Malwarebytes
www.malwarebytes.com

-Détails du journal-
Date de l'analyse: 09/02/2023
Durée d'analyse: 21:47
Fichier journal: ff1f2406-a8ba-11ed-bdf7-b46bfc52e3f5.json

-Informations du logiciel-
Version: 4.5.21.231
Version de composants: 1.0.1890
Version de pack de mise à jour: 1.0.65498
Licence: Essai

-Informations système-
Système d'exploitation: Windows 10 (Build 19044.2486)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: MSI\Tom

-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 354989
Menaces détectées: 39
Menaces mises en quarantaine: 39
Temps écoulé: 2 min, 29 s

-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection

-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)

Module: 0
(Aucun élément malveillant détecté)

Clé du registre: 7
PUP.Optional.RestMinder, HKU\S-1-5-21-3148389124-2029320141-3952667940-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{F481E04A-B87F-46D3-8FC5-A3440DE071C9}_IS1, En quarantaine, 1959, 1070717, 1.0.65498, , ame, , , 
PUP.Optional.Avanquest, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\PC HelpSoft Driver Updater notifications, En quarantaine, 1099, 904412, , , , , , 
PUP.Optional.Avanquest, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{60347786-C365-4B8F-8368-0CF35331AA97}, En quarantaine, 1099, 904412, , , , , , 
PUP.Optional.Avanquest, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{60347786-C365-4B8F-8368-0CF35331AA97}, En quarantaine, 1099, 904412, , , , , , 
PUP.Optional.Avanquest, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\PC HelpSoft Driver Updater automatic scan and new device notifications, En quarantaine, 1099, 904416, , , , , , 
PUP.Optional.Avanquest, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{8D6208D3-0568-43F9-9AC3-06053551AC14}, En quarantaine, 1099, 904416, , , , , , 
PUP.Optional.Avanquest, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{8D6208D3-0568-43F9-9AC3-06053551AC14}, En quarantaine, 1099, 904416, , , , , , 

Valeur du registre: 2
PUP.Optional.RestMinder, HKU\S-1-5-21-3148389124-2029320141-3952667940-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{F481E04A-B87F-46D3-8FC5-A3440DE071C9}_IS1|DISPLAYNAME, En quarantaine, 1959, 1070717, 1.0.65498, , ame, , , 
PUP.Optional.MindSpark.Generic, HKU\S-1-5-21-3148389124-2029320141-3952667940-1001\SOFTWARE\MICROSOFT\EDGE\PREFERENCEMACS\Default\extensions.settings|chnacmlpiecdhgkdgeoipkmdbekengck, En quarantaine, 1743, 867816, , , , , , 

Données du registre: 0
(Aucun élément malveillant détecté)

Flux de données: 0
(Aucun élément malveillant détecté)

Dossier: 7
PUP.Optional.Avanquest, C:\PROGRAM FILES (X86)\PC HELPSOFT DRIVER UPDATER, En quarantaine, 1099, 904412, 1.0.65498, , ame, , , 
PUP.Optional.Avanquest, C:\USERS\TOM\APPDATA\ROAMING\PC HELPSOFT DRIVER UPDATER, En quarantaine, 1099, 904413, 1.0.65498, , ame, , , 
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\countly, En quarantaine, 1959, 1070719, , , , , , 
PUP.Optional.MindSpark.Generic, C:\USERS\TOM\APPDATA\LOCAL\MICROSOFT\EDGE\USER DATA\Default\Local Extension Settings\chnacmlpiecdhgkdgeoipkmdbekengck, En quarantaine, 1743, 867816, , , , , , 
PUP.Optional.MindSpark.Generic, C:\USERS\TOM\APPDATA\LOCAL\MICROSOFT\EDGE\USER DATA\DEFAULT\EXTENSIONS\CHNACMLPIECDHGKDGEOIPKMDBEKENGCK, En quarantaine, 1743, 867816, 1.0.65498, , ame, , , 
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Gh\RestMinder.exe_Url_calssgjy0edhiuedkpztlb5o3x5t1hvi\1.0.0.1, En quarantaine, 1959, 1070720, , , , , , 
PUP.Optional.RestMinder, C:\USERS\TOM\APPDATA\LOCAL\Gh\RestMinder.exe_Url_calssgjy0edhiuedkpztlb5o3x5t1hvi, En quarantaine, 1959, 1070720, 1.0.65498, , ame, , , 

Fichier: 23
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\countly\device.xml, En quarantaine, 1959, 1070719, , , , , 71941E396DD625A1C74A3866CA240307, 6DBC799A51A58E22BD26D63354782541A48C8A0343142A6862DEB7EC28E77BAF
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\countly\sessions.xml, En quarantaine, 1959, 1070719, , , , , F0188DFFCEFBD29B1A5754029C11B8D0, C561501C663CD44AD76F0344606C6B4EA1B23C6579FCE1B55B5C455FB5E6055B
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\AsyncBridge.Net35.dll, En quarantaine, 1959, 1070719, , , , , 35CBDBE6987B9951D3467DDA2F318F3C, E4915F18FD6713EE84F27A06ED1F6F555CDBEBE1522792CF4B4961664550CF83
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\Countly.dll, En quarantaine, 1959, 1070719, , , , , BF6A0F5D2D5F54CEB5B899A2172A335B, 32EF07A1A2954A40436D625814D0CE0E04F4A45E711BEEBC7E159D4C1B2556B6
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\Newtonsoft.Json.dll, En quarantaine, 1959, 1070719, , , , , 83222120C8095B8623FE827FB70FAF6B, EFF79DE319CA8941A2E62FB573230D82B79B80958E5A26AB1A4E87193EB13503
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\RestMinder.exe.config, En quarantaine, 1959, 1070719, , , , , 3D9474D95A19AD9E895BE40252AE473F, 69436286646B8A6C2EEC8F12156A9DB80E076F7132E6A07BF044D19C3FD0084A
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\sdk.dll, En quarantaine, 1959, 1070719, , , , , 40636153B3B05532B02DCF6E245EC12B, E58CF9D6A9E36E04F77520AE5F36A89D4E3591E2177DD4241546BF1C2C52B2E8
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\SharpRaven.dll, En quarantaine, 1959, 1070719, , , , , C1A31AB7394444FD8AA2E8FE3C7C5094, 64B7231EDA298844697D38DD3539BD97FE995D88AE0C5E0C09D63A908F7336C4
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\unins000.dat, En quarantaine, 1959, 1070719, , , , , F64A1D4DABBB9A614AA2E1D008345A19, 364802547F27BFD6D0D29396539E29471085C79A0EA84096C2B3DD14CE1A85DF
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\unins000.exe, En quarantaine, 1959, 1070719, , , , , 35EE72B230EE175348887B22F83F6BDC, DB96C5FC71163EB51538187C950A1E04CB63C805D5BD2C6FE732324B71365665
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Programs\RestMinder\unins000.msg, En quarantaine, 1959, 1070719, , , , , 1A563442BC5C5DCC305ECB027448B3DD, A2B26E41BE7F119B4915B2ED86C3A95F601DC1DF815775861CE2F355F8A0BF87
PUP.Optional.MindSpark.Generic, C:\USERS\TOM\APPDATA\LOCAL\MICROSOFT\EDGE\USER DATA\Default\Preferences, Remplacé, 1743, 867816, , , , , 8CCDE64246C7B2A4B57E28BE5C85982E, 29949D42356CB47775241216F659749B4A89614F39874EB208AAAD74AFEA8B1C
PUP.Optional.MindSpark.Generic, C:\Users\Tom\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\chnacmlpiecdhgkdgeoipkmdbekengck\000003.log, En quarantaine, 1743, 867816, , , , , A2BF26D15F47492290B6A55CCBA5101A, 1683D2B294A4FDA8671D216A995C68BFED354A5885975A2B18F91B1508809269
PUP.Optional.MindSpark.Generic, C:\Users\Tom\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\chnacmlpiecdhgkdgeoipkmdbekengck\CURRENT, En quarantaine, 1743, 867816, , , , , 46295CAC801E5D4857D09837238A6394, 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
PUP.Optional.MindSpark.Generic, C:\Users\Tom\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\chnacmlpiecdhgkdgeoipkmdbekengck\LOCK, En quarantaine, 1743, 867816, , , , , , 
PUP.Optional.MindSpark.Generic, C:\Users\Tom\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\chnacmlpiecdhgkdgeoipkmdbekengck\LOG, En quarantaine, 1743, 867816, , , , , DC0A415DD8322684B30C65F7F66D6712, 5483F949DF91E96860451DB89A73E65749DC9037AE352C30A5E33614F8ED6A7D
PUP.Optional.MindSpark.Generic, C:\Users\Tom\AppData\Local\Microsoft\Edge\User Data\Default\Local Extension Settings\chnacmlpiecdhgkdgeoipkmdbekengck\MANIFEST-000001, En quarantaine, 1743, 867816, , , , , 5AF87DFD673BA2115E2FCF5CFDB727AB, F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
PUP.Optional.MindSpark.Generic, C:\USERS\TOM\APPDATA\LOCAL\MICROSOFT\EDGE\USER DATA\DEFAULT\EXTENSIONS\CHNACMLPIECDHGKDGEOIPKMDBEKENGCK\13.945.18.34048_0\MANIFEST.JSON, En quarantaine, 1743, 867816, 1.0.65498, , ame, , 3231BC1118A6B243C66030A2FDCDB114, 632738992AC4140881EAE78469DDB1A173FC51A14210B3E7FEA1509FDC74109E
PUP.Optional.RestMinder, C:\Users\Tom\AppData\Local\Gh\RestMinder.exe_Url_calssgjy0edhiuedkpztlb5o3x5t1hvi\1.0.0.1\user.config, En quarantaine, 1959, 1070720, , , , , 4289D301FB845C8CA46594C414552191, 0592B518B0E2DD9188D85744762627B70DD4861AB178824F24F790D3BA32D960
PUP.Optional.Avanquest, C:\WINDOWS\SYSTEM32\TASKS\PC HelpSoft Driver Updater notifications, En quarantaine, 1099, 904412, , , , , A0575165E11EEEA28054AEE888462CFC, 855378244705A58FCDC67266B4A9BE6613A38C22C7F496BCD5AC67381769B3C2
PUP.Optional.Avanquest, C:\PROGRAM FILES (X86)\PC HELPSOFT DRIVER UPDATER\EXTRA\HDMSCHEDULE.EXE, En quarantaine, 1099, 904412, 1.0.65498, , ame, , 8C6583EE79FB2A8A36335F9B9E8D56B2, 9BF37729CA93066F1DD15310801DAEC8E034D4B57072D6AFD3F840FF3C00C56E
PUP.Optional.Avanquest, C:\WINDOWS\SYSTEM32\TASKS\PC HelpSoft Driver Updater automatic scan and new device notifications, En quarantaine, 1099, 904416, , , , , F83EBD74B4886A42197F1519D0B1C11F, 1C661F8B4DAC0DC25BED2EEF75465592EAC18F7740AA445C5BF6ECCBA9AA6BAD
PUP.Optional.Avanquest, C:\PROGRAM FILES (X86)\PC HELPSOFT DRIVER UPDATER\HDMTRAY.EXE, En quarantaine, 1099, 904416, 1.0.65498, , ame, , 4A42304358A2C0C5B7E54193D231A937, 7273F1BEE683890C832CC9B3CCB35DA1F9337F5E376B403C76AB0028D3644B34

Secteur physique: 0
(Aucun élément malveillant détecté)

WMI: 0
(Aucun élément malveillant détecté)


(end)