Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 16/06/2021
Durée d'analyse: 15:12
Fichier journal: 486e4218-ceb5-11eb-ae98-00ff089e31f8.json
-Informations du logiciel-
Version: 4.4.0.117
Version de composants: 1.0.1318
Version de pack de mise à jour: 1.0.41795
Licence: Essai
-Informations système-
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: CHRISTIAN\Christ
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 250707
Menaces détectées: 59
Menaces mises en quarantaine: 59
Temps écoulé: 5 min, 31 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 22
PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFenceService_RASAPI32, En quarantaine, 1087, 823187, 1.0.41795, , ame, , ,
PUP.Optional.InstallCore, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\CSASTATS\ic, En quarantaine, 516, 586068, 1.0.41795, , ame, , ,
PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFenceService_RASMANCS, En quarantaine, 1087, 823187, 1.0.41795, , ame, , ,
PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFence_RASAPI32, En quarantaine, 1087, 823187, 1.0.41795, , ame, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E, En quarantaine, 3050, 260247, 1.0.41795, , ame, , ,
PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFence_RASMANCS, En quarantaine, 1087, 823187, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\EWMON, En quarantaine, 2939, 411543, 1.0.41795, , ame, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E, En quarantaine, 3050, 260247, 1.0.41795, , ame, , ,
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{097B4A8A-FA8D-4EF8-81D3-B12DDE2057FF}, En quarantaine, 263, 239939, 1.0.41795, , ame, , ,
Trojan.Agent, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Amazon assistant 2.0, En quarantaine, 511, 533745, 1.0.41795, , ame, , ,
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, En quarantaine, 550, 518478, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MPrForWeathI, En quarantaine, 2939, 572664, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MTPreC_B, En quarantaine, 2939, 572665, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MTPreC_Qn, En quarantaine, 2939, 572666, 1.0.41795, , ame, , ,
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, En quarantaine, 550, 518476, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreAm, En quarantaine, 2939, 572667, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreIc, En quarantaine, 2939, 572668, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreJ, En quarantaine, 2939, 572669, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreShM, En quarantaine, 2939, 572670, 1.0.41795, , ame, , ,
Malware.AI.4257896566, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\AutoKMS, En quarantaine, 1000000, 0, , , , , ,
Malware.AI.4257896566, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FD69669B-0363-4773-848D-66A8BEA0B7FD}, En quarantaine, 1000000, 0, , , , , ,
Malware.AI.4257896566, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{FD69669B-0363-4773-848D-66A8BEA0B7FD}, En quarantaine, 1000000, 0, , , , , ,
Valeur du registre: 7
Adware.Tuto4PC, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\EWMON|PARTNER, En quarantaine, 2939, 411543, 1.0.41795, , ame, , ,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, En quarantaine, 7031, 676880, 1.0.41795, , ame, , ,
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, En quarantaine, 1012, 259988, 1.0.41795, , ame, , ,
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, 1012, -1, 0.0.0, , action, , ,
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, 1012, -1, 0.0.0, , action, , ,
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{097B4A8A-FA8D-4EF8-81D3-B12DDE2057FF}|PUBLISHER, En quarantaine, 263, 239939, 1.0.41795, , ame, , ,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, En quarantaine, 7031, 676880, 1.0.41795, , ame, , ,
Données du registre: 8
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{089E31F8-FCCF-4EFA-8909-65859DB862EA}|NameServer, Remplacé, 3050, -1, 0.0.0, , action, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{0CC6C9EF-3E13-4215-BCED-B68D0AB1BF39}|NameServer, Remplacé, 3050, -1, 0.0.0, , action, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{0D675497-25C8-44D0-843A-C252682D8944}|DhcpNameServer, Remplacé, 3050, -1, 0.0.0, , action, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}|NameServer, Remplacé, 3050, -1, 0.0.0, , action, , ,
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, Remplacé, 1012, 293485, 1.0.41795, , ame, , ,
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, Remplacé, 1012, 293485, 1.0.41795, , ame, , ,
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, Remplacé, 1012, 293486, 1.0.41795, , ame, , ,
Adware.SonicSearch, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, Remplacé, 14842, 693611, 1.0.41795, , ame, , ,
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 3
PUP.Optional.ByteFence, C:\ProgramData\ByteFence\RTOP, En quarantaine, 1087, 388718, , , , , ,
PUP.Optional.ByteFence, C:\PROGRAMDATA\BYTEFENCE, En quarantaine, 1087, 388718, 1.0.41795, , ame, , ,
Adware.Csdimonetize.E, C:\PROGRAM FILES\Windows NT\PDK23KWP64WJWNXXLTJBXV, En quarantaine, 5155, 650310, 1.0.41795, , ame, , ,
Fichier: 19
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\NOAH.DAT, En quarantaine, 3851, 404865, 1.0.41795, , ame, , 6F95EAFCB15A372CD52866BFAD1D924D, 3AA816893CD094D7EB66A87A43EF1BA7D9E2599F712680C28F4FC7E02BAA8247
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\MD.XML, En quarantaine, 3851, 404866, 1.0.41795, , ame, , FFB9BF1A895AC00778EB2C27941240FB, 856E979BC8B8BDD37312FE3CA0C89AF832886591F8EAB1D0F582F89D53DAB3FC
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\Grooveis.tst, En quarantaine, 3851, 404871, 1.0.41795, , ame, , 6581C83AB1A9EFFAC5D7C49FB811CB2A, C704D1C4FD0847FA55332239B2C142C405355243DAEB3AAD4B55495A466BB78E
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\AGENT.DAT, En quarantaine, 3851, 404872, 1.0.41795, , ame, , 9DB728579FB6CADF5AAACDEF082A2B40, 69E469DBBD52EF09D173CA76BAF378D4AF64F3C3BD28C7829A2A356AF56E5031
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\SHAM.DB, En quarantaine, 3851, 516191, 1.0.41795, , ame, , 198931B67C79BC93F1D8113ED097585C, 59D97EEEED9BC2D45715095A7D5B346239D628BCB347E6328E35E81916E48355
Adware.Linkury.Generic, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\SHAM.DB, En quarantaine, 3851, 516189, 1.0.41795, , ame, , 198931B67C79BC93F1D8113ED097585C, 59D97EEEED9BC2D45715095A7D5B346239D628BCB347E6328E35E81916E48355
PUP.Optional.ByteFence, C:\ProgramData\ByteFence\RTOP\uclogfile.bin, En quarantaine, 1087, 388718, , , , , 09BA7BA5B71D373BCB85950E99AD5948, F40AA8237D4B7111698A9FBE6CA334D48DBEB1BA562A93350A34E841F3757D8B
Adware.Linkury, C:\USERS\CHRIST\APPDATA\LOCAL\installer.dat, En quarantaine, 441, 715618, 1.0.41795, , ame, , 8089A58D47A1B2A6F0ABBF9959D02852, 7696042C3FDD4572CB2E366488EB944E149B3C1BEA59FFA608736F2C55F60C61
Adware.Csdimonetize.E, C:\PROGRAM FILES\Windows NT\PDK23KWP64WJWNXXLTJBXV\Kenessey.txt, En quarantaine, 5155, 650310, 1.0.41795, , ame, , 97384261B8BBF966DF16E5AD509922DB, 9C0D294C05FC1D88D698034609BB81C0C69196327594E4C69D2915C80FD9850C
Adware.Csdimonetize.E, C:\Program Files\Windows NT\PDK23KWP64WJWNXXLTJBXV\'+Itlt9PQ'.exe.config, En quarantaine, 5155, 650310, , , , , 98D2687AEC923F98C37F7CDA8DE0EB19, 8A94163256A722EF8CC140BCD115A5B8F8725C04FE158B129D47BE81CB693465
Adware.Csdimonetize.E, C:\Program Files\Windows NT\PDK23KWP64WJWNXXLTJBXV\1u9jzalAçK.exe.config, En quarantaine, 5155, 650310, , , , , 98D2687AEC923F98C37F7CDA8DE0EB19, 8A94163256A722EF8CC140BCD115A5B8F8725C04FE158B129D47BE81CB693465
Adware.Csdimonetize.E, C:\Program Files\Windows NT\PDK23KWP64WJWNXXLTJBXV\t3ZTMOyrwH.exe.config, En quarantaine, 5155, 650310, , , , , 98D2687AEC923F98C37F7CDA8DE0EB19, 8A94163256A722EF8CC140BCD115A5B8F8725C04FE158B129D47BE81CB693465
Adware.Csdimonetize.E, C:\Program Files\Windows NT\PDK23KWP64WJWNXXLTJBXV\UpdateInstall.exe.config, En quarantaine, 5155, 650310, , , , , A2EBF843442988EE2D667E9C7FC28CE1, 8A0D5D6C5AB131BAB9C8A29A7BCC81D6470EC515F2E4BCA977A4FE62FD156ACC
Adware.Linkury, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\installer.dat, En quarantaine, 441, 715618, 1.0.41795, , ame, , BD43971B98F76BAFAF372327D5ABF92E, 847F7835ABE1EC759B92A3B98359DE4B8A098481F79BA09B91263345C9BA2640
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\CONFIG.XML, En quarantaine, 3851, 404859, 1.0.41795, , ame, , DA4EB21C7DCB937DA495F8F6023BBF6F, 06197A7FEAFC835009E31759F1A64ECE1AE9A884AD2D1CB65962DE49C80BD1BC
Adware.Linkury.TskLnk, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\INSTALLATIONCONFIGURATION.XML, En quarantaine, 16481, 444922, 1.0.41795, , ame, , 4CB661021FC39191634C167A099515CE, 4D1825D649A62F523246FA0D0230F4918D18123C610E9835D420A8DD5BB6FB0B
Malware.AI.4257896566, C:\WINDOWS\SYSTEM32\TASKS\AutoKMS, En quarantaine, 1000000, 0, , , , , F1E10227E43FD3F41D0BCC4D4D85B9F7, D148FCFF40E0F3F310165D5B211B305E65DAAB34F930AD383A59367914905807
Malware.AI.4257896566, C:\WINDOWS\AUTOKMS\AUTOKMS.EXE, En quarantaine, 1000000, 0, 1.0.41795, F281DFC6CA8EDC79FDCA5876, dds, 01292468, D4F602B1F775B5827932D3C5B04A3FD2, 47A22F3649C7021AD78B5E44C73640CB7D37B2AFA2266AEFA2E030294065284E
PUP.Optional.GameHack, C:\PROGRAM FILES (X86)\CHEAT ENGINE 6.3\STANDALONEPHASE1.DAT, En quarantaine, 8186, 393793, 1.0.41795, , ame, , EB339EECEC8AA8C0FD3B08D39799D4D8, 88BB94C3CE727DB13B77ABDBDB75A4C878E91D651692F3618178DEC5BBB7080C
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 16/06/2021
Durée d'analyse: 15:12
Fichier journal: 486e4218-ceb5-11eb-ae98-00ff089e31f8.json
-Informations du logiciel-
Version: 4.4.0.117
Version de composants: 1.0.1318
Version de pack de mise à jour: 1.0.41795
Licence: Essai
-Informations système-
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: CHRISTIAN\Christ
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 250707
Menaces détectées: 59
Menaces mises en quarantaine: 59
Temps écoulé: 5 min, 31 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 22
PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFenceService_RASAPI32, En quarantaine, 1087, 823187, 1.0.41795, , ame, , ,
PUP.Optional.InstallCore, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\CSASTATS\ic, En quarantaine, 516, 586068, 1.0.41795, , ame, , ,
PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFenceService_RASMANCS, En quarantaine, 1087, 823187, 1.0.41795, , ame, , ,
PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFence_RASAPI32, En quarantaine, 1087, 823187, 1.0.41795, , ame, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E, En quarantaine, 3050, 260247, 1.0.41795, , ame, , ,
PUP.Optional.ByteFence, HKLM\SOFTWARE\MICROSOFT\TRACING\ByteFence_RASMANCS, En quarantaine, 1087, 823187, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\EWMON, En quarantaine, 2939, 411543, 1.0.41795, , ame, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E, En quarantaine, 3050, 260247, 1.0.41795, , ame, , ,
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{097B4A8A-FA8D-4EF8-81D3-B12DDE2057FF}, En quarantaine, 263, 239939, 1.0.41795, , ame, , ,
Trojan.Agent, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Amazon assistant 2.0, En quarantaine, 511, 533745, 1.0.41795, , ame, , ,
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, En quarantaine, 550, 518478, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MPrForWeathI, En quarantaine, 2939, 572664, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MTPreC_B, En quarantaine, 2939, 572665, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\MTPreC_Qn, En quarantaine, 2939, 572666, 1.0.41795, , ame, , ,
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, En quarantaine, 550, 518476, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreAm, En quarantaine, 2939, 572667, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreIc, En quarantaine, 2939, 572668, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreJ, En quarantaine, 2939, 572669, 1.0.41795, , ame, , ,
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\ShutTPreShM, En quarantaine, 2939, 572670, 1.0.41795, , ame, , ,
Malware.AI.4257896566, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\AutoKMS, En quarantaine, 1000000, 0, , , , , ,
Malware.AI.4257896566, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FD69669B-0363-4773-848D-66A8BEA0B7FD}, En quarantaine, 1000000, 0, , , , , ,
Malware.AI.4257896566, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{FD69669B-0363-4773-848D-66A8BEA0B7FD}, En quarantaine, 1000000, 0, , , , , ,
Valeur du registre: 7
Adware.Tuto4PC, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\EWMON|PARTNER, En quarantaine, 2939, 411543, 1.0.41795, , ame, , ,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, En quarantaine, 7031, 676880, 1.0.41795, , ame, , ,
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, En quarantaine, 1012, 259988, 1.0.41795, , ame, , ,
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, 1012, -1, 0.0.0, , action, , ,
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, 1012, -1, 0.0.0, , action, , ,
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{097B4A8A-FA8D-4EF8-81D3-B12DDE2057FF}|PUBLISHER, En quarantaine, 263, 239939, 1.0.41795, , ame, , ,
PUM.Optional.DisableMRT, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\MRT|DONTOFFERTHROUGHWUAU, En quarantaine, 7031, 676880, 1.0.41795, , ame, , ,
Données du registre: 8
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{089E31F8-FCCF-4EFA-8909-65859DB862EA}|NameServer, Remplacé, 3050, -1, 0.0.0, , action, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{0CC6C9EF-3E13-4215-BCED-B68D0AB1BF39}|NameServer, Remplacé, 3050, -1, 0.0.0, , action, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{0D675497-25C8-44D0-843A-C252682D8944}|DhcpNameServer, Remplacé, 3050, -1, 0.0.0, , action, , ,
PUP.Optional.DNSUnlocker.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}|NameServer, Remplacé, 3050, -1, 0.0.0, , action, , ,
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, Remplacé, 1012, 293485, 1.0.41795, , ame, , ,
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, Remplacé, 1012, 293485, 1.0.41795, , ame, , ,
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2178750781-228122678-151732202-1003\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, Remplacé, 1012, 293486, 1.0.41795, , ame, , ,
Adware.SonicSearch, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, Remplacé, 14842, 693611, 1.0.41795, , ame, , ,
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 3
PUP.Optional.ByteFence, C:\ProgramData\ByteFence\RTOP, En quarantaine, 1087, 388718, , , , , ,
PUP.Optional.ByteFence, C:\PROGRAMDATA\BYTEFENCE, En quarantaine, 1087, 388718, 1.0.41795, , ame, , ,
Adware.Csdimonetize.E, C:\PROGRAM FILES\Windows NT\PDK23KWP64WJWNXXLTJBXV, En quarantaine, 5155, 650310, 1.0.41795, , ame, , ,
Fichier: 19
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\NOAH.DAT, En quarantaine, 3851, 404865, 1.0.41795, , ame, , 6F95EAFCB15A372CD52866BFAD1D924D, 3AA816893CD094D7EB66A87A43EF1BA7D9E2599F712680C28F4FC7E02BAA8247
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\MD.XML, En quarantaine, 3851, 404866, 1.0.41795, , ame, , FFB9BF1A895AC00778EB2C27941240FB, 856E979BC8B8BDD37312FE3CA0C89AF832886591F8EAB1D0F582F89D53DAB3FC
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\Grooveis.tst, En quarantaine, 3851, 404871, 1.0.41795, , ame, , 6581C83AB1A9EFFAC5D7C49FB811CB2A, C704D1C4FD0847FA55332239B2C142C405355243DAEB3AAD4B55495A466BB78E
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\AGENT.DAT, En quarantaine, 3851, 404872, 1.0.41795, , ame, , 9DB728579FB6CADF5AAACDEF082A2B40, 69E469DBBD52EF09D173CA76BAF378D4AF64F3C3BD28C7829A2A356AF56E5031
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\SHAM.DB, En quarantaine, 3851, 516191, 1.0.41795, , ame, , 198931B67C79BC93F1D8113ED097585C, 59D97EEEED9BC2D45715095A7D5B346239D628BCB347E6328E35E81916E48355
Adware.Linkury.Generic, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\SHAM.DB, En quarantaine, 3851, 516189, 1.0.41795, , ame, , 198931B67C79BC93F1D8113ED097585C, 59D97EEEED9BC2D45715095A7D5B346239D628BCB347E6328E35E81916E48355
PUP.Optional.ByteFence, C:\ProgramData\ByteFence\RTOP\uclogfile.bin, En quarantaine, 1087, 388718, , , , , 09BA7BA5B71D373BCB85950E99AD5948, F40AA8237D4B7111698A9FBE6CA334D48DBEB1BA562A93350A34E841F3757D8B
Adware.Linkury, C:\USERS\CHRIST\APPDATA\LOCAL\installer.dat, En quarantaine, 441, 715618, 1.0.41795, , ame, , 8089A58D47A1B2A6F0ABBF9959D02852, 7696042C3FDD4572CB2E366488EB944E149B3C1BEA59FFA608736F2C55F60C61
Adware.Csdimonetize.E, C:\PROGRAM FILES\Windows NT\PDK23KWP64WJWNXXLTJBXV\Kenessey.txt, En quarantaine, 5155, 650310, 1.0.41795, , ame, , 97384261B8BBF966DF16E5AD509922DB, 9C0D294C05FC1D88D698034609BB81C0C69196327594E4C69D2915C80FD9850C
Adware.Csdimonetize.E, C:\Program Files\Windows NT\PDK23KWP64WJWNXXLTJBXV\'+Itlt9PQ'.exe.config, En quarantaine, 5155, 650310, , , , , 98D2687AEC923F98C37F7CDA8DE0EB19, 8A94163256A722EF8CC140BCD115A5B8F8725C04FE158B129D47BE81CB693465
Adware.Csdimonetize.E, C:\Program Files\Windows NT\PDK23KWP64WJWNXXLTJBXV\1u9jzalAçK.exe.config, En quarantaine, 5155, 650310, , , , , 98D2687AEC923F98C37F7CDA8DE0EB19, 8A94163256A722EF8CC140BCD115A5B8F8725C04FE158B129D47BE81CB693465
Adware.Csdimonetize.E, C:\Program Files\Windows NT\PDK23KWP64WJWNXXLTJBXV\t3ZTMOyrwH.exe.config, En quarantaine, 5155, 650310, , , , , 98D2687AEC923F98C37F7CDA8DE0EB19, 8A94163256A722EF8CC140BCD115A5B8F8725C04FE158B129D47BE81CB693465
Adware.Csdimonetize.E, C:\Program Files\Windows NT\PDK23KWP64WJWNXXLTJBXV\UpdateInstall.exe.config, En quarantaine, 5155, 650310, , , , , A2EBF843442988EE2D667E9C7FC28CE1, 8A0D5D6C5AB131BAB9C8A29A7BCC81D6470EC515F2E4BCA977A4FE62FD156ACC
Adware.Linkury, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\installer.dat, En quarantaine, 441, 715618, 1.0.41795, , ame, , BD43971B98F76BAFAF372327D5ABF92E, 847F7835ABE1EC759B92A3B98359DE4B8A098481F79BA09B91263345C9BA2640
Adware.Linkury.Generic, C:\USERS\CHRIST\APPDATA\LOCAL\CONFIG.XML, En quarantaine, 3851, 404859, 1.0.41795, , ame, , DA4EB21C7DCB937DA495F8F6023BBF6F, 06197A7FEAFC835009E31759F1A64ECE1AE9A884AD2D1CB65962DE49C80BD1BC
Adware.Linkury.TskLnk, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\INSTALLATIONCONFIGURATION.XML, En quarantaine, 16481, 444922, 1.0.41795, , ame, , 4CB661021FC39191634C167A099515CE, 4D1825D649A62F523246FA0D0230F4918D18123C610E9835D420A8DD5BB6FB0B
Malware.AI.4257896566, C:\WINDOWS\SYSTEM32\TASKS\AutoKMS, En quarantaine, 1000000, 0, , , , , F1E10227E43FD3F41D0BCC4D4D85B9F7, D148FCFF40E0F3F310165D5B211B305E65DAAB34F930AD383A59367914905807
Malware.AI.4257896566, C:\WINDOWS\AUTOKMS\AUTOKMS.EXE, En quarantaine, 1000000, 0, 1.0.41795, F281DFC6CA8EDC79FDCA5876, dds, 01292468, D4F602B1F775B5827932D3C5B04A3FD2, 47A22F3649C7021AD78B5E44C73640CB7D37B2AFA2266AEFA2E030294065284E
PUP.Optional.GameHack, C:\PROGRAM FILES (X86)\CHEAT ENGINE 6.3\STANDALONEPHASE1.DAT, En quarantaine, 8186, 393793, 1.0.41795, , ame, , EB339EECEC8AA8C0FD3B08D39799D4D8, 88BB94C3CE727DB13B77ABDBDB75A4C878E91D651692F3618178DEC5BBB7080C
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)