Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 30/10/2021
Durée d'analyse: 18:56
Fichier journal: 5a807ec8-39a2-11ec-8b0a-28d244d7466a.json
-Informations du logiciel-
Version: 4.4.9.142
Version de composants: 1.0.1486
Version de pack de mise à jour: 1.0.46567
Licence: Essai
-Informations système-
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Elodie\Frances
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Completed
Objets analysés: 340577
Menaces détectées: 56
Menaces mises en quarantaine: 56
Temps écoulé: 28 min, 29 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 4
PUP.Optional.Iminent, HKU\S-1-5-21-504155008-3405910705-3580942356-501\SOFTWARE\Iminent, En quarantaine, 83, 239410, 1.0.46567, , ame, , ,
PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\nbljechdpodpbchbmjcoamidppmpnmlc, En quarantaine, 83, 239422, 1.0.46567, , ame, , ,
PUP.Optional.Iminent, HKU\S-1-5-21-504155008-3405910705-3580942356-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}, En quarantaine, 83, 168095, , , , , ,
PUP.Optional.Iminent, HKU\S-1-5-21-504155008-3405910705-3580942356-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}, En quarantaine, 83, 168095, 1.0.46567, , ame, , ,
Valeur du registre: 3
PUP.Optional.IStart, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ISTART_FFNT@GMAIL.COM, En quarantaine, 1373, 239620, 1.0.46567, , ame, , ,
PUP.Optional.PullUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|ZHPCleaner_File1, En quarantaine, 550, 301963, , , , , ,
PUP.Optional.PullUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|ZHPCleaner_File2, En quarantaine, 550, 301963, , , , , ,
Données du registre: 2
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Remplacé, 5401, 292819, 1.0.46567, , ame, , ,
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Remplacé, 5401, 292819, 1.0.46567, , ame, , ,
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 4
PUP.Optional.Iminent, C:\PROGRAM FILES (X86)\COMMON FILES\UMBRELLA, En quarantaine, 83, 239384, 1.0.46567, , ame, , ,
PUP.Optional.SetSearchSetting, C:\USERS\FRANCES\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\Y7RJ5IEJ.DEFAULT\EXTENSIONS\{9B7D4705-916E-4168-B535-1F5315E44B47}, En quarantaine, 16986, 301992, 1.0.46567, , ame, , ,
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat, En quarantaine, 550, 301963, , , , , ,
PUP.Optional.PullUpdate, C:\PROGRAMDATA\TMWURY, En quarantaine, 550, 301963, 1.0.46567, , ame, , ,
Fichier: 43
PUP.Optional.VisualDiscovery, C:\WINDOWS\TEMP\VISUALDISCOVERY.LOG, En quarantaine, 3267, 244574, 1.0.46567, , ame, , 8BF69A5FE399B4A34276EED0D9BF5D04, 9E6C5EDD657EF1DE41D1CC88C76950D8CD6F522D21F87BFD4D66EFB1F7FFECEC
PUP.Optional.VisualDiscovery, C:\WINDOWS\TEMP\VISUALDISCOVERYR.LOG, En quarantaine, 3267, 244575, 1.0.46567, , ame, , D804F7205CE7D35E01A6F51931CA883E, 891FF3550BAE40CB671028C05639A7824C073B034B35BEECBEBF5246F7DE4539
PUP.Optional.SpeedBrowser, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\SPEED BROWSER.LNK, En quarantaine, 3736, 252748, 1.0.46567, , ame, , 0E3ECB11D82A88429898DCC5BCC6FE29, 57AD53771D57EBBD9D982233279BEFB87C690000EB7271F75CFC25AB23192722
PUP.Optional.Iminent, C:\PROGRAM FILES (X86)\COMMON FILES\UMBRELLA\UriData.data, En quarantaine, 83, 239384, 1.0.46567, , ame, , 30FC220E4C5CEA83315838617A4C3947, 926CDA4F1B068B8F16CAB27FA438FF24AB259B22A1CF9862A2DC7CEE36B69597
PUP.Optional.Iminent, C:\Program Files (x86)\Common Files\Umbrella\Umbrella189.exe, En quarantaine, 83, 239384, , , , , 41809059E9FF0286B2290D2FD66F0737, 8B538688ED187E87C9852A542C3EB7B5A31A462C8DF91EEC54CF727917D4E98E
PUP.Optional.InstallCore.Generic, C:\USERS\FRANCES\APPDATA\LOCAL\TEMP\ICReinstall_ccleaner.exe, En quarantaine, 6095, 466466, 1.0.46567, , ame, , AB6FECA14EFB8FBC3B7B9D8EAE2985C3, 0E453FE314684FB05C588CDC70A52898CF6F1FC72A7AD2A02CE6434BD3F86042
PUP.Optional.InstallCore.Generic, C:\USERS\FRANCES\APPDATA\LOCAL\TEMP\ICReinstall_project64_2-1_fr_10645.exe, En quarantaine, 6095, 466466, 1.0.46567, , ame, , 2EA7BC9C7353CF34C8F4FA7183C99441, FD460C2103151D71C08D32CD6E59FCCC778D699FF4FB85E33F643A886DFC4CA9
PUP.Optional.SetSearchSetting, C:\USERS\FRANCES\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\Y7RJ5IEJ.DEFAULT\EXTENSIONS\{9B7D4705-916E-4168-B535-1F5315E44B47}\INSTALL.RDF, En quarantaine, 16986, 301992, 1.0.46567, , ame, , 634CECD8CA6037C0B0B450DA7D766FC6, 7E85D845BD862403A3174806066721245628EEFD411795D00757F089B2BE99DE
PUP.Optional.SetSearchSetting, C:\Users\Frances\AppData\Roaming\Mozilla\Firefox\Profiles\y7rj5iej.default\extensions\{9b7d4705-916e-4168-b535-1f5315e44b47}\search.json, En quarantaine, 16986, 301992, , , , , 1E5DE2C18406463ED66FB3885E0E782C, 2E6DD455561BA0C861263FB6F77BFAD508FB8AD2813100E5FA616CFF78550242
PUP.Optional.PullUpdate, C:\PROGRAMDATA\TMWURY\DAT\ZPOFECSTXXQ.EXE.CONFIG, En quarantaine, 550, 301963, 1.0.46567, , ame, , 4BF2A039CD2CF37CF37C19F2912996E0, EC7C6BC4205712A0A78C68F7F0F762AC7E62276720A61A6877A94F6A573F0AA7
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\LVKziegb.exe, En quarantaine, 550, 301963, , , , , D2A8D7A7E2A9EEA2544D31738F453FD3, 32614211FE9F3411EA66C45BB2911D6336C52C929B5A86E615F8BF1EF5CA6A55
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\LVKziegb.exe.config, En quarantaine, 550, 301963, , , , , 4BF2A039CD2CF37CF37C19F2912996E0, EC7C6BC4205712A0A78C68F7F0F762AC7E62276720A61A6877A94F6A573F0AA7
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\QysuROA.dll, En quarantaine, 550, 301963, , , , , 10338D096E9513BB5BF49F4E9852135F, 5C690AAECED1598D7B3EBE6535B58C11663AC4C1738007BE525B62A3FE5D7FA4
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\tEFxtz.dll, En quarantaine, 550, 301963, , , , , D4734D1815DC83B0C7C4B4C8FF9AC794, FE9E3A9C2524FB8FF8530F3C8533F104BC11B5A7AFA2204053B59F6464AED0C8
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\zPOfeCsTXxq.exe, En quarantaine, 550, 301963, , , , , 0E54FFD66C780828BE807E9CC41EADEA, 13598D15D0BA3B8F64C0EE9F917AF63D07E8DCC2D1D1369BD1993885D2B7CD6C
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\info.dat, En quarantaine, 550, 301963, , , , , 2F8DEEF9331E802466ABC5CEE3D18F85, 24EA23228665FDF763FD2DFD7FDE3B7A9DC230C6075227D79657BF62998FF4F5
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\vgSHDaF.dat, En quarantaine, 550, 301963, , , , , 63B2B1D7471DD13AA085EF764FA75008, 25D18CF461C204CB85C6B19164DD4B61F303DDFE467F06DB9B785D425F2024F9
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\vgSHDaF.exe.config, En quarantaine, 550, 301963, , , , , 6FF09217336C85CE71456B1C79B56B66, B9F388E388FB855999926F8BA0E6997F3917285A3AF83A96C249FC529F341975
PUP.Optional.Iminent, C:\USERS\INVITé\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\A1R15L3Q.DEFAULT\PREFS.JS, Remplacé, 83, 301714, 1.0.46567, , ame, , 6FEFF30529A2499B7C7AD7E331341F2D, 4AAF420F487F752FE5CEEF5281D6A5B0E382E317A1B36C76601A8FDA1DF2DDEC
PUP.Optional.TerraClicks.ShrtCln, C:\USERS\FRANCES\APPDATA\LOCAL\MICROSOFT\WINDOWS\INETCOOKIES\LOW\YW5HMY23.TXT, En quarantaine, 17251, 302487, 1.0.46567, , ame, , 7FEE0CEE72BD98028D325C01EDF8BEC4, 2CD70EB189C68718FC1A1FABE1D0500549F6859C2F529817463CB7644B577273
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\BROWSER\PROMPT.EXE, En quarantaine, 550, 11417, 1.0.46567, , ame, , C7593E86E36D304D45D5EC2B8AE60F5A, 94DE72AAC1B70D24903F95DBDBAF759AC253E487EF69AE1346ACC43EC69B0140
PUP.Optional.PullUpdate, C:\PROGRAMDATA\RADIO\PROMPT.EXE, En quarantaine, 550, 11435, 1.0.46567, , ame, , 62804E19DBCDDD42FBD4FB4AC65F8F2B, DE6AA2E2EC2A593250AC56E8523FA280763510CE870552B76DD1673452BBF174
PUP.Optional.BundleInstaller, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\ICREINSTALL_CR_DOWNLOADER_POUR_PROJECT64.EXE, En quarantaine, 528, 935072, 1.0.46567, 104FA896C9BD2CB174FCDC2F, dds, 01487285, 14C2006F731EFC45DE5E54C130CA37A5, 62E5EA43A5E6C16C0BF35FD9026DE7F71B7C084E1967CD2614F0B6872B858C3E
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SETUP-2-.EXE, En quarantaine, 550, 301157, 1.0.46567, E413A11D0874F3FF45C965E4, dds, 01487285, 8C64B846E76D1744AB0A306B9D84BED5, 396C693385B4C05FD11262EE4F808A57E28156226B1862E7687A8677DD805918
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\VGSHDAF.EXE, En quarantaine, 550, 301157, 1.0.46567, , ame, , BB33C2B49EAE9BB448E99B6381149A3D, 91EABA52E1070F38661457A584073CCDFDBD0B53EEBC8AB398C3E03B1C8D7274
PUP.Optional.IMGUpdater, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\IMGUPDATER\IMGUPDATER.EXE, En quarantaine, 1870, 76680, 1.0.46567, , ame, , 91D1015685F88C5CB8938F6D1F7A8A11, A53B29AAC50D01EE25394D7B466D5B3E70A70CD4EDB7F1505927EBF7AE1647AF
Generic.Malware/Suspicious, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\MINIBARCHROME[1].EXE, En quarantaine, 0, 392686, 1.0.46567, , shuriken, , 66EFB542E00C905A07B0B6719CBEEFE3, 0F0AE39257F15925F45EB5919463F4605FB35B4ACB01A9EC15ED694098EF2403
PUP.Optional.Iminent, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\IMINENTMINIBARIE[1].EXE, En quarantaine, 83, 76687, 1.0.46567, , ame, , E46A6DDF6F6B39552CFD5D011B84BE32, 1866CC3427A04161B78C8DDFE3915B4AD98274481D19BB1ECDBA5140449BA0F3
PUP.Optional.Iminent, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\MINIBARFIREFOX[1].EXE, En quarantaine, 83, 76687, 1.0.46567, 838DC5ABE09D2891FFA57D02, dds, 01487285, 30AC564CAA8C29E7945633545D18674A, 75452FA97D3805D155F24D77F32421F4F351997690A3985DB0AC40F0443A093A
Generic.Malware/Suspicious, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SOFTONIC_FR_1-5-11_FR-PRODUCTION_10_CLEANRELEASE.EXE, En quarantaine, 0, 392686, 1.0.46567, , shuriken, , B340252F0ECB79C1DE46A4FE01DBDF56, 8873CD6FB6CC20B1488EA84F5A38233CB979A2E1D524D0F9A71BCEA31097293C
Generic.Malware/Suspicious, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\BOOTSTRAPPERIMINENT.EXE, En quarantaine, 0, 392686, 1.0.46567, , shuriken, , 6CC0857F6B7BAB0550A6704199A8EDA7, 788FC8853E12A4B5E0664965B21D1625C664AC6CC91793AAE61F44BC309847CC
Adware.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\AMETOUJE.EXE, En quarantaine, 922, 75619, 1.0.46567, , ame, , 4A6300EE6D2E4D4CC543EB35198E94C3, DC75FD918887BF0BE7C0166FD88757E51653635768B37E4C7D3B1DBA9ABCD67A
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\UNINSTALL.EXE, En quarantaine, 550, 301157, 1.0.46567, , ame, , A4DCA149EB6C30AAD3ADEAD1E9D084F8, 4A2DE8F32C6FE16232B5F25A2A097F202E2567C9C3C64375D9833811202A9D70
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZPOFECSTXXQ.EXE, En quarantaine, 550, 301157, 1.0.46567, 5CF15F1859910080F3ADD925, dds, 01487285, 0E54FFD66C780828BE807E9CC41EADEA, 13598D15D0BA3B8F64C0EE9F917AF63D07E8DCC2D1D1369BD1993885D2B7CD6C
PUP.Optional.SearchProtect, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SPTOOL.DLL, En quarantaine, 2202, 112611, 1.0.46567, F071FA101B7AAAB4FECC917F, dds, 01487285, B532826A0DE451CF3B7FA5E53787FC65, 5347F2717316A65F6216FD911351DE9A7392A44FE37B1AF5B0AD51615D4D377F
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\LVKZIEGB.EXE, En quarantaine, 550, 301157, 1.0.46567, 1EEC0E64A1E6D45BD1CCBAC7, dds, 01487285, D2A8D7A7E2A9EEA2544D31738F453FD3, 32614211FE9F3411EA66C45BB2911D6336C52C929B5A86E615F8BF1EF5CA6A55
PUP.Optional.Wajam, C:\USERS\FRANCES\APPDATA\LOCAL\TEMP\~NSU.TMP\AU_.EXE, En quarantaine, 182, 17692, 1.0.46567, , ame, , CD97E4AA736042D7F225332D9A744362, 27611C140FC15A2F33A0BDE007107E9B051F81D27BC9C132F97794912BEE7BAD
PUP.Optional.InstallCore, C:\USERS\FRANCES\APPDATA\LOCAL\TEMP\IS351588084\4AEE1C7A_STP\ICC.DLL, En quarantaine, 516, 143953, 1.0.46567, 0000000000000000000003EB, dds, 01487285, C050C3976AC8E15E27220450F40165D6, 34F6D11E0DE8EEEDB862A0C1F64482E37CE1D3CF976AB127A55A5882EC6A60E2
PUP.Optional.InstallCore, C:\USERS\FRANCES\DOWNLOADS\CCLEANER.EXE, En quarantaine, 516, 301105, 1.0.46567, , ame, , AB6FECA14EFB8FBC3B7B9D8EAE2985C3, 0E453FE314684FB05C588CDC70A52898CF6F1FC72A7AD2A02CE6434BD3F86042
PUP.Optional.InstallCore, C:\USERS\FRANCES\DOWNLOADS\PROJECT64_2-1_FR_10645.EXE, En quarantaine, 516, 301105, 1.0.46567, , ame, , 2EA7BC9C7353CF34C8F4FA7183C99441, FD460C2103151D71C08D32CD6E59FCCC778D699FF4FB85E33F643A886DFC4CA9
PUP.Optional.SearchProtect, C:\WINDOWS\APPPATCH\APPPATCH64\VCLDR64.DLL_1635609609559, En quarantaine, 2202, 112611, 1.0.46567, 000000BE813CB4DD7E8B918C, dds, 01487285, 11BE5CFAFDFF93F64F278FDAE81F0790, D418E923BAC9C5DBB28ADF84344E27B4C87E65F6DA66D30D73EC38B92A67C78A
PUP.Optional.InstallCore, C:\USERS\FRANCES\APPDATA\LOCAL\MICROSOFT\WINDOWS\INETCACHE\IE\1P100RY1\PROJECT64_2-1_FR_10645.EXE, En quarantaine, 516, 76759, 1.0.46567, , ame, , AB3910BCE772E0D4A13AFFAD2497140B, AA471C77E427F36DAB2902F39CCA25DDDCBC008720B680DD89F005AF7C13AE49
PUP.Optional.Iminent, C:\USERS\FRANCES\APPDATA\LOCAL\MICROSOFT\WINDOWS\INETCACHE\IE\GOOUAUN7\METRO[1].EXE, En quarantaine, 83, 41795, 1.0.46567, , ame, , 207B9448B4FAED19BBCE085510BEFD1F, 12ADC9A0DAA71106A7AE42392A0A75FB860F6D7036DE1B89E07B095D62DD86C3
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 30/10/2021
Durée d'analyse: 18:56
Fichier journal: 5a807ec8-39a2-11ec-8b0a-28d244d7466a.json
-Informations du logiciel-
Version: 4.4.9.142
Version de composants: 1.0.1486
Version de pack de mise à jour: 1.0.46567
Licence: Essai
-Informations système-
Système d'exploitation: Windows 8.1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Elodie\Frances
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Completed
Objets analysés: 340577
Menaces détectées: 56
Menaces mises en quarantaine: 56
Temps écoulé: 28 min, 29 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)
Module: 0
(Aucun élément malveillant détecté)
Clé du registre: 4
PUP.Optional.Iminent, HKU\S-1-5-21-504155008-3405910705-3580942356-501\SOFTWARE\Iminent, En quarantaine, 83, 239410, 1.0.46567, , ame, , ,
PUP.Optional.Iminent, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\nbljechdpodpbchbmjcoamidppmpnmlc, En quarantaine, 83, 239422, 1.0.46567, , ame, , ,
PUP.Optional.Iminent, HKU\S-1-5-21-504155008-3405910705-3580942356-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}, En quarantaine, 83, 168095, , , , , ,
PUP.Optional.Iminent, HKU\S-1-5-21-504155008-3405910705-3580942356-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}, En quarantaine, 83, 168095, 1.0.46567, , ame, , ,
Valeur du registre: 3
PUP.Optional.IStart, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|ISTART_FFNT@GMAIL.COM, En quarantaine, 1373, 239620, 1.0.46567, , ame, , ,
PUP.Optional.PullUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|ZHPCleaner_File1, En quarantaine, 550, 301963, , , , , ,
PUP.Optional.PullUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|ZHPCleaner_File2, En quarantaine, 550, 301963, , , , , ,
Données du registre: 2
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Remplacé, 5401, 292819, 1.0.46567, , ame, , ,
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DEFAULTSCOPE, Remplacé, 5401, 292819, 1.0.46567, , ame, , ,
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 4
PUP.Optional.Iminent, C:\PROGRAM FILES (X86)\COMMON FILES\UMBRELLA, En quarantaine, 83, 239384, 1.0.46567, , ame, , ,
PUP.Optional.SetSearchSetting, C:\USERS\FRANCES\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\Y7RJ5IEJ.DEFAULT\EXTENSIONS\{9B7D4705-916E-4168-B535-1F5315E44B47}, En quarantaine, 16986, 301992, 1.0.46567, , ame, , ,
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat, En quarantaine, 550, 301963, , , , , ,
PUP.Optional.PullUpdate, C:\PROGRAMDATA\TMWURY, En quarantaine, 550, 301963, 1.0.46567, , ame, , ,
Fichier: 43
PUP.Optional.VisualDiscovery, C:\WINDOWS\TEMP\VISUALDISCOVERY.LOG, En quarantaine, 3267, 244574, 1.0.46567, , ame, , 8BF69A5FE399B4A34276EED0D9BF5D04, 9E6C5EDD657EF1DE41D1CC88C76950D8CD6F522D21F87BFD4D66EFB1F7FFECEC
PUP.Optional.VisualDiscovery, C:\WINDOWS\TEMP\VISUALDISCOVERYR.LOG, En quarantaine, 3267, 244575, 1.0.46567, , ame, , D804F7205CE7D35E01A6F51931CA883E, 891FF3550BAE40CB671028C05639A7824C073B034B35BEECBEBF5246F7DE4539
PUP.Optional.SpeedBrowser, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\SPEED BROWSER.LNK, En quarantaine, 3736, 252748, 1.0.46567, , ame, , 0E3ECB11D82A88429898DCC5BCC6FE29, 57AD53771D57EBBD9D982233279BEFB87C690000EB7271F75CFC25AB23192722
PUP.Optional.Iminent, C:\PROGRAM FILES (X86)\COMMON FILES\UMBRELLA\UriData.data, En quarantaine, 83, 239384, 1.0.46567, , ame, , 30FC220E4C5CEA83315838617A4C3947, 926CDA4F1B068B8F16CAB27FA438FF24AB259B22A1CF9862A2DC7CEE36B69597
PUP.Optional.Iminent, C:\Program Files (x86)\Common Files\Umbrella\Umbrella189.exe, En quarantaine, 83, 239384, , , , , 41809059E9FF0286B2290D2FD66F0737, 8B538688ED187E87C9852A542C3EB7B5A31A462C8DF91EEC54CF727917D4E98E
PUP.Optional.InstallCore.Generic, C:\USERS\FRANCES\APPDATA\LOCAL\TEMP\ICReinstall_ccleaner.exe, En quarantaine, 6095, 466466, 1.0.46567, , ame, , AB6FECA14EFB8FBC3B7B9D8EAE2985C3, 0E453FE314684FB05C588CDC70A52898CF6F1FC72A7AD2A02CE6434BD3F86042
PUP.Optional.InstallCore.Generic, C:\USERS\FRANCES\APPDATA\LOCAL\TEMP\ICReinstall_project64_2-1_fr_10645.exe, En quarantaine, 6095, 466466, 1.0.46567, , ame, , 2EA7BC9C7353CF34C8F4FA7183C99441, FD460C2103151D71C08D32CD6E59FCCC778D699FF4FB85E33F643A886DFC4CA9
PUP.Optional.SetSearchSetting, C:\USERS\FRANCES\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\Y7RJ5IEJ.DEFAULT\EXTENSIONS\{9B7D4705-916E-4168-B535-1F5315E44B47}\INSTALL.RDF, En quarantaine, 16986, 301992, 1.0.46567, , ame, , 634CECD8CA6037C0B0B450DA7D766FC6, 7E85D845BD862403A3174806066721245628EEFD411795D00757F089B2BE99DE
PUP.Optional.SetSearchSetting, C:\Users\Frances\AppData\Roaming\Mozilla\Firefox\Profiles\y7rj5iej.default\extensions\{9b7d4705-916e-4168-b535-1f5315e44b47}\search.json, En quarantaine, 16986, 301992, , , , , 1E5DE2C18406463ED66FB3885E0E782C, 2E6DD455561BA0C861263FB6F77BFAD508FB8AD2813100E5FA616CFF78550242
PUP.Optional.PullUpdate, C:\PROGRAMDATA\TMWURY\DAT\ZPOFECSTXXQ.EXE.CONFIG, En quarantaine, 550, 301963, 1.0.46567, , ame, , 4BF2A039CD2CF37CF37C19F2912996E0, EC7C6BC4205712A0A78C68F7F0F762AC7E62276720A61A6877A94F6A573F0AA7
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\LVKziegb.exe, En quarantaine, 550, 301963, , , , , D2A8D7A7E2A9EEA2544D31738F453FD3, 32614211FE9F3411EA66C45BB2911D6336C52C929B5A86E615F8BF1EF5CA6A55
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\LVKziegb.exe.config, En quarantaine, 550, 301963, , , , , 4BF2A039CD2CF37CF37C19F2912996E0, EC7C6BC4205712A0A78C68F7F0F762AC7E62276720A61A6877A94F6A573F0AA7
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\QysuROA.dll, En quarantaine, 550, 301963, , , , , 10338D096E9513BB5BF49F4E9852135F, 5C690AAECED1598D7B3EBE6535B58C11663AC4C1738007BE525B62A3FE5D7FA4
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\tEFxtz.dll, En quarantaine, 550, 301963, , , , , D4734D1815DC83B0C7C4B4C8FF9AC794, FE9E3A9C2524FB8FF8530F3C8533F104BC11B5A7AFA2204053B59F6464AED0C8
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\dat\zPOfeCsTXxq.exe, En quarantaine, 550, 301963, , , , , 0E54FFD66C780828BE807E9CC41EADEA, 13598D15D0BA3B8F64C0EE9F917AF63D07E8DCC2D1D1369BD1993885D2B7CD6C
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\info.dat, En quarantaine, 550, 301963, , , , , 2F8DEEF9331E802466ABC5CEE3D18F85, 24EA23228665FDF763FD2DFD7FDE3B7A9DC230C6075227D79657BF62998FF4F5
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\vgSHDaF.dat, En quarantaine, 550, 301963, , , , , 63B2B1D7471DD13AA085EF764FA75008, 25D18CF461C204CB85C6B19164DD4B61F303DDFE467F06DB9B785D425F2024F9
PUP.Optional.PullUpdate, C:\ProgramData\tMwuRY\vgSHDaF.exe.config, En quarantaine, 550, 301963, , , , , 6FF09217336C85CE71456B1C79B56B66, B9F388E388FB855999926F8BA0E6997F3917285A3AF83A96C249FC529F341975
PUP.Optional.Iminent, C:\USERS\INVITé\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\A1R15L3Q.DEFAULT\PREFS.JS, Remplacé, 83, 301714, 1.0.46567, , ame, , 6FEFF30529A2499B7C7AD7E331341F2D, 4AAF420F487F752FE5CEEF5281D6A5B0E382E317A1B36C76601A8FDA1DF2DDEC
PUP.Optional.TerraClicks.ShrtCln, C:\USERS\FRANCES\APPDATA\LOCAL\MICROSOFT\WINDOWS\INETCOOKIES\LOW\YW5HMY23.TXT, En quarantaine, 17251, 302487, 1.0.46567, , ame, , 7FEE0CEE72BD98028D325C01EDF8BEC4, 2CD70EB189C68718FC1A1FABE1D0500549F6859C2F529817463CB7644B577273
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\BROWSER\PROMPT.EXE, En quarantaine, 550, 11417, 1.0.46567, , ame, , C7593E86E36D304D45D5EC2B8AE60F5A, 94DE72AAC1B70D24903F95DBDBAF759AC253E487EF69AE1346ACC43EC69B0140
PUP.Optional.PullUpdate, C:\PROGRAMDATA\RADIO\PROMPT.EXE, En quarantaine, 550, 11435, 1.0.46567, , ame, , 62804E19DBCDDD42FBD4FB4AC65F8F2B, DE6AA2E2EC2A593250AC56E8523FA280763510CE870552B76DD1673452BBF174
PUP.Optional.BundleInstaller, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\ICREINSTALL_CR_DOWNLOADER_POUR_PROJECT64.EXE, En quarantaine, 528, 935072, 1.0.46567, 104FA896C9BD2CB174FCDC2F, dds, 01487285, 14C2006F731EFC45DE5E54C130CA37A5, 62E5EA43A5E6C16C0BF35FD9026DE7F71B7C084E1967CD2614F0B6872B858C3E
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SETUP-2-.EXE, En quarantaine, 550, 301157, 1.0.46567, E413A11D0874F3FF45C965E4, dds, 01487285, 8C64B846E76D1744AB0A306B9D84BED5, 396C693385B4C05FD11262EE4F808A57E28156226B1862E7687A8677DD805918
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\VGSHDAF.EXE, En quarantaine, 550, 301157, 1.0.46567, , ame, , BB33C2B49EAE9BB448E99B6381149A3D, 91EABA52E1070F38661457A584073CCDFDBD0B53EEBC8AB398C3E03B1C8D7274
PUP.Optional.IMGUpdater, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\IMGUPDATER\IMGUPDATER.EXE, En quarantaine, 1870, 76680, 1.0.46567, , ame, , 91D1015685F88C5CB8938F6D1F7A8A11, A53B29AAC50D01EE25394D7B466D5B3E70A70CD4EDB7F1505927EBF7AE1647AF
Generic.Malware/Suspicious, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\MINIBARCHROME[1].EXE, En quarantaine, 0, 392686, 1.0.46567, , shuriken, , 66EFB542E00C905A07B0B6719CBEEFE3, 0F0AE39257F15925F45EB5919463F4605FB35B4ACB01A9EC15ED694098EF2403
PUP.Optional.Iminent, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\IMINENTMINIBARIE[1].EXE, En quarantaine, 83, 76687, 1.0.46567, , ame, , E46A6DDF6F6B39552CFD5D011B84BE32, 1866CC3427A04161B78C8DDFE3915B4AD98274481D19BB1ECDBA5140449BA0F3
PUP.Optional.Iminent, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\MINIBARFIREFOX[1].EXE, En quarantaine, 83, 76687, 1.0.46567, 838DC5ABE09D2891FFA57D02, dds, 01487285, 30AC564CAA8C29E7945633545D18674A, 75452FA97D3805D155F24D77F32421F4F351997690A3985DB0AC40F0443A093A
Generic.Malware/Suspicious, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SOFTONIC_FR_1-5-11_FR-PRODUCTION_10_CLEANRELEASE.EXE, En quarantaine, 0, 392686, 1.0.46567, , shuriken, , B340252F0ECB79C1DE46A4FE01DBDF56, 8873CD6FB6CC20B1488EA84F5A38233CB979A2E1D524D0F9A71BCEA31097293C
Generic.Malware/Suspicious, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\BOOTSTRAPPERIMINENT.EXE, En quarantaine, 0, 392686, 1.0.46567, , shuriken, , 6CC0857F6B7BAB0550A6704199A8EDA7, 788FC8853E12A4B5E0664965B21D1625C664AC6CC91793AAE61F44BC309847CC
Adware.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\AMETOUJE.EXE, En quarantaine, 922, 75619, 1.0.46567, , ame, , 4A6300EE6D2E4D4CC543EB35198E94C3, DC75FD918887BF0BE7C0166FD88757E51653635768B37E4C7D3B1DBA9ABCD67A
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\UNINSTALL.EXE, En quarantaine, 550, 301157, 1.0.46567, , ame, , A4DCA149EB6C30AAD3ADEAD1E9D084F8, 4A2DE8F32C6FE16232B5F25A2A097F202E2567C9C3C64375D9833811202A9D70
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZPOFECSTXXQ.EXE, En quarantaine, 550, 301157, 1.0.46567, 5CF15F1859910080F3ADD925, dds, 01487285, 0E54FFD66C780828BE807E9CC41EADEA, 13598D15D0BA3B8F64C0EE9F917AF63D07E8DCC2D1D1369BD1993885D2B7CD6C
PUP.Optional.SearchProtect, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\SPTOOL.DLL, En quarantaine, 2202, 112611, 1.0.46567, F071FA101B7AAAB4FECC917F, dds, 01487285, B532826A0DE451CF3B7FA5E53787FC65, 5347F2717316A65F6216FD911351DE9A7392A44FE37B1AF5B0AD51615D4D377F
PUP.Optional.PullUpdate, C:\USERS\FRANCES\APPDATA\ROAMING\ZHP\QUARANTINE\LVKZIEGB.EXE, En quarantaine, 550, 301157, 1.0.46567, 1EEC0E64A1E6D45BD1CCBAC7, dds, 01487285, D2A8D7A7E2A9EEA2544D31738F453FD3, 32614211FE9F3411EA66C45BB2911D6336C52C929B5A86E615F8BF1EF5CA6A55
PUP.Optional.Wajam, C:\USERS\FRANCES\APPDATA\LOCAL\TEMP\~NSU.TMP\AU_.EXE, En quarantaine, 182, 17692, 1.0.46567, , ame, , CD97E4AA736042D7F225332D9A744362, 27611C140FC15A2F33A0BDE007107E9B051F81D27BC9C132F97794912BEE7BAD
PUP.Optional.InstallCore, C:\USERS\FRANCES\APPDATA\LOCAL\TEMP\IS351588084\4AEE1C7A_STP\ICC.DLL, En quarantaine, 516, 143953, 1.0.46567, 0000000000000000000003EB, dds, 01487285, C050C3976AC8E15E27220450F40165D6, 34F6D11E0DE8EEEDB862A0C1F64482E37CE1D3CF976AB127A55A5882EC6A60E2
PUP.Optional.InstallCore, C:\USERS\FRANCES\DOWNLOADS\CCLEANER.EXE, En quarantaine, 516, 301105, 1.0.46567, , ame, , AB6FECA14EFB8FBC3B7B9D8EAE2985C3, 0E453FE314684FB05C588CDC70A52898CF6F1FC72A7AD2A02CE6434BD3F86042
PUP.Optional.InstallCore, C:\USERS\FRANCES\DOWNLOADS\PROJECT64_2-1_FR_10645.EXE, En quarantaine, 516, 301105, 1.0.46567, , ame, , 2EA7BC9C7353CF34C8F4FA7183C99441, FD460C2103151D71C08D32CD6E59FCCC778D699FF4FB85E33F643A886DFC4CA9
PUP.Optional.SearchProtect, C:\WINDOWS\APPPATCH\APPPATCH64\VCLDR64.DLL_1635609609559, En quarantaine, 2202, 112611, 1.0.46567, 000000BE813CB4DD7E8B918C, dds, 01487285, 11BE5CFAFDFF93F64F278FDAE81F0790, D418E923BAC9C5DBB28ADF84344E27B4C87E65F6DA66D30D73EC38B92A67C78A
PUP.Optional.InstallCore, C:\USERS\FRANCES\APPDATA\LOCAL\MICROSOFT\WINDOWS\INETCACHE\IE\1P100RY1\PROJECT64_2-1_FR_10645.EXE, En quarantaine, 516, 76759, 1.0.46567, , ame, , AB3910BCE772E0D4A13AFFAD2497140B, AA471C77E427F36DAB2902F39CCA25DDDCBC008720B680DD89F005AF7C13AE49
PUP.Optional.Iminent, C:\USERS\FRANCES\APPDATA\LOCAL\MICROSOFT\WINDOWS\INETCACHE\IE\GOOUAUN7\METRO[1].EXE, En quarantaine, 83, 41795, 1.0.46567, , ame, , 207B9448B4FAED19BBCE085510BEFD1F, 12ADC9A0DAA71106A7AE42392A0A75FB860F6D7036DE1B89E07B095D62DD86C3
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)