 3
PUP.Optional.SoundPlus, C:\Program Files\Sound+, Supprimer au redémarrage, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\config, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Users\Samuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sound+ 1.0, En quarantaine, [db88980d46455dd9ddd9bfe816ecf10f],

Fichiers: 30
PUP.Optional.CovertAd, C:\Users\Samuel\AppData\Local\Temp\nsnC3AB.tmp, Supprimer au redémarrage, [6cf77b2aabe00f271e723c7eb64b60a0],
PUP.Optional.SoundPlus, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\Sound+.exe, En quarantaine, [adb6ddc8f7943600479c901ada27e21e],
Adware.EoRezo, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\gmsd_be_005010177.exe, En quarantaine, [a3c02f76f6950a2ca5b5b7cabc4546ba],
PUP.Optional.CSDI, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\ioproduct.exe, En quarantaine, [1053258035569e98aa1ea20537cd1ae6],
PUP.Optional.SwiftSearch, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\swiftsearchautoupdateclient.exe.VIR, En quarantaine, [7de69c096526e94dd671980f798bc53b],
PUP.Optional.SwiftSearch, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\swsedrvr_vt_1_10_0_25.sys.VIR, En quarantaine, [8bd8d6cff39863d3cf78ddca5da77987],
PUP.Optional.SwiftSearch, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\swsedrvr_vw_1_10_0_25.sys, En quarantaine, [c79c109594f752e44ef9377028dcb749],
PUP.Optional.SwiftSearch, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\swsedrvr_vw_1_10_0_25.sys.VIR, En quarantaine, [c0a3089d0982eb4bb88f089fc143837d],
PUP.Optional.Tuto4PC, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\dailypcclean support.DIR\DailyPCClean.exe, En quarantaine, [a8bbffa6e9a25ed87a8d395c689c629e],
PUP.Optional.CSDI, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\rec_en_77\rec_en_77.exe, En quarantaine, [b9aa871e4843eb4bcaefecbb19ebe41c],
PUP.Optional.SmartWeb, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\SmartWeb\__u.exe, En quarantaine, [77ec891cc4c72412ee3bb18110f1e41c],
PUP.Optional.SoundPlus, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\spaceeplus\Spaceplus.exe, En quarantaine, [9dc6f2b3b3d8e2542fb4c5e59170f709],
PUP.Optional.CSDI, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\spaceeplus_v144.10913.DIR\ioproduct.exe, En quarantaine, [1f4431749eed3006f1d7e7c0ed1737c9],
Adware.EoRezo, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\gmsd_be_005010177.DIR\gmsd_be_005010177.exe, En quarantaine, [095a4d58dbb0e45279e1047df80908f8],
PUP.Optional.Tuto4PC, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\gmsd_be_005010177.DIR\Download\majmp_gentleeu.exe, En quarantaine, [bba8dcc956353afcd973950ce8197789],
PUP.Optional.SwiftSearch, C:\Users\Samuel\AppData\Roaming\ZHP\Quarantine\swiftsearch_1.10.0.25.DIR\Uninstall.exe, En quarantaine, [570c3d681972ba7c8ef95c535da422de],
PUP.Optional.ConvertAd, C:\Users\Samuel\AppData\Local\Temp\nsgCD49.tmp, En quarantaine, [2f347b2a0685a690f260e8454fb352ae],
PUP.Optional.BrowseFox, C:\Windows\Temp\C4B5.tmp, En quarantaine, [9dc61a8b9cefef470c4702a91ce5768a],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\silentunconfigurator.exe, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\backup_Microsoft LifeChat LX-3000_Casque pour téléphone.reg, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\backup_Realtek High Definition Audio_Speakers.reg, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\silentconfigurator.exe, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\SoundP.dll, Supprimer au redémarrage, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\Uninstall.exe, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\config\SoundP.conf, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\config\SoundP.err, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\config\SoundPLinks.conf, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Program Files\Sound+\config\SoundPUser.conf, En quarantaine, [4f14b6ef9dee06304265cd335fa5d42c],
PUP.Optional.SoundPlus, C:\Users\Samuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sound+ 1.0\Sound+.lnk, En quarantaine, [db88980d46455dd9ddd9bfe816ecf10f],
PUP.Optional.SoundPlus, C:\Users\Samuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sound+ 1.0\Uninstall.lnk, En quarantaine, [db88980d46455dd9ddd9bfe816ecf10f],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité