Publicité
Publicité
Format du document : text/plain
Prévisualisation
# AdwCleaner 7.0.0.0 - Logfile created on Thu Jul 27 11:06:45 2017
# Updated on 2017/17/07 by Malwarebytes
# Database: 07-24-2017.1
# Running on Windows 10 Pro (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
PUP.Adware.Heuristic, dddfeff3e225fa45aa5bfd961ec1191d
***** [ Folders ] *****
PUP.Optional.Legacy, C:/Windows\System32\SSL
PUP.Optional.Legacy, C:/Windows\SysWOW64\SSL
PUP.Optional.UCBrowser, C:\Users\francois\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC浏览器
PUP.Optional.WeatherBuddy, C:\Users\francois\AppData\Local\WeatherBuddy
PUP.Optional.WeatherBuddy, C:\Users\francois\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeatherBuddy
PUP.Adware.Heuristic, C:/Program Files\dddfeff3e225fa45aa5bfd961ec1191d
PUP.Adware.Heuristic, C:/Program Files\e93caac11b1a98bacb0836a3abb050e6
***** [ Files ] *****
PUP.Optional.Legacy, C:\Windows\SysNative\drivers\LACE_WPF_X64.SYS
PUP.Optional.Legacy, C:\Windows\SysNative\drivers\Lace_wpf_x64.sys
PUP.Optional.Legacy, C:\Users\francois\appdata\local\installationconfiguration.xml
PUP.Optional.YeaDesktop, C:\Users\francois\AppData\Local\Temp\YeapUserInfo.ini
PUP.Optional.WeatherBuddy, C:\Windows\WeatherBuddy.INI
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
PUP.Optional.Legacy, C:/ProgramData/Microsoft/Windows/Start Menu/Programs/Google Chrome.lnk - http://www.yeadesktop.com/ --disable-quic
PUP.Optional.Legacy, C:/ProgramData/Microsoft/Windows/Start Menu/Programs/Mozilla Firefox.lnk - http://www.yeadesktop.com/
***** [ Tasks ] *****
PUP.Optional.Legacy, Online Application V2G3
PUP.Optional.Legacy, Online Application V2G2
PUP.Optional.SoftUpgrade, SoftUpgrade
PUP.Optional.OnlineIO, Updater_Online_Application
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\eazel.com
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\french.eazel.com
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\staticimgfarm.com
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ttdetect.staticimgfarm.com
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2721768177-3965386517-1639301863-1000\Software\PopWnd
PUP.Optional.Legacy, [Key] - HKCU\Software\PopWnd
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Searchy
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{24F5E422-6A70-4FAA-8CAD-E23D5DC1DAE6}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DD0688A5-FC8B-4E93-A485-CBF606A56D49}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\DMunversion
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4D86EAE88F01BA846B924F4B5C8E4536
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\69454B367677830448260074E5DA98B0
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\69454B367677830448260074E5DA98B0
PUP.Optional.Wajam, [Key] - HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9
PUP.Optional.Amonetize, [Value] - HKU\S-1-5-21-2721768177-3965386517-1639301863-1000\Software\Microsoft\Windows\CurrentVersion\Run | msiql
PUP.Optional.Amonetize, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | msiql
PUP.Optional.YeaDesktop, [Value] - HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION | YeaDesktop.exe
PUP.Optional.YeaDesktop, [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION | YeaDesktop.exe
Adware.DNSUnlocker, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
PUP.Optional.NeoBar.ChrPRST, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\E3605470-291B-44EB-8648-745EE356599A
PUP.Optional.OnlineIO, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
PUP.Optional.TheAdBlock, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D39B0192-9F6F-48F9-8FBF-21F6A6B4C3F2}_is1
***** [ Firefox (and derivatives) ] *****
Plugin found: Tables -
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
# Updated on 2017/17/07 by Malwarebytes
# Database: 07-24-2017.1
# Running on Windows 10 Pro (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
PUP.Adware.Heuristic, dddfeff3e225fa45aa5bfd961ec1191d
***** [ Folders ] *****
PUP.Optional.Legacy, C:/Windows\System32\SSL
PUP.Optional.Legacy, C:/Windows\SysWOW64\SSL
PUP.Optional.UCBrowser, C:\Users\francois\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC浏览器
PUP.Optional.WeatherBuddy, C:\Users\francois\AppData\Local\WeatherBuddy
PUP.Optional.WeatherBuddy, C:\Users\francois\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeatherBuddy
PUP.Adware.Heuristic, C:/Program Files\dddfeff3e225fa45aa5bfd961ec1191d
PUP.Adware.Heuristic, C:/Program Files\e93caac11b1a98bacb0836a3abb050e6
***** [ Files ] *****
PUP.Optional.Legacy, C:\Windows\SysNative\drivers\LACE_WPF_X64.SYS
PUP.Optional.Legacy, C:\Windows\SysNative\drivers\Lace_wpf_x64.sys
PUP.Optional.Legacy, C:\Users\francois\appdata\local\installationconfiguration.xml
PUP.Optional.YeaDesktop, C:\Users\francois\AppData\Local\Temp\YeapUserInfo.ini
PUP.Optional.WeatherBuddy, C:\Windows\WeatherBuddy.INI
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
PUP.Optional.Legacy, C:/ProgramData/Microsoft/Windows/Start Menu/Programs/Google Chrome.lnk - http://www.yeadesktop.com/ --disable-quic
PUP.Optional.Legacy, C:/ProgramData/Microsoft/Windows/Start Menu/Programs/Mozilla Firefox.lnk - http://www.yeadesktop.com/
***** [ Tasks ] *****
PUP.Optional.Legacy, Online Application V2G3
PUP.Optional.Legacy, Online Application V2G2
PUP.Optional.SoftUpgrade, SoftUpgrade
PUP.Optional.OnlineIO, Updater_Online_Application
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\eazel.com
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\french.eazel.com
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\staticimgfarm.com
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ttdetect.staticimgfarm.com
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-2721768177-3965386517-1639301863-1000\Software\PopWnd
PUP.Optional.Legacy, [Key] - HKCU\Software\PopWnd
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Searchy
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{24F5E422-6A70-4FAA-8CAD-E23D5DC1DAE6}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DD0688A5-FC8B-4E93-A485-CBF606A56D49}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\DMunversion
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4D86EAE88F01BA846B924F4B5C8E4536
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\69454B367677830448260074E5DA98B0
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\69454B367677830448260074E5DA98B0
PUP.Optional.Wajam, [Key] - HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9
PUP.Optional.Amonetize, [Value] - HKU\S-1-5-21-2721768177-3965386517-1639301863-1000\Software\Microsoft\Windows\CurrentVersion\Run | msiql
PUP.Optional.Amonetize, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | msiql
PUP.Optional.YeaDesktop, [Value] - HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION | YeaDesktop.exe
PUP.Optional.YeaDesktop, [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION | YeaDesktop.exe
Adware.DNSUnlocker, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
PUP.Optional.NeoBar.ChrPRST, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\E3605470-291B-44EB-8648-745EE356599A
PUP.Optional.OnlineIO, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
PUP.Optional.TheAdBlock, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D39B0192-9F6F-48F9-8FBF-21F6A6B4C3F2}_is1
***** [ Firefox (and derivatives) ] *****
Plugin found: Tables -
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########