cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'analyse: 12/07/2015
Heure de l'analyse: 02:54
Fichier journal: anti malwar.txt
Administrateur: Oui

Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.07.11.05
Base de données de rootkits: v2015.07.10.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Sony-Vaio

Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 437648
Temps écoulé: 53 min, 46 s

Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé

Processus: 0
(Aucun élément malveillant détecté)

Modules: 0
(Aucun élément malveillant détecté)

Clés du registre: 21
PUP.Optional.OneWebSearch, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{62CE079A-9E67-40B2-A4AB-FD75F6E88B8A}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKLM\SOFTWARE\CLASSES\TYPELIB\{ACEC5B69-F74E-445A-AC6C-CF621C680893}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{ACEC5B69-F74E-445A-AC6C-CF621C680893}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{ACEC5B69-F74E-445A-AC6C-CF621C680893}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{62CE079A-9E67-40B2-A4AB-FD75F6E88B8A}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKU\S-1-5-21-3645041722-2542003128-310841727-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{62CE079A-9E67-40B2-A4AB-FD75F6E88B8A}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{62CE079A-9E67-40B2-A4AB-FD75F6E88B8A}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKU\S-1-5-21-3645041722-2542003128-310841727-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{62CE079A-9E67-40B2-A4AB-FD75F6E88B8A}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKU\S-1-5-21-3645041722-2542003128-310841727-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{62CE079A-9E67-40B2-A4AB-FD75F6E88B8A}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.OneWebSearch, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{62CE079A-9E67-40B2-A4AB-FD75F6E88B8A}, En quarantaine, [255c865a6525fb3b0fc3efcbd0327789],
PUP.Optional.AskPartnerNetwork.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\AAAAIBEGOHJOODBPGMPDFCKHIHKIPGPB, En quarantaine, [671a6b75d8b237ff1001ace311f332ce],
PUP.Optional.OfferBoulevard.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\OfferBoulevard.exe, En quarantaine, [a3ded7092466c0760d0575ad887baf51],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, En quarantaine, [c5bc9d437911c3738ccf9cf29173d030],
PUP.Optional.AskPartnerNetwork.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\AAAAIBEGOHJOODBPGMPDFCKHIHKIPGPB, En quarantaine, [e59cc11f07833ff7c54c177856aed52b],
PUP.Optional.OfferBoulevard.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\OfferBoulevard.exe, En quarantaine, [dca5914f8307290df0227ba755aefe02],
PUP.Optional.AskAPN.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{41524553-2D56-3700-76A7-A758B70C1D00}, En quarantaine, [5d240ed25832b08624c19d62df236c94],
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, En quarantaine, [84fd756b8ffb02345a0198f62bd9659b],
PUP.Optional.OfferBoulevard.A, HKU\S-1-5-18\SOFTWARE\OfferBLVD, En quarantaine, [6819ac34a6e48babaf667ba716ede719],
PUP.Optional.OfferBoulevard.A, HKU\S-1-5-21-3645041722-2542003128-310841727-1000\SOFTWARE\OfferBLVD, En quarantaine, [99e8dc046c1e49edd243b07248bbb14f],
PUP.Optional.Genius.A, HKU\S-1-5-21-3645041722-2542003128-310841727-1000\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\fckenojfmfijmbkigoajddgondmfhefd, En quarantaine, [8bf622beeaa070c6958b7ebdc24155ab],
PUP.Optional.OptimizerPro.A, HKU\S-1-5-21-3645041722-2542003128-310841727-1001\SOFTWARE\OPTIMIZER PRO, En quarantaine, [463b5f818ffbd95d2fd00d80a163b14f],

Valeurs du registre: 6
PUP.Optional.AskPartnerNetwork.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\aaaaibegohjoodbpgmpdfckhihkipgpb|path, C:\ProgramData\AskPartnerNetwork\Toolbar\ARES-V7\CRX\ToolbarCR.crx, En quarantaine, [671a6b75d8b237ff1001ace311f332ce]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, En quarantaine, [c5bc9d437911c3738ccf9cf29173d030]
PUP.Optional.AskPartnerNetwork.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\aaaaibegohjoodbpgmpdfckhihkipgpb|path, C:\ProgramData\AskPartnerNetwork\Toolbar\ARES-V7\CRX\ToolbarCR.crx, En quarantaine, [e59cc11f07833ff7c54c177856aed52b]
PUP.Optional.AskAPN.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{41524553-2D56-3700-76A7-A758B70C1D00}|InstallSource, C:\ProgramData\APN\APN-Stub\ARES-V7\, En quarantaine, [5d240ed25832b08624c19d62df236c94]
PUM.Security.Hijack.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DisableAutoUpdateChecksCheckboxValue, 1, En quarantaine, [84fd756b8ffb02345a0198f62bd9659b]
PUP.Optional.OptimizerPro.A, HKU\S-1-5-21-3645041722-2542003128-310841727-1001\SOFTWARE\OPTIMIZER PRO|AdsBuyNowURL, http://conversion.pcutilitiespro.revenuewire.net/driverpro/register?121000638-DZ-027_C89DBB14-217E-CE50-DE1E-1B77758A, En quarantaine, [463b5f818ffbd95d2fd00d80a163b14f]

Données du registre: 0
(Aucun élément malveillant détecté)

Dossiers: 6
PUP.Optional.ConduitTB.Gen, C:\Users\Sony-Vaio\AppData\Local\CRE, En quarantaine, [f58c4c9482083501a951e51d39ca8878],
PUP.Optional.Datamngr.A, C:\Users\Sony-Vaio\AppData\LocalLow\DataMngr, En quarantaine, [6a17a53baae0f14538ec963ec240e61a],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\skin, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],

Fichiers: 25
PUP.Optional.Conduit, C:\Users\Sony-Vaio\AppData\Roaming\ZHP\Quarantine\conduit.DIR\Community Alerts\Alert.dll, En quarantaine, [ff82e9f77119ca6ccaab7db448b8ca36],
Trojan.Agent.FCAI, C:\Users\Sony-Vaio\AppData\Roaming\ZHP\Quarantine\GeniusXXAddon.DIR\GeniusXX-crx.exe, En quarantaine, [96ebe1ff64263cfadc20e6f9d034d32d],
Adware.Agent, C:\Users\Sony-Vaio\AppData\Roaming\ZHP\Quarantine\InstallMate.DIR\{B1D7DAAD-BB42-40C7-A22C-F3606A34F85B}\Custom.dll, En quarantaine, [3b46855baae057dfa387b55db34eb44c],
Adware.Agent, C:\Users\Sony-Vaio\AppData\Roaming\ZHP\Quarantine\InstallMate.DIR\{BB938971-776A-4600-A4EB-3F486070AB87}\Custom.dll, En quarantaine, [95ecbc24a3e7d4624fdb59b9f110fd03],
PUP.Optional.RegistryReviver.A, C:\Users\Sony-Vaio\AppData\Roaming\ZHP\Quarantine\OpenCandy.DIR\8724B61508D34C889363910C467C7DBA\RegistryReviverSetup_AFF.exe, En quarantaine, [e29f9749721876c06d535a4f7a8727d9],
PUP.Riskware.Patcher, C:\Program Files\GlobalMapper16_64bit\Patch-REPT.exe, En quarantaine, [b2cf667a7e0ce452280d8d5c7888c937],
PUP.Optional.MultiPlug, C:\Program Files (x86)\Speed Dial 2\Speed Dial 2.exe, En quarantaine, [f78af6ea7b0f999d48bb474a847d6e92],
PUP.Optional.MultiPlug.A, C:\Program Files (x86)\SystemDevelop\SystemDevelop.dll, En quarantaine, [5a2709d73c4e59ddf5eeb30440c1e41c],
PUP.Optional.MultiPlug, C:\Users\Sony-Vaio\Downloads\Eminem - Beautiful (TONY IGY bootleg).exe, En quarantaine, [3f422eb21872f145f6ec7626e91851af],
PUP.Optional.AppDataFR.A, C:\Users\Sony-Vaio\AppData\Roaming\appdataFr2.bin, En quarantaine, [0c75756b1278ad89d767857bb74c16ea],
PUP.Optional.ConduitTB.Gen, C:\Users\Sony-Vaio\AppData\Local\CRE\paoponfhfdfnjgddpnpjkambkcgdaaib.crx, En quarantaine, [f58c4c9482083501a951e51d39ca8878],
PUP.Optional.Datamngr.A, C:\Users\Sony-Vaio\AppData\LocalLow\DataMngr\{99BB1406-1CFB-488C-90D1-2D978E04F707}64, En quarantaine, [6a17a53baae0f14538ec963ec240e61a],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome.manifest, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\install.rdf, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\filesrv.js, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\globals.js, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\main.js, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\main.xul, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\prefs.js, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\tabs_listener.js, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\skin\GeniusXX-128-128.png, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\skin\GeniusXX-16-16.png, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\skin\GeniusXX-32-32.png, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\skin\GeniusXX-48-48.png, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],
PUP.Optional.Genius.A, C:\Users\Sony-Vaio\AppData\Roaming\Mozilla\Firefox\Profiles\zphzgko9.default\extensions\addon@geniusinstaller.com\chrome\content\skin\GeniusXX.ico, En quarantaine, [621f8858d2b8d75f01925d7a956dc838],

Secteurs physiques: 0
(Aucun élément malveillant détecté)


(end)

Publicité


Signaler le contenu de ce document

Publicité