Publicité
Publicité
Format du document : text/plain
Prévisualisation
# AdwCleaner 7.0.1.0 - Logfile created on Fri Aug 04 11:25:37 2017
# Updated on 2017/05/08 by Malwarebytes
# Database: 07-31-2017.1
# Running on Windows 7 Home Premium (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
Adware.PremierOpinion, PremierOpinion
***** [ Folders ] *****
PUP.Optional.MailRU, C:\ProgramData\Mail.Ru
PUP.Optional.MailRU, C:\ProgramData\Application Data\Mail.Ru
PUP.Optional.MailRU, C:\Program Files (x86)\Mail.Ru
PUP.Optional.MailRU, C:\Users\All Users\Mail.Ru
PUP.Optional.MailRU, C:\Users\loulou-papa\AppData\Local\Mail.Ru
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Roaming\acestream
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\LocalLow\.acestream
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Roaming\.acestream
PUP.Optional.Legacy, C:\Users\All Users\Documents\pc faster
PUP.Optional.Legacy, C:\Users\Public\Documents\pc faster
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Roaming\MailProducts
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
PUP.Optional.Amigo, C:\Users\loulou-papa\AppData\Local\Amigo
Adware.PremierOpinion, C:\Program Files (x86)\PremierOpinion
Adware.PremierOpinion, C:\Users\loulou-papa\AppData\Local\Temp\PremierOpinion
PUP.Optional.ByteFence, C:\ProgramData\ByteFence
PUP.Optional.ByteFence, C:\ProgramData\Application Data\ByteFence
PUP.Optional.ByteFence, C:\Program Files\ByteFence
PUP.Optional.ByteFence, C:\Users\All Users\ByteFence
PUP.Optional.Vondos, C:\Users\loulou-papa\AppData\Roaming\Browser-Security
PUP.Optional.Solvusoft, C:\Users\loulou-papa\AppData\Roaming\Solvusoft
PUP.Optional.Yontoo, C:\Users\loulou-papa\AppData\Local\Amigo
PUP.Optional.FileViewPro, C:\Users\loulou-papa\AppData\Local\FileViewPro
PUP.Optional.YesSearches, C:\Program Files (x86)\Reujosestogle
PUP.Adware.Heuristic, C:\ProgramData\5f46e29f-1c11-0
PUP.Adware.Heuristic, C:\ProgramData\5f46e29f-39d7-1
PUP.Adware.Heuristic, C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
PUP.Adware.Heuristic, C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
PUP.Adware.Heuristic, C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
***** [ Files ] *****
PUP.Optional.Legacy, C:\Windows\System32\pmls.dll
PUP.Optional.Legacy, C:\Windows\SysWOW64\pmls.dll
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Roaming\Mozilla\Firefox\Profiles\46ptht6x.default-1489754794942\searchplugins\bing-lavasoft.xml
PUP.Optional.SysTweak, C:\Windows\SysNative\roboot64.exe
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Optional.YesSearches, Reujosestogle Community
***** [ Registry ] *****
PUP.Optional.MailRU, [Key] - HKLM\SOFTWARE\Mail.Ru
PUP.Optional.MailRU, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\Mail.Ru
PUP.Optional.MailRU, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\AppDataLow\Software\Mail.Ru
PUP.Optional.MailRU, [Key] - HKCU\Software\Mail.Ru
PUP.Optional.MailRU, [Key] - HKCU\Software\AppDataLow\Software\Mail.Ru
PUP.Optional.MailRU, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\Xpom
PUP.Optional.MailRU, [Key] - HKCU\Software\Xpom
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {C198A04B-18A5-450B-87CF-9647B6B734F0}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {490B4462-C86F-48ED-99F4-EC01B5785493}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {9AB63807-AA1E-44D7-A2F4-FA875F5ED920}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {F98BB71D-137A-4DA3-A724-FAA6B0450FF8}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\nuevos-programas.com
PUP.Optional.Legacy, [Key] - HKCU\Software\nuevos-programas.com
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKCU\Software\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\{E6276374-DE18-4AA5-A365-9016A2F98A2D}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
PUP.Optional.Legacy, [Key] - HKU\.DEFAULT\Software\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-18\Software\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\trotuxSoftware
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{6710C780-E20E-4C49-A87D-321850ED3D7C}
PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\Microsoft\Windows\CurrentVersion\Run | safe_urls768
PUP.Optional.Legacy, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | safe_urls768
PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.Amigo, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {B2A90C9C-5CCD-4FC3-8F9B-415E1D7F76D9}
PUP.Optional.Amigo, [Key] - HKLM\SOFTWARE\MICROSOFT\MEDIAPLAYER\SHIMINCLUSIONLIST\amigo.exe
Adware.PremierOpinion, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {9AB63807-AA1E-44D7-A2F4-FA875F5ED920}
Adware.PremierOpinion, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {F98BB71D-137A-4DA3-A724-FAA6B0450FF8}
Adware.PremierOpinion, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{eeb86aef-4a5d-4b75-9d74-f16d438fc286}
PUP.Optional.Vondos, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Browser-Security
PUP.Optional.Trotux, [Key] - HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP
***** [ Firefox (and derivatives) ] *****
Plugin found: Browser-Security - Vondos Media GmbH
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
# Updated on 2017/05/08 by Malwarebytes
# Database: 07-31-2017.1
# Running on Windows 7 Home Premium (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
Adware.PremierOpinion, PremierOpinion
***** [ Folders ] *****
PUP.Optional.MailRU, C:\ProgramData\Mail.Ru
PUP.Optional.MailRU, C:\ProgramData\Application Data\Mail.Ru
PUP.Optional.MailRU, C:\Program Files (x86)\Mail.Ru
PUP.Optional.MailRU, C:\Users\All Users\Mail.Ru
PUP.Optional.MailRU, C:\Users\loulou-papa\AppData\Local\Mail.Ru
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Roaming\acestream
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\LocalLow\.acestream
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Roaming\.acestream
PUP.Optional.Legacy, C:\Users\All Users\Documents\pc faster
PUP.Optional.Legacy, C:\Users\Public\Documents\pc faster
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Roaming\MailProducts
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
PUP.Optional.Amigo, C:\Users\loulou-papa\AppData\Local\Amigo
Adware.PremierOpinion, C:\Program Files (x86)\PremierOpinion
Adware.PremierOpinion, C:\Users\loulou-papa\AppData\Local\Temp\PremierOpinion
PUP.Optional.ByteFence, C:\ProgramData\ByteFence
PUP.Optional.ByteFence, C:\ProgramData\Application Data\ByteFence
PUP.Optional.ByteFence, C:\Program Files\ByteFence
PUP.Optional.ByteFence, C:\Users\All Users\ByteFence
PUP.Optional.Vondos, C:\Users\loulou-papa\AppData\Roaming\Browser-Security
PUP.Optional.Solvusoft, C:\Users\loulou-papa\AppData\Roaming\Solvusoft
PUP.Optional.Yontoo, C:\Users\loulou-papa\AppData\Local\Amigo
PUP.Optional.FileViewPro, C:\Users\loulou-papa\AppData\Local\FileViewPro
PUP.Optional.YesSearches, C:\Program Files (x86)\Reujosestogle
PUP.Adware.Heuristic, C:\ProgramData\5f46e29f-1c11-0
PUP.Adware.Heuristic, C:\ProgramData\5f46e29f-39d7-1
PUP.Adware.Heuristic, C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
PUP.Adware.Heuristic, C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
PUP.Adware.Heuristic, C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
***** [ Files ] *****
PUP.Optional.Legacy, C:\Windows\System32\pmls.dll
PUP.Optional.Legacy, C:\Windows\SysWOW64\pmls.dll
PUP.Optional.Legacy, C:\Users\loulou-papa\AppData\Roaming\Mozilla\Firefox\Profiles\46ptht6x.default-1489754794942\searchplugins\bing-lavasoft.xml
PUP.Optional.SysTweak, C:\Windows\SysNative\roboot64.exe
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Optional.YesSearches, Reujosestogle Community
***** [ Registry ] *****
PUP.Optional.MailRU, [Key] - HKLM\SOFTWARE\Mail.Ru
PUP.Optional.MailRU, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\Mail.Ru
PUP.Optional.MailRU, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\AppDataLow\Software\Mail.Ru
PUP.Optional.MailRU, [Key] - HKCU\Software\Mail.Ru
PUP.Optional.MailRU, [Key] - HKCU\Software\AppDataLow\Software\Mail.Ru
PUP.Optional.MailRU, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\Xpom
PUP.Optional.MailRU, [Key] - HKCU\Software\Xpom
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {C198A04B-18A5-450B-87CF-9647B6B734F0}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {490B4462-C86F-48ED-99F4-EC01B5785493}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {9AB63807-AA1E-44D7-A2F4-FA875F5ED920}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {F98BB71D-137A-4DA3-A724-FAA6B0450FF8}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\nuevos-programas.com
PUP.Optional.Legacy, [Key] - HKCU\Software\nuevos-programas.com
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKCU\Software\Lavasoft\Web Companion
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\{E6276374-DE18-4AA5-A365-9016A2F98A2D}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
PUP.Optional.Legacy, [Key] - HKU\.DEFAULT\Software\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
PUP.Optional.Legacy, [Key] - HKU\S-1-5-18\Software\{8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\trotuxSoftware
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{6710C780-E20E-4C49-A87D-321850ED3D7C}
PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\Microsoft\Windows\CurrentVersion\Run | safe_urls768
PUP.Optional.Legacy, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | safe_urls768
PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application
PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.Amigo, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {B2A90C9C-5CCD-4FC3-8F9B-415E1D7F76D9}
PUP.Optional.Amigo, [Key] - HKLM\SOFTWARE\MICROSOFT\MEDIAPLAYER\SHIMINCLUSIONLIST\amigo.exe
Adware.PremierOpinion, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {9AB63807-AA1E-44D7-A2F4-FA875F5ED920}
Adware.PremierOpinion, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {F98BB71D-137A-4DA3-A724-FAA6B0450FF8}
Adware.PremierOpinion, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{eeb86aef-4a5d-4b75-9d74-f16d438fc286}
PUP.Optional.Vondos, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Browser-Security
PUP.Optional.Trotux, [Key] - HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-4099352771-2613144182-2896515203-1001\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP
***** [ Firefox (and derivatives) ] *****
Plugin found: Browser-Security - Vondos Media GmbH
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########