Malwarebytes
www.malwarebytes.com

-Détails du journal-
Date de l'analyse: 11/02/2018
Heure de l'analyse: 17:35
Fichier journal: 948ba05c-0f49-11e8-83da-406186f4f042.json
Administrateur: Oui

-Informations du logiciel-
Version: 3.3.1.2183
Version de composants: 1.0.262
Version de pack de mise à jour: 1.0.3918
Licence: Gratuit

-Informations système-
Système d'exploitation: Windows 10 (Build 16299.192)
Processeur: x64
Système de fichiers: NTFS
Utilisateur: WARY-PC\Administrateur

-Résumé de l'analyse-
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 316622
Menaces détectées: 114
Menaces mises en quarantaine: 113
Temps écoulé: 5 min, 5 s

-Options d'analyse-
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Désactivé
Heuristique: Activé
PUP: Détection
PUM: Détection

-Détails de l'analyse-
Processus: 0
(Aucun élément malveillant détecté)

Module: 1
Adware.NetUtils, C:\WINDOWS\SYSTEM32\NETUTILS2016.DLL, En quarantaine, [1073], [392029],1.0.3918

Clé du registre: 13
PUP.Optional.MirageISO, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\vtuiso, En quarantaine, [8263], [443703],1.0.3918
Adware.NetUtils, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NetUtils2016, En quarantaine, [1073], [385134],1.0.3918
PUP.Optional.PSScriptLoad.ACMB3, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0B090E47-0A09-040C-7811-087D050E1108}, En quarantaine, [5020], [-1],0.0.0
PUP.Optional.PSScriptLoad.ACMB3, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D2EAEA3C-1AAC-4E4B-A7AA-C7F4A81D2438}, En quarantaine, [5020], [-1],0.0.0
PUP.Optional.PSScriptLoad.ACMB3, HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D2EAEA3C-1AAC-4E4B-A7AA-C7F4A81D2438}, En quarantaine, [5020], [-1],0.0.0
PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\CONSOLE\%SYSTEMROOT%_SYSTEM32_SVCHOST.EXE, En quarantaine, [5020], [425124],1.0.3918
PUP.Optional.CloudScout, HKLM\SOFTWARE\WOW6432NODE\5da059a482fd494db3f252126fbc3d5b, En quarantaine, [9191], [246387],1.0.3918
Adware.SearchAwesome, HKLM\SOFTWARE\WOW6432NODE\SrcAAAesom Browser Enhancer, En quarantaine, [4351], [424837],1.0.3918
PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\CONSOLE\TASKENG.EXE, En quarantaine, [5020], [425125],1.0.3918
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\TEAMVIEWER.EXE, En quarantaine, [8507], [239351],1.0.3918
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\TEAMVIEWER.EXE, En quarantaine, [8507], [239351],1.0.3918
PUP.Optional.HDWallPaper, HKLM\SOFTWARE\HDWallpaper, En quarantaine, [98], [404734],1.0.3918
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, En quarantaine, [278], [-1],0.0.0

Valeur du registre: 15
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, [214], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, En quarantaine, [214], [-1],0.0.0
PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\CONSOLE\%SYSTEMROOT%_SYSTEM32_WINDOWSPOWERSHELL_V1.0_POWERSHELL.EXE|WINDOWPOSITION, En quarantaine, [5020], [425126],1.0.3918
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|DEFAULT, En quarantaine, [214], [259988],1.0.3918
PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\CONSOLE\%SYSTEMROOT%_SYSTEM32_SVCHOST.EXE|WINDOWPOSITION, En quarantaine, [5020], [425124],1.0.3918
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\INTERFACES\{6e2257cc-080a-4c15-a2d7-13d9163c2472}|NAMESERVER, Échec de la suppression, [5273], [260227],1.0.3918
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\INTERFACES\{b5280131-9581-4706-ae15-83544de7f0b9}|NAMESERVER, En quarantaine, [5273], [260227],1.0.3918
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\INTERFACES\{c66e00bf-85f9-4fba-b9c4-fd812f9fdd36}|NAMESERVER, En quarantaine, [5273], [260227],1.0.3918
PUP.Optional.PSScriptLoad.ACMB3, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\CONSOLE\TASKENG.EXE|WINDOWPOSITION, En quarantaine, [5020], [425125],1.0.3918
PUP.Optional.IFEO, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\TEAMVIEWER.EXE|DEBUGGER, En quarantaine, [8507], [239351],1.0.3918
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\TEAMVIEWER.EXE|DEBUGGER, En quarantaine, [8507], [239351],1.0.3918
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-18\ENVIRONMENT|SNP, En quarantaine, [214], [259518],1.0.3918
Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En quarantaine, [278], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En quarantaine, [278], [-1],0.0.0
Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En quarantaine, [278], [-1],0.0.0

Données du registre: 17
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, Remplacé, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, Remplacé, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|DEFAULT_SEARCH_URL, Remplacé, [214], [293486],1.0.3918
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|DhcpNameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{64ce9b6b-1e30-40c4-a04d-c80e25000e87}|NameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{6e2257cc-080a-4c15-a2d7-13d9163c2472}|NameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{6e2257cc-080a-4c15-a2d7-13d9163c2472}|DhcpNameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{b5280131-9581-4706-ae15-83544de7f0b9}|NameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{b5280131-9581-4706-ae15-83544de7f0b9}|DhcpNameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{bb148503-a64c-4347-94af-ce421edd9fbe}|NameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{c66e00bf-85f9-4fba-b9c4-fd812f9fdd36}|NameServer, Remplacé, [5273], [-1],0.0.0
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{c66e00bf-85f9-4fba-b9c4-fd812f9fdd36}|DhcpNameServer, Remplacé, [5273], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH PAGE, Remplacé, [214], [293485],1.0.3918
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCH BAR, Remplacé, [214], [293485],1.0.3918
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-2606651619-3720171437-1294249950-500\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|SEARCHASSISTANT, Remplacé, [214], [293485],1.0.3918
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NAMESERVER, Remplacé, [5273], [293494],1.0.3918

Flux de données: 0
(Aucun élément malveillant détecté)

Dossier: 4
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\ondemand, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\PROGRAMDATA\QUOTEEX, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, En quarantaine, [510], [391425],1.0.3918
Adware.NeoBar, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCALLOW\VASGIBGZZEJSN, En quarantaine, [391], [485974],1.0.3918

Fichier: 64
PUP.Optional.Linkury.ACMB1, C:\PROGRAMDATA\QUOTEEX\Ding-Fan.dll, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\ondemand\Green-Dex.dat, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Donstrong.exe, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Donstrong.exe.config, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\FaxDomtax.bin, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Green-Dex.dat, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\md.xml, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Namlex.bin, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\New-Fresh.bin, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Opetop.dat, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\pf3njhtx.xml, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\QuoHattip.exe, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\QuoHattip.exe.config, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Quoteex.d.dat, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Quoteex.dat, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\QvoTouch.dll, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\RedString.dat, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Spancof.bin, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Super-Lab.bin, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\uninstall.dat, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Xxx--Tech.dat, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Xxx-job.bin, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Quoteex\Zathlight.bin, En quarantaine, [214], [260620],1.0.3918
PUP.Optional.MirageISO, C:\WINDOWS\SYSTEM32\DRIVERS\VTUISO.SYS, En quarantaine, [8263], [443703],1.0.3918
Adware.NetUtils, C:\WINDOWS\SYSTEM32\NETUTILS2016.DLL, En quarantaine, [1073], [392029],1.0.3918
Adware.Linkury.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\UNINSTALL_TEMP.ICO, En quarantaine, [1810], [404862],1.0.3918
Adware.Linkury.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\MD.XML, En quarantaine, [1810], [404866],1.0.3918
Adware.Linkury.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\AGENT.DAT, En quarantaine, [1810], [404872],1.0.3918
Adware.NetUtils, C:\WINDOWS\SYSTEM32\DRIVERS\NETUTILS2016.SYS, En quarantaine, [1073], [385134],1.0.3918
PUP.Optional.OnlineIO, C:\WINDOWS\INSTALLER\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}, En quarantaine, [510], [391431],1.0.3918
Adware.Linkury.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\NOAH.DAT, En quarantaine, [1810], [404865],1.0.3918
Adware.Linkury.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\Biowarm.tst, En quarantaine, [1810], [404871],1.0.3918
Adware.Linkury.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\Plustip.tst, En quarantaine, [1810], [404871],1.0.3918
PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\online.exe, En quarantaine, [510], [391425],1.0.3918
PUP.Optional.OnlineIO, C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\SystemFoldermsiexec.exe, En quarantaine, [510], [391425],1.0.3918
Trojan.Agent, C:\WINDAT\SYSLOG.BAT, En quarantaine, [17], [485113],1.0.3918
Adware.NeoBar, C:\Users\Administrateur.WARY-PC\AppData\LocalLow\vAsGIBGZzEJsN\Storage.db, En quarantaine, [391], [485974],1.0.3918
Adware.Neoreklami, C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\BROWSER\FEATURES\{A5FD4672-4D73-4F90-A1C0-2ABD39DB2565}.XPI, En quarantaine, [174], [482896],1.0.3918
Generic.Malware/Suspicious, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\BIOWARM.EXE, En quarantaine, [0], [392686],1.0.3918
Adware.Linkury.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\CONFIG.XML, En quarantaine, [1810], [404859],1.0.3918
Adware.Linkury.TskLnk, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\INSTALLATIONCONFIGURATION.XML, En quarantaine, [3683], [444922],1.0.3918
Generic.Malware/Suspicious, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\PLUSTIP.EXE, En quarantaine, [0], [392686],1.0.3918
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\552YYY68BD\UNINSTALLER.EXE, En quarantaine, [1254], [414953],1.0.3918
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\TYD2CEJTVF\UNINSTALLER.EXE, En quarantaine, [1254], [414953],1.0.3918
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\K4HP5QXYG5\UNINSTALLER.EXE, En quarantaine, [1254], [414953],1.0.3918
Adware.NeoBar, C:\PROGRAM FILES (X86)\AMLYRCNLUIEBMHEBXHBQK\KXQE6UFHF.DLL, En quarantaine, [391], [487014],1.0.3918
Adware.Adposhel, C:\$RECYCLE.BIN\S-1-5-21-2606651619-3720171437-1294249950-500\$RR1C2PX\BWPAH.DLL, En quarantaine, [164], [425937],1.0.3918
Adware.Adposhel, C:\$RECYCLE.BIN\S-1-5-21-2606651619-3720171437-1294249950-500\$RR1C2PX\FASTDATAX.EXE, En quarantaine, [164], [425937],1.0.3918
Adware.Wajam, C:\WINDOWS\SYSTEM32\DRIVERS\2C5D3D1A7353642CC6B2AF9D8B515696.SYS, En quarantaine, [278], [487480],1.0.3918
Adware.Wajam, C:\WINDOWS\SYSTEM32\DRIVERS\46C3080B5E53D5175A57417769632A64.SYS, En quarantaine, [278], [487480],1.0.3918
Adware.Neoreklami, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\0CYLOCFDHBZ\HHUEIQPII.EXE, En quarantaine, [174], [487291],1.0.3918
Adware.Tuto4PC, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\0X1TPJ2KY5S\OTRDACZL10F.EXE, En quarantaine, [364], [486496],1.0.3918
PUP.Optional.BitCoinMiner, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\3RMWCDBKDET\ZFNWRVQKKWD.EXE, En quarantaine, [162], [363441],1.0.3918
Adware.Neoreklami, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\4VYVXF0CDQR\HHUEIQPII.EXE, En quarantaine, [174], [487291],1.0.3918
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\5G03U31GIPS\VVJ2UEYYJMW.EXE, En quarantaine, [1254], [414953],1.0.3918
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\DIAS1PL0VQZ\WLXTMKWION0.EXE, En quarantaine, [1254], [414953],1.0.3918
PUP.Optional.BitCoinMiner, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\JYOFOLVAHSF\BY25QKCWTIW.EXE, En quarantaine, [162], [363441],1.0.3918
Adware.Tuto4PC.Generic, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\NS41N3SMPOC\TLNDDN3PYOJ.EXE, En quarantaine, [1254], [414953],1.0.3918
Adware.Tuto4PC, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\XXPFPLSKK0N\5MNZHUWBGH4.EXE, En quarantaine, [364], [486496],1.0.3918
Adware.Tuto4PC, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\UNSWM1S3AOX\Y03XDGX2F4Y.EXE, En quarantaine, [364], [486496],1.0.3918
PUP.Optional.BitCoinMiner, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\UBVQQ13OTPV\YFTLEM4XAHM.EXE, En quarantaine, [162], [363441],1.0.3918
Adware.Neoreklami, C:\USERS\ADMINISTRATEUR.WARY-PC\APPDATA\LOCAL\TEMP\YT4VPY1EPQF\HHUEIQPII.EXE, En quarantaine, [174], [487291],1.0.3918
Adware.Wajam, C:\WINDOWS\TEMP\WJM60F8.TMP\UPDATE.EXE, En quarantaine, [278], [487369],1.0.3918
Adware.Wajam, C:\WINDOWS\TEMP\WJM9475.TMP\UPDATE.EXE, En quarantaine, [278], [487369],1.0.3918

Secteur physique: 0
(Aucun élément malveillant détecté)


(end)