Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 19/12/2016
Heure de l'analyse: 23:50
Fichier journal: Malwarebytes_00.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de donnees de programmes malveillants: v2016.12.07.11
Base de donnees de rootkits: v2016.11.20.01
Licence: Gratuit
Protection contre les programmes malveillants: Desactive
Protection contre les sites Web malveillants: Desactive
Autoprotection: Desactive
Systeme d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Systeme de fichiers: NTFS
Utilisateur: Leonel
Type d'analyse: Analyse des menaces
Resultat: Termine
Objets analyses: 301441
Temps ecoule: 32 min, 46 s
Memoire: Active
Demarrage: Active
Systeme de fichiers: Active
Archives: Active
Rootkits: Active
Heuristique: Active
PUP: Avertir
PUM: Active
Processus: 13
PUP.Optional.Elex, C:\ProgramData\service.exe, 2496, Supprimer au redemarrage, [cabd35afdebc7fb727906bf450b01ae6]
Adware.Agent, C:\Users\Leonel\AppData\Local\Temp\00028217\msiql.exe, 3524, Supprimer au redemarrage, [c5c2964eb9e189ad1def2bac2fd146ba]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2232, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2236, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2248, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2256, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2300, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian.exe, 6036, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian.exe, 2320, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian.exe, 5596, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.Amonetize, C:\Users\Leonel\AppData\Local\Temp\00028217\msiql.exe, 3524, Supprimer au redemarrage, [4f38a53fc3d7979fa352f1983fc1966a]
Trojan.Agent, C:\ProgramData\service.exe, 2496, Supprimer au redemarrage, [4245d70db4e62b0b002008e118eab64a]
PUP.Optional.MaohaWiFi, C:\Program Files (x86)\Maoha\MaohaAP\MaohaWifiSvr.exe, 532, Supprimer au redemarrage, [7d0ad70ddfbb3bfbda1567c0fb0523dd]
Modules: 4
Adware.Elex.Generic, C:\Program Files (x86)\Coerotionshupent\Rtwhlp.dll, Supprimer au redemarrage, [abdc7074a5f51d194c13aafd6c946997],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\360Base.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi\CheckHp.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi\HpSvc.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
Cles du Registre: 32
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3E5332CF-5775-45ED-A446-9E421E8FACB7}, Supprimer au redemarrage, [aaddd4103862aa8c20c4501f9f61d729],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{753D4D06-9794-415A-A988-03B160322285}, Supprimer au redemarrage, [d8af8c586c2e1d19bca2b96aa06028d8],
Adware.Agent.CLK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{83E9EA1D-3088-463F-81EB-FCAB9B60A9C6}, Supprimer au redemarrage, [c6c1f7ed8a107eb81a9abad0ef1355ab],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{852D2E55-287E-4744-BC29-F9A3AE41BD17}, Supprimer au redemarrage, [404713d14852fb3b64fa1f04cf3158a8],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{876FBA50-B143-4BC0-93E9-9F803AA03098}, Supprimer au redemarrage, [93f4dd073c5e152184da82a10bf51ee2],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8DB5CB83-20FC-4ED0-A279-10BD5085C932}, Supprimer au redemarrage, [97f0c420d3c7de5860feac7701ff03fd],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{93EC759D-7CAB-44BC-B24C-08D5EA9588DC}, Supprimer au redemarrage, [2661ae36138776c070ee919260a00cf4],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AB38BBF9-11B6-451E-A4A7-A9AB4B634DAA}, Supprimer au redemarrage, [632403e1f0aa95a18ad4af74c53b10f0],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B4EEF6AB-3138-4A06-8669-D1157120E7BB}, Supprimer au redemarrage, [02857f657a20f442af35cba41de3748c],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{BEE7DB3E-10AD-499F-BA1D-4C86DE2122AB}, Supprimer au redemarrage, [45429f4522781d1989d59b88916f52ae],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CA733EB4-B239-4AB2-9DE4-90BD90CEEEF2}, Supprimer au redemarrage, [345313d11d7d12246480561936ca27d9],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E2ABF23D-E148-4E37-90B0-592BE4963345}, Supprimer au redemarrage, [17707c681c7e2b0b5a04e63d837d748c],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E6829FAA-0A5D-4A47-B006-5FEADA67BA03}, Supprimer au redemarrage, [9ee940a4762443f35e00c65dae5257a9],
PUP.Optional.Kuaizip, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{ED74CC4B-778B-4942-A1C7-9C913B11C743}, Supprimer au redemarrage, [b0d70ed6dbbfb87ed9098bcd16eacf31],
PUP.Optional.Kuaizip, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\KuaiZip_Update, Supprimer au redemarrage, [e3a48460fc9e77bf8a16e16dc7396b95],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application, Supprimer au redemarrage, [74139f45bae0d75f771457cc649cc53b],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application Guard, Supprimer au redemarrage, [345329bb4d4dd264acdf74afaf51df21],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application Guardian, Supprimer au redemarrage, [b2d535af3e5c67cf2d5eb07307f9f709],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application Updater, Supprimer au redemarrage, [c5c2c024e4b652e44b40091a43bd837d],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2, Supprimer au redemarrage, [b7d0c024b8e23204acdffe25fb059d63],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2 Guard, Supprimer au redemarrage, [790ecb190d8df4424c3f50d3a957da26],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2 Guardian, Supprimer au redemarrage, [bec9806488121b1b7f0ca281c53b956b],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2 OG, Supprimer au redemarrage, [295eb133c7d3d462a0eb40e354ac06fa],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2 On Guard, Supprimer au redemarrage, [ff88fee6e0ba53e30b805ec548b88b75],
Adware.Agent.CLK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\osTip, Supprimer au redemarrage, [b8cf994b4a5072c4a044581d56ada957],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Traffic Exchange, Supprimer au redemarrage, [94f330b41f7b56e06a5bb4bae81813ed],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Traffic Exchange Guard, Supprimer au redemarrage, [96f194500d8dd1654580d896a957cb35],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Traffic Exchange Guardian, Supprimer au redemarrage, [a5e222c2603a71c5477efe70f010c33d],
PUP.Optional.MaohaWiFi, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MaohaWifiNetPro, Supprimer au redemarrage, [3b4c20c49ffb24120ecb3dea4bb54cb4],
PUP.Optional.MaohaWiFi, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MaohaWifiSvr, Supprimer au redemarrage, [7d0ad70ddfbb3bfbda1567c0fb0523dd],
PUP.Optional.Kuaizip, HKU\S-1-5-18\SOFTWARE\KuaiZip, En quarantaine, [2a5dbd277a20f73f3326553e4cb4e020],
PUP.Optional.Ludashi, HKU\S-1-5-21-1374286513-1629226585-3972681917-1000\SOFTWARE\LUDASHI, En quarantaine, [8106f5efb7e37bbb95163952f20e9a66],
Valeurs du Registre: 15
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3E5332CF-5775-45ED-A446-9E421E8FACB7}|Path, \Traffic Exchange Guard, Supprimer au redemarrage, [aaddd4103862aa8c20c4501f9f61d729]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{753D4D06-9794-415A-A988-03B160322285}|Path, \Online Application v2, Supprimer au redemarrage, [d8af8c586c2e1d19bca2b96aa06028d8]
Adware.Agent.CLK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{83E9EA1D-3088-463F-81EB-FCAB9B60A9C6}|Path, \osTip, Supprimer au redemarrage, [c6c1f7ed8a107eb81a9abad0ef1355ab]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{852D2E55-287E-4744-BC29-F9A3AE41BD17}|Path, \Online Application, Supprimer au redemarrage, [404713d14852fb3b64fa1f04cf3158a8]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{876FBA50-B143-4BC0-93E9-9F803AA03098}|Path, \Online Application Guardian, Supprimer au redemarrage, [93f4dd073c5e152184da82a10bf51ee2]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8DB5CB83-20FC-4ED0-A279-10BD5085C932}|Path, \Online Application Guard, Supprimer au redemarrage, [97f0c420d3c7de5860feac7701ff03fd]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{93EC759D-7CAB-44BC-B24C-08D5EA9588DC}|Path, \Online Application Updater, Supprimer au redemarrage, [2661ae36138776c070ee919260a00cf4]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AB38BBF9-11B6-451E-A4A7-A9AB4B634DAA}|Path, \Online Application v2 On Guard, Supprimer au redemarrage, [632403e1f0aa95a18ad4af74c53b10f0]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B4EEF6AB-3138-4A06-8669-D1157120E7BB}|Path, \Traffic Exchange, Supprimer au redemarrage, [02857f657a20f442af35cba41de3748c]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{BEE7DB3E-10AD-499F-BA1D-4C86DE2122AB}|Path, \Online Application v2 Guard, Supprimer au redemarrage, [45429f4522781d1989d59b88916f52ae]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CA733EB4-B239-4AB2-9DE4-90BD90CEEEF2}|Path, \Traffic Exchange Guardian, Supprimer au redemarrage, [345313d11d7d12246480561936ca27d9]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E2ABF23D-E148-4E37-90B0-592BE4963345}|Path, \Online Application v2 Guardian, Supprimer au redemarrage, [17707c681c7e2b0b5a04e63d837d748c]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E6829FAA-0A5D-4A47-B006-5FEADA67BA03}|Path, \Online Application v2 OG, Supprimer au redemarrage, [9ee940a4762443f35e00c65dae5257a9]
PUP.Optional.Kuaizip, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{ED74CC4B-778B-4942-A1C7-9C913B11C743}|Path, \KuaiZip_Update, Supprimer au redemarrage, [b0d70ed6dbbfb87ed9098bcd16eacf31]
PUP.Optional.Ludashi, HKU\S-1-5-21-1374286513-1629226585-3972681917-1000\SOFTWARE\LUDASHI|360lock, 0, En quarantaine, [8106f5efb7e37bbb95163952f20e9a66]
Donnees du Registre: 0
(Aucun element malveillant detecte)
Dossiers: 10
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a],
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a],
PUP.Optional.Amonetize, C:\Users\Leonel\AppData\Local\Temp\00028217, Supprimer au redemarrage, [4f38a53fc3d7979fa352f1983fc1966a],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher, Supprimer au redemarrage, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\META-INF, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.Ludashi, C:\Users\Leonel\AppData\Roaming\Ludashi, En quarantaine, [85028460a4f64ceac937e2a82bd5f808],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\Utils, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
Fichiers: 32
PUP.Optional.Kuaizip, C:\Windows\System32\drivers\KuaiZipDrive.sys, Supprimer au redemarrage, [fee53173263b621656360f99e68dcda5],
Adware.Elex.Generic, C:\Program Files (x86)\Coerotionshupent\Rtwhlp.dll, Supprimer au redemarrage, [abdc7074a5f51d194c13aafd6c946997],
PUP.Optional.Elex, C:\ProgramData\service.exe, Supprimer au redemarrage, [cabd35afdebc7fb727906bf450b01ae6],
Adware.Agent, C:\Users\Leonel\AppData\Local\Temp\00028217\msiql.exe, Supprimer au redemarrage, [c5c2964eb9e189ad1def2bac2fd146ba],
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a],
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian.exe, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a],
PUP.Optional.Amonetize, C:\Users\Leonel\AppData\Local\Temp\00028217\msiql.exe, Supprimer au redemarrage, [4f38a53fc3d7979fa352f1983fc1966a],
Trojan.Agent, C:\ProgramData\service.exe, Supprimer au redemarrage, [4245d70db4e62b0b002008e118eab64a],
PUP.Optional.MaohaWiFi, C:\Program Files (x86)\Maoha\MaohaAP\MaohaWifiSvr.exe, Supprimer au redemarrage, [7d0ad70ddfbb3bfbda1567c0fb0523dd],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\0024397e, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\chrome.manifest, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\install.rdf, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content\browser.xul, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content\content.js, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content\icon-48.png, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content\icon-64.png, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\META-INF\manifest.mf, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\META-INF\mozilla.rsa, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\META-INF\mozilla.sf, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.Ludashi, C:\Users\Leonel\AppData\Roaming\Ludashi\ComputerZ.set, En quarantaine, [85028460a4f64ceac937e2a82bd5f808],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\360Base.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\360Base64.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\ComputerZ7_x64.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi\CheckHp.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi\HpSvc.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\Utils\ComputerZ12_x64.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (user_pref("browser.search.defaultenginename", "youndoo");), Remplace,[85027a6af7a3a3932bcc0b1338c85fa1]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (o prefeapp.update.enabled", false);
user_pref("app.update.lastUpdateTime.addon-background-update-timer", 1482097967);
user_pref("app.update.lastUpdateTime.background-update-timer), Remplace,[f1966f75a6f4a6905b9cf32b03fdb64a]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (me.addon-background-update-timer", 1482097967);
user_pref("app.update.lastUpdateTime.background-update-timer", 1482141407);
user_pref("app.update.lastUpdateTime.blocklist-background-update-timer", 1482), Remplace,[f097fce8405ab97dc92ec45aa35db64a]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (141407);
user_pref("app.update.lastUpdateTime.blocklist-background-update-timer", 1482098087);
user_pref("app.update.lastUpdateTime.browser-cleanup-thumbnails", 1482171522);
user_pref("app.update.lastU), Remplace,[a0e704e0475346f01fd837e7758b18e8]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (ate-timer", 1482097967);
user_pref("app.update.lastUp), Remplace,[5d2a5e866d2d93a33cbb58c616eae11f]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (mer", 1482098087);
user_pref("app.update.lastUpdateTime.browser-cleanup-thumbnails", 1482171522);
user_pref("app.update.lastUpdateTime.experiments-update-timer", 1482097847), Remplace,[5e2902e2c2d8a78f5b9c5cc2ae52fa06]
Secteurs physiques: 0
(Aucun element malveillant detecte)
(end)
www.malwarebytes.org
Date de l'analyse: 19/12/2016
Heure de l'analyse: 23:50
Fichier journal: Malwarebytes_00.txt
Administrateur: Oui
Version: 2.2.1.1043
Base de donnees de programmes malveillants: v2016.12.07.11
Base de donnees de rootkits: v2016.11.20.01
Licence: Gratuit
Protection contre les programmes malveillants: Desactive
Protection contre les sites Web malveillants: Desactive
Autoprotection: Desactive
Systeme d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Systeme de fichiers: NTFS
Utilisateur: Leonel
Type d'analyse: Analyse des menaces
Resultat: Termine
Objets analyses: 301441
Temps ecoule: 32 min, 46 s
Memoire: Active
Demarrage: Active
Systeme de fichiers: Active
Archives: Active
Rootkits: Active
Heuristique: Active
PUP: Avertir
PUM: Active
Processus: 13
PUP.Optional.Elex, C:\ProgramData\service.exe, 2496, Supprimer au redemarrage, [cabd35afdebc7fb727906bf450b01ae6]
Adware.Agent, C:\Users\Leonel\AppData\Local\Temp\00028217\msiql.exe, 3524, Supprimer au redemarrage, [c5c2964eb9e189ad1def2bac2fd146ba]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2232, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2236, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2248, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2256, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, 2300, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian.exe, 6036, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian.exe, 2320, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian.exe, 5596, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a]
PUP.Optional.Amonetize, C:\Users\Leonel\AppData\Local\Temp\00028217\msiql.exe, 3524, Supprimer au redemarrage, [4f38a53fc3d7979fa352f1983fc1966a]
Trojan.Agent, C:\ProgramData\service.exe, 2496, Supprimer au redemarrage, [4245d70db4e62b0b002008e118eab64a]
PUP.Optional.MaohaWiFi, C:\Program Files (x86)\Maoha\MaohaAP\MaohaWifiSvr.exe, 532, Supprimer au redemarrage, [7d0ad70ddfbb3bfbda1567c0fb0523dd]
Modules: 4
Adware.Elex.Generic, C:\Program Files (x86)\Coerotionshupent\Rtwhlp.dll, Supprimer au redemarrage, [abdc7074a5f51d194c13aafd6c946997],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\360Base.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi\CheckHp.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi\HpSvc.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
Cles du Registre: 32
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3E5332CF-5775-45ED-A446-9E421E8FACB7}, Supprimer au redemarrage, [aaddd4103862aa8c20c4501f9f61d729],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{753D4D06-9794-415A-A988-03B160322285}, Supprimer au redemarrage, [d8af8c586c2e1d19bca2b96aa06028d8],
Adware.Agent.CLK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{83E9EA1D-3088-463F-81EB-FCAB9B60A9C6}, Supprimer au redemarrage, [c6c1f7ed8a107eb81a9abad0ef1355ab],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{852D2E55-287E-4744-BC29-F9A3AE41BD17}, Supprimer au redemarrage, [404713d14852fb3b64fa1f04cf3158a8],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{876FBA50-B143-4BC0-93E9-9F803AA03098}, Supprimer au redemarrage, [93f4dd073c5e152184da82a10bf51ee2],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8DB5CB83-20FC-4ED0-A279-10BD5085C932}, Supprimer au redemarrage, [97f0c420d3c7de5860feac7701ff03fd],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{93EC759D-7CAB-44BC-B24C-08D5EA9588DC}, Supprimer au redemarrage, [2661ae36138776c070ee919260a00cf4],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AB38BBF9-11B6-451E-A4A7-A9AB4B634DAA}, Supprimer au redemarrage, [632403e1f0aa95a18ad4af74c53b10f0],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B4EEF6AB-3138-4A06-8669-D1157120E7BB}, Supprimer au redemarrage, [02857f657a20f442af35cba41de3748c],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{BEE7DB3E-10AD-499F-BA1D-4C86DE2122AB}, Supprimer au redemarrage, [45429f4522781d1989d59b88916f52ae],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CA733EB4-B239-4AB2-9DE4-90BD90CEEEF2}, Supprimer au redemarrage, [345313d11d7d12246480561936ca27d9],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E2ABF23D-E148-4E37-90B0-592BE4963345}, Supprimer au redemarrage, [17707c681c7e2b0b5a04e63d837d748c],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E6829FAA-0A5D-4A47-B006-5FEADA67BA03}, Supprimer au redemarrage, [9ee940a4762443f35e00c65dae5257a9],
PUP.Optional.Kuaizip, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{ED74CC4B-778B-4942-A1C7-9C913B11C743}, Supprimer au redemarrage, [b0d70ed6dbbfb87ed9098bcd16eacf31],
PUP.Optional.Kuaizip, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\KuaiZip_Update, Supprimer au redemarrage, [e3a48460fc9e77bf8a16e16dc7396b95],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application, Supprimer au redemarrage, [74139f45bae0d75f771457cc649cc53b],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application Guard, Supprimer au redemarrage, [345329bb4d4dd264acdf74afaf51df21],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application Guardian, Supprimer au redemarrage, [b2d535af3e5c67cf2d5eb07307f9f709],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application Updater, Supprimer au redemarrage, [c5c2c024e4b652e44b40091a43bd837d],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2, Supprimer au redemarrage, [b7d0c024b8e23204acdffe25fb059d63],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2 Guard, Supprimer au redemarrage, [790ecb190d8df4424c3f50d3a957da26],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2 Guardian, Supprimer au redemarrage, [bec9806488121b1b7f0ca281c53b956b],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2 OG, Supprimer au redemarrage, [295eb133c7d3d462a0eb40e354ac06fa],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Online Application v2 On Guard, Supprimer au redemarrage, [ff88fee6e0ba53e30b805ec548b88b75],
Adware.Agent.CLK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\osTip, Supprimer au redemarrage, [b8cf994b4a5072c4a044581d56ada957],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Traffic Exchange, Supprimer au redemarrage, [94f330b41f7b56e06a5bb4bae81813ed],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Traffic Exchange Guard, Supprimer au redemarrage, [96f194500d8dd1654580d896a957cb35],
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Traffic Exchange Guardian, Supprimer au redemarrage, [a5e222c2603a71c5477efe70f010c33d],
PUP.Optional.MaohaWiFi, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MaohaWifiNetPro, Supprimer au redemarrage, [3b4c20c49ffb24120ecb3dea4bb54cb4],
PUP.Optional.MaohaWiFi, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MaohaWifiSvr, Supprimer au redemarrage, [7d0ad70ddfbb3bfbda1567c0fb0523dd],
PUP.Optional.Kuaizip, HKU\S-1-5-18\SOFTWARE\KuaiZip, En quarantaine, [2a5dbd277a20f73f3326553e4cb4e020],
PUP.Optional.Ludashi, HKU\S-1-5-21-1374286513-1629226585-3972681917-1000\SOFTWARE\LUDASHI, En quarantaine, [8106f5efb7e37bbb95163952f20e9a66],
Valeurs du Registre: 15
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3E5332CF-5775-45ED-A446-9E421E8FACB7}|Path, \Traffic Exchange Guard, Supprimer au redemarrage, [aaddd4103862aa8c20c4501f9f61d729]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{753D4D06-9794-415A-A988-03B160322285}|Path, \Online Application v2, Supprimer au redemarrage, [d8af8c586c2e1d19bca2b96aa06028d8]
Adware.Agent.CLK, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{83E9EA1D-3088-463F-81EB-FCAB9B60A9C6}|Path, \osTip, Supprimer au redemarrage, [c6c1f7ed8a107eb81a9abad0ef1355ab]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{852D2E55-287E-4744-BC29-F9A3AE41BD17}|Path, \Online Application, Supprimer au redemarrage, [404713d14852fb3b64fa1f04cf3158a8]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{876FBA50-B143-4BC0-93E9-9F803AA03098}|Path, \Online Application Guardian, Supprimer au redemarrage, [93f4dd073c5e152184da82a10bf51ee2]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8DB5CB83-20FC-4ED0-A279-10BD5085C932}|Path, \Online Application Guard, Supprimer au redemarrage, [97f0c420d3c7de5860feac7701ff03fd]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{93EC759D-7CAB-44BC-B24C-08D5EA9588DC}|Path, \Online Application Updater, Supprimer au redemarrage, [2661ae36138776c070ee919260a00cf4]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AB38BBF9-11B6-451E-A4A7-A9AB4B634DAA}|Path, \Online Application v2 On Guard, Supprimer au redemarrage, [632403e1f0aa95a18ad4af74c53b10f0]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B4EEF6AB-3138-4A06-8669-D1157120E7BB}|Path, \Traffic Exchange, Supprimer au redemarrage, [02857f657a20f442af35cba41de3748c]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{BEE7DB3E-10AD-499F-BA1D-4C86DE2122AB}|Path, \Online Application v2 Guard, Supprimer au redemarrage, [45429f4522781d1989d59b88916f52ae]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CA733EB4-B239-4AB2-9DE4-90BD90CEEEF2}|Path, \Traffic Exchange Guardian, Supprimer au redemarrage, [345313d11d7d12246480561936ca27d9]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E2ABF23D-E148-4E37-90B0-592BE4963345}|Path, \Online Application v2 Guardian, Supprimer au redemarrage, [17707c681c7e2b0b5a04e63d837d748c]
PUP.Optional.OnlineIO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E6829FAA-0A5D-4A47-B006-5FEADA67BA03}|Path, \Online Application v2 OG, Supprimer au redemarrage, [9ee940a4762443f35e00c65dae5257a9]
PUP.Optional.Kuaizip, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{ED74CC4B-778B-4942-A1C7-9C913B11C743}|Path, \KuaiZip_Update, Supprimer au redemarrage, [b0d70ed6dbbfb87ed9098bcd16eacf31]
PUP.Optional.Ludashi, HKU\S-1-5-21-1374286513-1629226585-3972681917-1000\SOFTWARE\LUDASHI|360lock, 0, En quarantaine, [8106f5efb7e37bbb95163952f20e9a66]
Donnees du Registre: 0
(Aucun element malveillant detecte)
Dossiers: 10
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a],
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a],
PUP.Optional.Amonetize, C:\Users\Leonel\AppData\Local\Temp\00028217, Supprimer au redemarrage, [4f38a53fc3d7979fa352f1983fc1966a],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher, Supprimer au redemarrage, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\META-INF, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.Ludashi, C:\Users\Leonel\AppData\Roaming\Ludashi, En quarantaine, [85028460a4f64ceac937e2a82bd5f808],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\Utils, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
Fichiers: 32
PUP.Optional.Kuaizip, C:\Windows\System32\drivers\KuaiZipDrive.sys, Supprimer au redemarrage, [fee53173263b621656360f99e68dcda5],
Adware.Elex.Generic, C:\Program Files (x86)\Coerotionshupent\Rtwhlp.dll, Supprimer au redemarrage, [abdc7074a5f51d194c13aafd6c946997],
PUP.Optional.Elex, C:\ProgramData\service.exe, Supprimer au redemarrage, [cabd35afdebc7fb727906bf450b01ae6],
Adware.Agent, C:\Users\Leonel\AppData\Local\Temp\00028217\msiql.exe, Supprimer au redemarrage, [c5c2964eb9e189ad1def2bac2fd146ba],
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian-v2.exe, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a],
PUP.Optional.OnlineIO, C:\Program Files (x86)\Microleaves\Online.io Application\Online-Guardian.exe, Supprimer au redemarrage, [0a7d5193633753e3021b78ab48b8a65a],
PUP.Optional.Amonetize, C:\Users\Leonel\AppData\Local\Temp\00028217\msiql.exe, Supprimer au redemarrage, [4f38a53fc3d7979fa352f1983fc1966a],
Trojan.Agent, C:\ProgramData\service.exe, Supprimer au redemarrage, [4245d70db4e62b0b002008e118eab64a],
PUP.Optional.MaohaWiFi, C:\Program Files (x86)\Maoha\MaohaAP\MaohaWifiSvr.exe, Supprimer au redemarrage, [7d0ad70ddfbb3bfbda1567c0fb0523dd],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\0024397e, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\chrome.manifest, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\install.rdf, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content\browser.xul, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content\content.js, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content\icon-48.png, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\content\icon-64.png, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\META-INF\manifest.mf, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\META-INF\mozilla.rsa, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.FastSearch, C:\Users\Leonel\AppData\Roaming\Mozilla\Firefox\Profiles\ecwaq80d.default-1445092001882\extensions\amcontextmenu@loucypher\META-INF\mozilla.sf, En quarantaine, [dbac29bb5c3e61d5f64c3423e818ba46],
PUP.Optional.Ludashi, C:\Users\Leonel\AppData\Roaming\Ludashi\ComputerZ.set, En quarantaine, [85028460a4f64ceac937e2a82bd5f808],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\360Base.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\360Base64.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\ComputerZ7_x64.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi\CheckHp.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\lpi\HpSvc.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Ludashi, C:\Program Files (x86)\LuDaShi\Utils\ComputerZ12_x64.dll, Supprimer au redemarrage, [6225fbe91189171fa38c365432cedd23],
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (user_pref("browser.search.defaultenginename", "youndoo");), Remplace,[85027a6af7a3a3932bcc0b1338c85fa1]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (o prefeapp.update.enabled", false);
user_pref("app.update.lastUpdateTime.addon-background-update-timer", 1482097967);
user_pref("app.update.lastUpdateTime.background-update-timer), Remplace,[f1966f75a6f4a6905b9cf32b03fdb64a]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (me.addon-background-update-timer", 1482097967);
user_pref("app.update.lastUpdateTime.background-update-timer", 1482141407);
user_pref("app.update.lastUpdateTime.blocklist-background-update-timer", 1482), Remplace,[f097fce8405ab97dc92ec45aa35db64a]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (141407);
user_pref("app.update.lastUpdateTime.blocklist-background-update-timer", 1482098087);
user_pref("app.update.lastUpdateTime.browser-cleanup-thumbnails", 1482171522);
user_pref("app.update.lastU), Remplace,[a0e704e0475346f01fd837e7758b18e8]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (ate-timer", 1482097967);
user_pref("app.update.lastUp), Remplace,[5d2a5e866d2d93a33cbb58c616eae11f]
PUP.Optional.Youndoo, C:\Users\Leonel\AppData\Roaming\Profiles\Thuricult.default\prefs.js, Bon : (), Mauvais : (mer", 1482098087);
user_pref("app.update.lastUpdateTime.browser-cleanup-thumbnails", 1482171522);
user_pref("app.update.lastUpdateTime.experiments-update-timer", 1482097847), Remplace,[5e2902e2c2d8a78f5b9c5cc2ae52fa06]
Secteurs physiques: 0
(Aucun element malveillant detecte)
(end)