cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

RogueKiller V8.8.9 [Feb 24 2014] par Tigzy
mail : tigzyRKgmailcom
Remontees : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur : NJAKA [Droits d'admin]
Mode : Recherche -- Date : 02/26/2014 11:29:50
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 3 ¤¤¤
[SUSP PATH] upfst_fr_101.exe -- C:\Users\NJAKA\AppData\Local\fst_fr_101\upfst_fr_101.exe [7] -> TUÉ [TermProc]
[SUSP PATH][DLL] rundll32.exe -- C:\Users\NJAKA\AppData\Roaming\ValueApps\CH\TBVerifier.dll [7] -> rundll32.exe TUÉ [TermProc]
[SUSP PATH] InstallManager.exe -- C:\Users\NJAKA\AppData\Local\Temp\is-HML20.tmp\InstallManager.exe [-] -> TUÉ [TermThr]

¤¤¤ Entrees de registre : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon ("C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\NJAKA\AppData\Roaming\ValueApps\CH\TBVerifier.dll",RunConduitFloatingPlugin lcnnhcneegeeojhgpfijnlnocjdmlaon [7][7][x][x]) -> TROUVÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-32495077-2280809274-2695116390-1000\[...]\Run : ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon ("C:\Windows\SysWOW64\Rundll32.exe" "C:\Users\NJAKA\AppData\Roaming\ValueApps\CH\TBVerifier.dll",RunConduitFloatingPlugin lcnnhcneegeeojhgpfijnlnocjdmlaon [7][7][x][x]) -> TROUVÉ
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\RunOnce : upfst_fr_101.exe (C:\Users\NJAKA\AppData\Local\fst_fr_101\upfst_fr_101.exe -runonce [7]) -> TROUVÉ
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\RunOnce : Coupon Server-repairJob (wscript.exe "C:\Users\NJAKA\AppData\Local\Coupon Server\repair.js" "Coupon Server-repairJob" [x][-][x]) -> TROUVÉ
[DNS][PUM] HKLM\[...]\CCSet\[...]\{F23A828B-C713-43D9-B04C-081BD0B57FF4} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 [UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - PHILIPPINES (PH) - UNITED STATES (US)]) -> TROUVÉ
[DNS][PUM] HKLM\[...]\CS001\[...]\{F23A828B-C713-43D9-B04C-081BD0B57FF4} : NameServer (8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 [UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - UNITED STATES (US) - PHILIPPINES (PH) - UNITED STATES (US)]) -> TROUVÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Tâches planifiées : 22 ¤¤¤
[V1][ROGUE ST] Feven 1.7-chromeinstaller.job : C:\Program Files (x86)\Feven 1.7\Feven 1.7-chromeinstaller.exe - /installcrx /crxinstalltype=0 /agentregpath='Feven 1.7' /extensionfilepath='C:\Program Files (x86)\Feven 1.7\40594.crx' /appid=40594 /srcid='000329' /subid='verticals-' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_31_153 /installerfullversion=1.31.153.1 /installationtime=1386359568 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=ajppokcpihekimknckddpgkbiphmaglg /extensionversion=1.25.49 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDLo5UCT9nWco5XvggkuBGiORqcAxdYt/UJDgtFL3TWWNwvD9XymJ1mUH82mKCutJtkAbaOyg77ATuO9DwVAbew8U5OIqL0YUqXx1kc5e+mMxDikASg0QkhOITJRjH/eg2n/A6CA9jeeR9ZlpmtzExZcg1S8SyXYIt6BTmR0GAmoQIDAQAB /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x] -> TROUVÉ
[V1][ROGUE ST] Feven 1.7-firefoxinstaller.job : C:\Program Files (x86)\Feven 1.7\Feven 1.7-firefoxinstaller.exe - /installxpi /agentregpath='Feven 1.7' /extensionfilepath='C:\Program Files (x86)\Feven 1.7\40594.xpi' /appid=40594 /srcid='000329' /subid='verticals-' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_31_153 /installerfullversion=1.31.153.1 /installationtime=1386359568 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=0efc9c38-1ec7-49ed-8915-53a48b6b7600@e7f17679-2a42-4659-83c5-7ba961fdf75a.com /extensionversion=0.93 /prefsbranch=a0efc9c381ec749ed891553a48b6b7600e7f176792a42465983c57ba961fdf75acom40594 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/40594.rdf /extensionname='Feven 1.7' /extensiondesc='Feven 1.7' /publishername='Feven' /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x][x][x][x][x] -> TROUVÉ
[V1][ROGUE ST] Feven Pro-firefoxinstaller.job : C:\Program Files (x86)\Feven Pro\Feven Pro-firefoxinstaller.exe - /installxpi /agentregpath='Feven Pro' /extensionfilepath='C:\Program Files (x86)\Feven Pro\51678.xpi' /appid=51678 /srcid='001080' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1392917974 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=46bccaaa-4500-481e-8908-9384802e175a@89a8fdd1-d807-4096-8025-a41093fce600.com /extensionversion=0.93 /prefsbranch=a46bccaaa4500481e89089384802e175a89a8fdd1d80740968025a41093fce600com51678 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/51678.rdf /extensionname='Feven Pro' /extensiondesc='Feven Shopping Companion' /publishername='Feven' /defbro=ff /allusers /allprofiles /checkfflist /autoupdateulr='hxxp://update.srvstatsdata.com/ff_agent_updates/{CAMP_ID}/update.json' /runfrom='task' /externallog='' [x][x][x][x][x][x][x][x][x][x][x][x] -> TROUVÉ
[V1][ROGUE ST] Plus-HD-1.3-chromeinstaller.job : C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-chromeinstaller.exe - /installcrx /agentregpath='Plus-HD-1.3' /extensionfilepath='C:\Program Files (x86)\Plus-HD-1.3\31257.crx' /appid=31257 /srcid='000510' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1384683675 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=hhlmghjmomaoodfgjeikphfdljhpcpkl /extensionversion=1.25.93 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCkiFzfJnrcFGXgHHHwXJguczOPG3lC2rahFv0pR05x5NxDI2Z8wtXcM0Cxq57bVT3x29N/TCncz9CAmU2FcR27fYjCdK3pf2YX8mFbbAyrayfGFdA6sKn1SDBLzjWKIeYe7CVHEBZEXE8pl4S5nI+cxo5WG6l+lgqwCpez0f7CEQIDAQAB /allusers /allprofiles /externallog='' [7][x][x][x][x][x][x] -> TROUVÉ
[V1][ROGUE ST] Plus-HD-1.3-firefoxinstaller.job : C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-firefoxinstaller.exe - /installxpi /agentregpath='Plus-HD-1.3' /extensionfilepath='C:\Program Files (x86)\Plus-HD-1.3\31257.xpi' /appid=31257 /srcid='000510' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1384683675 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=509508ef-0b14-4616-a557-0d58601be33d@c4a581e9-0ea6-46db-a185-58e021ee138c.com /extensionversion=0.93 /prefsbranch=a509508ef0b144616a5570d58601be33dc4a581e90ea646dba18558e021ee138ccom31257 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/31257.rdf /allusers /allprofiles /externallog='' [7][x][x][x][x][x][x][x][x] -> TROUVÉ
[V1][ROGUE ST] Plus-HD-3.5-chromeinstaller.job : C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe - /installcrx /agentregpath='Plus-HD-3.5' /extensionfilepath='C:\Program Files (x86)\Plus-HD-3.5\37180.crx' /appid=37180 /srcid='000597' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1385196489 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=ldikpdnngdmeceeameoaannjilbjppnm /extensionversion=1.25.65 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC0Og+0O/iUTSSLoomGFEn+0rpQIZoq10aFT0vQs8LsNr9444eE6uT/BIuG10LlGwGyrfFcofsRwySJRs86eW6TfxW7A9LWjrwX0EzraxUs8jXwFiHodYzfpcQZPN/NX9tavjy2xbLLoZun4F8pQspCqepsAeGmAiFT6BFGuENEzwIDAQAB /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x] -> TROUVÉ
[V1][ROGUE ST] Plus-HD-3.5-firefoxinstaller.job : C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-firefoxinstaller.exe - /installxpi /agentregpath='Plus-HD-3.5' /extensionfilepath='C:\Program Files (x86)\Plus-HD-3.5\37180.xpi' /appid=37180 /srcid='000597' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1385196489 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=d8222698-19e5-4827-b79e-0a077ea8eb7a@7b662f6d-3899-41e4-8864-6393447568da.com /extensionversion=0.93 /prefsbranch=ad822269819e54827b79e0a077ea8eb7a7b662f6d389941e488646393447568dacom37180 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/37180.rdf /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x][x] -> TROUVÉ
[V1][ROGUE ST] Pricora 1.1-chromeinstaller.job : C:\Program Files (x86)\Pricora 1.1\Pricora 1.1-chromeinstaller.exe - /installcrx /agentregpath='Pricora 1.1' /extensionfilepath='C:\Program Files (x86)\Pricora 1.1\35497.crx' /appid=35497 /srcid='000155' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.1 /installationtime=1384695138 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=bnlcafindgcpjenlgoekciffahknjebo /extensionversion=1.25.115 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDDTWgPAbSAHZdol8AdOaG0DnZMNckkxxpkW8wLmRKRRCHrHMo12tT6VuwkMINYBGQ4NWf10eQp03enCMk4Wv8ALySsjMztQE28f+WiQwUtOUaQssFCd+e45oLo/Bk+78VM2M/hNx0QkY2HQMg0FHXgE3m35s+r+ovuc/EsJuxs5wIDAQAB /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x] -> TROUVÉ
[V1][ROGUE ST] Pricora 1.1-firefoxinstaller.job : C:\Program Files (x86)\Pricora 1.1\Pricora 1.1-firefoxinstaller.exe - /installxpi /agentregpath='Pricora 1.1' /extensionfilepath='C:\Program Files (x86)\Pricora 1.1\35497.xpi' /appid=35497 /srcid='000155' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.1 /installationtime=1384695138 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=b06fdef7-671b-4f24-babf-0377d4c40832@3dc509f2-5b3a-49d6-8b54-6cad06855fa6.com /extensionversion=0.93 /prefsbranch=ab06fdef7671b4f24babf0377d4c408323dc509f25b3a49d68b546cad06855fa6com35497 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/35497.rdf /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x][x][x] -> TROUVÉ
[V2][SUSP PATH] BoxSoftwareUpdate : "C:\ProgramData\BoxUpdChk\updchk.exe" [-] -> TROUVÉ
[V2][SUSP PATH] DealPly : C:\Users\NJAKA\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE - /Check [x] -> TROUVÉ
[V2][ROGUE ST] Feven 1.7-chromeinstaller : C:\Program Files (x86)\Feven 1.7\Feven 1.7-chromeinstaller.exe - /installcrx /crxinstalltype=0 /agentregpath='Feven 1.7' /extensionfilepath='C:\Program Files (x86)\Feven 1.7\40594.crx' /appid=40594 /srcid='000329' /subid='verticals-' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_31_153 /installerfullversion=1.31.153.1 /installationtime=1386359568 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=ajppokcpihekimknckddpgkbiphmaglg /extensionversion=1.25.49 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDLo5UCT9nWco5XvggkuBGiORqcAxdYt/UJDgtFL3TWWNwvD9XymJ1mUH82mKCutJtkAbaOyg77ATuO9DwVAbew8U5OIqL0YUqXx1kc5e+mMxDikASg0QkhOITJRjH/eg2n/A6CA9jeeR9ZlpmtzExZcg1S8SyXYIt6BTmR0GAmoQIDAQAB /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x] -> TROUVÉ
[V2][ROGUE ST] Feven 1.7-firefoxinstaller : C:\Program Files (x86)\Feven 1.7\Feven 1.7-firefoxinstaller.exe - /installxpi /agentregpath='Feven 1.7' /extensionfilepath='C:\Program Files (x86)\Feven 1.7\40594.xpi' /appid=40594 /srcid='000329' /subid='verticals-' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_31_153 /installerfullversion=1.31.153.1 /installationtime=1386359568 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=0efc9c38-1ec7-49ed-8915-53a48b6b7600@e7f17679-2a42-4659-83c5-7ba961fdf75a.com /extensionversion=0.93 /prefsbranch=a0efc9c381ec749ed891553a48b6b7600e7f176792a42465983c57ba961fdf75acom40594 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/40594.rdf /extensionname='Feven 1.7' /extensiondesc='Feven 1.7' /publishername='Feven' /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x][x][x][x][x] -> TROUVÉ
[V2][ROGUE ST] Feven Pro-firefoxinstaller : C:\Program Files (x86)\Feven Pro\Feven Pro-firefoxinstaller.exe - /installxpi /agentregpath='Feven Pro' /extensionfilepath='C:\Program Files (x86)\Feven Pro\51678.xpi' /appid=51678 /srcid='001080' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1392917974 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=46bccaaa-4500-481e-8908-9384802e175a@89a8fdd1-d807-4096-8025-a41093fce600.com /extensionversion=0.93 /prefsbranch=a46bccaaa4500481e89089384802e175a89a8fdd1d80740968025a41093fce600com51678 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/51678.rdf /extensionname='Feven Pro' /extensiondesc='Feven Shopping Companion' /publishername='Feven' /defbro=ff /allusers /allprofiles /checkfflist /autoupdateulr='hxxp://update.srvstatsdata.com/ff_agent_updates/{CAMP_ID}/update.json' /runfrom='task' /externallog='' [x][x][x][x][x][x][x][x][x][x][x][x] -> TROUVÉ
[V2][SUSP PATH] Funmoods : C:\Users\NJAKA\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE - /Check [x] -> TROUVÉ
[V2][ROGUE ST] Plus-HD-1.3-chromeinstaller : C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-chromeinstaller.exe - /installcrx /agentregpath='Plus-HD-1.3' /extensionfilepath='C:\Program Files (x86)\Plus-HD-1.3\31257.crx' /appid=31257 /srcid='000510' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1384683675 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=hhlmghjmomaoodfgjeikphfdljhpcpkl /extensionversion=1.25.93 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCkiFzfJnrcFGXgHHHwXJguczOPG3lC2rahFv0pR05x5NxDI2Z8wtXcM0Cxq57bVT3x29N/TCncz9CAmU2FcR27fYjCdK3pf2YX8mFbbAyrayfGFdA6sKn1SDBLzjWKIeYe7CVHEBZEXE8pl4S5nI+cxo5WG6l+lgqwCpez0f7CEQIDAQAB /allusers /allprofiles /externallog='' [7][x][x][x][x][x][x] -> TROUVÉ
[V2][ROGUE ST] Plus-HD-1.3-firefoxinstaller : C:\Program Files (x86)\Plus-HD-1.3\Plus-HD-1.3-firefoxinstaller.exe - /installxpi /agentregpath='Plus-HD-1.3' /extensionfilepath='C:\Program Files (x86)\Plus-HD-1.3\31257.xpi' /appid=31257 /srcid='000510' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1384683675 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=509508ef-0b14-4616-a557-0d58601be33d@c4a581e9-0ea6-46db-a185-58e021ee138c.com /extensionversion=0.93 /prefsbranch=a509508ef0b144616a5570d58601be33dc4a581e90ea646dba18558e021ee138ccom31257 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/31257.rdf /allusers /allprofiles /externallog='' [7][x][x][x][x][x][x][x][x] -> TROUVÉ
[V2][ROGUE ST] Plus-HD-3.5-chromeinstaller : C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-chromeinstaller.exe - /installcrx /agentregpath='Plus-HD-3.5' /extensionfilepath='C:\Program Files (x86)\Plus-HD-3.5\37180.crx' /appid=37180 /srcid='000597' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1385196489 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=ldikpdnngdmeceeameoaannjilbjppnm /extensionversion=1.25.65 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC0Og+0O/iUTSSLoomGFEn+0rpQIZoq10aFT0vQs8LsNr9444eE6uT/BIuG10LlGwGyrfFcofsRwySJRs86eW6TfxW7A9LWjrwX0EzraxUs8jXwFiHodYzfpcQZPN/NX9tavjy2xbLLoZun4F8pQspCqepsAeGmAiFT6BFGuENEzwIDAQAB /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x] -> TROUVÉ
[V2][ROGUE ST] Plus-HD-3.5-firefoxinstaller : C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-firefoxinstaller.exe - /installxpi /agentregpath='Plus-HD-3.5' /extensionfilepath='C:\Program Files (x86)\Plus-HD-3.5\37180.xpi' /appid=37180 /srcid='000597' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.0 /installationtime=1385196489 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=d8222698-19e5-4827-b79e-0a077ea8eb7a@7b662f6d-3899-41e4-8864-6393447568da.com /extensionversion=0.93 /prefsbranch=ad822269819e54827b79e0a077ea8eb7a7b662f6d389941e488646393447568dacom37180 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/37180.rdf /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x][x] -> TROUVÉ
[V2][ROGUE ST] Pricora 1.1-chromeinstaller : C:\Program Files (x86)\Pricora 1.1\Pricora 1.1-chromeinstaller.exe - /installcrx /agentregpath='Pricora 1.1' /extensionfilepath='C:\Program Files (x86)\Pricora 1.1\35497.crx' /appid=35497 /srcid='000155' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.1 /installationtime=1384695138 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=bnlcafindgcpjenlgoekciffahknjebo /extensionversion=1.25.115 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDDTWgPAbSAHZdol8AdOaG0DnZMNckkxxpkW8wLmRKRRCHrHMo12tT6VuwkMINYBGQ4NWf10eQp03enCMk4Wv8ALySsjMztQE28f+WiQwUtOUaQssFCd+e45oLo/Bk+78VM2M/hNx0QkY2HQMg0FHXgE3m35s+r+ovuc/EsJuxs5wIDAQAB /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x] -> TROUVÉ
[V2][ROGUE ST] Pricora 1.1-firefoxinstaller : C:\Program Files (x86)\Pricora 1.1\Pricora 1.1-firefoxinstaller.exe - /installxpi /agentregpath='Pricora 1.1' /extensionfilepath='C:\Program Files (x86)\Pricora 1.1\35497.xpi' /appid=35497 /srcid='000155' /subid='0' /zdata='0' /bic=35580D0BF82C44F8BBC36F240CC52463IE /verifier=ee890ff6c5c3d90d813a9bdf217b8d97 /installerversion=1_30_153 /installerfullversion=1.30.153.1 /installationtime=1384695138 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=b06fdef7-671b-4f24-babf-0377d4c40832@3dc509f2-5b3a-49d6-8b54-6cad06855fa6.com /extensionversion=0.93 /prefsbranch=ab06fdef7671b4f24babf0377d4c408323dc509f25b3a49d68b546cad06855fa6com35497 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/35497.rdf /allusers /allprofiles /externallog='' [x][x][x][x][x][x][x][x][x][x] -> TROUVÉ
[V2][SUSP PATH] wp_update : C:\Users\NJAKA\AppData\Roaming\~lseduql.exe [7] -> TROUVÉ

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Addons navigateur : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1tonec.com
127.0.0.1 www.tonec.com
127.0.0.1 registeridm.com
127.0.0.1 www.registeridm.com
127.0.0.1 secure.registeridm.com
127.0.0.1 internetdownloadmanager.com
127.0.0.1 www.internetdownloadmanager.com
127.0.0.1 secure.internetdownloadmanager.com
127.0.0.1 mirror.internetdownloadmanager.com
127.0.0.1 mirror2.internetdownloadmanager.com
127.0.0.1 mirror3.internetdownloadmanager.com
54.225.95.126 dmcecclamecbinmplcolhaljlclhbgah


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Hitachi HTS547550A9E384 ATA Device +++++
--- User ---
[MBR] e1b52edf604a6fd1b75dc30fd1106b52
[BSP] 13dbc70a4936ef3d4d8e300d77dfcc07 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 400 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 821248 | Size: 134181 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 275623936 | Size: 104015 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 488646656 | Size: 238343 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_S_02262014_112950.txt >>





Publicité


Signaler le contenu de ce document

Publicité