Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 21/11/2018
Heure de l'analyse: 22:38
Fichier journal: d6571230-edd5-11e8-8b97-00e18c5c7811.json
-Informations du logiciel-
Version: 3.6.1.2711
Version de composants: 1.0.482
Version de pack de mise à jour: 1.0.7961
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 10 (Build 17134.407)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: LAPTOP-RMOR992J\annis
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 388381
Menaces détectées: 146
Menaces mises en quarantaine: 146
Temps écoulé: 22 min, 43 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 51
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Chromium malol, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Chromium malol, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ProductUpdt\{6A9E68D5-73AC-8497-63E7-10AFFEC351D9}, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B663813B-9F76-44BD-B009-1F6494905F9E}, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{B663813B-9F76-44BD-B009-1F6494905F9E}, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ProductUpdt\{6A9E68D5-73AC-8497-63E7-10AFFEC351D9}, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B663813B-9F76-44BD-B009-1F6494905F9E}, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B663813B-9F76-44BD-B009-1F6494905F9E}, En quarantaine, [712], [-1],0.0.0
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\{E6B1BD71-40EF-4173-8106-93B5F9032A6E}, En quarantaine, [3701], [601747],1.0.7961
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B7F057E5-6982-4E49-84D7-1D6B94D3DE4C}, En quarantaine, [3701], [601747],1.0.7961
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{B7F057E5-6982-4E49-84D7-1D6B94D3DE4C}, En quarantaine, [3701], [601747],1.0.7961
Adware.Tuto4PC, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\EWMON, En quarantaine, [2782], [411543],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Amazon assistant 1.0, En quarantaine, [404], [533745],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Amazon assistant 2.0, En quarantaine, [404], [533745],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\disk genius 2.02, En quarantaine, [404], [533746],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\farmer 1.0, En quarantaine, [404], [533747],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\pro 1.0, En quarantaine, [404], [533748],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\soundplay 3.0, En quarantaine, [404], [533749],1.0.7961
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\bestavicampaign563, En quarantaine, [433], [584322],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\Foldershare, En quarantaine, [2782], [536223],1.0.7961
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, En quarantaine, [433], [518478],1.0.7961
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ProductUpdt, En quarantaine, [3748], [590573],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MPrForWeathI, En quarantaine, [2782], [572664],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MTPreC_B, En quarantaine, [2782], [572665],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MTPreC_Qn, En quarantaine, [2782], [572666],1.0.7961
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, En quarantaine, [433], [518476],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreAm, En quarantaine, [2782], [572667],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreIc, En quarantaine, [2782], [572668],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreJ, En quarantaine, [2782], [572669],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreShM, En quarantaine, [2782], [572670],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{529DBA5D-021D-6BDD-B39D-1B5D631DC8DD}, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.NeoBar, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2C6A44CB-AD42-4731-A544-3FBD3D83AB5B}, En quarantaine, [427], [411842],1.0.7961
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\nyIvZGuDHmFXw2, En quarantaine, [10899], [526590],1.0.7961
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D11536C7-E666-4700-95FC-972798690F26}, En quarantaine, [10899], [526590],1.0.7961
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{D11536C7-E666-4700-95FC-972798690F26}, En quarantaine, [10899], [526590],1.0.7961
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\xKLrY, En quarantaine, [2779], [519971],1.0.7961
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{378B5FD8-55A2-494E-B0CE-FF8944EE010A}, En quarantaine, [2779], [519971],1.0.7961
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{378B5FD8-55A2-494E-B0CE-FF8944EE010A}, En quarantaine, [2779], [519971],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\TYPELIB\{50DF9038-4F65-47FC-A643-A3C235F1B665}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\INTERFACE\{04198516-3D42-472B-9B27-6FA93C26324C}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\INTERFACE\{89EEB7BB-8F9B-4A23-A29D-179CE6F1BBEE}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{04198516-3D42-472B-9B27-6FA93C26324C}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{89EEB7BB-8F9B-4A23-A29D-179CE6F1BBEE}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{04198516-3D42-472B-9B27-6FA93C26324C}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{89EEB7BB-8F9B-4A23-A29D-179CE6F1BBEE}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{50DF9038-4F65-47FC-A643-A3C235F1B665}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{50DF9038-4F65-47FC-A643-A3C235F1B665}, En quarantaine, [1224], [595821],1.0.7961
Valeur du registre: 7
Adware.Tuto4PC, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\EWMON|PARTNER, En quarantaine, [2782], [411543],1.0.7961
PUP.Optional.DownloadProtectExtension, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{2F7D9095-821D-4AEA-874B-E17D576E8C54}, En quarantaine, [7273], [237883],1.0.7961
PUP.Optional.DownloadProtectExtension, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{2F7D9095-821D-4AEA-874B-E17D576E8C54}, En quarantaine, [7273], [237883],1.0.7961
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}|PATH, En quarantaine, [3748], [483378],1.0.7961
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B663813B-9F76-44BD-B009-1F6494905F9E}|PATH, En quarantaine, [3748], [590572],1.0.7961
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B7F057E5-6982-4E49-84D7-1D6B94D3DE4C}|PATH, En quarantaine, [3701], [601744],1.0.7961
Trojan.BitCoinMiner.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|CHROME, En quarantaine, [3742], [525944],1.0.7961
Données du registre: 0
(Aucun élément malveillant détecté)
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 14
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{1F28FB1A-B816-46C6-AF7C-9ABB88162222}, En quarantaine, [68], [237879],1.0.7961
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\INSTALLER\{5C01AA07-4E93-4D61-8584-86B817BD2E42}, En quarantaine, [6285], [255640],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\{DADF1FBC-509D-957A-D65B-0B384C1980F6}, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.Generic, C:\WINDOWS\SYSTEM32\TASKS\PRODUCTUPDT, En quarantaine, [3748], [590569],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\js, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\USERS\ANNIS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\SYSTEMTABLE, En quarantaine, [4617], [509531],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\RF9C87HXUF, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\BTQEAOV2PT, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\0GKG76DEXS, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\4LGTI20HSJ, En quarantaine, [3697], [357599],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\USERS\ANNIS\APPDATA\LOCAL\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}, En quarantaine, [712], [542290],1.0.7961
Fichier: 74
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{1F28FB1A-B816-46C6-AF7C-9ABB88162222}\xdfdfjpcbbcnhjammpdigojobaeolcbhgml, En quarantaine, [68], [237879],1.0.7961
PUP.Optional.DownloadProtect, C:\Windows\Installer\{1F28FB1A-B816-46C6-AF7C-9ABB88162222}\cdfdfjpcbbcnhjammpdigojobaeolcbhgrx, En quarantaine, [68], [237879],1.0.7961
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\INSTALLER\{5C01AA07-4E93-4D61-8584-86B817BD2E42}\{2F7D9095-821D-4AEA-874B-E17D576E8C54}.xpi, En quarantaine, [6285], [255640],1.0.7961
PUP.Optional.DownloadProtect.ChrPRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\NTUSER.POL, En quarantaine, [6285], [-1],0.0.0
PUP.Optional.DownloadProtect.ChrPRST, C:\PROGRAMDATA\NTUSER.POL, En quarantaine, [6285], [-1],0.0.0
PUP.Optional.DownloadProtect.ChrPRST, C:\USERS\ANNIS\NTUSER.POL, En quarantaine, [6285], [-1],0.0.0
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, En quarantaine, [6285], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\TASKS\Chromium malol.job, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\Chromium malol, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\{DADF1FBC-509D-957A-D65B-0B384C1980F6}\cane, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{DADF1FBC-509D-957A-D65B-0B384C1980F6}\aowLC, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{DADF1FBC-509D-957A-D65B-0B384C1980F6}\hdat1, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{DADF1FBC-509D-957A-D65B-0B384C1980F6}\hdat2, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\Chromium malol, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\ProductUpdt\{6A9E68D5-73AC-8497-63E7-10AFFEC351D9}, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAM FILES (X86)\COMMON FILES\Lekefe\ProductUpdt.exe, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\ProductUpdt\{6A9E68D5-73AC-8497-63E7-10AFFEC351D9}, En quarantaine, [712], [-1],0.0.0
Trojan.Agent.Generic, C:\WINDOWS\SYSTEM32\TASKS\{E6B1BD71-40EF-4173-8106-93B5F9032A6E}, En quarantaine, [3701], [601747],1.0.7961
Adware.Wait3Sec, C:\USERS\ANNIS\DOWNLOADS\PLAY WARFRAME.ICO, En quarantaine, [4480], [526086],1.0.7961
Adware.Linkury.Generic, C:\USERS\ANNIS\APPDATA\LOCAL\SHAM.DB, En quarantaine, [3733], [516191],1.0.7961
Adware.Wait3Sec, C:\USERS\ANNIS\DOWNLOADS\PLAY CROSSOUT.ICO, En quarantaine, [4480], [526085],1.0.7961
PUP.Optional.SystemTable.Generic, C:\USERS\ANNIS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\SYSTEMTABLE\1.2_0\manifest.json, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon128.png, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon16.png, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon24.png, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon32.png, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\js\background.js, En quarantaine, [4617], [509531],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\RF9C87HXUF\CAST.CONFIG, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\RF9C87HXUF\RF9C87HXU.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\RF9C87HXUF\uninstaller.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\BTQEAOV2PT\CAST.CONFIG, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\BTQEAOV2PT\BTQEAOV2P.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\BTQEAOV2PT\uninstaller.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\0GKG76DEXS\CAST.CONFIG, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\0GKG76DEXS\0GKG76DEX.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\0GKG76DEXS\uninstaller.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\4LGTI20HSJ\CAST.CONFIG, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\4LGTI20HSJ\4LGTI20HS.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\4LGTI20HSJ\uninstaller.exe.config, En quarantaine, [3697], [357599],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\Microsoft\Windows\Start Menu\Programs\HowToRemove.lnk, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\USERS\ANNIS\APPDATA\LOCAL\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HOWTOREMOVE\HOWTOREMOVE.HTML, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\chromium-min.jpg, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\control panel-min-min.JPG, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\down.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\ff menu.JPG, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\ff search engine-min.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\hp-min ff.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\hp-min ie.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\search engine.gif, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\setup pages.gif, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\sp-min.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\start-min.jpg, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\up.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\sanamitit, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\telare, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\uninst.exe, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\uninstp.dat, En quarantaine, [712], [542290],1.0.7961
Adware.Neoreklami.Generic, C:\WINDOWS\SYSTEM32\TASKS\nyIvZGuDHmFXw2, En quarantaine, [10899], [526590],1.0.7961
Trojan.Agent.VBS, C:\WINDOWS\SYSTEM32\TASKS\xKLrY, En quarantaine, [2779], [519971],1.0.7961
Adware.Csdimonetize, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\VSBSVHRH45T\MY0TRA3D3RP.EXE, En quarantaine, [2866], [587843],1.0.7961
Adware.Neoreklami, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\T2WV2WK.DLL, En quarantaine, [903], [596043],1.0.7961
Adware.Csdimonetize, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\1IBZVO2YSQY\GBG0VX4W4W5.EXE, En quarantaine, [2866], [587843],1.0.7961
Generic.Malware/Suspicious, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SECOH-QAD.EXE, En quarantaine, [0], [392686],1.0.7961
Generic.Malware/Suspicious, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\KMSPICO 11 FINAL (OFFICE AND WINDOWS 10+8+7 ACTIVATOR).ZIP, En quarantaine, [0], [392686],1.0.7961
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\SKLMZGAUUIE\RRCGFSBOIZ.EXE, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\IOMDYSZMYIUN\EQCDWWAQOX.DLL, En quarantaine, [1224], [510064],1.0.7961
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\SKLMZGAUUIE\UM8JD4I.DLL, En quarantaine, [1224], [521622],1.0.7961
Adware.Neoreklami, C:\PROGRAM FILES (X86)\SKLMZGAUUIE\KW9JCKYK.DLL, En quarantaine, [903], [596032],1.0.7961
Generic.Malware/Suspicious, C:\USERS\ANNIS\DOWNLOADS\APPNEE.COM.ADOBE.CC.2015.UNI.KEYGEN.X-FORCE.WIN2.7Z, En quarantaine, [0], [392686],1.0.7961
CrackTool.Agent, C:\USERS\ANNIS\DOWNLOADS\APPNEE.COM.ADOBE.CC.2014.UNI.KEYGEN.X-FORCE.WIN1.7Z, En quarantaine, [6157], [146743],1.0.7961
RiskWare.Tool.HCK, C:\USERS\ANNIS\DOWNLOADS\CRACK.RAR, En quarantaine, [7757], [69152],1.0.7961
RiskWare.Agent.Keygen, C:\USERS\ANNIS\APPDATA\ROAMING\Microsoft\Windows\Recent\AppNee.com.Adobe.CC.2015.Uni.Keygen.X-Force.Win1.7z.lnk, En quarantaine, [8072], [352875],1.0.7961
RiskWare.Agent.Keygen, C:\USERS\ANNIS\DOWNLOADS\APPNEE.COM.ADOBE.CC.2015.UNI.KEYGEN.X-FORCE.WIN1.7Z, En quarantaine, [8072], [352875],1.0.7961
PUP.Optional.Linkury, C:\USERS\ANNIS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Remplacé, [244], [455233],1.0.7961
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 21/11/2018
Heure de l'analyse: 22:38
Fichier journal: d6571230-edd5-11e8-8b97-00e18c5c7811.json
-Informations du logiciel-
Version: 3.6.1.2711
Version de composants: 1.0.482
Version de pack de mise à jour: 1.0.7961
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 10 (Build 17134.407)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: LAPTOP-RMOR992J\annis
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 388381
Menaces détectées: 146
Menaces mises en quarantaine: 146
Temps écoulé: 22 min, 43 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 51
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Chromium malol, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Chromium malol, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ProductUpdt\{6A9E68D5-73AC-8497-63E7-10AFFEC351D9}, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B663813B-9F76-44BD-B009-1F6494905F9E}, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{B663813B-9F76-44BD-B009-1F6494905F9E}, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ProductUpdt\{6A9E68D5-73AC-8497-63E7-10AFFEC351D9}, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B663813B-9F76-44BD-B009-1F6494905F9E}, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B663813B-9F76-44BD-B009-1F6494905F9E}, En quarantaine, [712], [-1],0.0.0
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\{E6B1BD71-40EF-4173-8106-93B5F9032A6E}, En quarantaine, [3701], [601747],1.0.7961
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B7F057E5-6982-4E49-84D7-1D6B94D3DE4C}, En quarantaine, [3701], [601747],1.0.7961
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{B7F057E5-6982-4E49-84D7-1D6B94D3DE4C}, En quarantaine, [3701], [601747],1.0.7961
Adware.Tuto4PC, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\EWMON, En quarantaine, [2782], [411543],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Amazon assistant 1.0, En quarantaine, [404], [533745],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Amazon assistant 2.0, En quarantaine, [404], [533745],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\disk genius 2.02, En quarantaine, [404], [533746],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\farmer 1.0, En quarantaine, [404], [533747],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\pro 1.0, En quarantaine, [404], [533748],1.0.7961
Trojan.Agent, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\soundplay 3.0, En quarantaine, [404], [533749],1.0.7961
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\bestavicampaign563, En quarantaine, [433], [584322],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\Foldershare, En quarantaine, [2782], [536223],1.0.7961
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, En quarantaine, [433], [518478],1.0.7961
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ProductUpdt, En quarantaine, [3748], [590573],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MPrForWeathI, En quarantaine, [2782], [572664],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MTPreC_B, En quarantaine, [2782], [572665],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MTPreC_Qn, En quarantaine, [2782], [572666],1.0.7961
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, En quarantaine, [433], [518476],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreAm, En quarantaine, [2782], [572667],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreIc, En quarantaine, [2782], [572668],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreJ, En quarantaine, [2782], [572669],1.0.7961
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreShM, En quarantaine, [2782], [572670],1.0.7961
PUP.Optional.WinYahoo.TskLnk, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{529DBA5D-021D-6BDD-B39D-1B5D631DC8DD}, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.NeoBar, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2C6A44CB-AD42-4731-A544-3FBD3D83AB5B}, En quarantaine, [427], [411842],1.0.7961
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\nyIvZGuDHmFXw2, En quarantaine, [10899], [526590],1.0.7961
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D11536C7-E666-4700-95FC-972798690F26}, En quarantaine, [10899], [526590],1.0.7961
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{D11536C7-E666-4700-95FC-972798690F26}, En quarantaine, [10899], [526590],1.0.7961
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\xKLrY, En quarantaine, [2779], [519971],1.0.7961
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{378B5FD8-55A2-494E-B0CE-FF8944EE010A}, En quarantaine, [2779], [519971],1.0.7961
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{378B5FD8-55A2-494E-B0CE-FF8944EE010A}, En quarantaine, [2779], [519971],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\TYPELIB\{50DF9038-4F65-47FC-A643-A3C235F1B665}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\INTERFACE\{04198516-3D42-472B-9B27-6FA93C26324C}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\INTERFACE\{89EEB7BB-8F9B-4A23-A29D-179CE6F1BBEE}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{04198516-3D42-472B-9B27-6FA93C26324C}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{89EEB7BB-8F9B-4A23-A29D-179CE6F1BBEE}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{04198516-3D42-472B-9B27-6FA93C26324C}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{89EEB7BB-8F9B-4A23-A29D-179CE6F1BBEE}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{50DF9038-4F65-47FC-A643-A3C235F1B665}, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{50DF9038-4F65-47FC-A643-A3C235F1B665}, En quarantaine, [1224], [595821],1.0.7961
Valeur du registre: 7
Adware.Tuto4PC, HKU\S-1-5-21-2414254725-970752762-862428495-1001\SOFTWARE\MICROSOFT\EWMON|PARTNER, En quarantaine, [2782], [411543],1.0.7961
PUP.Optional.DownloadProtectExtension, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{2F7D9095-821D-4AEA-874B-E17D576E8C54}, En quarantaine, [7273], [237883],1.0.7961
PUP.Optional.DownloadProtectExtension, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{2F7D9095-821D-4AEA-874B-E17D576E8C54}, En quarantaine, [7273], [237883],1.0.7961
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6B0A1D7D-0FF4-415C-9369-A4630237A5B0}|PATH, En quarantaine, [3748], [483378],1.0.7961
PUP.Optional.WinYahoo.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B663813B-9F76-44BD-B009-1F6494905F9E}|PATH, En quarantaine, [3748], [590572],1.0.7961
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B7F057E5-6982-4E49-84D7-1D6B94D3DE4C}|PATH, En quarantaine, [3701], [601744],1.0.7961
Trojan.BitCoinMiner.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|CHROME, En quarantaine, [3742], [525944],1.0.7961
Données du registre: 0
(Aucun élément malveillant détecté)
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 14
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{1F28FB1A-B816-46C6-AF7C-9ABB88162222}, En quarantaine, [68], [237879],1.0.7961
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\INSTALLER\{5C01AA07-4E93-4D61-8584-86B817BD2E42}, En quarantaine, [6285], [255640],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\{DADF1FBC-509D-957A-D65B-0B384C1980F6}, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.Generic, C:\WINDOWS\SYSTEM32\TASKS\PRODUCTUPDT, En quarantaine, [3748], [590569],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\js, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\USERS\ANNIS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\SYSTEMTABLE, En quarantaine, [4617], [509531],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\RF9C87HXUF, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\BTQEAOV2PT, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\0GKG76DEXS, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\4LGTI20HSJ, En quarantaine, [3697], [357599],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\USERS\ANNIS\APPDATA\LOCAL\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}, En quarantaine, [712], [542290],1.0.7961
Fichier: 74
PUP.Optional.DownloadProtect, C:\WINDOWS\INSTALLER\{1F28FB1A-B816-46C6-AF7C-9ABB88162222}\xdfdfjpcbbcnhjammpdigojobaeolcbhgml, En quarantaine, [68], [237879],1.0.7961
PUP.Optional.DownloadProtect, C:\Windows\Installer\{1F28FB1A-B816-46C6-AF7C-9ABB88162222}\cdfdfjpcbbcnhjammpdigojobaeolcbhgrx, En quarantaine, [68], [237879],1.0.7961
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\INSTALLER\{5C01AA07-4E93-4D61-8584-86B817BD2E42}\{2F7D9095-821D-4AEA-874B-E17D576E8C54}.xpi, En quarantaine, [6285], [255640],1.0.7961
PUP.Optional.DownloadProtect.ChrPRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\NTUSER.POL, En quarantaine, [6285], [-1],0.0.0
PUP.Optional.DownloadProtect.ChrPRST, C:\PROGRAMDATA\NTUSER.POL, En quarantaine, [6285], [-1],0.0.0
PUP.Optional.DownloadProtect.ChrPRST, C:\USERS\ANNIS\NTUSER.POL, En quarantaine, [6285], [-1],0.0.0
PUP.Optional.DownloadProtect.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, En quarantaine, [6285], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\TASKS\Chromium malol.job, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\Chromium malol, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\{DADF1FBC-509D-957A-D65B-0B384C1980F6}\cane, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{DADF1FBC-509D-957A-D65B-0B384C1980F6}\aowLC, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{DADF1FBC-509D-957A-D65B-0B384C1980F6}\hdat1, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\ProgramData\{DADF1FBC-509D-957A-D65B-0B384C1980F6}\hdat2, En quarantaine, [712], [484243],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\Chromium malol, En quarantaine, [712], [-1],0.0.0
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\ProductUpdt\{6A9E68D5-73AC-8497-63E7-10AFFEC351D9}, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAM FILES (X86)\COMMON FILES\Lekefe\ProductUpdt.exe, En quarantaine, [712], [590562],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\WINDOWS\SYSTEM32\TASKS\ProductUpdt\{6A9E68D5-73AC-8497-63E7-10AFFEC351D9}, En quarantaine, [712], [-1],0.0.0
Trojan.Agent.Generic, C:\WINDOWS\SYSTEM32\TASKS\{E6B1BD71-40EF-4173-8106-93B5F9032A6E}, En quarantaine, [3701], [601747],1.0.7961
Adware.Wait3Sec, C:\USERS\ANNIS\DOWNLOADS\PLAY WARFRAME.ICO, En quarantaine, [4480], [526086],1.0.7961
Adware.Linkury.Generic, C:\USERS\ANNIS\APPDATA\LOCAL\SHAM.DB, En quarantaine, [3733], [516191],1.0.7961
Adware.Wait3Sec, C:\USERS\ANNIS\DOWNLOADS\PLAY CROSSOUT.ICO, En quarantaine, [4480], [526085],1.0.7961
PUP.Optional.SystemTable.Generic, C:\USERS\ANNIS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\SYSTEMTABLE\1.2_0\manifest.json, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon128.png, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon16.png, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon24.png, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon32.png, En quarantaine, [4617], [509531],1.0.7961
PUP.Optional.SystemTable.Generic, C:\Users\annis\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\js\background.js, En quarantaine, [4617], [509531],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\RF9C87HXUF\CAST.CONFIG, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\RF9C87HXUF\RF9C87HXU.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\RF9C87HXUF\uninstaller.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\BTQEAOV2PT\CAST.CONFIG, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\BTQEAOV2PT\BTQEAOV2P.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\BTQEAOV2PT\uninstaller.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\0GKG76DEXS\CAST.CONFIG, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\0GKG76DEXS\0GKG76DEX.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\0GKG76DEXS\uninstaller.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\4LGTI20HSJ\CAST.CONFIG, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\4LGTI20HSJ\4LGTI20HS.exe.config, En quarantaine, [3697], [357599],1.0.7961
Adware.Tuto4PC.Generic, C:\Program Files\4LGTI20HSJ\uninstaller.exe.config, En quarantaine, [3697], [357599],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\PROGRAMDATA\Microsoft\Windows\Start Menu\Programs\HowToRemove.lnk, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\USERS\ANNIS\APPDATA\LOCAL\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HOWTOREMOVE\HOWTOREMOVE.HTML, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\chromium-min.jpg, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\control panel-min-min.JPG, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\down.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\ff menu.JPG, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\ff search engine-min.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\hp-min ff.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\hp-min ie.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\search engine.gif, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\setup pages.gif, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\sp-min.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\start-min.jpg, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\HowToRemove\up.png, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\sanamitit, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\telare, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\uninst.exe, En quarantaine, [712], [542290],1.0.7961
PUP.Optional.WinYahoo.TskLnk, C:\Users\annis\AppData\Local\{8BCABD96-AF62-D12E-C2FA-F4C6E692085E}\uninstp.dat, En quarantaine, [712], [542290],1.0.7961
Adware.Neoreklami.Generic, C:\WINDOWS\SYSTEM32\TASKS\nyIvZGuDHmFXw2, En quarantaine, [10899], [526590],1.0.7961
Trojan.Agent.VBS, C:\WINDOWS\SYSTEM32\TASKS\xKLrY, En quarantaine, [2779], [519971],1.0.7961
Adware.Csdimonetize, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\VSBSVHRH45T\MY0TRA3D3RP.EXE, En quarantaine, [2866], [587843],1.0.7961
Adware.Neoreklami, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\T2WV2WK.DLL, En quarantaine, [903], [596043],1.0.7961
Adware.Csdimonetize, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\1IBZVO2YSQY\GBG0VX4W4W5.EXE, En quarantaine, [2866], [587843],1.0.7961
Generic.Malware/Suspicious, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SECOH-QAD.EXE, En quarantaine, [0], [392686],1.0.7961
Generic.Malware/Suspicious, C:\USERS\ANNIS\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\KMSPICO 11 FINAL (OFFICE AND WINDOWS 10+8+7 ACTIVATOR).ZIP, En quarantaine, [0], [392686],1.0.7961
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\SKLMZGAUUIE\RRCGFSBOIZ.EXE, En quarantaine, [1224], [595821],1.0.7961
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\IOMDYSZMYIUN\EQCDWWAQOX.DLL, En quarantaine, [1224], [510064],1.0.7961
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\SKLMZGAUUIE\UM8JD4I.DLL, En quarantaine, [1224], [521622],1.0.7961
Adware.Neoreklami, C:\PROGRAM FILES (X86)\SKLMZGAUUIE\KW9JCKYK.DLL, En quarantaine, [903], [596032],1.0.7961
Generic.Malware/Suspicious, C:\USERS\ANNIS\DOWNLOADS\APPNEE.COM.ADOBE.CC.2015.UNI.KEYGEN.X-FORCE.WIN2.7Z, En quarantaine, [0], [392686],1.0.7961
CrackTool.Agent, C:\USERS\ANNIS\DOWNLOADS\APPNEE.COM.ADOBE.CC.2014.UNI.KEYGEN.X-FORCE.WIN1.7Z, En quarantaine, [6157], [146743],1.0.7961
RiskWare.Tool.HCK, C:\USERS\ANNIS\DOWNLOADS\CRACK.RAR, En quarantaine, [7757], [69152],1.0.7961
RiskWare.Agent.Keygen, C:\USERS\ANNIS\APPDATA\ROAMING\Microsoft\Windows\Recent\AppNee.com.Adobe.CC.2015.Uni.Keygen.X-Force.Win1.7z.lnk, En quarantaine, [8072], [352875],1.0.7961
RiskWare.Agent.Keygen, C:\USERS\ANNIS\DOWNLOADS\APPNEE.COM.ADOBE.CC.2015.UNI.KEYGEN.X-FORCE.WIN1.7Z, En quarantaine, [8072], [352875],1.0.7961
PUP.Optional.Linkury, C:\USERS\ANNIS\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Remplacé, [244], [455233],1.0.7961
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)