=============== Infected Scanner =============== Version : 3.2.0.0 - fredodiable Rapport créé le : 22/05/2014 à 09:18:01 Utilisateur : Jean-Claude Nombre d'élément(s) détecté(s) : 130 Merci à dr.pc1 (Doki) pour ce design ;) OS : Microsoft Windows 8.1 x64, CPU : Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz RAM : 8130 Mo GPU : AMD Radeon R5 235 =============== Fichier(s) (0) =============== =============== Dossier(s) (0) =============== =============== Registre(s) (130) =============== [HKEY_CLASSES_ROOT\AppID\DuuquUpdate.exe] [HKEY_CLASSES_ROOT\CLSID\{024BA55C-DA05-4FA5-AD24-5EA6D3C7C153}] ""="DuuquUpdate Update3Web" [HKEY_CLASSES_ROOT\CLSID\{35047074-2A04-4CE9-BE91-8D2D02DC58E6}\ProgID] ""="DuuquUpdate.Update3COMClassService.1.0" [HKEY_CLASSES_ROOT\CLSID\{486E4A9A-50F4-4DA4-9F50-363FC9F72939}] ""="Duuqu Update Core Class" [HKEY_CLASSES_ROOT\CLSID\{7D79AC47-48F6-40F8-BA34-17677EAEA37C}] ""="Duuqu.OneClickProcessLauncher" [HKEY_CLASSES_ROOT\CLSID\{9EBB6A38-FB41-458F-AC93-B5B4AEEE2C41}] ""="Duuqu Update Broker Class Factory" [HKEY_CLASSES_ROOT\CLSID\{B03E3833-2BAE-439D-A3E6-1AC654BECEDB}] ""="DuuquUpdate Update3Web" [HKEY_CLASSES_ROOT\CLSID\{B6E89C52-A6C8-4839-A5D1-28A7A5EA46D9}] ""="Duuqu Update Core Class" [HKEY_CLASSES_ROOT\CLSID\{B8669E7E-2C40-42DC-8BA0-314D860F5200}] ""="Duuqu Update Legacy On Demand" [HKEY_CLASSES_ROOT\CLSID\{D4B7651E-076D-4BB2-A021-26F6E7A59A48}] ""="DuuquUpdate CredentialDialog" [HKEY_CLASSES_ROOT\CLSID\{D7BEC320-B746-4A47-B289-509214980E2B}] ""="Duuqu Update Legacy On Demand" [HKEY_CLASSES_ROOT\CLSID\{E555444B-4EA6-4B30-A314-49C2D1BE413D}] ""="Duuqu Update Process Launcher Class" [HKEY_CLASSES_ROOT\CLSID\{EF0AC81C-F34C-4B2E-B85D-91E4DB1E3E9D}] ""="Duuqu Update Broker Class Factory" [HKEY_CLASSES_ROOT\Duuqu.OneClickCtrl.9] [HKEY_CLASSES_ROOT\Duuqu.OneClickProcessLauncherMachine] [HKEY_CLASSES_ROOT\Duuqu.Update3WebControl.3] [HKEY_CLASSES_ROOT\DuuquUpdate.CoCreateAsync] [HKEY_CLASSES_ROOT\DuuquUpdate.CoreClass] [HKEY_CLASSES_ROOT\DuuquUpdate.CoreMachineClass] [HKEY_CLASSES_ROOT\DuuquUpdate.CredentialDialogMachine] [HKEY_CLASSES_ROOT\DuuquUpdate.OnDemandCOMClassMachine] [HKEY_CLASSES_ROOT\DuuquUpdate.OnDemandCOMClassSvc] [HKEY_CLASSES_ROOT\DuuquUpdate.ProcessLauncher] [HKEY_CLASSES_ROOT\DuuquUpdate.Update3COMClassService] [HKEY_CLASSES_ROOT\DuuquUpdate.Update3WebMachine] [HKEY_CLASSES_ROOT\DuuquUpdate.Update3WebSvc] [HKEY_CLASSES_ROOT\Interface\{23E2AAB8-DF63-4A6F-AB08-287D23F374FF}] ""="IDuuquUpdate3WebSecurity" [HKEY_CLASSES_ROOT\Interface\{414A428D-BB4B-40B0-88EC-D21AFEF37CB4}] ""="IDuuquUpdate3Web" [HKEY_CLASSES_ROOT\Interface\{5516DBF3-8B85-4A9E-A2A8-D393A938BD58}] ""="IDuuquUpdateCore" [HKEY_CLASSES_ROOT\Interface\{61E7C4F0-2579-4C25-9189-8EC876B97ED1}] ""="IDuuquUpdate" [HKEY_CLASSES_ROOT\Interface\{DED54547-5E5E-402A-83A9-14F5D3DE3B8D}] ""="IDuuquUpdate3" [HKEY_CLASSES_ROOT\MIME\Database\Content Type\application/x-vnd.duuqu.oneclickctrl.9] [HKEY_CLASSES_ROOT\MIME\Database\Content Type\application/x-vnd.duuqu.update3webcontrol.3] [HKEY_CLASSES_ROOT\Wow6432Node\AppID\DuuquUpdate.exe] [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{024BA55C-DA05-4FA5-AD24-5EA6D3C7C153}] ""="DuuquUpdate Update3Web" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{3279E34D-3F0F-4EE4-99FA-7141B82DB0A8}\InprocHandler32] ""="C:\Program Files (x86)\Duuqu\Update\1.3.37.0\psmachine.dll" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{35047074-2A04-4CE9-BE91-8D2D02DC58E6}\ProgID] ""="DuuquUpdate.Update3COMClassService.1.0" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{486E4A9A-50F4-4DA4-9F50-363FC9F72939}] ""="Duuqu Update Core Class" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{7D79AC47-48F6-40F8-BA34-17677EAEA37C}] ""="Duuqu.OneClickProcessLauncher" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{9EBB6A38-FB41-458F-AC93-B5B4AEEE2C41}] ""="Duuqu Update Broker Class Factory" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{B03E3833-2BAE-439D-A3E6-1AC654BECEDB}] ""="DuuquUpdate Update3Web" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{B6E89C52-A6C8-4839-A5D1-28A7A5EA46D9}] ""="Duuqu Update Core Class" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{B8669E7E-2C40-42DC-8BA0-314D860F5200}] ""="Duuqu Update Legacy On Demand" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D4B7651E-076D-4BB2-A021-26F6E7A59A48}] ""="DuuquUpdate CredentialDialog" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D7BEC320-B746-4A47-B289-509214980E2B}] ""="Duuqu Update Legacy On Demand" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E555444B-4EA6-4B30-A314-49C2D1BE413D}] ""="Duuqu Update Process Launcher Class" [HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EF0AC81C-F34C-4B2E-B85D-91E4DB1E3E9D}] ""="Duuqu Update Broker Class Factory" [HKEY_CLASSES_ROOT\Wow6432Node\Interface\{23E2AAB8-DF63-4A6F-AB08-287D23F374FF}] ""="IDuuquUpdate3WebSecurity" [HKEY_CLASSES_ROOT\Wow6432Node\Interface\{414A428D-BB4B-40B0-88EC-D21AFEF37CB4}] ""="IDuuquUpdate3Web" [HKEY_CLASSES_ROOT\Wow6432Node\Interface\{5516DBF3-8B85-4A9E-A2A8-D393A938BD58}] ""="IDuuquUpdateCore" [HKEY_CLASSES_ROOT\Wow6432Node\Interface\{61E7C4F0-2579-4C25-9189-8EC876B97ED1}] ""="IDuuquUpdate" [HKEY_CLASSES_ROOT\Wow6432Node\Interface\{DED54547-5E5E-402A-83A9-14F5D3DE3B8D}] ""="IDuuquUpdate3" [HKEY_LOCAL_MACHINE\Software\Classes\AppID\DuuquUpdate.exe] [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{024BA55C-DA05-4FA5-AD24-5EA6D3C7C153}] ""="DuuquUpdate Update3Web" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{3279E34D-3F0F-4EE4-99FA-7141B82DB0A8}\InprocHandler32] ""="C:\Program Files (x86)\Duuqu\Update\1.3.37.0\psmachine.dll" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{35047074-2A04-4CE9-BE91-8D2D02DC58E6}\ProgID] ""="DuuquUpdate.Update3COMClassService.1.0" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{486E4A9A-50F4-4DA4-9F50-363FC9F72939}] ""="Duuqu Update Core Class" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{7D79AC47-48F6-40F8-BA34-17677EAEA37C}] ""="Duuqu.OneClickProcessLauncher" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{9EBB6A38-FB41-458F-AC93-B5B4AEEE2C41}] ""="Duuqu Update Broker Class Factory" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{B03E3833-2BAE-439D-A3E6-1AC654BECEDB}] ""="DuuquUpdate Update3Web" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{B6E89C52-A6C8-4839-A5D1-28A7A5EA46D9}] ""="Duuqu Update Core Class" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{B8669E7E-2C40-42DC-8BA0-314D860F5200}] ""="Duuqu Update Legacy On Demand" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{D4B7651E-076D-4BB2-A021-26F6E7A59A48}] ""="DuuquUpdate CredentialDialog" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{D7BEC320-B746-4A47-B289-509214980E2B}] ""="Duuqu Update Legacy On Demand" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{E555444B-4EA6-4B30-A314-49C2D1BE413D}] ""="Duuqu Update Process Launcher Class" [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{EF0AC81C-F34C-4B2E-B85D-91E4DB1E3E9D}] ""="Duuqu Update Broker Class Factory" [HKEY_LOCAL_MACHINE\Software\Classes\Duuqu.OneClickCtrl.9] [HKEY_LOCAL_MACHINE\Software\Classes\Duuqu.OneClickProcessLauncherMachine] [HKEY_LOCAL_MACHINE\Software\Classes\Duuqu.Update3WebControl.3] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.CoCreateAsync] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.CoreClass] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.CoreMachineClass] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.CredentialDialogMachine] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.OnDemandCOMClassMachine] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.OnDemandCOMClassSvc] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.ProcessLauncher] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.Update3COMClassService] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.Update3WebMachine] [HKEY_LOCAL_MACHINE\Software\Classes\DuuquUpdate.Update3WebSvc] [HKEY_LOCAL_MACHINE\Software\Classes\Interface\{23E2AAB8-DF63-4A6F-AB08-287D23F374FF}] ""="IDuuquUpdate3WebSecurity" [HKEY_LOCAL_MACHINE\Software\Classes\Interface\{414A428D-BB4B-40B0-88EC-D21AFEF37CB4}] ""="IDuuquUpdate3Web" [HKEY_LOCAL_MACHINE\Software\Classes\Interface\{5516DBF3-8B85-4A9E-A2A8-D393A938BD58}] ""="IDuuquUpdateCore" [HKEY_LOCAL_MACHINE\Software\Classes\Interface\{61E7C4F0-2579-4C25-9189-8EC876B97ED1}] ""="IDuuquUpdate" [HKEY_LOCAL_MACHINE\Software\Classes\Interface\{DED54547-5E5E-402A-83A9-14F5D3DE3B8D}] ""="IDuuquUpdate3" [HKEY_LOCAL_MACHINE\Software\Classes\MIME\Database\Content Type\application/x-vnd.duuqu.oneclickctrl.9] [HKEY_LOCAL_MACHINE\Software\Classes\MIME\Database\Content Type\application/x-vnd.duuqu.update3webcontrol.3] [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\AppID\DuuquUpdate.exe] [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{024BA55C-DA05-4FA5-AD24-5EA6D3C7C153}] ""="DuuquUpdate Update3Web" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{3279E34D-3F0F-4EE4-99FA-7141B82DB0A8}\InprocHandler32] ""="C:\Program Files (x86)\Duuqu\Update\1.3.37.0\psmachine.dll" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{35047074-2A04-4CE9-BE91-8D2D02DC58E6}\ProgID] ""="DuuquUpdate.Update3COMClassService.1.0" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{486E4A9A-50F4-4DA4-9F50-363FC9F72939}] ""="Duuqu Update Core Class" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{7D79AC47-48F6-40F8-BA34-17677EAEA37C}] ""="Duuqu.OneClickProcessLauncher" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{9EBB6A38-FB41-458F-AC93-B5B4AEEE2C41}] ""="Duuqu Update Broker Class Factory" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{B03E3833-2BAE-439D-A3E6-1AC654BECEDB}] ""="DuuquUpdate Update3Web" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{B6E89C52-A6C8-4839-A5D1-28A7A5EA46D9}] ""="Duuqu Update Core Class" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{B8669E7E-2C40-42DC-8BA0-314D860F5200}] ""="Duuqu Update Legacy On Demand" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{D4B7651E-076D-4BB2-A021-26F6E7A59A48}] ""="DuuquUpdate CredentialDialog" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{D7BEC320-B746-4A47-B289-509214980E2B}] ""="Duuqu Update Legacy On Demand" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{E555444B-4EA6-4B30-A314-49C2D1BE413D}] ""="Duuqu Update Process Launcher Class" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{EF0AC81C-F34C-4B2E-B85D-91E4DB1E3E9D}] ""="Duuqu Update Broker Class Factory" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{23E2AAB8-DF63-4A6F-AB08-287D23F374FF}] ""="IDuuquUpdate3WebSecurity" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{414A428D-BB4B-40B0-88EC-D21AFEF37CB4}] ""="IDuuquUpdate3Web" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{5516DBF3-8B85-4A9E-A2A8-D393A938BD58}] ""="IDuuquUpdateCore" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{61E7C4F0-2579-4C25-9189-8EC876B97ED1}] ""="IDuuquUpdate" [HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{DED54547-5E5E-402A-83A9-14F5D3DE3B8D}] ""="IDuuquUpdate3" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DuuquUpdate.exe] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\AppID\DuuquUpdate.exe] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{024BA55C-DA05-4FA5-AD24-5EA6D3C7C153}] ""="DuuquUpdate Update3Web" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{3279E34D-3F0F-4EE4-99FA-7141B82DB0A8}\InprocHandler32] ""="C:\Program Files (x86)\Duuqu\Update\1.3.37.0\psmachine.dll" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{35047074-2A04-4CE9-BE91-8D2D02DC58E6}\ProgID] ""="DuuquUpdate.Update3COMClassService.1.0" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{486E4A9A-50F4-4DA4-9F50-363FC9F72939}] ""="Duuqu Update Core Class" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{7D79AC47-48F6-40F8-BA34-17677EAEA37C}] ""="Duuqu.OneClickProcessLauncher" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{9EBB6A38-FB41-458F-AC93-B5B4AEEE2C41}] ""="Duuqu Update Broker Class Factory" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{B03E3833-2BAE-439D-A3E6-1AC654BECEDB}] ""="DuuquUpdate Update3Web" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{B6E89C52-A6C8-4839-A5D1-28A7A5EA46D9}] ""="Duuqu Update Core Class" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{B8669E7E-2C40-42DC-8BA0-314D860F5200}] ""="Duuqu Update Legacy On Demand" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{D4B7651E-076D-4BB2-A021-26F6E7A59A48}] ""="DuuquUpdate CredentialDialog" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{D7BEC320-B746-4A47-B289-509214980E2B}] ""="Duuqu Update Legacy On Demand" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{E555444B-4EA6-4B30-A314-49C2D1BE413D}] ""="Duuqu Update Process Launcher Class" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\CLSID\{EF0AC81C-F34C-4B2E-B85D-91E4DB1E3E9D}] ""="Duuqu Update Broker Class Factory" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\Interface\{23E2AAB8-DF63-4A6F-AB08-287D23F374FF}] ""="IDuuquUpdate3WebSecurity" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\Interface\{414A428D-BB4B-40B0-88EC-D21AFEF37CB4}] ""="IDuuquUpdate3Web" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\Interface\{5516DBF3-8B85-4A9E-A2A8-D393A938BD58}] ""="IDuuquUpdateCore" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\Interface\{61E7C4F0-2579-4C25-9189-8EC876B97ED1}] ""="IDuuquUpdate" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\Interface\{DED54547-5E5E-402A-83A9-14F5D3DE3B8D}] ""="IDuuquUpdate3" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DuuquUpdate.exe] [HKEY_LOCAL_MACHINE\System\ControlSet001\services\eventlog\Application\IePluginService] [HKEY_LOCAL_MACHINE\System\CurrentControlSet\services\eventlog\Application\IePluginService] [HKEY_USERS\S-1-5-21-1809328612-682360070-3977180644-1001\Software\Classes\MIME\Database\Content Type\application/x-bubbledock] [HKEY_USERS\S-1-5-21-1809328612-682360070-3977180644-1001_Classes\MIME\Database\Content Type\application/x-bubbledock]