aude25
Participant
Nombre d'articles : 12

rapport étape 4 :cry:

[spoiler:26unxmrc]Malwarebytes Anti-Malware
http://www.malwarebytes.org » onclick= »window.open(this.href);return false;

Scan Date: 25/04/2014
Scan Time: 19:24:34
Logfile: antimalware.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.25.09
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows 8
CPU: x64
File System: NTFS
User: Aude GALINIER

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 276796
Time Elapsed: 15 min, 29 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 24
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{4B62762D-AA67-4312-A5BF-91BCB7A4720A}, Quarantined, [becf141aeb903ff795bfd37ee71b6c94],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESTypeLib{105F25A9-C42F-48A6-998D-0494E8AE336A}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{506DD7C6-B05D-43CE-81FF-AA05E11DBDFD}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{6D3C9858-2674-46E1-9112-107340758481}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{909112FE-C4A2-4990-A499-E58867D55B15}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{9BEEB5A2-8B02-465A-904D-FE5A447F59EB}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{B618C19D-A418-4586-80C6-09DBDA9C748E}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{B68B00A0-95B9-4162-BA45-7A1113317DA9}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{BFE45A8B-650C-4E99-A3F4-CC6A2874893B}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{E413D78F-283C-45F1-9992-8EF7D55A4933}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{E7C2FDF1-1635-41B4-8207-C1684B6807D7}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWARECLASSESINTERFACE{F9F5A267-FA5A-4CA3-8BE5-4C1EEAD01011}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{4B62762D-AA67-4312-A5BF-91BCB7A4720A}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{506DD7C6-B05D-43CE-81FF-AA05E11DBDFD}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{6D3C9858-2674-46E1-9112-107340758481}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{909112FE-C4A2-4990-A499-E58867D55B15}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{9BEEB5A2-8B02-465A-904D-FE5A447F59EB}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{B618C19D-A418-4586-80C6-09DBDA9C748E}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{B68B00A0-95B9-4162-BA45-7A1113317DA9}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{BFE45A8B-650C-4E99-A3F4-CC6A2874893B}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{E413D78F-283C-45F1-9992-8EF7D55A4933}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{E7C2FDF1-1635-41B4-8207-C1684B6807D7}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESINTERFACE{F9F5A267-FA5A-4CA3-8BE5-4C1EEAD01011}, Quarantined, [94f9d35bdc9fc175c88c034e877be917],
PUP.Optional.SearchGolTB.A, HKLMSOFTWAREWOW6432NODECLASSESTypeLib{105F25A9-C42F-48A6-998D-0494E8AE336A}, Quarantined, [9af36bc34833ba7c23310a47fa08cd33],

Registry Values: 0
(No malicious items detected)

Registry Data: 7
PUP.Optional.Qone8, HKLMSOFTWAREMICROSOFTINTERNET EXPLORERSEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[6a2395993d3e90a6e549250b2cd88b75]
PUP.Optional.Snapdo, HKUS-1-5-21-2734083464-1398316719-1191631614-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREMICROSOFTINTERNET EXPLORERMAIN|Search Page, http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q= » onclick= »window.open(this.href);return false;{searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q={searchTerms}),Replaced,[2865101e0e6d92a4435ba38c01035ba5]
PUP.Optional.Snapdo, HKUS-1-5-21-2734083464-1398316719-1191631614-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREMICROSOFTINTERNET EXPLORERMAIN|Start Page, http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKV-Ss4zb7oM5q4oy0NzZmyUkKNB6EqnY0c4s4bQiwskQSeWI-lSOudEzYJjWsvM2Q,, » onclick= »window.open(this.href);return false;, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKV-Ss4zb7oM5q4oy0NzZmyUkKNB6EqnY0c4s4bQiwskQSeWI-lSOudEzYJjWsvM2Q,,),Replaced,[93fa280683f85bdb5b441a152fd5639d]
PUP.Optional.Snapdo, HKUS-1-5-21-2734083464-1398316719-1191631614-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREMICROSOFTINTERNET EXPLORERMAIN|Search Bar, http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q= » onclick= »window.open(this.href);return false;{searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q={searchTerms}),Replaced,[5b32bd71f08bdd591f7e53dc8f757f81]
PUP.Optional.Snapdo, HKUS-1-5-21-2734083464-1398316719-1191631614-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREMICROSOFTINTERNET EXPLORERSEARCH|Default_Search_URL, http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q= » onclick= »window.open(this.href);return false;{searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q={searchTerms}),Replaced,[0687a9858dee94a2653b8aa5768ea55b]
PUP.Optional.Snapdo, HKUS-1-5-21-2734083464-1398316719-1191631614-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREMICROSOFTINTERNET EXPLORERSEARCH|SearchAssistant, http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q= » onclick= »window.open(this.href);return false;{searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q={searchTerms}),Replaced,[424b2509cbb0af87346d88a7f90b2dd3]
PUP.Optional.SnapDo.A, HKUS-1-5-21-2734083464-1398316719-1191631614-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0SOFTWAREMICROSOFTINTERNET EXPLORERSEARCHURL|Default, http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q= » onclick= »window.open(this.href);return false;{searchTerms}, Good: (http://www.google.com), Bad: (http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZLPTi8JOzLs49cNRzh3I-6bBgQZQhc0wmbrgn5-trPydtzoyz94FxSeAU18LRax_yDm0Y_XxuekdKVylN__eyu2di8aZmxCZnI3pjp528D0fUjt3G_LPJs15f2YIkBmv_ta4UnWJ_3-Xg,,&q={searchTerms}),Replaced,[b5d8d658c2b960d65bdc66c0e024e11f]

Folders: 4
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultdatabaseschrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0, Quarantined, [bfce53dbeb908caa5bd3d694877b4eb2],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultdatabaseschrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0, Quarantined, [abe21519e49774c23df6d793c14105fb],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension Settingsdmgpbjjcdccinnndjdgmegndbmhbgglb, Quarantined, [cebfd6584b3078beb28816544cb609f7],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension Settingsmajjphhgppkndjjkmhhnbgafooenebhd, Quarantined, [dab381adf68583b37bc485e5986aa65a],

Files: 25
PUP.Optional.Spigot.A, C:UsersAude GALINIERDownloadsFreeZipOpener_Install.exe, Quarantined, [8ffe51ddc0bb2610434b0c14fe036997],
PUP.Optional.BundleInstaller.A, C:UsersAude GALINIERDownloadsSetup (1).exe, Quarantined, [b1dc7fafbdbe4de9651c9d6cec186a96],
PUP.Optional.BundleInstaller.A, C:UsersAude GALINIERDownloadsSetup.exe, Quarantined, [a9e4ce603d3eaa8c70119a6f0004eb15],
PUP.Optional.SmartBar.A, C:WindowsInstallerb934bc.msi, Quarantined, [8607f43a9fdcaf8733a2959240c0b14f],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Storagechrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0.localstorage, Quarantined, [761776b89ddec175bc3ab3c3897907f9],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Storagechrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0.localstorage-journal, Quarantined, [a5e8101e5625330306f036406b97748c],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Storagechrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0.localstorage, Quarantined, [7b122608522959ddd724d99dca3834cc],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Storagechrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0.localstorage-journal, Quarantined, [9feeb27c7cff6bcb1edd83f381816c94],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultdatabaseschrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_014, Quarantined, [bfce53dbeb908caa5bd3d694877b4eb2],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultdatabaseschrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_013, Quarantined, [abe21519e49774c23df6d793c14105fb],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension Settingsdmgpbjjcdccinnndjdgmegndbmhbgglb00005.ldb, Quarantined, [cebfd6584b3078beb28816544cb609f7],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension Settingsdmgpbjjcdccinnndjdgmegndbmhbgglb00018.log, Quarantined, [cebfd6584b3078beb28816544cb609f7],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsdmgpbjjcdccinnndjdgmegndbmhbgglbCURRENT, Quarantined, [cebfd6584b3078beb28816544cb609f7],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsdmgpbjjcdccinnndjdgmegndbmhbgglbLOCK, Quarantined, [cebfd6584b3078beb28816544cb609f7],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsdmgpbjjcdccinnndjdgmegndbmhbgglbLOG, Quarantined, [cebfd6584b3078beb28816544cb609f7],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsdmgpbjjcdccinnndjdgmegndbmhbgglbLOG.old, Quarantined, [cebfd6584b3078beb28816544cb609f7],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsdmgpbjjcdccinnndjdgmegndbmhbgglbMANIFEST-000016, Quarantined, [cebfd6584b3078beb28816544cb609f7],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension Settingsmajjphhgppkndjjkmhhnbgafooenebhd00005.ldb, Quarantined, [dab381adf68583b37bc485e5986aa65a],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension Settingsmajjphhgppkndjjkmhhnbgafooenebhd00103.ldb, Quarantined, [dab381adf68583b37bc485e5986aa65a],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension Settingsmajjphhgppkndjjkmhhnbgafooenebhd00116.log, Quarantined, [dab381adf68583b37bc485e5986aa65a],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsmajjphhgppkndjjkmhhnbgafooenebhdCURRENT, Quarantined, [dab381adf68583b37bc485e5986aa65a],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsmajjphhgppkndjjkmhhnbgafooenebhdLOCK, Quarantined, [dab381adf68583b37bc485e5986aa65a],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsmajjphhgppkndjjkmhhnbgafooenebhdLOG, Quarantined, [dab381adf68583b37bc485e5986aa65a],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsmajjphhgppkndjjkmhhnbgafooenebhdLOG.old, Quarantined, [dab381adf68583b37bc485e5986aa65a],
PUP.Optional.CrossRider.A, C:UsersAude GALINIERAppDataLocalGoogleChromeUser DataDefaultLocal Extension SettingsmajjphhgppkndjjkmhhnbgafooenebhdMANIFEST-000114, Quarantined, [dab381adf68583b37bc485e5986aa65a],

Physical Sectors: 0
(No malicious items detected)

(end)[/spoiler:26unxmrc]