Malwarebytes
www.malwarebytes.com

-Détails du journal-
Date de l'analyse: 29/10/2019
Heure de l'analyse: 11:00
Fichier journal: ec9fe05c-fa32-11e9-b60a-d43d7e2aa6e6.json

-Informations du logiciel-
Version: 3.8.3.2965
Version de composants: 1.0.629
Version de pack de mise à jour: 1.0.13107
Licence: Essai

-Informations système-
Système d'exploitation: Windows 10 (Build 18362.449)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: DESKTOP-5T7N7Q5\benji

-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Analyse lancée par: Manuel
Résultat: Terminé
Objets analysés: 279031
Menaces détectées: 58
Menaces mises en quarantaine: 58
Temps écoulé: 1 min, 6 s

-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection

-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)

Module: 0
(Aucun élément malveillant détecté)

Clé du registre: 4
Trojan.FakeTool.E, HKU\S-1-5-21-2849238211-2414905959-1334905021-1001\Inlog Software, En quarantaine, [3088], [746453],1.0.13107
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE, En quarantaine, [6999], [252393],1.0.13107
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE, En quarantaine, [6999], [252393],1.0.13107
PUP.Optional.InlogOptimizer, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Inlog Optimizer 3.1, En quarantaine, [3089], [698978],1.0.13107

Valeur du registre: 3
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE|DISABLEAUTOUPDATECHECKSCHECKBOXVALUE, En quarantaine, [6999], [252393],1.0.13107
PUM.Optional.DisableChromeUpdates, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\UPDATE|DISABLEAUTOUPDATECHECKSCHECKBOXVALUE, En quarantaine, [6999], [252393],1.0.13107
Trojan.CrthRazy.Generic, HKU\S-1-5-21-2849238211-2414905959-1334905021-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|canbadmphamemnmdfngmcabnjmjgaiki, En quarantaine, [14760], [676732],1.0.13107

Données du registre: 0
(Aucun élément malveillant détecté)

Flux de données: 0
(Aucun élément malveillant détecté)

Dossier: 6
Trojan.CrthRazy.Generic, C:\USERS\BENJI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Local Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\USERS\BENJI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\_metadata, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\icons, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\USERS\BENJI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\CANBADMPHAMEMNMDFNGMCABNJMJGAIKI, En quarantaine, [14760], [676732],1.0.13107

Fichier: 45
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\000003.log, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\CURRENT, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\LOCK, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\LOG, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\LOG.old, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\MANIFEST-000001, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\000003.log, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\CURRENT, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\LOCK, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\LOG, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\LOG.old, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\canbadmphamemnmdfngmcabnjmjgaiki\MANIFEST-000001, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\USERS\BENJI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Remplacé, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\USERS\BENJI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Remplacé, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\USERS\BENJI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\CANBADMPHAMEMNMDFNGMCABNJMJGAIKI\1.2.3.1_0\OU2ZC5L7HS.JS, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\icons\banned.svg, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\icons\clean.svg, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\icons\ow128.png, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\icons\ow16.png, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\icons\ow48.png, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\_metadata\computed_hashes.json, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\_metadata\verified_contents.json, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\4ISRKW3O66.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\9YNOFVYCPQ.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\checkbans-fetcher.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\checkbans-old.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\checkbans.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\contextmenus.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\display.css, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\display.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\gcpd730.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\GMOEMBZ3N9.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\H02IMZIALZ.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\history.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\I9VXUHZX0B.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\manifest.json, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\options.html, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\options.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.CrthRazy.Generic, C:\Users\benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\canbadmphamemnmdfngmcabnjmjgaiki\1.2.3.1_0\replaceurl.js, En quarantaine, [14760], [676732],1.0.13107
Trojan.MalPack.GS, C:\PROGRAM FILES (X86)\INLOGOPTIMIZER\REGISTRYUTIL.EXE, En quarantaine, [7840], [754050],1.0.13107
PUP.Optional.InlogOptimizer, C:\PROGRAM FILES (X86)\INLOGOPTIMIZER\OPTIMIZER.EXE, En quarantaine, [3089], [709181],1.0.13107
Trojan.CrthRazy, C:\USERS\BENJI\APPDATA\LOCAL\TEMP\0H1IFO9TVNF\3BS41SQVT.EXE, En quarantaine, [3146], [728696],1.0.13107
Generic.Malware/Suspicious, C:\USERS\BENJI\APPDATA\LOCAL\TEMP\OLPY0RBRKBQ\WQQC9X.EXE, En quarantaine, [0], [392686],1.0.13107
Trojan.Downloader, C:\USERS\BENJI\APPDATA\LOCAL\TEMP\KMAFXKWNXJB\GF6QWZCGEIL6MCSG2Z.EXE, En quarantaine, [518], [709397],1.0.13107
Generic.Malware/Suspicious, C:\USERS\BENJI\DESKTOP\SCRIPTS FOR LOADER\LOADER.EXE, En quarantaine, [0], [392686],1.0.13107

Secteur physique: 0
(Aucun élément malveillant détecté)

WMI: 0
(Aucun élément malveillant détecté)


(end)