Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 13/06/2018
Heure de l'analyse: 20:26
Fichier journal: 528225a2-6f37-11e8-9713-309c231dea3f.json
Administrateur: Oui
-Informations du logiciel-
Version: 3.5.1.2522
Version de composants: 1.0.374
Version de pack de mise à jour: 1.0.5468
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 10 (Build 17134.112)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: DESKTOP-2U1TP2M\cora
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 308219
Menaces détectées: 136
Menaces mises en quarantaine: 136
Temps écoulé: 3 min, 18 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 1
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MICROSOFT WEBSITES\MSIEXEC64.EXE, En quarantaine, [918], [467508],1.0.5468
Module: 1
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MICROSOFT WEBSITES\MSIEXEC64.EXE, En quarantaine, [918], [467508],1.0.5468
Clé du registre: 16
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En quarantaine, [220], [236865],1.0.5468
PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En quarantaine, [220], [236865],1.0.5468
PUP.Optional.Conduit, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, En quarantaine, [220], [236865],1.0.5468
PUP.Optional.SearchManager, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\NAHHMPBCKPGDIDFNMFKFGIFLPJIJILCE, En quarantaine, [242], [440037],1.0.5468
PUP.Optional.SearchManager, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\NAHHMPBCKPGDIDFNMFKFGIFLPJIJILCE, En quarantaine, [242], [440037],1.0.5468
PUP.Optional.SearchManager, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\nahhmpbckpgdidfnmfkfgiflpjijilce, En quarantaine, [242], [440037],1.0.5468
Trojan.CoreBot, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\btlr, En quarantaine, [4517], [515824],1.0.5468
Trojan.CoreBot, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\butldsk, En quarantaine, [4517], [515825],1.0.5468
PUP.Optional.DefaultSearch, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\nladljmabboanhihfkjacnnkgjhnokhj, En quarantaine, [269], [475454],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\{2E18B91A-B963-31FE-8F1D-2AF2FA77971C}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{417A91A9-4A00-44EB-918E-CB491A5513B6}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{417A91A9-4A00-44EB-918E-CB491A5513B6}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\{F0FB7EB6-8E96-AFCD-E30F-D9DA1C6C5708}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C3A783B4-685F-49CC-BC5D-D5C77AD8FB99}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{C3A783B4-685F-49CC-BC5D-D5C77AD8FB99}, En quarantaine, [400], [511696],1.0.5468
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, Supprimer au redémarrage, [444], [-1],0.0.0
Valeur du registre: 7
PUP.Optional.Conduit, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, En quarantaine, [220], [236865],1.0.5468
Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Données du registre: 0
(Aucun élément malveillant détecté)
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 19
PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE, En quarantaine, [4566], [443706],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\js, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\USERS\CORA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\zryd11hp.default\EXTENSIONS\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\de, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\en, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\es, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\fr, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_metadata, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\NLADLJMABBOANHIHFKJACNNKGJHNOKHJ, En quarantaine, [269], [475454],1.0.5468
Fichier: 92
Adware.Zdengo, C:\WINDOWS\System32\drivers\12df50cb858bf7f1f2c2010dc4c99360.sys, En quarantaine, [7916], [529376],0.0.0
PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE\CONF.DB, En quarantaine, [4566], [443706],1.0.5468
PUP.Optional.SearchManager, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Remplacé, [242], [440037],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-128.png, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-18.png, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-48.png, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-64.png, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\js\background.js, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\manifest.mf, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\mozilla.rsa, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\mozilla.sf, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\bg.jpg, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\index.html, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\main.js, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\manifest.json, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\style.css, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.DefaultSearch, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Remplacé, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Preferences, Remplacé, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\NLADLJMABBOANHIHFKJACNNKGJHNOKHJ\1.3.7.6_0\MANIFEST.JSON, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.eot, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.svg, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.woff, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-book.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-bookitalic.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-light.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-lightitalic.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-medium.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-mediumitalic.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-semibold.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-semibolditalic.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\fontawesome-webfont.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\segoeui.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\auto-complete.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\flexbox.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\new-tab.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\normalize.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\roboto.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons\icon19.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons\icon38.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\adaware_secure_search.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dot.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dot_color.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dropdown_arrow.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\icon_128.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\icon_16.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\magnifier_icon.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\settings_icon.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib\auto-complete.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib\publicsuffixlist.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\adaware-telemetry.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\adaware-utils.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\background.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\i18n.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\messaging.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\new-tab.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\pagestore.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\polyfill.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\start.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\storage.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\tab.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\traffic.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\uritools.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-background.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-client.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-common.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\de\messages.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\en\messages.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\es\messages.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\fr\messages.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_metadata\verified_contents.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\background.html, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\LICENSE.txt, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\new-tab.html, En quarantaine, [269], [475454],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MICROSOFT WEBSITES\MSIEXEC64.EXE, En quarantaine, [918], [467508],1.0.5468
Adware.FileTour, C:\WINDOWS\SYSTEM32\TASKS\{2E18B91A-B963-31FE-8F1D-2AF2FA77971C}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, C:\WINDOWS\SYSTEM32\TASKS\{F0FB7EB6-8E96-AFCD-E30F-D9DA1C6C5708}, En quarantaine, [400], [511696],1.0.5468
Trojan.CoreBot, C:\USERS\CORA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\BUT-SETUP-9.EXE, En quarantaine, [4517], [517234],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\CAMSTUDIO 2.7\000001N.ZIP, En quarantaine, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\ESET-NOD32\000001N.ZIP, En quarantaine, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MICROSOFT WEBSITES\000001N.ZIP, En quarantaine, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\CONNECTION WIZARD\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MINIPORT DRIVER\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MSN GAMING ZONE\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
Adware.Wajam, C:\WINDOWS\YKOMXAWJVCFNJXGA.YKRMX, Supprimer au redémarrage, [444], [521920],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\CAMSTUDIO 2.7\MSIEXEC64.EXE, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\SPEECHENGINES\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\HELPCTR\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\THUNDERBIRDPORTABLE\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\SPEECHENGINES\MSIEXEC64.EXE, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\WINSXS\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
Adware.Zdengo.Generic, C:\WINDOWS\55C2DEDE19F1007EFD0A4C9C94AA0DFD.EXE, Supprimer au redémarrage, [10813], [487934],1.0.5468
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.com
-Détails du journal-
Date de l'analyse: 13/06/2018
Heure de l'analyse: 20:26
Fichier journal: 528225a2-6f37-11e8-9713-309c231dea3f.json
Administrateur: Oui
-Informations du logiciel-
Version: 3.5.1.2522
Version de composants: 1.0.374
Version de pack de mise à jour: 1.0.5468
Licence: Gratuit
-Informations système-
Système d'exploitation: Windows 10 (Build 17134.112)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: DESKTOP-2U1TP2M\cora
-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 308219
Menaces détectées: 136
Menaces mises en quarantaine: 136
Temps écoulé: 3 min, 18 s
-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Détection
PUM: Détection
-Détails de l'analyse-
Processus: 1
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MICROSOFT WEBSITES\MSIEXEC64.EXE, En quarantaine, [918], [467508],1.0.5468
Module: 1
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MICROSOFT WEBSITES\MSIEXEC64.EXE, En quarantaine, [918], [467508],1.0.5468
Clé du registre: 16
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En quarantaine, [220], [236865],1.0.5468
PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En quarantaine, [220], [236865],1.0.5468
PUP.Optional.Conduit, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, En quarantaine, [220], [236865],1.0.5468
PUP.Optional.SearchManager, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\NAHHMPBCKPGDIDFNMFKFGIFLPJIJILCE, En quarantaine, [242], [440037],1.0.5468
PUP.Optional.SearchManager, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\NAHHMPBCKPGDIDFNMFKFGIFLPJIJILCE, En quarantaine, [242], [440037],1.0.5468
PUP.Optional.SearchManager, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\nahhmpbckpgdidfnmfkfgiflpjijilce, En quarantaine, [242], [440037],1.0.5468
Trojan.CoreBot, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\btlr, En quarantaine, [4517], [515824],1.0.5468
Trojan.CoreBot, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\butldsk, En quarantaine, [4517], [515825],1.0.5468
PUP.Optional.DefaultSearch, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\nladljmabboanhihfkjacnnkgjhnokhj, En quarantaine, [269], [475454],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\{2E18B91A-B963-31FE-8F1D-2AF2FA77971C}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{417A91A9-4A00-44EB-918E-CB491A5513B6}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{417A91A9-4A00-44EB-918E-CB491A5513B6}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\{F0FB7EB6-8E96-AFCD-E30F-D9DA1C6C5708}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C3A783B4-685F-49CC-BC5D-D5C77AD8FB99}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{C3A783B4-685F-49CC-BC5D-D5C77AD8FB99}, En quarantaine, [400], [511696],1.0.5468
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, Supprimer au redémarrage, [444], [-1],0.0.0
Valeur du registre: 7
PUP.Optional.Conduit, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, En quarantaine, [220], [236865],1.0.5468
Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-1133026859-3786083032-2722230936-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, Supprimer au redémarrage, [444], [-1],0.0.0
Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, Supprimer au redémarrage, [444], [-1],0.0.0
Données du registre: 0
(Aucun élément malveillant détecté)
Flux de données: 0
(Aucun élément malveillant détecté)
Dossier: 19
PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE, En quarantaine, [4566], [443706],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\js, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\USERS\CORA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\zryd11hp.default\EXTENSIONS\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\de, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\en, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\es, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\fr, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_metadata, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\NLADLJMABBOANHIHFKJACNNKGJHNOKHJ, En quarantaine, [269], [475454],1.0.5468
Fichier: 92
Adware.Zdengo, C:\WINDOWS\System32\drivers\12df50cb858bf7f1f2c2010dc4c99360.sys, En quarantaine, [7916], [529376],0.0.0
PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE\CONF.DB, En quarantaine, [4566], [443706],1.0.5468
PUP.Optional.SearchManager, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Remplacé, [242], [440037],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-128.png, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-18.png, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-48.png, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\images\icon-64.png, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\js\background.js, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\manifest.mf, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\mozilla.rsa, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\META-INF\mozilla.sf, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\bg.jpg, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\index.html, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\main.js, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\manifest.json, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.SuperFind, C:\Users\cora\AppData\Roaming\Mozilla\Firefox\Profiles\zryd11hp.default\extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233\style.css, En quarantaine, [1157], [450133],1.0.5468
PUP.Optional.DefaultSearch, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Secure Preferences, Remplacé, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Profile 2\Preferences, Remplacé, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\USERS\CORA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\EXTENSIONS\NLADLJMABBOANHIHFKJACNNKGJHNOKHJ\1.3.7.6_0\MANIFEST.JSON, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.eot, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.svg, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\adaware.woff, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-book.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-bookitalic.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-light.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-lightitalic.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-medium.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-mediumitalic.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-semibold.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\canaro-semibolditalic.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\fontawesome-webfont.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\fonts\segoeui.ttf, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\auto-complete.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\flexbox.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\new-tab.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\normalize.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\css\roboto.css, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons\icon19.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\browsericons\icon38.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\adaware_secure_search.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dot.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dot_color.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\dropdown_arrow.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\icon_128.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\icon_16.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\magnifier_icon.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\img\settings_icon.png, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib\auto-complete.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\lib\publicsuffixlist.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\adaware-telemetry.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\adaware-utils.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\background.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\i18n.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\messaging.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\new-tab.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\pagestore.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\polyfill.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\start.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\storage.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\tab.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\traffic.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\uritools.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-background.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-client.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\js\vapi-common.js, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\de\messages.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\en\messages.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\es\messages.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_locales\fr\messages.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\_metadata\verified_contents.json, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\background.html, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\LICENSE.txt, En quarantaine, [269], [475454],1.0.5468
PUP.Optional.DefaultSearch, C:\Users\cora\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nladljmabboanhihfkjacnnkgjhnokhj\1.3.7.6_0\new-tab.html, En quarantaine, [269], [475454],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MICROSOFT WEBSITES\MSIEXEC64.EXE, En quarantaine, [918], [467508],1.0.5468
Adware.FileTour, C:\WINDOWS\SYSTEM32\TASKS\{2E18B91A-B963-31FE-8F1D-2AF2FA77971C}, En quarantaine, [400], [511696],1.0.5468
Adware.FileTour, C:\WINDOWS\SYSTEM32\TASKS\{F0FB7EB6-8E96-AFCD-E30F-D9DA1C6C5708}, En quarantaine, [400], [511696],1.0.5468
Trojan.CoreBot, C:\USERS\CORA\APPDATA\ROAMING\ZHP\QUARANTINE\ZHPCLEANER\BUT-SETUP-9.EXE, En quarantaine, [4517], [517234],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\CAMSTUDIO 2.7\000001N.ZIP, En quarantaine, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\ESET-NOD32\000001N.ZIP, En quarantaine, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MICROSOFT WEBSITES\000001N.ZIP, En quarantaine, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\CONNECTION WIZARD\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MINIPORT DRIVER\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\MSN GAMING ZONE\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
Adware.Wajam, C:\WINDOWS\YKOMXAWJVCFNJXGA.YKRMX, Supprimer au redémarrage, [444], [521920],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\CAMSTUDIO 2.7\MSIEXEC64.EXE, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\SPEECHENGINES\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\HELPCTR\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\THUNDERBIRDPORTABLE\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\SPEECHENGINES\MSIEXEC64.EXE, Supprimer au redémarrage, [918], [467508],1.0.5468
RiskWare.BitCoinMiner, C:\USERS\CORA\APPDATA\LOCAL\WINSXS\000001N.ZIP, Supprimer au redémarrage, [918], [467508],1.0.5468
Adware.Zdengo.Generic, C:\WINDOWS\55C2DEDE19F1007EFD0A4C9C94AA0DFD.EXE, Supprimer au redémarrage, [10813], [487934],1.0.5468
Secteur physique: 0
(Aucun élément malveillant détecté)
WMI: 0
(Aucun élément malveillant détecté)
(end)