Malwarebytes Anti-Malware www.malwarebytes.org Date de l'analyse: 17/11/2015 Heure de l'analyse: 21:51 Fichier journal: mbam.txt Administrateur: Oui Version: 2.2.0.1024 Base de données de programmes malveillants: v2015.11.17.06 Base de données de rootkits: v2015.11.14.01 Licence: Gratuit Protection contre les programmes malveillants: Désactivé Protection contre les sites Web malveillants: Désactivé Autoprotection: Désactivé Système d'exploitation: Windows 7 Service Pack 1 Processeur: x64 Système de fichiers: NTFS Utilisateur: papaye Type d'analyse: Analyse personnalisée Résultat: Terminé Objets analysés: 724962 Temps écoulé: 3 h, 44 min, 50 s Mémoire: Activé Démarrage: Activé Système de fichiers: Activé Archives: Activé Rootkits: Activé Analyse approfondie des rootkits: Activé Heuristique: Activé PUP: Activé PUM: Activé Processus: 0 (Aucun élément malveillant détecté) Modules: 0 (Aucun élément malveillant détecté) Clés du Registre: 5 PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\SPVC32LDR, En quarantaine, [a377b6c9513aa78f70e6d3c829da946c], PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, En quarantaine, [45d53847cdbec07658a558866a99946c], PUP.Optional.SearchProtect.AppFlsh, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, En quarantaine, [5cbe2f50cdbe191d07f7aa34f1129967], PUP.Optional.SimpleNewTab, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\SimpleNewTab, En quarantaine, [92884639cdbebc7a66656330bc4738c8], PUP.Optional.FunFeedr, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\APPDATALOW\Sams.Browser, En quarantaine, [53c7c4bb1576b87e4151c4e729da1ae6], Valeurs du Registre: 6 PUP.Optional.Genius, HKU\S-1-5-21-647463200-1522330322-551825608-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Genius, "C:\Users\papaye\AppData\Roaming\Genius\Genius.exe" , En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\chrome.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [4dcd027d3f4cfc3a9cb98219986bd32d] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\explorer.xxx|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [9b7f730c8704191d52039efdeb1805fb] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\firefox.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [77a37f003d4ed5619abb4e4dc43f10f0] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\iexplore.exe|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [e83296e97e0d6dc91441900bf80b20e0] PUP.Optional.Trovi, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\LAYERS\SPVC32Ldr|{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb, 130569995408162987, En quarantaine, [a377b6c9513aa78f70e6d3c829da946c] Données du Registre: 0 (Aucun élément malveillant détecté) Dossiers: 1 PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3], Fichiers: 21 PUP.Optional.Sambreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\RightSurf.FirstRun.exe.vir, En quarantaine, [7d9d007fb9d26ec8b69bd555eb16817f], PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\RightSurfBHO.dll.vir, En quarantaine, [21f9add29eedec4ae110c6b4e12312ee], PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurf.BrowserFilter.Helper.dll.old.cb56af6b-5cc4-4459-879f-cc6e60f82d67.vir, En quarantaine, [2befc3bc830848eeb63b067428dc9967], PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurf.BrowserFilter.Helper.dll.vir, En quarantaine, [34e6106f2e5d9f979160403aaa5a768a], PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\RightSurfBrowserFilter.exe.vir, En quarantaine, [75a5b3cc53383ef8836ecab0c83c7888], PUP.Optional.RightSurf, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.BrowserFilterG.dll.vir, En quarantaine, [d743f38cf695bc7a5d9462181de75fa1], PUP.Optional.Sanbreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.FFUpdate.dll.vir, En quarantaine, [8f8be699810ab185aab8141618e918e8], PUP.Optional.Sanbreel, C:\AdwCleaner\Quarantine\C\Program Files (x86)\rightsurf\bin\plugins\RightSurf.IEUpdate.dll.vir, En quarantaine, [6cae2857f398d1656cf765c5738eb749], PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir, En quarantaine, [fa2083fc3952d462e98d267e81804fb1], PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir, En quarantaine, [f5254e31cdbe2d092a4c911337ca30d0], PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir, En quarantaine, [1307e09f3b5086b0f97f168e44bd0ff1], PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir, En quarantaine, [35e5245b5b3043f3babc7c2857aa7a86], PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe.vir, En quarantaine, [b169007f3952191ddc9a8e167a87f20e], PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir, En quarantaine, [92886619bdce1125ef87d3d1a55c4fb1], PUP.Optional.SearchProtect.AppFlsh, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll.vir, En quarantaine, [9e7ce49bc3c85fd76214842021e0cf31], PUP.Optional.OfferMosquito, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Local\ext_offermosquito\npOfferMosquitoIEHelper.dll.vir, En quarantaine, [a575215ef695f73f2d957fae58a846ba], PUP.Optional.HTTOGROUP, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Roaming\DataMgr\DataMgr.exe.vir, En quarantaine, [b169d6a92a617abc89d3e397fc08d32d], PUP.Optional.RegistryReviver, C:\AdwCleaner\Quarantine\C\Users\papaye\AppData\Roaming\OpenCandy\9AADA4A9D05B491A8FA67E49A47E910B\RegistryReviverSetup_AFF.exe.vir, En quarantaine, [a1790877d8b343f369c55fcb4cb5d32d], PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\vals.txt, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3], PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\Genius.exe, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3], PUP.Optional.Genius, C:\Users\papaye\AppData\Roaming\Genius\version.txt, En quarantaine, [61b9bbc4236861d52cfb4e5f0cf73dc3], Secteurs physiques: 0 (Aucun élément malveillant détecté) (end)