cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 23/06/2016
Heure de l'analyse: 16:36
Fichier journal: rapport malware.txt
Administrateur: Oui

Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.06.23.03
Base de données de rootkits: v2016.05.27.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé

Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Laurene

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 342235
Temps écoulé: 43 min, 26 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du Registre: 8
PUP.Optional.HohoSearch, HKLM\SOFTWARE\CLASSES\CLSID\{98C066AB-D735-4339-9E52-A34875141B56}, , [86d9a25ea6f45adcf2f5d2c1d52daf51],
Trojan.ProxyHijacker, HKLM\SOFTWARE\CLASSES\Crack Spyhunter 4 _Keygen _ Serial _ Full_ Download.DynamicNS, , [e77810f04852f5415e0739597f8359a7],
Trojan.ProxyHijacker, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Crack Spyhunter 4 _Keygen _ Serial _ Full_ Download.DynamicNS, , [a1be6d93a9f180b64124bbd7bf43bc44],
Trojan.ProxyHijacker, HKLM\SOFTWARE\CLASSES\WOW6432NODE\Crack Spyhunter 4 _Keygen _ Serial _ Full_ Download.DynamicNS, , [a1be6d93a9f180b64124bbd7bf43bc44],
PUP.Optional.AmiUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\amiupdaterExd, , [60ffcc341585023424a530622ad9768a],
PUP.Optional.AmiUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\amiupdaterExi, , [77e8c9375842e0567f4ae5ad8f743cc4],
PUP.Optional.SoftwareUpdater.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\AmiUpdXp, , [a6b9cb356733211583cbd200e41f53ad],
PUP.Optional.HohoSearch, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ArkconfigurationSrv, , [d38cb44c7d1d47ef2f1e3293e022dd23],

Valeurs du Registre: 2
Hijack.AutoConfigURL.PrxySvrRST, HKLM\SYSTEM\CONTROLSET001\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, 0http://unstopp.me/wpad.dat?292dbe9cfca90ba624acd59d7bba2c773698780, , [abb440c00f8b87af691da548cf34f010]
Hijack.AutoConfigURL.ShrtCln, HKU\S-1-5-21-3815136551-3538052569-673098562-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigUrl, http://unstopp.me/wpad.dat?292dbe9cfca90ba624acd59d7bba2c773698780, , [2936926e6535cc6a0409eef0b94afd03]

Données du Registre: 2
Hijack.UserInit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Userinit, wscript C:\WINDOWS\run.vbs,, Bon : (userinit.exe), Mauvais : (wscript C:\WINDOWS\run.vbs,),,[8ad53cc4534745f1f6d1402ab94b5ba5]
PUM.Optional.UserInit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Userinit, wscript C:\WINDOWS\run.vbs,, Bon : (userinit.exe), Mauvais : (wscript C:\WINDOWS\run.vbs,),,[bba4758b24765cda9a0591e38e766e92]

Dossiers: 1
PUP.Optional.HohoSearch, C:\Program Files (x86)\Reoicult, , [fb647888fd9db58132e0f1d418ea4db3],

Fichiers: 20
PUP.Optional.AnyProtect, C:\Users\Laurene\AppData\Roaming\IObit\Advanced SystemCare\DiskCleaner\nsdD70F.tmp, , [5c03e7197a20a0962deee6a4fd076c94],
Trojan.Downloader, C:\Users\Laurene\AppData\Roaming\IObit\Advanced SystemCare\DiskCleaner\~ufzifny.exe, , [86d9956b76243cfab0bbeb2615ebdc24],
PUP.Optional.InstallCore, C:\$Recycle.Bin\S-1-5-21-3815136551-3538052569-673098562-1001\$RI946KE.exe, , [9dc223dd7723af87088edfb2e321659b],
PUP.Optional.InstallCore, C:\$Recycle.Bin\S-1-5-21-3815136551-3538052569-673098562-1001\$RPYOQ8O.exe, , [5d02c63ae2b8d660b5e16b2643c19d63],
Adware.OffToup, C:\Users\Laurene\AppData\Local\Temp\007a-79f5-2921-3160.exe, , [fc63b24eaded9f97d4d311d143be1ee2],
PUP.Optional.StartSurf, C:\Users\Laurene\AppData\Local\Temp\01dd4efa.a, , [f36c31cfe8b28fa7364e453b20e1c63a],
Adware.IStartSurf, C:\Users\Laurene\AppData\Local\Temp\01dd569b.a, , [bfa0817f9efc52e43fc58021a75aa15f],
Adware.OffToup, C:\Users\Laurene\AppData\Local\Temp\36a3-d03a-0d0b-0ac4.exe, , [99c6a9579a00cf6752553ba724dd09f7],
Adware.OffToup, C:\Users\Laurene\AppData\Local\Temp\577b-6d57-f8fb-9491.exe, , [df808a763b5fe1559f087e641be6827e],
Adware.OffToup, C:\Users\Laurene\AppData\Local\Temp\6a05-1b3c-e8cf-d642.exe, , [a6b9cd3397036ccaadfa2bb7b74ad62a],
Adware.OffToup, C:\Users\Laurene\AppData\Local\Temp\d91b-4f7f-40a2-a48e.exe, , [59069b65fb9fd363a9fe07dbdf2240c0],
Adware.OffToup, C:\Users\Laurene\AppData\Local\Temp\8180-471b-126c-9b4f.exe, , [045b5da3ff9b54e2cbdcc220ce331ce4],
PUP.Optional.Nosibay, C:\Users\Laurene\AppData\Local\Temp\31284437\ic-0.305a67456bf184.exe, , [1c4304fc9604ed4944ef8606c440d729],
PUP.Optional.WeatherChicken, C:\Users\Laurene\AppData\Local\Temp\31284437\ic-0.cc79909c0b4ca.exe, , [560926da3466bc7ac1ac5e6b748d1be5],
Adware.OffToup, C:\Users\Laurene\AppData\Local\Temp\nsjCCD7.tmp\62793.WindApp.MON001.no.exe, , [8ed1a65ad9c19b9b16912eb488799d63],
PUP.Optional.BubbleDock, C:\Users\Laurene\AppData\Local\Temp\nsjCCD7.tmp\63100.Bubble_Dock.BBD023.no.exe, , [7ce3e11fc0da2a0c2d51a7875aa71de3],
PUP.Optional.InstallCore, C:\Users\Laurene\Documents\windows-movie-maker_version-2012_fr_10967.exe, , [baa5847ca5f5a69024c379a38b766f91],
PUP.Optional.BubbleDock, C:\Users\Laurene\AppData\Local\Temp\BUBBLE DOCK.TXT, , [a5ba7a869604d561380d21754eb5659b],
PUP.Optional.BubbleDock, C:\Users\Laurene\AppData\Local\Temp\LBUBBLE DOCK.TXT, , [d38c639dc9d15dd99aad7a1cf40fd32d],
PUP.Optional.HohoSearch, C:\Program Files (x86)\Reoicult\@A3592ADB-854A-443A-854E-EB92130D470D.xpi, , [fb647888fd9db58132e0f1d418ea4db3],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité