Program : RogueKiller Anti-Malware Version : 15.3.0.0 x64 : No Program Date : Feb 17 2022 Location : C:\Program Files\RogueKiller\RogueKiller.exe Premium : Yes Company : Adlice Software Website : https://www.adlice.com/ Contact : https://adlice.com/contact/ Website : https://adlice.com/download/roguekiller/ Operating System : Windows 7 (6.1.7600) 32-bit 64-bit OS : No Startup : 2 WindowsPE : No User : Grégy&Justy User is Admin : Yes Date : 2022/02/27 02:30:44 Type : Removal Aborted : No Scan Mode : Custom Duration : 69061 Found items : 201 Total scanned : 386470 Signatures Version : 20220225_124310 Truesight Driver : No Updates Count : 9 truesight_error : 1 ************************* Warnings ************************* (16:5) C:\Windows\System32\DriverStore, LONG_FOLDER_SCAN [+] path : C:\Windows\System32\DriverStore [+] message : LONG_FOLDER_SCAN [+] int1 : 16 [+] int2 : 5 (36:3097) C:\Windows\System32, LONG_FOLDER_SCAN [+] path : C:\Windows\System32 [+] message : LONG_FOLDER_SCAN [+] int1 : 36 [+] int2 : 3097 (125:2) C:\Program Files, LONG_FOLDER_SCAN [+] path : C:\Program Files [+] message : LONG_FOLDER_SCAN [+] int1 : 125 [+] int2 : 2 (29:8601) C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox\Profiles\mgz3z3hz.default-release-1645532660414\cache2\entries, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox\Profiles\mgz3z3hz.default-release-1645532660414\cache2\entries [+] message : LONG_FOLDER_SCAN [+] int1 : 29 [+] int2 : 8601 (29:1) C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox\Profiles\mgz3z3hz.default-release-1645532660414\cache2, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox\Profiles\mgz3z3hz.default-release-1645532660414\cache2 [+] message : LONG_FOLDER_SCAN [+] int1 : 29 [+] int2 : 1 (30:1) C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox\Profiles\mgz3z3hz.default-release-1645532660414, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox\Profiles\mgz3z3hz.default-release-1645532660414 [+] message : LONG_FOLDER_SCAN [+] int1 : 30 [+] int2 : 1 (30:0) C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox\Profiles, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox\Profiles [+] message : LONG_FOLDER_SCAN [+] int1 : 30 [+] int2 : 0 (30:1) C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Local\Mozilla\Firefox [+] message : LONG_FOLDER_SCAN [+] int1 : 30 [+] int2 : 1 (30:0) C:\Users\Grégy&Justy\AppData\Local\Mozilla, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Local\Mozilla [+] message : LONG_FOLDER_SCAN [+] int1 : 30 [+] int2 : 0 (45:8) C:\Users\Grégy&Justy\AppData\Local, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Local [+] message : LONG_FOLDER_SCAN [+] int1 : 45 [+] int2 : 8 (19:3) C:\Users\Grégy&Justy\AppData\Roaming\ZHP\Quarantine, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Roaming\ZHP\Quarantine [+] message : LONG_FOLDER_SCAN [+] int1 : 19 [+] int2 : 3 (19:19) C:\Users\Grégy&Justy\AppData\Roaming\ZHP, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Roaming\ZHP [+] message : LONG_FOLDER_SCAN [+] int1 : 19 [+] int2 : 19 (33:24) C:\Users\Grégy&Justy\AppData\Roaming, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData\Roaming [+] message : LONG_FOLDER_SCAN [+] int1 : 33 [+] int2 : 24 (80:0) C:\Users\Grégy&Justy\AppData, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\AppData [+] message : LONG_FOLDER_SCAN [+] int1 : 80 [+] int2 : 0 (16:3) C:\Users\Grégy&Justy\Documents\DriverPack, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\DriverPack [+] message : LONG_FOLDER_SCAN [+] int1 : 16 [+] int2 : 3 (25:2006) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes\Windows\System32, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes\Windows\System32 [+] message : LONG_FOLDER_SCAN [+] int1 : 25 [+] int2 : 2006 (30:1) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes\Windows\WinSxS, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes\Windows\WinSxS [+] message : LONG_FOLDER_SCAN [+] int1 : 30 [+] int2 : 1 (76:10) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes\Windows, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes\Windows [+] message : LONG_FOLDER_SCAN [+] int1 : 76 [+] int2 : 10 (78:1) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes [+] message : LONG_FOLDER_SCAN [+] int1 : 78 [+] int2 : 1 (78:0) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus [+] message : LONG_FOLDER_SCAN [+] int1 : 78 [+] int2 : 0 (49:7) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps [+] message : LONG_FOLDER_SCAN [+] int1 : 49 [+] int2 : 7 (18:2) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\CherryTree\share\icons\Adwaita, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\CherryTree\share\icons\Adwaita [+] message : LONG_FOLDER_SCAN [+] int1 : 18 [+] int2 : 2 (19:0) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\CherryTree\share\icons, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\CherryTree\share\icons [+] message : LONG_FOLDER_SCAN [+] int1 : 19 [+] int2 : 0 (24:0) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\CherryTree\share, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\CherryTree\share [+] message : LONG_FOLDER_SCAN [+] int1 : 24 [+] int2 : 0 (25:0) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\CherryTree, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\CherryTree [+] message : LONG_FOLDER_SCAN [+] int1 : 25 [+] int2 : 0 (54:3) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs [+] message : LONG_FOLDER_SCAN [+] int1 : 54 [+] int2 : 3 (184:4) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12\MediCat.USB.v21.12 [+] message : LONG_FOLDER_SCAN [+] int1 : 184 [+] int2 : 4 (184:2) C:\Users\Grégy&Justy\Documents\MediCat USB v21.12, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents\MediCat USB v21.12 [+] message : LONG_FOLDER_SCAN [+] int1 : 184 [+] int2 : 2 (227:67) C:\Users\Grégy&Justy\Documents, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy\Documents [+] message : LONG_FOLDER_SCAN [+] int1 : 227 [+] int2 : 67 (323:25) C:\Users\Grégy&Justy, LONG_FOLDER_SCAN [+] path : C:\Users\Grégy&Justy [+] message : LONG_FOLDER_SCAN [+] int1 : 323 [+] int2 : 25 (325:6) C:\Users, LONG_FOLDER_SCAN [+] path : C:\Users [+] message : LONG_FOLDER_SCAN [+] int1 : 325 [+] int2 : 6 (16:5) C:\Windows\System32\DriverStore, LONG_FOLDER_SCAN [+] path : C:\Windows\System32\DriverStore [+] message : LONG_FOLDER_SCAN [+] int1 : 16 [+] int2 : 5 (38:3097) C:\Windows\System32, LONG_FOLDER_SCAN [+] path : C:\Windows\System32 [+] message : LONG_FOLDER_SCAN [+] int1 : 38 [+] int2 : 3097 (23:9075) C:\Windows\winsxs\Manifests, LONG_FOLDER_SCAN [+] path : C:\Windows\winsxs\Manifests [+] message : LONG_FOLDER_SCAN [+] int1 : 23 [+] int2 : 9075 (84:2) C:\Windows\winsxs, LONG_FOLDER_SCAN [+] path : C:\Windows\winsxs [+] message : LONG_FOLDER_SCAN [+] int1 : 84 [+] int2 : 2 (137:56) C:\Windows, LONG_FOLDER_SCAN [+] path : C:\Windows [+] message : LONG_FOLDER_SCAN [+] int1 : 137 [+] int2 : 56 (30:245) H:\Android\data\sharefiles.sharemusic.shareapps.filetransfer\files\app, LONG_FOLDER_SCAN [+] path : H:\Android\data\sharefiles.sharemusic.shareapps.filetransfer\files\app [+] message : LONG_FOLDER_SCAN [+] int1 : 30 [+] int2 : 245 (38:0) H:\Android\data\sharefiles.sharemusic.shareapps.filetransfer\files, LONG_FOLDER_SCAN [+] path : H:\Android\data\sharefiles.sharemusic.shareapps.filetransfer\files [+] message : LONG_FOLDER_SCAN [+] int1 : 38 [+] int2 : 0 (38:0) H:\Android\data\sharefiles.sharemusic.shareapps.filetransfer, LONG_FOLDER_SCAN [+] path : H:\Android\data\sharefiles.sharemusic.shareapps.filetransfer [+] message : LONG_FOLDER_SCAN [+] int1 : 38 [+] int2 : 0 (51:1) H:\Android\data, LONG_FOLDER_SCAN [+] path : H:\Android\data [+] message : LONG_FOLDER_SCAN [+] int1 : 51 [+] int2 : 1 (51:0) H:\Android, LONG_FOLDER_SCAN [+] path : H:\Android [+] message : LONG_FOLDER_SCAN [+] int1 : 51 [+] int2 : 0 (18:179) H:\Ventilateur6 amdrem aw52rem mfmrem aas incrusterem\app, LONG_FOLDER_SCAN [+] path : H:\Ventilateur6 amdrem aw52rem mfmrem aas incrusterem\app [+] message : LONG_FOLDER_SCAN [+] int1 : 18 [+] int2 : 179 (21:17) H:\Ventilateur6 amdrem aw52rem mfmrem aas incrusterem, LONG_FOLDER_SCAN [+] path : H:\Ventilateur6 amdrem aw52rem mfmrem aas incrusterem [+] message : LONG_FOLDER_SCAN [+] int1 : 21 [+] int2 : 17 (39:1) H:\ActionDirector\Transition, LONG_FOLDER_SCAN [+] path : H:\ActionDirector\Transition [+] message : LONG_FOLDER_SCAN [+] int1 : 39 [+] int2 : 1 (42:1) H:\ActionDirector, LONG_FOLDER_SCAN [+] path : H:\ActionDirector [+] message : LONG_FOLDER_SCAN [+] int1 : 42 [+] int2 : 1 (17:0) K:\Apps\OpenOfficePortable\App\openoffice\Basis\share, LONG_FOLDER_SCAN [+] path : K:\Apps\OpenOfficePortable\App\openoffice\Basis\share [+] message : LONG_FOLDER_SCAN [+] int1 : 17 [+] int2 : 0 (28:1) K:\Apps\OpenOfficePortable\App\openoffice\Basis, LONG_FOLDER_SCAN [+] path : K:\Apps\OpenOfficePortable\App\openoffice\Basis [+] message : LONG_FOLDER_SCAN [+] int1 : 28 [+] int2 : 1 (32:6) K:\Apps\OpenOfficePortable\App\openoffice, LONG_FOLDER_SCAN [+] path : K:\Apps\OpenOfficePortable\App\openoffice [+] message : LONG_FOLDER_SCAN [+] int1 : 32 [+] int2 : 6 (32:0) K:\Apps\OpenOfficePortable\App, LONG_FOLDER_SCAN [+] path : K:\Apps\OpenOfficePortable\App [+] message : LONG_FOLDER_SCAN [+] int1 : 32 [+] int2 : 0 (33:8) K:\Apps\OpenOfficePortable, LONG_FOLDER_SCAN [+] path : K:\Apps\OpenOfficePortable [+] message : LONG_FOLDER_SCAN [+] int1 : 33 [+] int2 : 8 (44:0) K:\Apps, LONG_FOLDER_SCAN [+] path : K:\Apps [+] message : LONG_FOLDER_SCAN [+] int1 : 44 [+] int2 : 0 (29:0) Q:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit, LONG_FOLDER_SCAN [+] path : Q:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit [+] message : LONG_FOLDER_SCAN [+] int1 : 29 [+] int2 : 0 (31:0) Q:\Program Files (x86)\Windows Kits\10, LONG_FOLDER_SCAN [+] path : Q:\Program Files (x86)\Windows Kits\10 [+] message : LONG_FOLDER_SCAN [+] int1 : 31 [+] int2 : 0 (31:0) Q:\Program Files (x86)\Windows Kits, LONG_FOLDER_SCAN [+] path : Q:\Program Files (x86)\Windows Kits [+] message : LONG_FOLDER_SCAN [+] int1 : 31 [+] int2 : 0 (42:1) Q:\Program Files (x86), LONG_FOLDER_SCAN [+] path : Q:\Program Files (x86) [+] message : LONG_FOLDER_SCAN [+] int1 : 42 [+] int2 : 1 (16:0) Q:\Users\pc\AppData\Local\Microsoft, LONG_FOLDER_SCAN [+] path : Q:\Users\pc\AppData\Local\Microsoft [+] message : LONG_FOLDER_SCAN [+] int1 : 16 [+] int2 : 0 (24:1) Q:\Users\pc\AppData\Local, LONG_FOLDER_SCAN [+] path : Q:\Users\pc\AppData\Local [+] message : LONG_FOLDER_SCAN [+] int1 : 24 [+] int2 : 1 (27:0) Q:\Users\pc\AppData, LONG_FOLDER_SCAN [+] path : Q:\Users\pc\AppData [+] message : LONG_FOLDER_SCAN [+] int1 : 27 [+] int2 : 0 (28:21) Q:\Users\pc, LONG_FOLDER_SCAN [+] path : Q:\Users\pc [+] message : LONG_FOLDER_SCAN [+] int1 : 28 [+] int2 : 21 (28:1) Q:\Users, LONG_FOLDER_SCAN [+] path : Q:\Users [+] message : LONG_FOLDER_SCAN [+] int1 : 28 [+] int2 : 1 (46:0) Q:\Program Files\WindowsApps, LONG_FOLDER_SCAN [+] path : Q:\Program Files\WindowsApps [+] message : LONG_FOLDER_SCAN [+] int1 : 46 [+] int2 : 0 (56:1) Q:\Program Files, LONG_FOLDER_SCAN [+] path : Q:\Program Files [+] message : LONG_FOLDER_SCAN [+] int1 : 56 [+] int2 : 1 ************************* Removal ************************* [PUP.AdvancedSystemRepair (Potentiellement Malicieux)] asrrealtimesrv -- %ProgramFiles%\Advanced System Repair Pro 1.9.7.9.0\asrrealtimesrv.exe -> Arrêté(e) [+] scan_what : 0 [+] vendors : PUP.AdvancedSystemRepair [+] Name : asrrealtimesrv [+] value : %ProgramFiles%\Advanced System Repair Pro 1.9.7.9.0\asrrealtimesrv.exe [+] Type : Service [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 0 [+] status : 3 [+] status_str : Arrêté(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.WebCompanion|PUP.BundleInstaller (Potentiellement Malicieux)] DCIService -- %ProgramFiles%\Lavasoft\Web Companion\Service\Win32\DCIService.exe -> Arrêté(e) [+] scan_what : 0 [+] vendors : PUP.WebCompanion|PUP.BundleInstaller [+] Name : DCIService [+] value : %ProgramFiles%\Lavasoft\Web Companion\Service\Win32\DCIService.exe [+] Type : Service [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 1 [+] status : 3 [+] status_str : Arrêté(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen0 (Potentiellement Malicieux)] DSUDiskOptimizer -- %ProgramFiles%\Disk Speedup\DSUDefragSrv.exe -> Arrêté(e) [+] scan_what : 0 [+] vendors : PUP.Gen0 [+] Name : DSUDiskOptimizer [+] value : %ProgramFiles%\Disk Speedup\DSUDefragSrv.exe [+] Type : Service [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 2 [+] status : 3 [+] status_str : Arrêté(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen0 (Potentiellement Malicieux)] WCAssistantService -- %ProgramFiles%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe -> Arrêté(e) [+] scan_what : 0 [+] vendors : PUP.Gen0 [+] Name : WCAssistantService [+] value : %ProgramFiles%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [+] Type : Service [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 3 [+] status : 3 [+] status_str : Arrêté(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedDriverUpdater (Potentiellement Malicieux)] C:\Windows\Tasks\AdvancedDriverUpdaterRunAtStartup.job -- C:\Program Files\Advanced Driver Updater\ADU.exe (-rem) -> Supprimé(e) [+] scan_what : 0 [+] vendors : PUP.AdvancedDriverUpdater [+] Name : C:\Windows\Tasks\AdvancedDriverUpdaterRunAtStartup.job [+] value : C:\Program Files\Advanced Driver Updater\ADU.exe (-rem) [+] Type : Task [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 4 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen0 (Potentiellement Malicieux)] C:\Windows\Tasks\AdvancedDriverUpdater_UPDATES.job -- C:\Program Files\Advanced Driver Updater\ADU.exe (updatecheck) -> Supprimé(e) [+] scan_what : 0 [+] vendors : PUP.Gen0 [+] Name : C:\Windows\Tasks\AdvancedDriverUpdater_UPDATES.job [+] value : C:\Program Files\Advanced Driver Updater\ADU.exe (updatecheck) [+] Type : Task [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 5 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Anvisoft (Potentiellement Malicieux)] HKEY_CLASSES_ROOT\CLSID\{1aad99ea-ee10-5c3a-8174-84c63a67adde} -- [%programdata%\Anvisoft\Anvi Smart Defender 2\extensions\npAdblockPlugin.dll] -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.Anvisoft [+] Name : HKEY_CLASSES_ROOT\CLSID\{1aad99ea-ee10-5c3a-8174-84c63a67adde} [+] value : [%programdata%\Anvisoft\Anvi Smart Defender 2\extensions\npAdblockPlugin.dll] [+] Type : Registry [+] file_hash : 342F9C8E3AD199CE2C3279713FDBD144B6E198B434C8E597A1B0CB92ECDF80D3 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 6 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedSystemRepair (Potentiellement Malicieux)] HKEY_CLASSES_ROOT\CLSID\{233F8F82-F91E-4E49-2222-BD21AB39D1BB} -- [%ProgramFiles%\Advanced System Repair Pro 1.9.7.9.0\asrrealtimesrv.exe] -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.AdvancedSystemRepair [+] Name : HKEY_CLASSES_ROOT\CLSID\{233F8F82-F91E-4E49-2222-BD21AB39D1BB} [+] value : [%ProgramFiles%\Advanced System Repair Pro 1.9.7.9.0\asrrealtimesrv.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 7 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen0 (Potentiellement Malicieux)] HKEY_CLASSES_ROOT\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -- [%programdata%\Partner\Partner.dll] -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.Gen0 [+] Name : HKEY_CLASSES_ROOT\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} [+] value : [%programdata%\Partner\Partner.dll] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 8 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Anvisoft (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Anvisoft -- -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.Anvisoft [+] Name : HKEY_LOCAL_MACHINE\Software\Anvisoft [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 9 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.DriverPack (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\drpsu -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.DriverPack [+] Name : HKEY_LOCAL_MACHINE\Software\drpsu [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 10 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Mobogenie|PUP.Gen1 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Mobogenie3 -- -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.Mobogenie|PUP.Gen1 [+] Name : HKEY_LOCAL_MACHINE\Software\Mobogenie3 [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 11 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.WinZipDiskTools (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Nico Mak Computing -- -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.WinZipDiskTools [+] Name : HKEY_LOCAL_MACHINE\Software\Nico Mak Computing [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 12 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.DriverTalent (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\OSTotoSoft -- -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.DriverTalent [+] Name : HKEY_LOCAL_MACHINE\Software\OSTotoSoft [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 13 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.SysTweak|PUP.Gen1 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Systweak -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.SysTweak|PUP.Gen1 [+] Name : HKEY_LOCAL_MACHINE\Software\Systweak [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 14 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen1 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\TweakBit -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.Gen1 [+] Name : HKEY_LOCAL_MACHINE\Software\TweakBit [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 15 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.WinZipDiskTools (Potentiellement Malicieux)] HKEY_USERS\.DEFAULT\Software\Nico Mak Computing -- -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.WinZipDiskTools [+] Name : HKEY_USERS\.DEFAULT\Software\Nico Mak Computing [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 16 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Anvisoft (Potentiellement Malicieux)] HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Anvisoft -- -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.Anvisoft [+] Name : HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Anvisoft [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 17 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.DriverFix (Potentiellement Malicieux)] HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\DriverFix -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.DriverFix [+] Name : HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\DriverFix [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 18 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.DriverPack (Potentiellement Malicieux)] HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\drpsu -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.DriverPack [+] Name : HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\drpsu [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 19 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen0|PUP.Gen1 (Potentiellement Malicieux)] HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Solvusoft -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.Gen0|PUP.Gen1 [+] Name : HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Solvusoft [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 20 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.SysTweak|PUP.Gen1 (Potentiellement Malicieux)] HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Systweak -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.SysTweak|PUP.Gen1 [+] Name : HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Systweak [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 21 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.WinZipDiskTools (Potentiellement Malicieux)] HKEY_USERS\S-1-5-18\Software\Nico Mak Computing -- -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.WinZipDiskTools [+] Name : HKEY_USERS\S-1-5-18\Software\Nico Mak Computing [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 22 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Solvusoft (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\DriverDoc_is1 -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.Solvusoft [+] Name : HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\DriverDoc_is1 [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 23 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Mobogenie|PUP.Gen1 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie3 -- -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.Mobogenie|PUP.Gen1 [+] Name : HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie3 [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 24 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.PCSpeedMaximizer|PUP.Gen1 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PC Speed Maximizer_is1 -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.PCSpeedMaximizer|PUP.Gen1 [+] Name : HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PC Speed Maximizer_is1 [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 25 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen1 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.Gen1 [+] Name : HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 26 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen1 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FC7E771F-8170-4573-825D-EDB6723C804F}_is1 -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.Gen1 [+] Name : HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FC7E771F-8170-4573-825D-EDB6723C804F}_is1 [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 27 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedSystemRepair (Potentiellement Malicieux)] HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\Advanced System Repair Pro -- -> ERROR [6] [+] scan_what : 2 [+] vendors : PUP.AdvancedSystemRepair [+] Name : HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\Advanced System Repair Pro [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 28 [+] status : 4 [+] status_str : ERROR [6] [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen0 (Potentiellement Malicieux)] HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} -- -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.Gen0 [+] Name : HKEY_USERS\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 29 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedSystemRepair (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\asrrealtimesrv -- [%ProgramFiles%\Advanced System Repair Pro 1.9.7.9.0\asrrealtimesrv.exe] -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.AdvancedSystemRepair [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\asrrealtimesrv [+] value : [%ProgramFiles%\Advanced System Repair Pro 1.9.7.9.0\asrrealtimesrv.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 30 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.WebCompanion|PUP.BundleInstaller (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DCIService -- [%ProgramFiles%\Lavasoft\Web Companion\Service\Win32\DCIService.exe] -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.WebCompanion|PUP.BundleInstaller [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DCIService [+] value : [%ProgramFiles%\Lavasoft\Web Companion\Service\Win32\DCIService.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 31 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen0 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DSUDiskOptimizer -- [%ProgramFiles%\Disk Speedup\DSUDefragSrv.exe] -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.Gen0 [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DSUDiskOptimizer [+] value : [%ProgramFiles%\Disk Speedup\DSUDefragSrv.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 32 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Gen0 (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\WCAssistantService -- [%ProgramFiles%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe] -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUP.Gen0 [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\WCAssistantService [+] value : [%ProgramFiles%\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe] [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 33 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{8756D262-2770-4461-B449-93ADD14DD390} -- [%ProgramFiles%\Tribler\tribler.exe] -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{8756D262-2770-4461-B449-93ADD14DD390} [+] value : [%ProgramFiles%\Tribler\tribler.exe] [+] Type : Registry [+] file_hash : 3493197550166A6D6B4CF6F763E856D7F2DDE3BECCFD7FABA4121ED079E2BEA0 [+] file_vtscore : 15 [+] file_vttotal : 63 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 34 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{8DCA98D7-BE0B-4E39-A5BB-C1188BE0BF01} -- [%ProgramFiles%\Tribler\tribler.exe] -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{8DCA98D7-BE0B-4E39-A5BB-C1188BE0BF01} [+] value : [%ProgramFiles%\Tribler\tribler.exe] [+] Type : Registry [+] file_hash : 3493197550166A6D6B4CF6F763E856D7F2DDE3BECCFD7FABA4121ED079E2BEA0 [+] file_vtscore : 15 [+] file_vttotal : 63 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 35 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Suspicious.Path (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{A205FD4A-57B6-4EE6-96FC-3663B115992D}C:\users\grégy&justy\appdata\local\temp\rar$exb4936.42902\easeus.todo.pctrans.pro.tech.13.0.20211223.portable.karanpc\easeus todo pctrans.exe -- [%localappdata%\Temp\rar$exb4936.42902\easeus.todo.pctrans.pro.tech.13.0.20211223.portable.karanpc\easeus todo pctrans.exe] -> Supprimé(e) [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{A205FD4A-57B6-4EE6-96FC-3663B115992D}C:\users\grégy&justy\appdata\local\temp\rar$exb4936.42902\easeus.todo.pctrans.pro.tech.13.0.20211223.portable.karanpc\easeus todo pctrans.exe [+] value : [%localappdata%\Temp\rar$exb4936.42902\easeus.todo.pctrans.pro.tech.13.0.20211223.portable.karanpc\easeus todo pctrans.exe] [+] Type : Registry [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 36 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [Suspicious.Path (Potentiellement Malicieux)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{93F75E0D-C309-4EAC-89BF-71E22FCBD433}C:\users\grégy&justy\appdata\local\temp\rar$exb4936.42902\easeus.todo.pctrans.pro.tech.13.0.20211223.portable.karanpc\easeus todo pctrans.exe -- [%localappdata%\Temp\rar$exb4936.42902\easeus.todo.pctrans.pro.tech.13.0.20211223.portable.karanpc\easeus todo pctrans.exe] -> Supprimé(e) [+] scan_what : 1 [+] vendors : Suspicious.Path [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{93F75E0D-C309-4EAC-89BF-71E22FCBD433}C:\users\grégy&justy\appdata\local\temp\rar$exb4936.42902\easeus.todo.pctrans.pro.tech.13.0.20211223.portable.karanpc\easeus todo pctrans.exe [+] value : [%localappdata%\Temp\rar$exb4936.42902\easeus.todo.pctrans.pro.tech.13.0.20211223.portable.karanpc\easeus todo pctrans.exe] [+] Type : Registry [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 37 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [MalPE.100 (Potentiellement Malicieux)] AndroidManager.exe_EDE5AF10CF5B4DA1B61C039E5CAD3FA5.exe -- %SystemRoot%\Installer\{523281E5-91DD-49F5-9D85-954148F7596A}\AndroidManager.exe_EDE5AF10CF5B4DA1B61C039E5CAD3FA5.exe -> Supprimé(e) au redémarrage [5] [+] scan_what : 1 [+] vendors : MalPE.100 [+] Name : AndroidManager.exe_EDE5AF10CF5B4DA1B61C039E5CAD3FA5.exe [+] value : %SystemRoot%\Installer\{523281E5-91DD-49F5-9D85-954148F7596A}\AndroidManager.exe_EDE5AF10CF5B4DA1B61C039E5CAD3FA5.exe [+] Type : File/Folder [+] file_hash : 3824FD11DEB605AC4DF7508D0063DD2F301F216ACAA968AF065632DC1615EB12 [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 38 [+] status : 5 [+] status_str : Supprimé(e) au redémarrage [5] [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 100 [MalPE.100 (Potentiellement Malicieux)] jnnuskmsvnujpgvsvqtksmqkplmkrmmuugngoipt.Tls -- %_Grégy&Justy_appdata%\Thinstall\EaseUS Todo PCTrans\SKEL\jnnuskmsvnujpgvsvqtksmqkplmkrmmuugngoipt.Tls -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.100 [+] Name : jnnuskmsvnujpgvsvqtksmqkplmkrmmuugngoipt.Tls [+] value : %_Grégy&Justy_appdata%\Thinstall\EaseUS Todo PCTrans\SKEL\jnnuskmsvnujpgvsvqtksmqkplmkrmmuugngoipt.Tls [+] Type : File/Folder [+] file_hash : 3736441107131508F2EEF505F5183B0AE324A727D402975F44B01C5750A6284C [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 39 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 100 [PUP.AdvancedSystemRepair (Potentiellement Malicieux)] Advanced System Repair Pro.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPCleaner\Advanced System Repair Pro\Advanced System Repair Pro.lnk (lnk => C:\Program Files\Advanced System Repair Pro 1.9.7.9.0\AdvancedSystemRepairPro.exe []) -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AdvancedSystemRepair [+] Name : Advanced System Repair Pro.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPCleaner\Advanced System Repair Pro\Advanced System Repair Pro.lnk (lnk => C:\Program Files\Advanced System Repair Pro 1.9.7.9.0\AdvancedSystemRepairPro.exe []) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 40 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedSystemRepair (Potentiellement Malicieux)] Uninstall Advanced System Repair Pro.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPCleaner\Advanced System Repair Pro\Uninstall Advanced System Repair Pro.lnk (lnk => C:\Program Files\Advanced System Repair Pro 1.9.7.9.0\AdvancedSystemRepairPro.exe [/u]) -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AdvancedSystemRepair [+] Name : Uninstall Advanced System Repair Pro.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPCleaner\Advanced System Repair Pro\Uninstall Advanced System Repair Pro.lnk (lnk => C:\Program Files\Advanced System Repair Pro 1.9.7.9.0\AdvancedSystemRepairPro.exe [/u]) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 41 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.WebCompanion|PUP.BundleInstaller (Potentiellement Malicieux)] Web Companion.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder20___WebCompanion\Web Companion.lnk (lnk => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [--startmenu]) -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.WebCompanion|PUP.BundleInstaller [+] Name : Web Companion.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder20___WebCompanion\Web Companion.lnk (lnk => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [--startmenu]) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 42 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedDriverUpdater (Potentiellement Malicieux)] Advanced Driver Updater.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder5___Advanced Driver Updater\Advanced Driver Updater.lnk (lnk => C:\Program Files\Advanced Driver Updater\ADU.exe []) -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AdvancedDriverUpdater [+] Name : Advanced Driver Updater.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder5___Advanced Driver Updater\Advanced Driver Updater.lnk (lnk => C:\Program Files\Advanced Driver Updater\ADU.exe []) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 43 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedDriverUpdater (Potentiellement Malicieux)] Désinstaller Advanced Driver Updater.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder5___Advanced Driver Updater\Désinstaller Advanced Driver Updater.lnk (lnk => C:\Program Files\Advanced Driver Updater\unins000.exe []) -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AdvancedDriverUpdater [+] Name : Désinstaller Advanced Driver Updater.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder5___Advanced Driver Updater\Désinstaller Advanced Driver Updater.lnk (lnk => C:\Program Files\Advanced Driver Updater\unins000.exe []) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 44 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] Keygen.exe -- %localappdata%\Temp\Rar$EXa5056.38053\Keygen.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Keygen.exe [+] value : %localappdata%\Temp\Rar$EXa5056.38053\Keygen.exe [+] Type : File/Folder [+] file_hash : F8F03EB41C0B00AA6131804A787A6CC7A2A75C26539B5859F551DDE077F8FC06 [+] file_vtscore : 47 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 45 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 100 [MalPE.98 (Potentiellement Malicieux)] EaseUS Todo PCTrans.exe -- %localappdata%\Temp\Rar$EXb4936.42902\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.98 [+] Name : EaseUS Todo PCTrans.exe [+] value : %localappdata%\Temp\Rar$EXb4936.42902\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 46 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [PUP.Anvisoft (Potentiellement Malicieux)] Anvisoft -- %programdata%\Anvisoft -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.Anvisoft [+] Name : Anvisoft [+] value : %programdata%\Anvisoft [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 47 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [MalPE.99 (Potentiellement Malicieux)] Driver Backup 2-19-2022-162026.exe -- %programdata%\Driver-Soft\DriverGenius\Backup\Driver Backup 2-19-2022-162026.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : Driver Backup 2-19-2022-162026.exe [+] value : %programdata%\Driver-Soft\DriverGenius\Backup\Driver Backup 2-19-2022-162026.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 48 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [PUP.Anvisoft (Potentiellement Malicieux)] Anvisoft -- %programdata%\Microsoft\Windows\Start Menu\Programs\Anvisoft -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.Anvisoft [+] Name : Anvisoft [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\Anvisoft [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 49 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Solvusoft (Potentiellement Malicieux)] DriverDoc -- %programdata%\Microsoft\Windows\Start Menu\Programs\DriverDoc -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.Solvusoft [+] Name : DriverDoc [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\DriverDoc [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 50 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Mobogenie (Potentiellement Malicieux)] Mobogenie3 -- %programdata%\Microsoft\Windows\Start Menu\Programs\Mobogenie3 -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.Mobogenie [+] Name : Mobogenie3 [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\Mobogenie3 [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 51 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] MP3 to EXE.lnk -- %programdata%\Microsoft\Windows\Start Menu\Programs\MP3 to EXE\MP3 to EXE.lnk (lnk => C:\PROGRA~1\MP3 to EXE\MP3TOEXE.exe []) -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : MP3 to EXE.lnk [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\MP3 to EXE\MP3 to EXE.lnk (lnk => C:\PROGRA~1\MP3 to EXE\MP3TOEXE.exe []) [+] Type : File/Folder [+] file_vtscore : 8 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 52 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [PUP.Anvisoft (Potentiellement Malicieux)] Anvisoft -- %ProgramFiles%\Anvisoft -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.Anvisoft [+] Name : Anvisoft [+] value : %ProgramFiles%\Anvisoft [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 53 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] MP3TOEXE.exe -- %ProgramFiles%\MP3 to EXE\MP3TOEXE.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : MP3TOEXE.exe [+] value : %ProgramFiles%\MP3 to EXE\MP3TOEXE.exe [+] Type : File/Folder [+] file_hash : E9B5BB2F34648CF3438982A5AC717210F9AD1E54EB8508F3BFA4B0FE68E2819C [+] file_vtscore : 8 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 54 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] tribler.exe -- %ProgramFiles%\Tribler\tribler.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : tribler.exe [+] value : %ProgramFiles%\Tribler\tribler.exe [+] Type : File/Folder [+] file_hash : 3493197550166A6D6B4CF6F763E856D7F2DDE3BECCFD7FABA4121ED079E2BEA0 [+] file_vtscore : 15 [+] file_vttotal : 63 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 55 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Tribler.lnk -- %SystemDrive%\Users\Gregy&Justy\Desktop\Tribler.lnk (lnk => C:\PROGRA~1\Tribler\tribler.exe []) -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Tribler.lnk [+] value : %SystemDrive%\Users\Gregy&Justy\Desktop\Tribler.lnk (lnk => C:\PROGRA~1\Tribler\tribler.exe []) [+] Type : File/Folder [+] file_vtscore : 15 [+] file_vttotal : 63 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 56 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] DRMsoft Cross Platform Video Encrypter 11.0.exe -- %USERPROFILE%\Desktop\2_3rem suite v3.0\DRMsoft Cross Platform Video Encrypter 11.0.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : DRMsoft Cross Platform Video Encrypter 11.0.exe [+] value : %USERPROFILE%\Desktop\2_3rem suite v3.0\DRMsoft Cross Platform Video Encrypter 11.0.exe [+] Type : File/Folder [+] file_hash : 58AE7C404C365F374409BBFD43E4F61445FFFDC313823B46DDD44E3E472883CF [+] file_vtscore : 6 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 57 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.99 (Potentiellement Malicieux)] FoxitReader.exe -- %USERPROFILE%\Documents\soft\FoxitReader.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : FoxitReader.exe [+] value : %USERPROFILE%\Documents\soft\FoxitReader.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 58 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] majorgeeks_software_updates_and_news_setup(1).exe -- %USERPROFILE%\Downloads\majorgeeks_software_updates_and_news_setup(1).exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : majorgeeks_software_updates_and_news_setup(1).exe [+] value : %USERPROFILE%\Downloads\majorgeeks_software_updates_and_news_setup(1).exe [+] Type : File/Folder [+] file_hash : FDC8356B3C15CBDEF323AF8FEFA588EE95E7B8370D44A1BC75BDD7661420F595 [+] file_vtscore : 7 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 59 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 95 [Cloud.Generic (Malicieux)] majorgeeks_software_updates_and_news_setup.exe -- %USERPROFILE%\Downloads\majorgeeks_software_updates_and_news_setup.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : majorgeeks_software_updates_and_news_setup.exe [+] value : %USERPROFILE%\Downloads\majorgeeks_software_updates_and_news_setup.exe [+] Type : File/Folder [+] file_hash : FDC8356B3C15CBDEF323AF8FEFA588EE95E7B8370D44A1BC75BDD7661420F595 [+] file_vtscore : 7 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 60 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 95 [Cloud.Generic (Malicieux)] pc-speed-maximizer-2.1.exe -- %USERPROFILE%\Downloads\pc-speed-maximizer-2.1.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : pc-speed-maximizer-2.1.exe [+] value : %USERPROFILE%\Downloads\pc-speed-maximizer-2.1.exe [+] Type : File/Folder [+] file_hash : 3BD2A86E3D9379E12AC57027D5F99810521FC3869AF506EB6D59315197037BA2 [+] file_vtscore : 6 [+] file_vttotal : 72 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 61 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] sih.4.0.1.0.exe -- %USERPROFILE%\Downloads\sih.4.0.1.0.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : sih.4.0.1.0.exe [+] value : %USERPROFILE%\Downloads\sih.4.0.1.0.exe [+] Type : File/Folder [+] file_hash : BF4B4B35ADEF09FAA893D569109D01A60EDAA56677EC61E4F98A3EA8656FCC35 [+] file_vtscore : 26 [+] file_vttotal : 71 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 62 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [PUP.Anvisoft (Potentiellement Malicieux)] Anvisoft -- %ProgramFiles%\Anvisoft -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.Anvisoft [+] Name : Anvisoft [+] value : %ProgramFiles%\Anvisoft [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 63 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] MP3TOEXE.exe -- %ProgramFiles%\MP3 to EXE\MP3TOEXE.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : MP3TOEXE.exe [+] value : %ProgramFiles%\MP3 to EXE\MP3TOEXE.exe [+] Type : File/Folder [+] file_hash : E9B5BB2F34648CF3438982A5AC717210F9AD1E54EB8508F3BFA4B0FE68E2819C [+] file_vtscore : 8 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 64 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] tribler.exe -- %ProgramFiles%\Tribler\tribler.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : tribler.exe [+] value : %ProgramFiles%\Tribler\tribler.exe [+] Type : File/Folder [+] file_hash : 3493197550166A6D6B4CF6F763E856D7F2DDE3BECCFD7FABA4121ED079E2BEA0 [+] file_vtscore : 15 [+] file_vttotal : 63 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 65 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [PUP.Anvisoft (Potentiellement Malicieux)] Anvisoft -- %programdata%\Anvisoft -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.Anvisoft [+] Name : Anvisoft [+] value : %programdata%\Anvisoft [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 66 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [MalPE.99 (Potentiellement Malicieux)] Driver Backup 2-19-2022-162026.exe -- %programdata%\Driver-Soft\DriverGenius\Backup\Driver Backup 2-19-2022-162026.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : Driver Backup 2-19-2022-162026.exe [+] value : %programdata%\Driver-Soft\DriverGenius\Backup\Driver Backup 2-19-2022-162026.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 67 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [PUP.Anvisoft (Potentiellement Malicieux)] Anvisoft -- %programdata%\Microsoft\Windows\Start Menu\Programs\Anvisoft -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.Anvisoft [+] Name : Anvisoft [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\Anvisoft [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 68 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Solvusoft (Potentiellement Malicieux)] DriverDoc -- %programdata%\Microsoft\Windows\Start Menu\Programs\DriverDoc -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.Solvusoft [+] Name : DriverDoc [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\DriverDoc [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 69 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.Mobogenie (Potentiellement Malicieux)] Mobogenie3 -- %programdata%\Microsoft\Windows\Start Menu\Programs\Mobogenie3 -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.Mobogenie [+] Name : Mobogenie3 [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\Mobogenie3 [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 70 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] MP3 to EXE.lnk -- %programdata%\Microsoft\Windows\Start Menu\Programs\MP3 to EXE\MP3 to EXE.lnk (lnk => C:\PROGRA~1\MP3 to EXE\MP3TOEXE.exe []) -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : MP3 to EXE.lnk [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\MP3 to EXE\MP3 to EXE.lnk (lnk => C:\PROGRA~1\MP3 to EXE\MP3TOEXE.exe []) [+] Type : File/Folder [+] file_vtscore : 8 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 71 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] iIcons.exe -- %SystemDrive%\SkinPack\iIcons.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : iIcons.exe [+] value : %SystemDrive%\SkinPack\iIcons.exe [+] Type : File/Folder [+] file_hash : 1DE36AFB8AE41981A8429E4C17E8CBD95E3F9D185A75BD177DF7D1AA1CEC0227 [+] file_vtscore : 6 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 72 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Tribler.lnk -- %SystemDrive%\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tribler.lnk (lnk => C:\PROGRA~1\Tribler\tribler.exe []) -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Tribler.lnk [+] value : %SystemDrive%\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tribler.lnk (lnk => C:\PROGRA~1\Tribler\tribler.exe []) [+] Type : File/Folder [+] file_vtscore : 15 [+] file_vttotal : 63 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 73 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Tribler.lnk -- %SystemDrive%\Users\Gregy&Justy\Desktop\Tribler.lnk (lnk => C:\PROGRA~1\Tribler\tribler.exe []) -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Tribler.lnk [+] value : %SystemDrive%\Users\Gregy&Justy\Desktop\Tribler.lnk (lnk => C:\PROGRA~1\Tribler\tribler.exe []) [+] Type : File/Folder [+] file_vtscore : 15 [+] file_vttotal : 63 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 74 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Keygen.exe -- %localappdata%\Temp\Rar$EXa5056.38053\Keygen.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Keygen.exe [+] value : %localappdata%\Temp\Rar$EXa5056.38053\Keygen.exe [+] Type : File/Folder [+] file_hash : F8F03EB41C0B00AA6131804A787A6CC7A2A75C26539B5859F551DDE077F8FC06 [+] file_vtscore : 47 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 75 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 100 [MalPE.98 (Potentiellement Malicieux)] EaseUS Todo PCTrans.exe -- %localappdata%\Temp\Rar$EXb4936.42902\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : MalPE.98 [+] Name : EaseUS Todo PCTrans.exe [+] value : %localappdata%\Temp\Rar$EXb4936.42902\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 76 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 98 [MalPE.100 (Potentiellement Malicieux)] jnnuskmsvnujpgvsvqtksmqkplmkrmmuugngoipt.Tls -- %_Grégy&Justy_appdata%\Thinstall\EaseUS Todo PCTrans\SKEL\jnnuskmsvnujpgvsvqtksmqkplmkrmmuugngoipt.Tls -> Trouvé(e) [+] scan_what : 1 [+] vendors : MalPE.100 [+] Name : jnnuskmsvnujpgvsvqtksmqkplmkrmmuugngoipt.Tls [+] value : %_Grégy&Justy_appdata%\Thinstall\EaseUS Todo PCTrans\SKEL\jnnuskmsvnujpgvsvqtksmqkplmkrmmuugngoipt.Tls [+] Type : File/Folder [+] file_hash : 3736441107131508F2EEF505F5183B0AE324A727D402975F44B01C5750A6284C [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 77 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 100 [PUP.AdvancedSystemRepair (Potentiellement Malicieux)] Advanced System Repair Pro.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPCleaner\Advanced System Repair Pro\Advanced System Repair Pro.lnk (lnk => C:\Program Files\Advanced System Repair Pro 1.9.7.9.0\AdvancedSystemRepairPro.exe []) -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.AdvancedSystemRepair [+] Name : Advanced System Repair Pro.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPCleaner\Advanced System Repair Pro\Advanced System Repair Pro.lnk (lnk => C:\Program Files\Advanced System Repair Pro 1.9.7.9.0\AdvancedSystemRepairPro.exe []) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 78 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedSystemRepair (Potentiellement Malicieux)] Uninstall Advanced System Repair Pro.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPCleaner\Advanced System Repair Pro\Uninstall Advanced System Repair Pro.lnk (lnk => C:\Program Files\Advanced System Repair Pro 1.9.7.9.0\AdvancedSystemRepairPro.exe [/u]) -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.AdvancedSystemRepair [+] Name : Uninstall Advanced System Repair Pro.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPCleaner\Advanced System Repair Pro\Uninstall Advanced System Repair Pro.lnk (lnk => C:\Program Files\Advanced System Repair Pro 1.9.7.9.0\AdvancedSystemRepairPro.exe [/u]) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 79 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.WebCompanion|PUP.BundleInstaller (Potentiellement Malicieux)] Web Companion.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder20___WebCompanion\Web Companion.lnk (lnk => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [--startmenu]) -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.WebCompanion|PUP.BundleInstaller [+] Name : Web Companion.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder20___WebCompanion\Web Companion.lnk (lnk => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [--startmenu]) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 80 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedDriverUpdater (Potentiellement Malicieux)] Advanced Driver Updater.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder5___Advanced Driver Updater\Advanced Driver Updater.lnk (lnk => C:\Program Files\Advanced Driver Updater\ADU.exe []) -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.AdvancedDriverUpdater [+] Name : Advanced Driver Updater.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder5___Advanced Driver Updater\Advanced Driver Updater.lnk (lnk => C:\Program Files\Advanced Driver Updater\ADU.exe []) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 81 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.AdvancedDriverUpdater (Potentiellement Malicieux)] Désinstaller Advanced Driver Updater.lnk -- %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder5___Advanced Driver Updater\Désinstaller Advanced Driver Updater.lnk (lnk => C:\Program Files\Advanced Driver Updater\unins000.exe []) -> Trouvé(e) [+] scan_what : 1 [+] vendors : PUP.AdvancedDriverUpdater [+] Name : Désinstaller Advanced Driver Updater.lnk [+] value : %_Grégy&Justy_appdata%\ZHP\Quarantine\ZHPFix\Folder\Folder5___Advanced Driver Updater\Désinstaller Advanced Driver Updater.lnk (lnk => C:\Program Files\Advanced Driver Updater\unins000.exe []) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 82 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [MalPE.99 (Potentiellement Malicieux)] AudioVideo_To_Exe.exe -- %USERPROFILE%\Desktop\2_3rem suite v3.0\audio-video-to-exe_2-0-2-0_fr_193866\Portable\AudioVideo_To_Exe.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : AudioVideo_To_Exe.exe [+] value : %USERPROFILE%\Desktop\2_3rem suite v3.0\audio-video-to-exe_2-0-2-0_fr_193866\Portable\AudioVideo_To_Exe.exe [+] Type : File/Folder [+] file_hash : 143F4ED813DBBBF2B4E4198482565316DD2CE2E19FFFDC60F217F38CCD397823 [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 83 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] DRMsoft Cross Platform Video Encrypter 11.0.exe -- %USERPROFILE%\Desktop\2_3rem suite v3.0\DRMsoft Cross Platform Video Encrypter 11.0.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : DRMsoft Cross Platform Video Encrypter 11.0.exe [+] value : %USERPROFILE%\Desktop\2_3rem suite v3.0\DRMsoft Cross Platform Video Encrypter 11.0.exe [+] Type : File/Folder [+] file_hash : 58AE7C404C365F374409BBFD43E4F61445FFFDC313823B46DDD44E3E472883CF [+] file_vtscore : 6 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 84 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] 7zsd.sfx -- %USERPROFILE%\Documents\bin\Tools\ddriver\7zsd.sfx -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : 7zsd.sfx [+] value : %USERPROFILE%\Documents\bin\Tools\ddriver\7zsd.sfx [+] Type : File/Folder [+] file_hash : D49C333B74BFC5111B35D4D37B0DB1DE2AA847806EDC989CC765D2537FA5A217 [+] file_vtscore : 5 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 85 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [MalPE.98 (Potentiellement Malicieux)] dotnet.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes\Windows\Microsoft.NET\dotnet.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.98 [+] Name : dotnet.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Antivirus\Malwarebytes\Windows\Microsoft.NET\dotnet.exe [+] Type : File/Folder [+] file_hash : 6879B6B5600B7B5358D3F5B899A14B5B63ACEB2F3C3EBE16B3901DFB58688D05 [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 86 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [Cloud.Generic (Malicieux)] BIOSCodes.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BIOS Beep Codes Verifier 1.0.3.1036\BIOSCodes.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : BIOSCodes.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BIOS Beep Codes Verifier 1.0.3.1036\BIOSCodes.exe [+] Type : File/Folder [+] file_hash : 45231567651CA0D9681A86CFB53DEA109285FF5AB8257899B2E8C7B2801DA1F1 [+] file_vtscore : 5 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 87 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] bb2018.dll -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BurnAware\App\BurnAware\bb2018.dll -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : bb2018.dll [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BurnAware\App\BurnAware\bb2018.dll [+] Type : File/Folder [+] file_hash : 0CF9BCE75AFBC8F6E70912BEFE8FCFB0E4B71D97EFF8649871433DA630ED743D [+] file_vtscore : 29 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 88 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] BurnAware.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BurnAware\App\BurnAware\BurnAware.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : BurnAware.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BurnAware\App\BurnAware\BurnAware.exe [+] Type : File/Folder [+] file_hash : B03A18B9C7D35FD829F9E59247A1A961257AC1C7D4811659866097F318C21022 [+] file_vtscore : 22 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 89 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] MultiBurn.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BurnAware\App\BurnAware\MultiBurn.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : MultiBurn.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BurnAware\App\BurnAware\MultiBurn.exe [+] Type : File/Folder [+] file_hash : 4B9C36896E8F5CA37B343172655D268DEFC9B4EEB1823B23A732CFBB9AD45AC3 [+] file_vtscore : 13 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 90 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] winspool.drv -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BurnAware\App\BurnAware\winspool.drv -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : winspool.drv [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\BurnAware\App\BurnAware\winspool.drv [+] Type : File/Folder [+] file_hash : 3E6536987EBD2FFD9F7F621438E4EA745E105ABD984C3115F677127AD82717D5 [+] file_vtscore : 6 [+] file_vttotal : 71 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 91 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Restart PC.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\ClassicShutdown\Restart PC.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Restart PC.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\ClassicShutdown\Restart PC.exe [+] Type : File/Folder [+] file_hash : 609A261B1EBA94E0CD1B56F12F65600D0FF2823973F848AE12CE508E9406373E [+] file_vtscore : 17 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 92 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Shutdown PC.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\ClassicShutdown\Shutdown PC.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Shutdown PC.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\ClassicShutdown\Shutdown PC.exe [+] Type : File/Folder [+] file_hash : 96768345118FD471A2AE3580075D8942A9C7F101D922A9C8ED58B36C3526E058 [+] file_vtscore : 18 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 93 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.99 (Potentiellement Malicieux)] DeepL.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\DeepL Pro v2.4.0\DeepL.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : DeepL.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\DeepL Pro v2.4.0\DeepL.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 94 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Loader-IDB.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Driver Booster\App\ProgramFiles\Loader-IDB.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Loader-IDB.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Driver Booster\App\ProgramFiles\Loader-IDB.exe [+] Type : File/Folder [+] file_hash : 8592243AEB23282BB68E22AEE5F3AA19288D289C554E6318FF92B3BB80FB2E24 [+] file_vtscore : 40 [+] file_vttotal : 65 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 95 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.98 (Potentiellement Malicieux)] registry.dll -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Driver Talent Pro 6.5.60.172\Data\Driver Talent\local\modified\@APPDATALOCAL@\Temp\nsi7BA8.tmp\registry.dll -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.98 [+] Name : registry.dll [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Driver Talent Pro 6.5.60.172\Data\Driver Talent\local\modified\@APPDATALOCAL@\Temp\nsi7BA8.tmp\registry.dll [+] Type : File/Folder [+] file_hash : ACB79C55B3B9C460D032A6F3AAF6C642BF8C1D450E23279D091CC0C6CA510973 [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 96 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [MalPE.99 (Potentiellement Malicieux)] DriverTalent.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Driver Talent Pro 6.5.60.172\Data\Driver Talent\local\modified\@PROGRAMFILESX86@\OSTotoSoft\DriverTalent\DriverTalent.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : DriverTalent.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Driver Talent Pro 6.5.60.172\Data\Driver Talent\local\modified\@PROGRAMFILESX86@\OSTotoSoft\DriverTalent\DriverTalent.exe [+] Type : File/Folder [+] file_hash : F9C4CFCD57C42C62681D45C0C14E0B52E09F7E8F21B7027AFF82F412F356FAE6 [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 97 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] DriverTalent.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Driver Talent Pro 6.5.60.172\DriverTalent.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : DriverTalent.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Driver Talent Pro 6.5.60.172\DriverTalent.exe [+] Type : File/Folder [+] file_hash : 6E493EE781A4248646C86F1649675B968909010293278269CAF68EC7838D877D [+] file_vtscore : 8 [+] file_vttotal : 71 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 98 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] EaseUS Todo PCTrans.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\EaseUS Todo PCTrans Professional 11.5 (Build 20200603)\EaseUS Todo PCTrans.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : EaseUS Todo PCTrans.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\EaseUS Todo PCTrans Professional 11.5 (Build 20200603)\EaseUS Todo PCTrans.exe [+] Type : File/Folder [+] file_hash : 0F18BE9D41B54E863B5C9FC46F26F360FAC91C4043F2F9BDB39B66FDEF2E9CCF [+] file_vtscore : 7 [+] file_vttotal : 61 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 99 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] MediaCreationTool [AIO].exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\MediaCreationTool [AIO]\MediaCreationTool [AIO].exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : MediaCreationTool [AIO].exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\MediaCreationTool [AIO]\MediaCreationTool [AIO].exe [+] Type : File/Folder [+] file_hash : CE0850EE0226DD86CBB5761BD8B7FCB7C3E41FCF85E2DB64E879DF6B109E7A22 [+] file_vtscore : 12 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 100 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] OSKLauncher.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\On-ScreenKeyboardPortable\App\osk\OSKLauncher.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : OSKLauncher.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\On-ScreenKeyboardPortable\App\osk\OSKLauncher.exe [+] Type : File/Folder [+] file_hash : ED3083BCA1D8EFD1B06B8D2A2F1376453EEB0AEE936D064B4D52F3E0A730E292 [+] file_vtscore : 7 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 101 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] AuroraDecrypter.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Ransomware Decryption Tools\AuroraDecrypter.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : AuroraDecrypter.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Ransomware Decryption Tools\AuroraDecrypter.exe [+] Type : File/Folder [+] file_hash : 0D6A2AB430268DE9B92013BE568968812B08D20DECF7EF8AB1D5CE5F9A8D8F3A [+] file_vtscore : 6 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 102 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 96 [Cloud.Generic (Malicieux)] Mole02Decryptor.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Ransomware Decryption Tools\Mole02Decryptor.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Mole02Decryptor.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Ransomware Decryption Tools\Mole02Decryptor.exe [+] Type : File/Folder [+] file_hash : D87B83AB80E22E25BD1CE5A19FBD1B5438DC63936025C0CFD118321535742CF9 [+] file_vtscore : 23 [+] file_vttotal : 65 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 103 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] rr.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\RegistryManager\rr.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : rr.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\RegistryManager\rr.exe [+] Type : File/Folder [+] file_hash : A811709501A472D080453CEFB11ECB3FED068D1402AB2F61512F541E504E5B9A [+] file_vtscore : 13 [+] file_vttotal : 61 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 104 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] RegOwnershipEx.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\RegOwnershipEx\RegOwnershipEx.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : RegOwnershipEx.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\RegOwnershipEx\RegOwnershipEx.exe [+] Type : File/Folder [+] file_hash : 0376046897BB7C73C36BDD4C51EB9E14D688426EBE27282F214AF6C7303C84C6 [+] file_vtscore : 11 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 105 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Regshot64.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\RegShot2\Regshot64.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Regshot64.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\RegShot2\Regshot64.exe [+] Type : File/Folder [+] file_hash : 962571823E1ED1E05E38E1BCD5D1BF415640F1F3CC3D407AC9A567C3520D18EB [+] file_vtscore : 5 [+] file_vttotal : 51 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 106 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] SD Card Formatter.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\SDFormatter\SD Card Formatter.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : SD Card Formatter.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\SDFormatter\SD Card Formatter.exe [+] Type : File/Folder [+] file_hash : 2F7E56EEE4AD4807CC8DE342CCA7EEB615D8745E916310A4D17A20F51AF19363 [+] file_vtscore : 8 [+] file_vttotal : 62 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 107 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] SDIO_auto.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\SnappyDriverInstaller\SDIO_auto.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : SDIO_auto.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\SnappyDriverInstaller\SDIO_auto.exe [+] Type : File/Folder [+] file_hash : 7F7BC654E0AEE674E2D116B384B87DB0375DF0BEB70D4EE372196EF4189B8B01 [+] file_vtscore : 11 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 108 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.99 (Potentiellement Malicieux)] Tor Launcher.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\TorBrowser\Tor Launcher.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : Tor Launcher.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\TorBrowser\Tor Launcher.exe [+] Type : File/Folder [+] file_hash : E2AFDC45168CF4D1C7F7D3F9CF06896CE81923853F182FD9E7E72C94608C9C6D [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 109 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] UEFI BIOS Updater.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\UEFI BIOS Updater 1.69.17.2\UEFI BIOS Updater.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : UEFI BIOS Updater.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\UEFI BIOS Updater 1.69.17.2\UEFI BIOS Updater.exe [+] Type : File/Folder [+] file_hash : 27D2AE9CFD0738B12B7FC6E0B1450DB5067060959BC002505D7B8FF314DE35B8 [+] file_vtscore : 30 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 110 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] WirelessKeyView.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Wireless Key View\WirelessKeyView.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : WirelessKeyView.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\PortableApps\Wireless Key View\WirelessKeyView.exe [+] Type : File/Folder [+] file_hash : 1A00C4A581D38B50E542B3611F24A737D6C4072918F06CA41A99A4E2099A5052 [+] file_vtscore : 23 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 111 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [PUP.HackTool (Potentiellement Malicieux)] advanced_ip_scanner.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Advanced IP Scanner\advanced_ip_scanner.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.HackTool [+] Name : advanced_ip_scanner.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Advanced IP Scanner\advanced_ip_scanner.exe [+] Type : File/Folder [+] file_hash : 305068FE8D9F397D85655592434EC023196FF1C0555FB71AEF0A1F074AF56A52 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 112 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] FileRecovery.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Active@ File Recovery 18\FileRecovery.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : FileRecovery.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Active@ File Recovery 18\FileRecovery.exe [+] Type : File/Folder [+] file_hash : ED118DBAFB99297F587A43451BD54151FE6353153ED2B938B44D31432E1BAF7F [+] file_vtscore : 21 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 113 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] bit.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\BurnInTest\bit.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : bit.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\BurnInTest\bit.exe [+] Type : File/Folder [+] file_hash : 37E6FE37AAB34ECFE4FCF57FAF38BB5FE9D8512FBA0F03E50DE79514C6BA4B63 [+] file_vtscore : 29 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 114 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] chkdsk-gui_x64.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Chkdsk GUI\chkdsk-gui_x64.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : chkdsk-gui_x64.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Chkdsk GUI\chkdsk-gui_x64.exe [+] Type : File/Folder [+] file_hash : CC123350255EE021E79A5921CCC6B1570051D00E2AE7F2755E1BC5C02B01ED2A [+] file_vtscore : 8 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 115 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] mht2htm.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Convert Recordings to HTM\mht2htm.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : mht2htm.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Convert Recordings to HTM\mht2htm.exe [+] Type : File/Folder [+] file_hash : A368AD9958AC5DAB6B0DA3D81D70D3B9FD8CCBFAEAE89D5CF233FD9DD44F7F81 [+] file_vtscore : 10 [+] file_vttotal : 63 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 116 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] DD.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Disk Drill\DD.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : DD.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Disk Drill\DD.exe [+] Type : File/Folder [+] file_hash : A78665AE76C9A1E32DCAE7E1BED7BCCE3102EE6A9D4C3713AA4513AE9219B3E6 [+] file_vtscore : 6 [+] file_vttotal : 56 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 117 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] disk2vhd.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Disk2VHD\disk2vhd.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : disk2vhd.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Disk2VHD\disk2vhd.exe [+] Type : File/Folder [+] file_hash : 2AE56442C26B8E58602F28CB846F39F4A0F9E539471DDAB4863B2E7D7A8B5BDD [+] file_vtscore : 9 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 118 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] DFD.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Duplicate File Detective\DFD.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : DFD.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Duplicate File Detective\DFD.exe [+] Type : File/Folder [+] file_hash : CCDEBA7C93F48601597A08D6C3C8E19038705BFB97A4CB0EDF25573BDA228B3E [+] file_vtscore : 7 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 119 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] EFRenamer.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Easy File Renamer\EFRenamer.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : EFRenamer.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Easy File Renamer\EFRenamer.exe [+] Type : File/Folder [+] file_hash : 4F8E238599808ECBBBEB36C4444C4A9E9DCBDD74B510EC90E548A6A274E05FE8 [+] file_vtscore : 8 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 120 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] EasyUEFI.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\EasyUEFI\EasyUEFI.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : EasyUEFI.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\EasyUEFI\EasyUEFI.exe [+] Type : File/Folder [+] file_hash : 928247324321A2564851DA3BA5335C644876F1276B642E050C5540AC9727F441 [+] file_vtscore : 5 [+] file_vttotal : 65 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 121 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Ghost64.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Ghost\Ghost64.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Ghost64.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Ghost\Ghost64.exe [+] Type : File/Folder [+] file_hash : C7B302ACD16BE56D1490CC0BDD32A175A128B9A35E1F69D208D3AE641050D250 [+] file_vtscore : 10 [+] file_vttotal : 62 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 122 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] HDClone.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\HDClone 6\HDClone.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : HDClone.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\HDClone 6\HDClone.exe [+] Type : File/Folder [+] file_hash : 12FC1AF1D44BAAD9B836E21E4BD4CEA52642C98B8AF7CF4A481143B1AA5374CB [+] file_vtscore : 10 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 123 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] iSwitcher.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\iSwitcher\iSwitcher.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : iSwitcher.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\iSwitcher\iSwitcher.exe [+] Type : File/Folder [+] file_hash : 4A6159564445401C9F21050A4013FC71D2B23C71A7E68D04C4E46C72F6741329 [+] file_vtscore : 6 [+] file_vttotal : 71 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 124 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] KillDisk.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\KillDisk (Certified Wipe)\KillDisk.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : KillDisk.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\KillDisk (Certified Wipe)\KillDisk.exe [+] Type : File/Folder [+] file_hash : 0E3DED81469D2B410D6D8A2709F7F200EF461262F785BC5A83B81EA904C777B9 [+] file_vtscore : 7 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 125 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [PUP.AutoIt.Gen (Potentiellement Malicieux)] PEPassPass_x64.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Lockpick\Portable\x64\PEPassPass_x64.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AutoIt.Gen [+] Name : PEPassPass_x64.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Lockpick\Portable\x64\PEPassPass_x64.exe [+] Type : File/Folder [+] file_hash : 481B483719F02CF6CC0D49979190F01FABF85C9C4B0E8846211A7FB635849213 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 126 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [MalPE.99 (Potentiellement Malicieux)] ReflectBin.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Macrium Reflect\App\Win64\ReflectBin.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : ReflectBin.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Macrium Reflect\App\Win64\ReflectBin.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 127 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.99 (Potentiellement Malicieux)] ReflectBin.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Macrium Reflect Technician 8.0.6392 (x64)\App\Win64\ReflectBin.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : ReflectBin.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Macrium Reflect Technician 8.0.6392 (x64)\App\Win64\ReflectBin.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 128 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] mbar.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Malwarebytes Anti-Rootkit\mbar.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : mbar.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Malwarebytes Anti-Rootkit\mbar.exe [+] Type : File/Folder [+] file_hash : A32988AEC84E51ABDFF0937831B143D7949E07759CAA757F871FDC1517DC6B04 [+] file_vtscore : 10 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 129 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] awatch.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\awatch.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : awatch.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\awatch.exe [+] Type : File/Folder [+] file_hash : 556124FE0767273B2D39BDD33C7E84AF667B250A5172DBB37F6E50D40D872748 [+] file_vtscore : 11 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 130 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 97 [Cloud.Generic (Malicieux)] chromecookiesview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\chromecookiesview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : chromecookiesview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\chromecookiesview.exe [+] Type : File/Folder [+] file_hash : 071E26DDF5323DD9ED6671BCDE89DF73D78BAC2336070E6CB9E3E4B93BDE78D1 [+] file_vtscore : 11 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 131 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] chromepass.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\chromepass.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : chromepass.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\chromepass.exe [+] Type : File/Folder [+] file_hash : AECD31112AE75DD9F95D3AB430D28ACCC18F7776042AC8DEC5FBD7226507B391 [+] file_vtscore : 42 [+] file_vttotal : 71 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 132 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] credentialsfileview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\credentialsfileview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : credentialsfileview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\credentialsfileview.exe [+] Type : File/Folder [+] file_hash : D4E04BCA6DFE865433486B1F80970D971486DFF1B1AE381ADE7A619662CAE894 [+] file_vtscore : 13 [+] file_vttotal : 64 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 133 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 97 [Cloud.Generic (Malicieux)] dialupass.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\dialupass.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : dialupass.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\dialupass.exe [+] Type : File/Folder [+] file_hash : 598555A7E053C7456EE8A06A892309386E69D473C73284DE9BBC0BA73B17E70A [+] file_vtscore : 25 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 134 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [Cloud.Generic (Malicieux)] iehv.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\iehv.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : iehv.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\iehv.exe [+] Type : File/Folder [+] file_hash : D46F1A4AB60E53B13CF3D94DFBBE3147955D7F50E7739F4FA78040A9E704F05A [+] file_vtscore : 8 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 135 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 96 [Cloud.Generic (Malicieux)] iepv.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\iepv.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : iepv.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\iepv.exe [+] Type : File/Folder [+] file_hash : 70AAF2B367B97FA35D599A6DB4D08875206EF18C99D8C8C5B5F25E4F5509931A [+] file_vtscore : 41 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 136 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] lsasecretsdump.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\lsasecretsdump.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : lsasecretsdump.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\lsasecretsdump.exe [+] Type : File/Folder [+] file_hash : 2A871C1837D59951A260B8AD9778BDAAAA8604A605EA5FC378E722F9D7088EA0 [+] file_vtscore : 24 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 137 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 97 [Cloud.Generic (Malicieux)] lsasecretsview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\lsasecretsview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : lsasecretsview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\lsasecretsview.exe [+] Type : File/Folder [+] file_hash : 2A0DE4DFF5EF9E453BB030453B6015831C2C239BBBE9F9B8F672990164EA7861 [+] file_vtscore : 37 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 138 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 97 [Cloud.Generic (Malicieux)] mailpv.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\mailpv.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : mailpv.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\mailpv.exe [+] Type : File/Folder [+] file_hash : 16C6AF4AE2D8CA8E7A3F2051B913FA1CB7E1FBD0110B0736614A1E02BBBBCEAF [+] file_vtscore : 33 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 139 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] netpass.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\netpass.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : netpass.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\netpass.exe [+] Type : File/Folder [+] file_hash : 5DBD8CB93416E90DAFCCAF9518B642DFD10427A0BCE7D7EF98D4DC04ADB1891A [+] file_vtscore : 36 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 140 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] nircmd.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\nircmd.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : nircmd.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\nircmd.exe [+] Type : File/Folder [+] file_hash : B994AE5CBFB5AD308656E9A8BF7A4A866FDEB9E23699F89F048D7F92E6BB8577 [+] file_vtscore : 7 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 141 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 97 [Cloud.Generic (Malicieux)] passwordfox.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\passwordfox.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : passwordfox.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\passwordfox.exe [+] Type : File/Folder [+] file_hash : CE4204F78177DB7259AD34677EF8EC2C7D645C088C82BDB845A0B8E2D04D2594 [+] file_vtscore : 40 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 142 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] passwordscan.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\passwordscan.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : passwordscan.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\passwordscan.exe [+] Type : File/Folder [+] file_hash : 84DB6726FF6A2B83ECDB894A381774E25359B5CC521938DAC98C86A36DEB670E [+] file_vtscore : 23 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 143 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] pcanypass.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\pcanypass.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : pcanypass.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\pcanypass.exe [+] Type : File/Folder [+] file_hash : 0DB918E616456BC10F3F583CEBB27D3FBC5A15B9899BBBA22594D8A2ACC6F9C3 [+] file_vtscore : 33 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 144 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] produkey.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\produkey.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : produkey.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\produkey.exe [+] Type : File/Folder [+] file_hash : 4B4752956B8DE81DDF2E97F67612269B03C9F1CD28C27EBA8C0BFF1E85AEDA73 [+] file_vtscore : 35 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 145 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] pstpassword.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\pstpassword.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : pstpassword.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\pstpassword.exe [+] Type : File/Folder [+] file_hash : 5E85446910E732111CA9AC90F9ED8B1DEE13C3314D2C5117DCF672994CE73BD6 [+] file_vtscore : 40 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 146 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 97 [Cloud.Generic (Malicieux)] routerpassview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\routerpassview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : routerpassview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\routerpassview.exe [+] Type : File/Folder [+] file_hash : 3EE00A42A65D2DF9EE571875A11F53B56C8494E90E1E8E60E128AABDB56399C8 [+] file_vtscore : 39 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 147 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] sniffpass.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\sniffpass.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : sniffpass.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\sniffpass.exe [+] Type : File/Folder [+] file_hash : 1E13FD79AD54FE98E08D9FFCA2C287A470C50C2876608EDCE2FE38E07C245266 [+] file_vtscore : 37 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 148 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] vaultpasswordview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\vaultpasswordview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : vaultpasswordview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\vaultpasswordview.exe [+] Type : File/Folder [+] file_hash : 530F886E4A0DB6DAFD65B2E848C54971ED4F76E48FA5B3435C417662E84C242E [+] file_vtscore : 17 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 149 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 97 [Cloud.Generic (Malicieux)] vncpassview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\vncpassview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : vncpassview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\vncpassview.exe [+] Type : File/Folder [+] file_hash : 816D7616238958DFE0BB811A063EB3102EFD82EFF14408F5CAB4CB5258BFD019 [+] file_vtscore : 33 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 150 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [Cloud.Generic (Malicieux)] webbrowserpassview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\webbrowserpassview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : webbrowserpassview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\webbrowserpassview.exe [+] Type : File/Folder [+] file_hash : C41216EEE9756A1DCC546DF4FE97DEFC05513EED64CE6AC05F1501B50E6F96CC [+] file_vtscore : 44 [+] file_vttotal : 71 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 151 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] wirelesskeyview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\wirelesskeyview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : wirelesskeyview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\wirelesskeyview.exe [+] Type : File/Folder [+] file_hash : 1F1F061024D66D8BCA9373D835B01E7AAB51D973CF4600DBD8935A6D3195BE86 [+] file_vtscore : 31 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 152 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] credentialsfileview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\credentialsfileview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : credentialsfileview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\credentialsfileview.exe [+] Type : File/Folder [+] file_hash : AFBE824DB08A61E5C4C8552FE1E083EE513FE4B6B517AA89BBBC073E21285C15 [+] file_vtscore : 27 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 153 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] lsasecretsview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\lsasecretsview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : lsasecretsview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\lsasecretsview.exe [+] Type : File/Folder [+] file_hash : 7983D178CCE10B018C267A5FBD931AC947D52D55448862CCCFFA1020B1FA3C88 [+] file_vtscore : 26 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 154 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] netpass.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\netpass.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : netpass.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\netpass.exe [+] Type : File/Folder [+] file_hash : ECAA1B0963241F982A21B57866AD3368DED6AACB4F1F55935C93613717B43D4D [+] file_vtscore : 30 [+] file_vttotal : 64 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 155 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] passwordfox.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\passwordfox.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : passwordfox.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\passwordfox.exe [+] Type : File/Folder [+] file_hash : FACA9E856C369B63D6698C74B1D59B062A9A8D9FE84B8F753C299C9961026395 [+] file_vtscore : 27 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 156 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] passwordscan.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\passwordscan.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : passwordscan.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\passwordscan.exe [+] Type : File/Folder [+] file_hash : 32E9052BFCF8EBBE86164EF29E58B293B505C9101D1EE9C3BC04A508A3A9A7FC [+] file_vtscore : 37 [+] file_vttotal : 65 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 157 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] produkey.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\produkey.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : produkey.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\produkey.exe [+] Type : File/Folder [+] file_hash : 1545AE8CD3C42A4BBE200387CAAD812E569FFC468C677C671391E69E7D373580 [+] file_vtscore : 31 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 158 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.95 (Potentiellement Malicieux)] rtmpdumphelper.dll -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\rtmpdumphelper.dll -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.95 [+] Name : rtmpdumphelper.dll [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\rtmpdumphelper.dll [+] Type : File/Folder [+] file_hash : D007A03B365FFF6940FB5B5AEE90487D6AEAF9F981D21EB9012384A6642B4A3E [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 159 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 95 [Cloud.Generic (Malicieux)] sniffpass.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\sniffpass.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : sniffpass.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\sniffpass.exe [+] Type : File/Folder [+] file_hash : C92580318BE4EFFDB37AA67145748826F6A9E285BC2426410DC280E61E3C7620 [+] file_vtscore : 24 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 160 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] wirelesskeyview.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\wirelesskeyview.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : wirelesskeyview.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\NirLauncher\NirSoft\x64\wirelesskeyview.exe [+] Type : File/Folder [+] file_hash : E8C208FB8F488971975C0023256C5A955578A1B5299A45D627A4E2D7F8FB850E [+] file_vtscore : 17 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 161 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [PUP.AutoIt.Gen (Potentiellement Malicieux)] PENetwork.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\PENetwork\PENetwork.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AutoIt.Gen [+] Name : PENetwork.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\PENetwork\PENetwork.exe [+] Type : File/Folder [+] file_hash : 50C0DE125AD41583F45A4B6BB8813F4EC0556C68CB6F93A0D95C4B9CE43FE053 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 162 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [MalPE.99 (Potentiellement Malicieux)] launcher.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Passware Kit Forensic\launcher.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : launcher.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Passware Kit Forensic\launcher.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 163 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] PDF Analysis & Repair.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\PDF Analysis & Repair\PDF Analysis & Repair.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : PDF Analysis & Repair.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\PDF Analysis & Repair\PDF Analysis & Repair.exe [+] Type : File/Folder [+] file_hash : 593FA3E9B978F72F5528DF0B1E2A6C4BE3AF9C11684B82A68DC97600D38C8831 [+] file_vtscore : 19 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 164 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] ProduKey.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Produkey_x64\ProduKey.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : ProduKey.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Produkey_x64\ProduKey.exe [+] Type : File/Folder [+] file_hash : 1545AE8CD3C42A4BBE200387CAAD812E569FFC468C677C671391E69E7D373580 [+] file_vtscore : 31 [+] file_vttotal : 70 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 165 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Everything.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Search Everything\Everything.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Everything.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Search Everything\Everything.exe [+] Type : File/Folder [+] file_hash : 1187D3E4814C8495DF62533D9BCBF1E06169024E1F99A4198EFB358161059DB8 [+] file_vtscore : 10 [+] file_vttotal : 65 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 166 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] siw64.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\SIW64\siw64.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : siw64.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\SIW64\siw64.exe [+] Type : File/Folder [+] file_hash : 4C37C3019F14E4432E16373023E7EB666B1AAD377669D1ED581C8214D21D30E8 [+] file_vtscore : 8 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 167 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] SQLiteDatabaseBrowser.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\SQLiteDatabaseBrowser\SQLiteDatabaseBrowser.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : SQLiteDatabaseBrowser.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\SQLiteDatabaseBrowser\SQLiteDatabaseBrowser.exe [+] Type : File/Folder [+] file_hash : E3AAED46D3DB5D8E6AA22E62F53F7E746BA49AEBA376419317A8D7062C2CCA0E [+] file_vtscore : 7 [+] file_vttotal : 65 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 168 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] StellarPhoenixWindowsDataRecovery.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Stellar Phoenix\StellarPhoenixWindowsDataRecovery.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : StellarPhoenixWindowsDataRecovery.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\Stellar Phoenix\StellarPhoenixWindowsDataRecovery.exe [+] Type : File/Folder [+] file_hash : D2E9FC432D1104AD3D38AE4E546C11374DE7C7BED028C77A2544674E90712543 [+] file_vtscore : 7 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 169 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] TreeSize.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\TreeSize Pro\TreeSize.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : TreeSize.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\TreeSize Pro\TreeSize.exe [+] Type : File/Folder [+] file_hash : 8011D9C1F0E1B108205DC998ED45C01DEC33231F40E7CEC28DE5CE3B83D9AB60 [+] file_vtscore : 8 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 170 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] ufsxpci.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\UFSExplorer\ufsxpci.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : ufsxpci.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\UFSExplorer\ufsxpci.exe [+] Type : File/Folder [+] file_hash : DDF3082070F3BE8D3FD0EF6E7D849F11D3991C8E57AE0871B2D29BBF13038EDB [+] file_vtscore : 6 [+] file_vttotal : 62 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 171 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] vlc.exe -- %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\VideoLAN\vlc.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : vlc.exe [+] value : %USERPROFILE%\Documents\MediCat USB v21.12\MediCat.USB.v21.12\Programs\VideoLAN\vlc.exe [+] Type : File/Folder [+] file_hash : 48CD505A5E491F93F26DB68D3FDE2D0A29C296D9364DA0F9188DC28589CF8B63 [+] file_vtscore : 5 [+] file_vttotal : 61 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 172 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] AMD GPU Restarter.exe -- %USERPROFILE%\Documents\soft\-Tools-\DRV-soft\AMD GPU Restarter.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : AMD GPU Restarter.exe [+] value : %USERPROFILE%\Documents\soft\-Tools-\DRV-soft\AMD GPU Restarter.exe [+] Type : File/Folder [+] file_hash : 98E5DBFDC8FBF6731EF3AF6131083B001766268A4E52DE1F6BC2B7AB06BF1DA0 [+] file_vtscore : 8 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 173 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] Bluetooth Installer.exe -- %USERPROFILE%\Documents\soft\-Tools-\DRV-soft\Bluetooth Installer.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : Bluetooth Installer.exe [+] value : %USERPROFILE%\Documents\soft\-Tools-\DRV-soft\Bluetooth Installer.exe [+] Type : File/Folder [+] file_hash : 05C20A73DA76F70C53F10E6544D505F6B3530538277010CDF4F25407EBDEFCD9 [+] file_vtscore : 7 [+] file_vttotal : 68 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 174 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.99 (Potentiellement Malicieux)] FoxitReader.exe -- %USERPROFILE%\Documents\soft\FoxitReader.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : FoxitReader.exe [+] value : %USERPROFILE%\Documents\soft\FoxitReader.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 175 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] majorgeeks_software_updates_and_news_setup(1).exe -- %USERPROFILE%\Downloads\majorgeeks_software_updates_and_news_setup(1).exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : majorgeeks_software_updates_and_news_setup(1).exe [+] value : %USERPROFILE%\Downloads\majorgeeks_software_updates_and_news_setup(1).exe [+] Type : File/Folder [+] file_hash : FDC8356B3C15CBDEF323AF8FEFA588EE95E7B8370D44A1BC75BDD7661420F595 [+] file_vtscore : 7 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 176 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 95 [Cloud.Generic (Malicieux)] majorgeeks_software_updates_and_news_setup.exe -- %USERPROFILE%\Downloads\majorgeeks_software_updates_and_news_setup.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : majorgeeks_software_updates_and_news_setup.exe [+] value : %USERPROFILE%\Downloads\majorgeeks_software_updates_and_news_setup.exe [+] Type : File/Folder [+] file_hash : FDC8356B3C15CBDEF323AF8FEFA588EE95E7B8370D44A1BC75BDD7661420F595 [+] file_vtscore : 7 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 177 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 95 [Cloud.Generic (Malicieux)] pc-speed-maximizer-2.1.exe -- %USERPROFILE%\Downloads\pc-speed-maximizer-2.1.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : pc-speed-maximizer-2.1.exe [+] value : %USERPROFILE%\Downloads\pc-speed-maximizer-2.1.exe [+] Type : File/Folder [+] file_hash : 3BD2A86E3D9379E12AC57027D5F99810521FC3869AF506EB6D59315197037BA2 [+] file_vtscore : 6 [+] file_vttotal : 72 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 178 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] sih.4.0.1.0.exe -- %USERPROFILE%\Downloads\sih.4.0.1.0.exe -> Trouvé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : sih.4.0.1.0.exe [+] value : %USERPROFILE%\Downloads\sih.4.0.1.0.exe [+] Type : File/Folder [+] file_hash : BF4B4B35ADEF09FAA893D569109D01A60EDAA56677EC61E4F98A3EA8656FCC35 [+] file_vtscore : 26 [+] file_vttotal : 71 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 179 [+] status : 1 [+] status_str : Trouvé(e) [+] removed : No [+] status_choice : 2 [+] malpe_score : 99 [MalPE.99 (Potentiellement Malicieux)] bd205ff02fd2e38dfc2d26e4b3ea239b -- %USERPROFILE%\fruits mûrs Dropbox\.dropbox.cache\new_files\bd205ff02fd2e38dfc2d26e4b3ea239b -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : bd205ff02fd2e38dfc2d26e4b3ea239b [+] value : %USERPROFILE%\fruits mûrs Dropbox\.dropbox.cache\new_files\bd205ff02fd2e38dfc2d26e4b3ea239b [+] Type : File/Folder [+] file_hash : 6516E8D4F3085D78659B3E9321C7270F0216753632DF117EF096CC5D53120AA4 [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 180 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.98 (Potentiellement Malicieux)] EaseUS Todo PCTrans.exe -- D:\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.98 [+] Name : EaseUS Todo PCTrans.exe [+] value : D:\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 181 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [PUP.Solvusoft (Potentiellement Malicieux)] sqlite3.dll [Solvusoft Corporation] -- E:\Program Files\DriverDoc\sqlite3.dll -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.Solvusoft [+] Name : sqlite3.dll [Solvusoft Corporation] [+] value : E:\Program Files\DriverDoc\sqlite3.dll [+] Type : File/Folder [+] file_hash : D3DD110C4D330332A37F06268013E4595705981BC74E577F946485416651B83B [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 182 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Solvusoft (Potentiellement Malicieux)] 7z.dll [Solvusoft Corporation] -- E:\Program Files\DriverDoc\7z.dll -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.Solvusoft [+] Name : 7z.dll [Solvusoft Corporation] [+] value : E:\Program Files\DriverDoc\7z.dll [+] Type : File/Folder [+] file_hash : AECADB80AC6E9BFDF585933D5BF3741A130206DF61324CCCBF613A31101A3D54 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 183 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [MalPE.99 (Potentiellement Malicieux)] Power2Go_12.0.0516.0_Platinum.exe -- G:\photodirector 10&11, power2go 12&13 & youcam 8 golden\ads by youcam 8, power2go 12&13 & photodir. 10&11 gold (ucheck, uefm, etc...)\Power2Go.12.0.0516.Platinum\Power2Go_12.0.0516.0_Platinum.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : Power2Go_12.0.0516.0_Platinum.exe [+] value : G:\photodirector 10&11, power2go 12&13 & youcam 8 golden\ads by youcam 8, power2go 12&13 & photodir. 10&11 gold (ucheck, uefm, etc...)\Power2Go.12.0.0516.Platinum\Power2Go_12.0.0516.0_Platinum.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 184 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.99 (Potentiellement Malicieux)] macOS UX Pack 5.0.exe -- K:\intermar'shit de l'art du moine anti-bug framo mac ux themepack\macOS UX Pack 5.0\macOS UX Pack 5.0.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : macOS UX Pack 5.0.exe [+] value : K:\intermar'shit de l'art du moine anti-bug framo mac ux themepack\macOS UX Pack 5.0\macOS UX Pack 5.0.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 185 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [PUP.AutoIt.Gen (Potentiellement Malicieux)] FK_Casper.exe -- K:\Apps\FramakeyToolboxPortable\App\Framakey_Toolbox\tools\FK_Casper\FK_Casper.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AutoIt.Gen [+] Name : FK_Casper.exe [+] value : K:\Apps\FramakeyToolboxPortable\App\Framakey_Toolbox\tools\FK_Casper\FK_Casper.exe [+] Type : File/Folder [+] file_hash : 88941330BD8D918564693B6384AD00948777ABA91B5F7C1932013792FC73190A [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 186 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AutoIt.Gen (Potentiellement Malicieux)] FK_CheckRoot.exe -- K:\Apps\FramakeyToolboxPortable\App\Framakey_Toolbox\tools\FK_CheckRoot\FK_CheckRoot.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AutoIt.Gen [+] Name : FK_CheckRoot.exe [+] value : K:\Apps\FramakeyToolboxPortable\App\Framakey_Toolbox\tools\FK_CheckRoot\FK_CheckRoot.exe [+] Type : File/Folder [+] file_hash : 2B8BA82252BF992059366C8E30805AA7F8AE0F531984FB99DDC3552931262D9C [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 187 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AutoIt.Gen (Potentiellement Malicieux)] framakey_toolbox.exe -- K:\Apps\FramakeyToolboxPortable\App\Framakey_Toolbox\framakey_toolbox.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AutoIt.Gen [+] Name : framakey_toolbox.exe [+] value : K:\Apps\FramakeyToolboxPortable\App\Framakey_Toolbox\framakey_toolbox.exe [+] Type : File/Folder [+] file_hash : 11CA928A4149ADB9AA38616901E5335F947682CC1425AD9F49613460E1B3F866 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 188 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] ememi.dll -- K:\Apps\OpenOfficePortable\App\openoffice\program\ememi.dll -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : ememi.dll [+] value : K:\Apps\OpenOfficePortable\App\openoffice\program\ememi.dll [+] Type : File/Folder [+] file_hash : 81EA41B1D41F555DBC2D74596CC83E9E3ACF81357DF362CF14E2F1BB47F4FB05 [+] file_vtscore : 6 [+] file_vttotal : 64 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 189 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 100 [Cloud.Generic (Malicieux)] fop.dll -- K:\Apps\OpenOfficePortable\App\openoffice\program\fop.dll -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : fop.dll [+] value : K:\Apps\OpenOfficePortable\App\openoffice\program\fop.dll [+] Type : File/Folder [+] file_hash : 76AB07377459CDBB10C938EAAB0CA75BAB06CB4810E1D5E71E2AD7AEC856A233 [+] file_vtscore : 7 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 190 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] sfxmi.dll -- K:\Apps\OpenOfficePortable\App\openoffice\program\sfxmi.dll -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : sfxmi.dll [+] value : K:\Apps\OpenOfficePortable\App\openoffice\program\sfxmi.dll [+] Type : File/Folder [+] file_hash : FD0DAD744B543BBEBB4D05539DE7EBCD1D9A0D1534E9FE74FCE6F3B64EA7CDDD [+] file_vtscore : 12 [+] file_vttotal : 66 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 191 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [PUP.AutoIt.Gen (Potentiellement Malicieux)] ejectFramakey.exe -- K:\Framakey\ejectusb\ejectFramakey.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : PUP.AutoIt.Gen [+] Name : ejectFramakey.exe [+] value : K:\Framakey\ejectusb\ejectFramakey.exe [+] Type : File/Folder [+] file_hash : 94A096B71D212CB29019293EFF2335E80AB8E833EC0E9E4310B878F9CBFE08FC [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 192 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Cloud.Generic (Malicieux)] UsbFix.exe -- Q:\Program Files (x86)\UsbFix\UsbFix.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : UsbFix.exe [+] value : Q:\Program Files (x86)\UsbFix\UsbFix.exe [+] Type : File/Folder [+] file_hash : C01C238A37780AE7536623EE46F0CB9F8B3AF1FF4A1496DBEE76BC2DA5664411 [+] file_vtscore : 10 [+] file_vttotal : 69 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 193 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [Cloud.Generic (Malicieux)] UsbFixUtils.exe -- Q:\Program Files (x86)\UsbFix\Modules\UsbFixUtils.exe -> Supprimé(e) au redémarrage [5] [+] scan_what : 1 [+] vendors : Cloud.Generic [+] Name : UsbFixUtils.exe [+] value : Q:\Program Files (x86)\UsbFix\Modules\UsbFixUtils.exe [+] Type : File/Folder [+] file_hash : 380FB5AE7BD534703C03B4254724F3E46BE9DADC7434FD35A39FDF112E35A7DD [+] file_vtscore : 5 [+] file_vttotal : 67 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 194 [+] status : 5 [+] status_str : Supprimé(e) au redémarrage [5] [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [MalPE.98 (Potentiellement Malicieux)] EaseUS Todo PCTrans.exe -- Q:\Downloads\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.98 [+] Name : EaseUS Todo PCTrans.exe [+] value : Q:\Downloads\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 195 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [MalPE.99 (Potentiellement Malicieux)] OneDriveSetup.exe -- Q:\Users\pc\AppData\Local\Microsoft\OneDrive\22.022.0130.0001\OneDriveSetup.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.99 [+] Name : OneDriveSetup.exe [+] value : Q:\Users\pc\AppData\Local\Microsoft\OneDrive\22.022.0130.0001\OneDriveSetup.exe [+] Type : File/Folder [+] file_hash : 2A040EEA07EA124BE508F718E6E7511B9EF76233CA5FD74D6E0677873FEACE98 [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 196 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 99 [MalPE.100 (Potentiellement Malicieux)] rivpmnqhoojktmgolnssiumhjrkrtkqvvtkhliit.Tls -- Q:\Users\pc\AppData\Roaming\Thinstall\EaseUS Todo PCTrans\SKEL\rivpmnqhoojktmgolnssiumhjrkrtkqvvtkhliit.Tls -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.100 [+] Name : rivpmnqhoojktmgolnssiumhjrkrtkqvvtkhliit.Tls [+] value : Q:\Users\pc\AppData\Roaming\Thinstall\EaseUS Todo PCTrans\SKEL\rivpmnqhoojktmgolnssiumhjrkrtkqvvtkhliit.Tls [+] Type : File/Folder [+] file_hash : CD09435620646F9C8C436744B18A64A12AB3CA053705DF587BF8D8B86C29D14C [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 197 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 100 [MalPE.98 (Potentiellement Malicieux)] EaseUS Todo PCTrans.exe -- Q:\Users\pc\Downloads\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe -> Supprimé(e) [+] scan_what : 1 [+] vendors : MalPE.98 [+] Name : EaseUS Todo PCTrans.exe [+] value : Q:\Users\pc\Downloads\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.KaranPC\EaseUS Todo PCTrans.exe [+] Type : File/Folder [+] file_vtscore : -1 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 198 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 98 [PUM.SearchEngine (Potentiellement Malicieux)] browser.search.defaultenginename -- My Bing Search -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUM.SearchEngine [+] Name : browser.search.defaultenginename [+] value : My Bing Search [+] Type : Browser [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 4 [+] id : 199 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUM.SearchEngine (Potentiellement Malicieux)] browser.search.selectedEngine -- My Bing Search -> Supprimé(e) [+] scan_what : 2 [+] vendors : PUM.SearchEngine [+] Name : browser.search.selectedEngine [+] value : My Bing Search [+] Type : Browser [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 4 [+] id : 200 [+] status : 3 [+] status_str : Supprimé(e) [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0