Malwarebytes
www.malwarebytes.com

-Détails du journal-
Date de l'analyse: 14/05/2017
Heure de l'analyse: 08:43
Fichier journal: mbam.txt
Administrateur: Oui

-Informations du logiciel-
Version: 3.0.6.1469
Version de composants: 1.0.103
Version de pack de mise à jour: 1.0.1936
Licence: Gratuit

-Informations système-
Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: DESKTOP-UO8B47U\Mashii

-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 384428
Temps écoulé: 16 min, 19 s

-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé

-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)

Module: 0
(Aucun élément malveillant détecté)

Clé du registre: 1
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5b8c2d9c}, En quarantaine, [28], [260250],1.0.1936

Valeur du registre: 1
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{5b8c2d9c}|1, En quarantaine, [28], [260250],1.0.1936

Données du registre: 17
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{147dfdf8-8c38-4e1f-ad3b-7e4de506665c}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{147dfdf8-8c38-4e1f-ad3b-7e4de506665c}|DhcpNameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{26b11a49-585f-4b43-a90c-9af3c3d7b25b}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{297f0d19-874a-11e6-a5d3-806e6f6e6963}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3e210d5e-16d2-44f7-bca5-b1a51f79ca26}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3e210d5e-16d2-44f7-bca5-b1a51f79ca26}|DhcpNameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{55140650-fbed-4a2c-9397-9fbbb5f68757}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{5ddf97e3-6267-4562-bca2-ed5460178b34}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{7564906a-7062-495e-8544-2e5d289b5fc3}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{7564906a-7062-495e-8544-2e5d289b5fc3}|DhcpNameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{c39bd7ab-c955-4325-8ad5-6d01b559c8e8}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{f67d8b41-58f8-409c-b3f4-e8d506d7086e}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{fecefc80-3ef9-407f-8d06-a2e9b63be2d4}|NameServer, Remplacé, [28], [-1],0.0.0
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{fecefc80-3ef9-407f-8d06-a2e9b63be2d4}|DhcpNameServer, Remplacé, [28], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NAMESERVER, Remplacé, [6330], [293494],1.0.1936

Flux de données: 0
(Aucun élément malveillant détecté)

Dossier: 1
Adware.Agent.Generic, C:\PROGRAMDATA\{FA9620F5-4D3D-975E-6CA1-9F7CB941DFB0}, En quarantaine, [1402], [331038],1.0.1936

Fichier: 4
Adware.Agent.Generic, C:\PROGRAMDATA\{FA9620F5-4D3D-975E-6CA1-9F7CB941DFB0}\84BA041F-3311-B3B4-C4E5-DD9F5268D727.EXE, En quarantaine, [1402], [331038],1.0.1936
Adware.Adposhel, C:\USERS\MASHII\APPDATA\ROAMING\ZHP\QUARANTINE\{005A98BF}, En quarantaine, [195], [398269],1.0.1936
Adware.Adposhel, C:\USERS\MASHII\APPDATA\ROAMING\ZHP\QUARANTINE\{0002B2E5}, En quarantaine, [195], [398269],1.0.1936
Adware.Adposhel, C:\USERS\MASHII\APPDATA\ROAMING\ZHP\QUARANTINE\{001F89A9}, En quarantaine, [195], [398269],1.0.1936

Secteur physique: 0
(Aucun élément malveillant détecté)


(end)