Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'examen: 18/05/2014
Heure de l'examen: 21:47:39
Fichier journal: rapport Malwarebytes.txt
Administrateur: Oui
Version: 2.00.1.1004
Base de donn�es Malveillants: v2014.05.18.07
Base de donn�es Rootkits: v2014.03.27.01
Licence: Gratuite
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Chameleon: D�sactiv�(e)
Syst�me d'exploitation: Windows 8
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: tof70110
Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 339870
Temps �coul�: 5 min, 50 sec
M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Shuriken: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)
Processus: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Cl�s du Registre: 2
PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Feven 1.7, Mis en quarantaine, [c01f9ab8a8d3f244d7fff1a7f210cc34],
PUP.Optional.SuperLyrics.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\5971B664-B0B6-29A6-471B-573AF10D9333, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
Valeurs du Registre: 0
(No malicious items detected)
Donn�es du Registre: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplac�,[8a5560f2205b8aacf82df05d34d0f10f]
Dossiers: 3
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.CrossRider.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\iefogiieekeeeeaiklglonbockmhmkgd, Mis en quarantaine, [b728d2807ffcf4421a186f0be0224bb5],
PUP.Optional.CrossRider.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\incpbbmbclbkhjphicahojidkcabaajc, Mis en quarantaine, [617e60f20f6c50e64c1313679f639e62],
Fichiers: 13
PUP.Optional.InstallCore.A, C:\Users\tof70110\AppData\Roaming\InstallW\Full_Setup.exe, Mis en quarantaine, [01de1240aecdb97d8b9889e856abbb45],
PUP.Optional.BundleInstaller.A, C:\$Recycle.Bin\S-1-5-21-2011688591-1983925616-212037087-1001\$R2EYVSO.exe, Mis en quarantaine, [617e22303546a0960036dc6901000cf4],
PUP.Optional.BundleInstaller.A, C:\$Recycle.Bin\S-1-5-21-2011688591-1983925616-212037087-1001\$R9KAVAI.exe, Mis en quarantaine, [974821318deee254a88e97aebf42c937],
PUP.Optional.BundleInstaller.A, C:\$Recycle.Bin\S-1-5-21-2011688591-1983925616-212037087-1001\$RLH8EZZ.exe, Mis en quarantaine, [6f7072e0c3b868ceb1854ff6d42db34d],
PUP.Optional.BundleInstaller.A, C:\$Recycle.Bin\S-1-5-21-2011688591-1983925616-212037087-1001\$RTFDFXI.exe, Mis en quarantaine, [fae5d082b9c2bd79ee480e377f8226da],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\Sqlite3.dll, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\SuperLyricsTOB161.dll, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\SuperLyricsTOB161.ini, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\SuperLyricsTOBAww.exe, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\Uninstall.exe, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.CrossRider.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\iefogiieekeeeeaiklglonbockmhmkgd\LOG.old, Mis en quarantaine, [b728d2807ffcf4421a186f0be0224bb5],
PUP.Optional.CrossRider.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\incpbbmbclbkhjphicahojidkcabaajc\LOG.old, Mis en quarantaine, [617e60f20f6c50e64c1313679f639e62],
PUP.Optional.WebsSearches.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Preferences, Bon: (), Mauvais: ( "search_url": "http://istart.webssearches.com/web/?type=dspp&ts=1400182691&from=exp&uid=SanDiskXSDSSDX120GG25XXXXXXXXXXXXXXXXX_120848403640&q={searchTerms}",), Remplac�,[459a4a080279eb4ba781106949bbfc04]
Secteurs physiques: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Date de l'examen: 18/05/2014
Heure de l'examen: 21:47:39
Fichier journal: rapport Malwarebytes.txt
Administrateur: Oui
Version: 2.00.1.1004
Base de donn�es Malveillants: v2014.05.18.07
Base de donn�es Rootkits: v2014.03.27.01
Licence: Gratuite
Protection contre les malveillants: D�sactiv�(e)
Protection contre les sites Web malveillants: D�sactiv�(e)
Chameleon: D�sactiv�(e)
Syst�me d'exploitation: Windows 8
Processeur: x64
Syst�me de fichiers: NTFS
Utilisateur: tof70110
Type d'examen: Examen "Menaces"
R�sultat: Termin�
Objets analys�s: 339870
Temps �coul�: 5 min, 50 sec
M�moire: Activ�(e)
D�marrage: Activ�(e)
Syst�me de fichiers: Activ�(e)
Archives: Activ�(e)
Rootkits: D�sactiv�(e)
Shuriken: Activ�(e)
PUP: Activ�(e)
PUM: Activ�(e)
Processus: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Cl�s du Registre: 2
PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Feven 1.7, Mis en quarantaine, [c01f9ab8a8d3f244d7fff1a7f210cc34],
PUP.Optional.SuperLyrics.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\5971B664-B0B6-29A6-471B-573AF10D9333, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
Valeurs du Registre: 0
(No malicious items detected)
Donn�es du Registre: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Bon: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Mauvais: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Remplac�,[8a5560f2205b8aacf82df05d34d0f10f]
Dossiers: 3
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.CrossRider.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\iefogiieekeeeeaiklglonbockmhmkgd, Mis en quarantaine, [b728d2807ffcf4421a186f0be0224bb5],
PUP.Optional.CrossRider.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\incpbbmbclbkhjphicahojidkcabaajc, Mis en quarantaine, [617e60f20f6c50e64c1313679f639e62],
Fichiers: 13
PUP.Optional.InstallCore.A, C:\Users\tof70110\AppData\Roaming\InstallW\Full_Setup.exe, Mis en quarantaine, [01de1240aecdb97d8b9889e856abbb45],
PUP.Optional.BundleInstaller.A, C:\$Recycle.Bin\S-1-5-21-2011688591-1983925616-212037087-1001\$R2EYVSO.exe, Mis en quarantaine, [617e22303546a0960036dc6901000cf4],
PUP.Optional.BundleInstaller.A, C:\$Recycle.Bin\S-1-5-21-2011688591-1983925616-212037087-1001\$R9KAVAI.exe, Mis en quarantaine, [974821318deee254a88e97aebf42c937],
PUP.Optional.BundleInstaller.A, C:\$Recycle.Bin\S-1-5-21-2011688591-1983925616-212037087-1001\$RLH8EZZ.exe, Mis en quarantaine, [6f7072e0c3b868ceb1854ff6d42db34d],
PUP.Optional.BundleInstaller.A, C:\$Recycle.Bin\S-1-5-21-2011688591-1983925616-212037087-1001\$RTFDFXI.exe, Mis en quarantaine, [fae5d082b9c2bd79ee480e377f8226da],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\Sqlite3.dll, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\SuperLyricsTOB161.dll, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\SuperLyricsTOB161.ini, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\SuperLyricsTOBAww.exe, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.SuperLyrics.A, C:\Program Files (x86)\SuperLyrics-soft\Uninstall.exe, Mis en quarantaine, [10cf4d057ffc42f4861e3141748ed030],
PUP.Optional.CrossRider.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\iefogiieekeeeeaiklglonbockmhmkgd\LOG.old, Mis en quarantaine, [b728d2807ffcf4421a186f0be0224bb5],
PUP.Optional.CrossRider.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\incpbbmbclbkhjphicahojidkcabaajc\LOG.old, Mis en quarantaine, [617e60f20f6c50e64c1313679f639e62],
PUP.Optional.WebsSearches.A, C:\Users\tof70110\AppData\Local\Google\Chrome\User Data\Default\Preferences, Bon: (), Mauvais: ( "search_url": "http://istart.webssearches.com/web/?type=dspp&ts=1400182691&from=exp&uid=SanDiskXSDSSDX120GG25XXXXXXXXXXXXXXXXX_120848403640&q={searchTerms}",), Remplac�,[459a4a080279eb4ba781106949bbfc04]
Secteurs physiques: 0
(No malicious items detected)
(end)