Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 18/11/2018
Heure de l'analyse: 20:28
Fichier journal: 16e2fbae-eb68-11e8-b398-d8cb8ac06956.json
-Informations du logiciel-
Version: 3.6.1.2711
Version de composants: 1.0.482
Version de pack de mise à jour: 1.0.7907
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 10 (Build 17134.407)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: DESKTOP-63FFUP6\C\u00c3\u00a9lie
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 333760
Menaces détectées: 41
Menaces mises en quarantaine: 41
Temps écoulé: 2 min, 31 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 1
PUP.Optional.PCVARK, HKLM\SOFTWARE\ZWZpeG15cGMuY29t, En quarantaine, [425], [556569],1.0.7907
Valeur du registre: 0
(Aucun élément malveillant détecté)
Données du registre: 0
(Aucun élément malveillant détecté)
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 4
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\USERS\C�LIE\APPDATA\LOCAL\{A701915D-83A9-FDE5-EE31-D80DCA592495}, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\USERS\C�LIE\APPDATA\LOCAL\{55386364-7190-0FDC-1C08-2A343860D6AC}, En quarantaine, [705], [542290],1.0.7907
Fichier: 36
PUP.Optional.ByteFence, C:\WINDOWS\SYSTEM32\TASKS_MIGRATED\ByteFence, En quarantaine, [5963], [391769],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\USERS\C�LIE\APPDATA\LOCAL\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HOWTOREMOVE\HOWTOREMOVE.HTML, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\chromium-min.jpg, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\control panel-min-min.JPG, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\down.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\ff menu.JPG, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\ff search engine-min.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\hp-min ff.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\hp-min ie.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\search engine.gif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\setup pages.gif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\sp-min.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\start-min.jpg, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\up.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\risicenet, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\rodaledot, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\uninst.exe, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\uninstp.dat, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\Microsoft\Windows\Start Menu\Programs\HowToRemove.lnk, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\USERS\C�LIE\APPDATA\LOCAL\{55386364-7190-0FDC-1C08-2A343860D6AC}\HOWTOREMOVE\HOWTOREMOVE.HTML, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\chromium-min.jpg, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\control panel-min-min.JPG, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\down.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\ff menu.JPG, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\ff search engine-min.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\hp-min ff.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\hp-min ie.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\search engine.gif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\setup pages.gif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\sp-min.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\start-min.jpg, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\up.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\danitif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\fitono, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\uninst.exe, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\uninstp.dat, En quarantaine, [705], [542290],1.0.7907
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 18/11/2018
Heure de l'analyse: 20:28
Fichier journal: 16e2fbae-eb68-11e8-b398-d8cb8ac06956.json
-Informations du logiciel-
Version: 3.6.1.2711
Version de composants: 1.0.482
Version de pack de mise à jour: 1.0.7907
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 10 (Build 17134.407)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: DESKTOP-63FFUP6\C\u00c3\u00a9lie
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 333760
Menaces détectées: 41
Menaces mises en quarantaine: 41
Temps écoulé: 2 min, 31 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 1
PUP.Optional.PCVARK, HKLM\SOFTWARE\ZWZpeG15cGMuY29t, En quarantaine, [425], [556569],1.0.7907
Valeur du registre: 0
(Aucun élément malveillant détecté)
Données du registre: 0
(Aucun élément malveillant détecté)
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 4
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\USERS\C�LIE\APPDATA\LOCAL\{A701915D-83A9-FDE5-EE31-D80DCA592495}, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\USERS\C�LIE\APPDATA\LOCAL\{55386364-7190-0FDC-1C08-2A343860D6AC}, En quarantaine, [705], [542290],1.0.7907
Fichier: 36
PUP.Optional.ByteFence, C:\WINDOWS\SYSTEM32\TASKS_MIGRATED\ByteFence, En quarantaine, [5963], [391769],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\USERS\C�LIE\APPDATA\LOCAL\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HOWTOREMOVE\HOWTOREMOVE.HTML, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\chromium-min.jpg, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\control panel-min-min.JPG, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\down.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\ff menu.JPG, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\ff search engine-min.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\hp-min ff.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\hp-min ie.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\search engine.gif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\setup pages.gif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\sp-min.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\start-min.jpg, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\HowToRemove\up.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\risicenet, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\rodaledot, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\uninst.exe, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{A701915D-83A9-FDE5-EE31-D80DCA592495}\uninstp.dat, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\Microsoft\Windows\Start Menu\Programs\HowToRemove.lnk, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\USERS\C�LIE\APPDATA\LOCAL\{55386364-7190-0FDC-1C08-2A343860D6AC}\HOWTOREMOVE\HOWTOREMOVE.HTML, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\chromium-min.jpg, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\control panel-min-min.JPG, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\down.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\ff menu.JPG, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\ff search engine-min.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\hp-min ff.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\hp-min ie.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\search engine.gif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\setup pages.gif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\sp-min.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\start-min.jpg, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\HowToRemove\up.png, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\danitif, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\fitono, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\uninst.exe, En quarantaine, [705], [542290],1.0.7907
PUP.Optional.WinYahoo.TskLnk, C:\Users\C�lie\AppData\Local\{55386364-7190-0FDC-1C08-2A343860D6AC}\uninstp.dat, En quarantaine, [705], [542290],1.0.7907
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)