PC-ATI est une équipe de bénévoles qui vous apporte une assistance entièrement gratuite, inscrivez-vous pour participer au forum.

Super Cleanup

Guide d'auto-assistance pour la suppression des logiciels malveillants
Verrouillé
Avatar du membre
Amesam
Administrateur du site
Messages : 364
Enregistré le : lun. 5 juin 2017 17:23

Super Cleanup

Message par Amesam » jeu. 21 juin 2018 19:54

Qu'est-ce que Super Cleanup ?


L'équipe de recherche Malwarebytes a déterminé que Super Cleanup est un faux programme d'optimisation.
Il utilise des faux positifs pour convaincre les utilisateurs que leurs systèmes est remplit d'erreurs à corriger. Ensuite, il essaie de vous vendre son logiciel, en prétendant que cela supprimera ces problèmes.

Malwarebytes peut détecter et supprimer ce programme potentiellement indésirable.
(PUP.Optional.Jawego, PUP.Optional.SuperCleanup ).

Image

Détails techniques :

Lignes possibles dans les rapports FRST :

Code : Tout sélectionner

(supercleanup.com) C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe
C:\Users\{username}\AppData\Roaming\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd
C:\Windows\System32\Tasks\Super Cleanup_DEFAULT
C:\Windows\System32\Tasks\Super Cleanup
C:\Windows\System32\Tasks\Super Cleanup_UPDATES
C:\Users\Public\Desktop\Super Cleanup.lnk
C:\Windows\Tasks\Super Cleanup_UPDATES.job
C:\Windows\Tasks\Super Cleanup_DEFAULT.job
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Cleanup
C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd
(www.supercleanup.com/ ) C:\Users\{username}\Desktop\scupsetup_site.exe

Super Cleanup (HKLM-x32\...\Super Cleanup_is1) (Version: 7.27.0.928 - www.supercleanup.com/)
Task: {5266E2FB-0B65-43F9-B9B7-3481FF5ABBCF} - System32\Tasks\Super Cleanup => C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe [2018-03-26] (supercleanup.com)
Task: {BE3E2C39-E9B7-432C-8AB6-D5EBD7C2C33B} - System32\Tasks\Super Cleanup_DEFAULT => C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe [2018-03-26] (supercleanup.com)
Task: {F6D671F0-8F5E-4242-8F2B-820DA8D7B40B} - System32\Tasks\Super Cleanup_UPDATES => C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe [2018-03-26] (supercleanup.com)
Task: C:\Windows\Tasks\Super Cleanup_DEFAULT.job => C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe
Task: C:\Windows\Tasks\Super Cleanup_UPDATES.job => C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe

Modifications apportées :

Code : Tout sélectionner

File system details [View: All details] (Selection)
---------------------------------------------------
    Adds the folder C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd
       Adds the file app.ico"="6/7/2017 11:02 AM, 34494 bytes, A
       Adds the file RegList.scup"="5/29/2017 4:05 PM, 93350 bytes, A
       Adds the file SCUPUns.exe"="3/26/2018 10:11 AM, 574896 bytes, A
       Adds the file supercleanup.exe"="3/26/2018 10:11 AM, 7621040 bytes, A
       Adds the file unins000.dat"="5/14/2018 8:31 AM, 44229 bytes, A
       Adds the file unins000.exe"="5/14/2018 8:31 AM, 1210800 bytes, A
       Adds the file unins000.msg"="5/14/2018 8:31 AM, 22701 bytes, A
       Adds the file xmllite.dll"="5/29/2017 4:05 PM, 126976 bytes, A
    Adds the folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Cleanup
       Adds the file Register Super Cleanup.lnk"="5/14/2018 8:31 AM, 1267 bytes, A
       Adds the file Super Cleanup.lnk"="5/14/2018 8:31 AM, 1241 bytes, A
    Adds the folder C:\Users\{username}\AppData\Roaming\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd
       Adds the file backup6.bin"="5/14/2018 8:31 AM, 747 bytes, A
       Adds the file eng_scup.dat"="5/14/2018 8:31 AM, 29938 bytes, A
       Adds the file log_05-14-2018.log"="5/14/2018 8:31 AM, 0 bytes, A
       Adds the file results.scup"="5/14/2018 8:33 AM, 6070 bytes, A
    In the existing folder C:\Users\Public\Desktop
       Adds the file Super Cleanup.lnk"="5/14/2018 8:31 AM, 1223 bytes, A
    In the existing folder C:\Windows\System32\Tasks
       Adds the file Super Cleanup"="5/14/2018 8:31 AM, 3170 bytes, A
       Adds the file Super Cleanup_DEFAULT"="5/14/2018 8:31 AM, 3288 bytes, A
       Adds the file Super Cleanup_UPDATES"="5/14/2018 8:31 AM, 3100 bytes, A
    In the existing folder C:\Windows\Tasks
       Adds the file Super Cleanup_DEFAULT.job"="5/14/2018 8:31 AM, 334 bytes, A
       Adds the file Super Cleanup_UPDATES.job"="5/14/2018 8:31 AM, 342 bytes, A

Registry details [View: All details] (Selection)
------------------------------------------------
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures]
       "Super Cleanup_DEFAULT.job"="REG_BINARY, ................................
       "Super Cleanup_DEFAULT.job.fp"="REG_DWORD", -1677318068
       "Super Cleanup_UPDATES.job"="REG_BINARY, ................................
       "Super Cleanup_UPDATES.job.fp"="REG_DWORD", 1213072560
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd]
       "Expired"="REG_DWORD", 0
       "FirstTimeASPFired"="REG_DWORD", 1
       "MaxFixLimit"="REG_DWORD", 15
       "RENEWALURL"="REG_SZ", "http://www.supercleanup.com/renewal/?utm_source=site&utm_campaign=default&utm_medium=newbuild"
       "SCUPURL"="REG_SZ", "http://www.supercleanup.com/buynow/?utm_source=site&utm_campaign=default&utm_medium=newbuild"
       "ShowExitPage"="REG_DWORD", 0
       "support_email"="REG_SZ", "support@jawego.com"
       "TELNO"="REG_SZ", "(855) 761-8856"
       "TELNODE"="REG_SZ", "(800) 180-6512"
       "TELNOFR"="REG_SZ", "01.76.54.27.59"
       "TELNOJP"="REG_SZ", "03-5050-1410"
       "utm_campaign"="REG_SZ", "default"
       "utm_medium"="REG_SZ", "newbuild"
       "utm_source"="REG_SZ", "site"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\LANG]
       "LangID"="REG_DWORD", 0
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Jawego\Params]
       "affiliateid"="REG_SZ", ""
       "SCUP"="REG_DWORD", 1
       "SCUPGuid"="REG_SZ", "377db163-6ce4-4e9e-8e7c-4879a2bfd2bd"
       "utm_campaign"="REG_SZ", "default"
       "utm_medium"="REG_SZ", "newbuild"
       "utm_source"="REG_SZ", "site"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Super Cleanup_is1]
       "DisplayIcon"="REG_SZ", "C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe"
       "DisplayName"="REG_SZ", "Super Cleanup"
       "DisplayVersion"="REG_SZ", "7.27.0.928"
       "EstimatedSize"="REG_DWORD", 12843
       "HelpLink"="REG_SZ", "http://www.supercleanup.com/"
       "Inno Setup: App Path"="REG_SZ", "C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd"
       "Inno Setup: Icon Group"="REG_SZ", "Super Cleanup"
       "Inno Setup: Language"="REG_SZ", "en"
       "Inno Setup: Setup Version"="REG_SZ", "5.5.6 (u)"
       "Inno Setup: User"="REG_SZ", "{username}"
       "InstallDate"="REG_SZ", "20180514"
       "InstallLocation"="REG_SZ", "C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\"
       "MajorVersion"="REG_DWORD", 7
       "MinorVersion"="REG_DWORD", 27
       "NoModify"="REG_DWORD", 1
       "NoRepair"="REG_DWORD", 1
       "Publisher"="REG_SZ", "www.supercleanup.com/"
       "QuietUninstallString"="REG_SZ", ""C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\unins000.exe" /SILENT"
       "UninstallString"="REG_SZ", ""C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\unins000.exe" /silent"
       "URLInfoAbout"="REG_SZ", "http://www.supercleanup.com/"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Super\Cleanup\key\6]
       "(Default)"="REG_BINARY, .......................................................................................................................o............................................................................................................................H...........
    [HKEY_CURRENT_USER\Software\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd]
       "1stInstalled_Time"="REG_SZ", "5/14/2018 8:31:37 AM"
       "AutoRepair"="REG_DWORD", 0
       "CanAutoScan"="REG_DWORD", 0
       "ConfirmBkUps"="REG_DWORD", 1
       "CurrentScanTime"="REG_BINARY, .....!..
       "ErrorCount"="REG_DWORD", 17
       "FirstRun"="REG_DWORD", 1
       "GoToSystemTrayOnClose"="REG_DWORD", 0
       "ImprovementProgram"="REG_DWORD", 1
       "NumTimesPCPRunned"="REG_DWORD", 1
       "RegErrFoundTillDate"="REG_DWORD", 0
       "RegErrsFixedLast"="REG_DWORD", 0
       "RegErrsFixedTillDate"="REG_DWORD", 0
       "ScheduledTime"="REG_SZ", ""
       "SetChkDontShowRedTrayPopup"="REG_DWORD", 0
       "SetChkPeriodicUpDate"="REG_DWORD", 1
       "SetChkREmovableMedia"="REG_DWORD", 1
       "SetChkSkipEmptyKeys"="REG_DWORD", 1
       "SetEnableSound"="REG_DWORD", 1
       "StartMinimized"="REG_DWORD", 0
       "StartScan"="REG_DWORD", 0
       "StartWhenWinBoots"="REG_DWORD", 1
       "StrLastOptimizeTime"="REG_SZ", ""
       "StrLastScan"="REG_SZ", "Mon. May 14, 2018. 08:33 AM"
       "StrLastScanResults"="REG_SZ", "17"
       "StrLastStartupOpt"="REG_SZ", ""
       "StrLatestRegDefrag"="REG_SZ", ""
       "StrLatestRestorePoint"="REG_SZ", ""
    [HKEY_CURRENT_USER\Software\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\LANG]
       "LangCode"="REG_SZ", "en"
       "LangID"="REG_DWORD", 0
    [HKEY_CURRENT_USER\Software\Jawego\Params]
       "SCUPGuid"="REG_SZ", "377db163-6ce4-4e9e-8e7c-4879a2bfd2bd"
    [HKEY_CURRENT_USER\Software\Super\Cleanup\key\6]
       "(Default)"="REG_BINARY, .......................................................................................................................o............................................................................................................................H...........

Malwarebytes log :

Code : Tout sélectionner

-Log Details-
Scan Date: 5/14/18
Scan Time: 8:41 AM
Log File: d720e31b-5741-11e8-8a2b-080027235d76.json
Administrator: Yes

-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.262
Update Package Version: 1.0.5096
License: Premium

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: {computername}\{username}

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 239521
Threats Detected: 95
Threats Quarantined: 94
Time Elapsed: 2 min, 40 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 1
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe, Quarantined, [505], [359444],1.0.5096

Module: 3
PUP.Optional.Jawego, C:\PROGRAM FILES (X86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\isxdl.dll, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\xmllite.dll, Quarantined, [505], [359444],1.0.5096

Registry Key: 16
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Super Cleanup, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{5266E2FB-0B65-43F9-B9B7-3481FF5ABBCF}, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{5266E2FB-0B65-43F9-B9B7-3481FF5ABBCF}, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Super Cleanup_DEFAULT, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{BE3E2C39-E9B7-432C-8AB6-D5EBD7C2C33B}, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{BE3E2C39-E9B7-432C-8AB6-D5EBD7C2C33B}, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Super Cleanup_UPDATES, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F6D671F0-8F5E-4242-8F2B-820DA8D7B40B}, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{F6D671F0-8F5E-4242-8F2B-820DA8D7B40B}, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Super Cleanup_is1, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, HKCU\SOFTWARE\Jawego, Quarantined, [505], [351909],1.0.5096
PUP.Optional.SuperCleanup, HKCU\SOFTWARE\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd, Quarantined, [3547], [519919],1.0.5096
PUP.Optional.SuperCleanup, HKCU\SOFTWARE\SUPER\Cleanup, Quarantined, [3547], [519921],1.0.5096
PUP.Optional.SuperCleanup, HKLM\SOFTWARE\WOW6432NODE\SUPER\Cleanup, Quarantined, [3547], [519922],1.0.5096
Adware.Jawego, HKLM\SOFTWARE\WOW6432NODE\Jawego, Quarantined, [7371], [383598],1.0.5096
PUP.Optional.SuperCleanup, HKLM\SOFTWARE\WOW6432NODE\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd, Quarantined, [3547], [519920],1.0.5096

Registry Value: 7
PUP.Optional.SuperCleanup, HKCU\SOFTWARE\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd|SETCHKDONTSHOWREDTRAYPOPUP, Quarantined, [3547], [519919],1.0.5096
PUP.Optional.RegTuneup, HKCU\SOFTWARE\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd|REGERRFOUNDTILLDATE, Quarantined, [6483], [450413],1.0.5096
PUP.Optional.SuperCleanup, HKLM\SOFTWARE\WOW6432NODE\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd|SCUPURL, Quarantined, [3547], [519920],1.0.5096
PUP.Optional.SuperCleanup, HKLM\SOFTWARE\WOW6432NODE\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd|RENEWALURL, Quarantined, [3547], [519920],1.0.5096
PUP.Optional.SuperCleanup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{5266E2FB-0B65-43F9-B9B7-3481FF5ABBCF}|PATH, Quarantined, [3547], [520040],1.0.5096
PUP.Optional.SuperCleanup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{BE3E2C39-E9B7-432C-8AB6-D5EBD7C2C33B}|PATH, Quarantined, [3547], [520040],1.0.5096
PUP.Optional.SuperCleanup, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F6D671F0-8F5E-4242-8F2B-820DA8D7B40B}|PATH, Quarantined, [3547], [520040],1.0.5096

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 3
PUP.Optional.Jawego, C:\PROGRAM FILES (X86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd, Quarantined, [505], [359444],1.0.5096
PUP.Optional.SuperCleanup, C:\USERS\{username}\APPDATA\ROAMING\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd, Removal Failed, [3547], [519918],1.0.5096
PUP.Optional.SuperCleanup, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SUPER CLEANUP, Quarantined, [3547], [519915],1.0.5096

File: 65
PUP.Optional.Jawego, C:\PROGRAM FILES (X86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\isxdl.dll, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\app.ico, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Chinese_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Chinese_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Danish_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Danish_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Dutch_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Dutch_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\eng_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\eng_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\FileList.scup, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\korean_scup_ko.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\korean_uninst_ko.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\leftbmp.bmp, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Norwegian_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Norwegian_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\PCO_En.wav, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\polish_scup_pl.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\polish_uninst_pl.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\portugese_scup_pt.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\portugese_uninst_pt.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Portuguese_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Portuguese_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\RegList.scup, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Finnish_scup_fi.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Finnish_uninst_fi.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\French_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\French_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\German_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\German_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\greek_scup_el.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\greek_uninst_el.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Italian_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Italian_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Japanese_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Japanese_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\russian_scup_ru.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\russian_uninst_ru.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\SCUPUns.exe, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Spanish_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\spanish_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\supercleanup.exe, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Swedish_scup.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\swedish_uninst.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\TraditionalCn_scup_zh-tw.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\traditionalcn_uninst_zh-tw.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\turkish_scup_tr.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\Turkish_uninst_tr.ini, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\unins000.dat, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\unins000.exe, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\unins000.msg, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\Program Files (x86)\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\xmllite.dll, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\WINDOWS\SYSTEM32\TASKS\Super Cleanup, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\WINDOWS\SYSTEM32\TASKS\Super Cleanup_DEFAULT, Quarantined, [505], [359444],1.0.5096
PUP.Optional.Jawego, C:\WINDOWS\SYSTEM32\TASKS\Super Cleanup_UPDATES, Quarantined, [505], [359444],1.0.5096
PUP.Optional.SuperCleanup, C:\WINDOWS\TASKS\Super Cleanup_DEFAULT.job, Quarantined, [3547], [520039],1.0.5096
PUP.Optional.SuperCleanup, C:\WINDOWS\TASKS\Super Cleanup_UPDATES.job, Quarantined, [3547], [520039],1.0.5096
PUP.Optional.SuperCleanup, C:\USERS\{username}\APPDATA\ROAMING\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\results.scup, Quarantined, [3547], [519918],1.0.5096
PUP.Optional.SuperCleanup, C:\Users\{username}\AppData\Roaming\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\backup6.bin, Quarantined, [3547], [519918],1.0.5096
PUP.Optional.SuperCleanup, C:\Users\{username}\AppData\Roaming\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\eng_scup.dat, Quarantined, [3547], [519918],1.0.5096
PUP.Optional.SuperCleanup, C:\Users\{username}\AppData\Roaming\377db163-6ce4-4e9e-8e7c-4879a2bfd2bd\log_05-14-2018.log, Quarantined, [3547], [519918],1.0.5096
PUP.Optional.SuperCleanup, C:\USERS\PUBLIC\DESKTOP\SUPER CLEANUP.LNK, Quarantined, [3547], [519933],1.0.5096
PUP.Optional.SuperCleanup, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Cleanup\Register Super Cleanup.lnk, Quarantined, [3547], [519915],1.0.5096
PUP.Optional.SuperCleanup, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Cleanup\Super Cleanup.lnk, Quarantined, [3547], [519915],1.0.5096
PUP.Optional.SuperCleanup, C:\USERS\{username}\DESKTOP\SCUPSETUP_SITE.EXE, Quarantined, [3547], [519924],1.0.5096

Physical Sector: 0
(No malicious items detected)


(end)

Publication autorisée par le Staff de Malwarebytes
Source

Image

Verrouillé