Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 23/01/2019
Heure de l'analyse: 09:19
Fichier journal: 8d6907e8-1ee7-11e9-bcdf-18cf5ef03d14.json
-Informations du logiciel-
Version: 3.6.1.2711
Version de composants: 1.0.527
Version de pack de mise à jour: 1.0.8928
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: HEBERGEMENT\ERICA
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 399388
Menaces détectées: 37
Menaces mises en quarantaine: 37
Temps écoulé: 8 min, 55 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 3
PUP.Optional.DriverToolkit, HKU\S-1-5-21-2604808015-2082817612-2190174715-1001\SOFTWARE\DriverToolkit, En quarantaine, [980], [512874],1.0.8928
PUP.Optional.InstallCore, HKU\S-1-5-21-2604808015-2082817612-2190174715-1001\SOFTWARE\InstallCore, En quarantaine, [417], [239563],1.0.8928
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IOBIT_MONITOR_SERVER, En quarantaine, [3803], [580520],1.0.8928
Valeur du registre: 2
PUP.Optional.AdvancedSystemCare, HKU\S-1-5-21-2604808015-2082817612-2190174715-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ADVANCED SYSTEMCARE 11, En quarantaine, [3803], [380353],1.0.8928
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IOBIT_MONITOR_SERVER|IMAGEPATH, En quarantaine, [3803], [580520],1.0.8928
Données du registre: 0
(Aucun élément malveillant détecté)
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 0
(Aucun élément malveillant détecté)
Fichier: 32
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASC.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\DNSPROTECT.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\FEEDBACK.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\OFCOMMON.DLL, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASCSERVICE.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\REGISTER.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\AUTOCARE.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\DISKDEFRAG.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.Everything, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\EVERYTHING\UPDATE.EXE, En quarantaine, [3922], [76535],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ASCTRAY.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASCINIT.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\AUTOSWEEP.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASCDOWNLOAD.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\REPROCESS.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\AUTOUPDATE.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.Everything, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\EVERYTHING\UNINST.EXE, En quarantaine, [3922], [76535],1.0.8928
Generic.Malware/Suspicious, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\EVERYTHING\EVERYTHING.EXE, En quarantaine, [0], [392686],1.0.8928
PUP.Optional.Solvusoft, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SHARP_AR-M160_MISE_à_JOUR_PILOTE_10-2014.EXE, En quarantaine, [2915], [331663],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ASCSERVICE.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\OFCOMMON.DLL, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASCTRAY.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\JUMPLISTDLL.DLL, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\NFEATURES.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\SCANNER.DLL, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.SecurityCleanerLLC, C:\$RECYCLE.BIN\S-1-5-21-2604808015-2082817612-2190174715-1005\$R1S9CZJ.EXE, En quarantaine, [3276], [379151],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\TASKHELPER.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ASC.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\DISPLAY.EXE, En quarantaine, [3803], [396386],1.0.8928
Adware.Elex, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\EVERYTHING\SFKEX.DLL, En quarantaine, [467], [387890],1.0.8928
PUP.Optional.InstallCore.Generic, C:\$RECYCLE.BIN\S-1-5-21-2604808015-2082817612-2190174715-1005\$RL61HWK.EXE, En quarantaine, [528], [512282],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\LOCAL\TEMP\ASC12_FREEBIGUPGRADE_DOWNLOADER\ASC.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\DANIELLE\DOWNLOADS\ADVANCED-SYSTEMCARE-FREE_11-1-0-196_FR_403234.EXE, En quarantaine, [3803], [396386],1.0.8928
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 23/01/2019
Heure de l'analyse: 09:19
Fichier journal: 8d6907e8-1ee7-11e9-bcdf-18cf5ef03d14.json
-Informations du logiciel-
Version: 3.6.1.2711
Version de composants: 1.0.527
Version de pack de mise à jour: 1.0.8928
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: HEBERGEMENT\ERICA
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 399388
Menaces détectées: 37
Menaces mises en quarantaine: 37
Temps écoulé: 8 min, 55 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 3
PUP.Optional.DriverToolkit, HKU\S-1-5-21-2604808015-2082817612-2190174715-1001\SOFTWARE\DriverToolkit, En quarantaine, [980], [512874],1.0.8928
PUP.Optional.InstallCore, HKU\S-1-5-21-2604808015-2082817612-2190174715-1001\SOFTWARE\InstallCore, En quarantaine, [417], [239563],1.0.8928
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IOBIT_MONITOR_SERVER, En quarantaine, [3803], [580520],1.0.8928
Valeur du registre: 2
PUP.Optional.AdvancedSystemCare, HKU\S-1-5-21-2604808015-2082817612-2190174715-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ADVANCED SYSTEMCARE 11, En quarantaine, [3803], [380353],1.0.8928
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IOBIT_MONITOR_SERVER|IMAGEPATH, En quarantaine, [3803], [580520],1.0.8928
Données du registre: 0
(Aucun élément malveillant détecté)
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 0
(Aucun élément malveillant détecté)
Fichier: 32
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASC.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\DNSPROTECT.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\FEEDBACK.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\OFCOMMON.DLL, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASCSERVICE.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\REGISTER.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\AUTOCARE.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\DISKDEFRAG.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.Everything, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\EVERYTHING\UPDATE.EXE, En quarantaine, [3922], [76535],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ASCTRAY.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASCINIT.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\AUTOSWEEP.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASCDOWNLOAD.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\REPROCESS.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\AUTOUPDATE.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.Everything, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\EVERYTHING\UNINST.EXE, En quarantaine, [3922], [76535],1.0.8928
Generic.Malware/Suspicious, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\EVERYTHING\EVERYTHING.EXE, En quarantaine, [0], [392686],1.0.8928
PUP.Optional.Solvusoft, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SHARP_AR-M160_MISE_à_JOUR_PILOTE_10-2014.EXE, En quarantaine, [2915], [331663],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ASCSERVICE.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\OFCOMMON.DLL, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\ASCTRAY.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\JUMPLISTDLL.DLL, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\NFEATURES.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\SCANNER.DLL, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.SecurityCleanerLLC, C:\$RECYCLE.BIN\S-1-5-21-2604808015-2082817612-2190174715-1005\$R1S9CZJ.EXE, En quarantaine, [3276], [379151],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\TASKHELPER.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ASC.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ADVANCED SYSTEMCARE.DIR\DISPLAY.EXE, En quarantaine, [3803], [396386],1.0.8928
Adware.Elex, C:\USERS\ERICA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\EVERYTHING\SFKEX.DLL, En quarantaine, [467], [387890],1.0.8928
PUP.Optional.InstallCore.Generic, C:\$RECYCLE.BIN\S-1-5-21-2604808015-2082817612-2190174715-1005\$RL61HWK.EXE, En quarantaine, [528], [512282],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\ERICA\APPDATA\LOCAL\TEMP\ASC12_FREEBIGUPGRADE_DOWNLOADER\ASC.EXE, En quarantaine, [3803], [396386],1.0.8928
PUP.Optional.AdvancedSystemCare, C:\USERS\DANIELLE\DOWNLOADS\ADVANCED-SYSTEMCARE-FREE_11-1-0-196_FR_403234.EXE, En quarantaine, [3803], [396386],1.0.8928
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)