Malwarebytes
www.malwarebytes.com

-Détails du journal-
Date de l'analyse: 20/05/2020
Heure de l'analyse: 20:45
Fichier journal: 175fe4ee-9aca-11ea-8009-3065ecb173a3.json

-Informations du logiciel-
Version: 4.1.0.56
Version de composants: 1.0.920
Version de pack de mise à jour: 1.0.24154
Licence: Essai

-Informations système-
Système d'exploitation: Windows 10 (Build 18362.836)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: VALERIDK\val keurkeur

-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 318417
Menaces détectées: 39
Menaces mises en quarantaine: 39
Temps écoulé: 2 min, 20 s

-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection

-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)

Module: 0
(Aucun élément malveillant détecté)

Clé du registre: 30
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\Amazon1ButtonBrowserHelper.dll, En quarantaine, 3196, 468987, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\APPID\Amazon1ButtonBrowserHelper.dll, En quarantaine, 3196, 468987, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\Amazon1ButtonRuntime.dll, En quarantaine, 3196, 468987, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\APPID\Amazon1ButtonRuntime.dll, En quarantaine, 3196, 468987, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp, En quarantaine, 3196, 441167, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKU\S-1-5-21-1720099322-704453991-2199464591-1001\SOFTWARE\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp, En quarantaine, 3196, 441167, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\AMAZON\Amazon1ButtonApp, En quarantaine, 3196, 441168, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\TYPELIB\{921462B2-5269-45A2-AA8D-F8F7A3690255}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\INTERFACE\{FD1B7376-A344-48BD-857D-C87B4D8502EF}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{FD1B7376-A344-48BD-857D-C87B4D8502EF}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FD1B7376-A344-48BD-857D-C87B4D8502EF}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{921462B2-5269-45A2-AA8D-F8F7A3690255}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{921462B2-5269-45A2-AA8D-F8F7A3690255}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO, En quarantaine, 3196, 386607, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\Amazon1ButtonRuntime.AmazonRuntimeServer, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\TYPELIB\{48DDEC26-CEC3-478E-9566-0842DAF10CEA}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{6B7479D5-C493-40F0-99B6-BFC901980034}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BFF94CF8-2D3B-4B2F-BB83-3600280AFEBA}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{6B7479D5-C493-40F0-99B6-BFC901980034}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BFF94CF8-2D3B-4B2F-BB83-3600280AFEBA}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{48DDEC26-CEC3-478E-9566-0842DAF10CEA}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{48DDEC26-CEC3-478E-9566-0842DAF10CEA}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}, En quarantaine, 3196, 386607, , , ,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\CLASSES\Amazon1ButtonRuntime.Amazon1ButtonRuntime, En quarantaine, 3196, 386607, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\Amazon1ButtonBrowserHelper.dll, En quarantaine, 3196, 468987, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\Amazon1ButtonRuntime.dll, En quarantaine, 3196, 468987, 1.0.24154, , ame,

Valeur du registre: 2
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|AMAZON1BUTTONTASKBARAPP.EXE, En quarantaine, 3196, 493348, 1.0.24154, , ame,
PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|AMAZON1BUTTONTASKBARAPP.EXE, En quarantaine, 3196, 493348, 1.0.24154, , ame,

Données du registre: 0
(Aucun élément malveillant détecté)

Flux de données: 0
(Aucun élément malveillant détecté)

Dossier: 0
(Aucun élément malveillant détecté)

Fichier: 7
PUP.Optional.Booking, C:\Program Files\Booking.COM\Booking.com.lnk, En quarantaine, 987, 310593, , , ,
PUP.Optional.Booking, C:\Program Files\Booking.COM\Booking.ico, En quarantaine, 987, 310593, , , ,
PUP.Optional.Booking, C:\Program Files\Booking.COM\Version.txt, En quarantaine, 987, 310593, , , ,
PUP.Optional.SearchStartPage, C:\USERS\VAL KEURKEUR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Remplacé, 390, 481847, 1.0.24154, , ame,
PUP.Optional.SearchStartPage, C:\USERS\VAL KEURKEUR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Remplacé, 390, 481847, 1.0.24154, , ame,
PUP.Optional.SearchStartPage, C:\USERS\VAL KEURKEUR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Remplacé, 390, 481847, 1.0.24154, , ame,
PUP.Optional.SearchStartPage, C:\USERS\VAL KEURKEUR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Remplacé, 390, 481847, 1.0.24154, , ame,

Secteur physique: 0
(Aucun élément malveillant détecté)

WMI: 0
(Aucun élément malveillant détecté)


(end)