Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 26/09/2016
Heure de l'analyse: 10:24
Fichier journal: mbam.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.09.26.03
Base de données de rootkits: v2016.08.15.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé
Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: user
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 357432
Temps écoulé: 12 min, 40 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 3
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{821E6FA9-6918-4A4A-980C-59FED9CABC1E}, Supprimer au redémarrage, [e2d9a7cf5743cb6b6ab8b7fd8e76dd23],
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Yahoo! Powered notic, Supprimer au redémarrage, [8d2e84f2bcde1a1c7fa43c78b1533ac6],
PUP.Optional.WinYahoo, HKU\S-1-5-21-2863277656-1324271973-1101757454-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BFREPORT, En quarantaine, [befdd2a4a2f8e84ed6aefb0324dfff01],
Valeurs du Registre: 2
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{821E6FA9-6918-4A4A-980C-59FED9CABC1E}|Path, \Yahoo! Powered notic, Supprimer au redémarrage, [e2d9a7cf5743cb6b6ab8b7fd8e76dd23]
PUP.Optional.WinYahoo, HKU\S-1-5-21-2863277656-1324271973-1101757454-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BFREPORT|filename, C:\Users\user\AppData\Roaming\{94DDA266-B18F-CF10-DAB9-E8C2066B15FC}\Sync.exe, En quarantaine, [befdd2a4a2f8e84ed6aefb0324dfff01]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 2
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
Fichiers: 24
PUP.Optional.InstallCore, C:\Users\user\AppData\Roaming\ZHP\Quarantine\install_ccleaner.exe, En quarantaine, [6853f581c8d2f83ed3f4eed636ceb64a],
PUP.Optional.InstallCore, C:\Users\user\Downloads\picasa.exe, En quarantaine, [9b20e1955842b87e648a2a96a95b936d],
PUP.Optional.WinYahoo, C:\Windows\Tasks\Yahoo! Powered notic.job, En quarantaine, [704b8cea1684bc7a21009123f3119d63],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\HowToRemove.html, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\chromium-min.jpg, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\control panel-min-min.JPG, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\down.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\ff menu.JPG, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\ff search engine-min.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\hp-min ff.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\hp-min ie.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\search engine.gif, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\setup pages.gif, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\sp-min.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\start-min.jpg, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\up.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\bapi.dat, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\fici, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\install.log, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\loti, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\Sqlite3.dll, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\temo, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\uninst.dat, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\uninst.exe, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.org
Date de l'analyse: 26/09/2016
Heure de l'analyse: 10:24
Fichier journal: mbam.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de données de programmes malveillants: v2016.09.26.03
Base de données de rootkits: v2016.08.15.01
Licence: Essai
Protection contre les programmes malveillants: Activé
Protection contre les sites Web malveillants: Activé
Autoprotection: Désactivé
Système d'exploitation: Windows 10
Processeur: x64
Système de fichiers: NTFS
Utilisateur: user
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 357432
Temps écoulé: 12 min, 40 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 0
(Aucun élément malveillant détecté)
Modules: 0
(Aucun élément malveillant détecté)
Clés du Registre: 3
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{821E6FA9-6918-4A4A-980C-59FED9CABC1E}, Supprimer au redémarrage, [e2d9a7cf5743cb6b6ab8b7fd8e76dd23],
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Yahoo! Powered notic, Supprimer au redémarrage, [8d2e84f2bcde1a1c7fa43c78b1533ac6],
PUP.Optional.WinYahoo, HKU\S-1-5-21-2863277656-1324271973-1101757454-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BFREPORT, En quarantaine, [befdd2a4a2f8e84ed6aefb0324dfff01],
Valeurs du Registre: 2
PUP.Optional.WinYahoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{821E6FA9-6918-4A4A-980C-59FED9CABC1E}|Path, \Yahoo! Powered notic, Supprimer au redémarrage, [e2d9a7cf5743cb6b6ab8b7fd8e76dd23]
PUP.Optional.WinYahoo, HKU\S-1-5-21-2863277656-1324271973-1101757454-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BFREPORT|filename, C:\Users\user\AppData\Roaming\{94DDA266-B18F-CF10-DAB9-E8C2066B15FC}\Sync.exe, En quarantaine, [befdd2a4a2f8e84ed6aefb0324dfff01]
Données du Registre: 0
(Aucun élément malveillant détecté)
Dossiers: 2
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
Fichiers: 24
PUP.Optional.InstallCore, C:\Users\user\AppData\Roaming\ZHP\Quarantine\install_ccleaner.exe, En quarantaine, [6853f581c8d2f83ed3f4eed636ceb64a],
PUP.Optional.InstallCore, C:\Users\user\Downloads\picasa.exe, En quarantaine, [9b20e1955842b87e648a2a96a95b936d],
PUP.Optional.WinYahoo, C:\Windows\Tasks\Yahoo! Powered notic.job, En quarantaine, [704b8cea1684bc7a21009123f3119d63],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\HowToRemove.html, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\chromium-min.jpg, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\control panel-min-min.JPG, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\down.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\ff menu.JPG, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\ff search engine-min.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\hp-min ff.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\hp-min ie.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\search engine.gif, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\setup pages.gif, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\sp-min.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\start-min.jpg, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\HowToRemove\up.png, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\bapi.dat, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\fici, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\install.log, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\loti, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\Sqlite3.dll, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\temo, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\uninst.dat, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
PUP.Optional.WinYahoo, C:\Users\user\AppData\Local\{9480A2DC-B028-CE64-DDB0-EB8CF9D81714}\uninst.exe, En quarantaine, [a912b5c1aaf03ff7e476514cf212ea16],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)