Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 17/11/2015
Heure de l'analyse: 21:51
Fichier journal: mbam.txt
Administrateur: Oui
Version: 2.2.0.1024
Base de données de programmes malveillants: v2015.11.17.06
Base de données de rootkits: v2015.11.14.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: papaye
Type d'analyse: Analyse personnalisée
Résultat: Terminé
Objets analysés: 724962
Temps écoulé: 3 h, 44 min, 50 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Analyse approfondie des rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 5
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\SPVC32LDR, En quarantaine, [a377b6c9513aa78f70e6d3c829da946c],
PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, En quarantaine, [45d53847cdbec07658a558866a99946c],
PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, En quarantaine, [5cbe2f50cdbe191d07f7aa34f1129967],
PUP.Optional.SimpleNewTab, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\SimpleNewTab, En quarantaine, [92884639cdbebc7a66656330bc4738c8],
PUP.Optional.FunFeedr, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\APPDATALOW\Sams.Browser, En quarantaine, [53c7c4bb1576b87e4151c4e729da1ae6],
Valeurs du Registre: 6
PUP.Optional.Genius, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Genius, "C:\Users\papaye\AppData\Roaming\Genius\Genius.exe" , En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\chrome.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [4dcd027d3f4cfc3a9cb98219986bd32d]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\explorer.xxx|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [9b7f730c8704191d52039efdeb1805fb]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\firefox.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [77a37f003d4ed5619abb4e4dc43f10f0]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\iexplore.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [e83296e97e0d6dc91441900bf80b20e0]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\SPVC32Ldr|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [a377b6c9513aa78f70e6d3c829da946c]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 1
PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3],
Fichiers: 21
PUP.Optional.Sambreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\RightSurf.FirstRun.exe.vir, En quarantaine, [7d9d007fb9d26ec8b69bd555eb16817f],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\RightSurfBHO.dll.vir, En quarantaine, [21f9add29eedec4ae110c6b4e12312ee],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurf.BrowserFilter.Helper.dll.old.cb56af6b-5cc4-4459-879f-cc6e60f82d67.vir, En quarantaine, [2befc3bc830848eeb63b067428dc9967],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurf.BrowserFilter.Helper.dll.vir, En quarantaine, [34e6106f2e5d9f979160403aaa5a768a],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurfBrowserFilter.exe.vir, En quarantaine, [75a5b3cc53383ef8836ecab0c83c7888],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.BrowserFilterG.dll.vir, En quarantaine, [d743f38cf695bc7a5d9462181de75fa1],
PUP.Optional.Sanbreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.FFUpdate.dll.vir, En quarantaine, [8f8be699810ab185aab8141618e918e8],
PUP.Optional.Sanbreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.IEUpdate.dll.vir, En quarantaine, [6cae2857f398d1656cf765c5738eb749],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir, En quarantaine, [fa2083fc3952d462e98d267e81804fb1],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir, En quarantaine, [f5254e31cdbe2d092a4c911337ca30d0],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir, En quarantaine, [1307e09f3b5086b0f97f168e44bd0ff1],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir, En quarantaine, [35e5245b5b3043f3babc7c2857aa7a86],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe.vir, En quarantaine, [b169007f3952191ddc9a8e167a87f20e],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir, En quarantaine, [92886619bdce1125ef87d3d1a55c4fb1],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll.vir, En quarantaine, [9e7ce49bc3c85fd76214842021e0cf31],
PUP.Optional.OfferMosquito, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Local\ext_offermosquito\npOfferMosquitoIEHelper.dll.vir, En quarantaine, [a575215ef695f73f2d957fae58a846ba],
PUP.Optional.HTTOGROUP, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Roaming\DataMgr\DataMgr.exe.vir, En quarantaine, [b169d6a92a617abc89d3e397fc08d32d],
PUP.Optional.RegistryReviver, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Roaming\OpenCandy\9AADA4A9D05B491A8FA67E49A47E910B\RegistryReviverSetup_AFF.exe.vir, En quarantaine, [a1790877d8b343f369c55fcb4cb5d32d],
PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\vals.txt, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3],
PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\Genius.exe, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3],
PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\version.txt, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.org
Date de l'analyse: 17/11/2015
Heure de l'analyse: 21:51
Fichier journal: mbam.txt
Administrateur: Oui
Version: 2.2.0.1024
Base de données de programmes malveillants: v2015.11.17.06
Base de données de rootkits: v2015.11.14.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: papaye
Type d'analyse: Analyse personnalisée
Résultat: Terminé
Objets analysés: 724962
Temps écoulé: 3 h, 44 min, 50 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Analyse approfondie des rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 5
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\SPVC32LDR, En quarantaine, [a377b6c9513aa78f70e6d3c829da946c],
PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, En quarantaine, [45d53847cdbec07658a558866a99946c],
PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, En quarantaine, [5cbe2f50cdbe191d07f7aa34f1129967],
PUP.Optional.SimpleNewTab, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\SimpleNewTab, En quarantaine, [92884639cdbebc7a66656330bc4738c8],
PUP.Optional.FunFeedr, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\APPDATALOW\Sams.Browser, En quarantaine, [53c7c4bb1576b87e4151c4e729da1ae6],
Valeurs du Registre: 6
PUP.Optional.Genius, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Genius, "C:\Users\papaye\AppData\Roaming\Genius\Genius.exe" , En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\chrome.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [4dcd027d3f4cfc3a9cb98219986bd32d]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\explorer.xxx|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [9b7f730c8704191d52039efdeb1805fb]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\firefox.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [77a37f003d4ed5619abb4e4dc43f10f0]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\iexplore.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [e83296e97e0d6dc91441900bf80b20e0]
PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\SPVC32Ldr|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [a377b6c9513aa78f70e6d3c829da946c]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 1
PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3],
Fichiers: 21
PUP.Optional.Sambreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\RightSurf.FirstRun.exe.vir, En quarantaine, [7d9d007fb9d26ec8b69bd555eb16817f],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\RightSurfBHO.dll.vir, En quarantaine, [21f9add29eedec4ae110c6b4e12312ee],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurf.BrowserFilter.Helper.dll.old.cb56af6b-5cc4-4459-879f-cc6e60f82d67.vir, En quarantaine, [2befc3bc830848eeb63b067428dc9967],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurf.BrowserFilter.Helper.dll.vir, En quarantaine, [34e6106f2e5d9f979160403aaa5a768a],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurfBrowserFilter.exe.vir, En quarantaine, [75a5b3cc53383ef8836ecab0c83c7888],
PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.BrowserFilterG.dll.vir, En quarantaine, [d743f38cf695bc7a5d9462181de75fa1],
PUP.Optional.Sanbreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.FFUpdate.dll.vir, En quarantaine, [8f8be699810ab185aab8141618e918e8],
PUP.Optional.Sanbreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.IEUpdate.dll.vir, En quarantaine, [6cae2857f398d1656cf765c5738eb749],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir, En quarantaine, [fa2083fc3952d462e98d267e81804fb1],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir, En quarantaine, [f5254e31cdbe2d092a4c911337ca30d0],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir, En quarantaine, [1307e09f3b5086b0f97f168e44bd0ff1],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir, En quarantaine, [35e5245b5b3043f3babc7c2857aa7a86],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe.vir, En quarantaine, [b169007f3952191ddc9a8e167a87f20e],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir, En quarantaine, [92886619bdce1125ef87d3d1a55c4fb1],
PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll.vir, En quarantaine, [9e7ce49bc3c85fd76214842021e0cf31],
PUP.Optional.OfferMosquito, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Local\ext_offermosquito\npOfferMosquitoIEHelper.dll.vir, En quarantaine, [a575215ef695f73f2d957fae58a846ba],
PUP.Optional.HTTOGROUP, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Roaming\DataMgr\DataMgr.exe.vir, En quarantaine, [b169d6a92a617abc89d3e397fc08d32d],
PUP.Optional.RegistryReviver, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Roaming\OpenCandy\9AADA4A9D05B491A8FA67E49A47E910B\RegistryReviverSetup_AFF.exe.vir, En quarantaine, [a1790877d8b343f369c55fcb4cb5d32d],
PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\vals.txt, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3],
PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\Genius.exe, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3],
PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\version.txt, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)