cjoint

Publicité


Publicité

Format du document : text/x-log

Prévisualisation

RogueKiller V10.5.2.0 [Mar 9 2015] par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Démarré en : Mode normal
Utilisateur : Fabio [Administrateur]
Démarré depuis : C:\Users\Fabio\Desktop\RogueKiller.exe
Mode : Suppression -- Date : 03/09/2015 16:18:25

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 53 ¤¤¤
[PUP] HKEY_CLASSES_ROOT\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D} (C:\Program Files\ConduitEngine\ConduitEngine.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} (C:\Program Files\Samsung\Kies\External\SyncModules\secman.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} (C:\Program Files\Samsung\Kies\External\SyncModules\secman.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9} -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{DD438708-AAB4-422D-A322-B619589F5680} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984} (mscoree.dll) -> Supprimé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} -> Supprimé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D} (C:\Program Files\ConduitEngine\ConduitEngine.dll) -> Supprimé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} -> Supprimé(e)
[PUM.HomePage] HKEY_USERS\S-1-5-21-46301255-144469182-408411990-1020\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.orange.fr -> Remplacé(e) (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-46301255-144469182-408411990-1020\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRun : 0 -> Remplacé(e) (1)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-46301255-144469182-408411990-1020\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowPrinters : 0 -> Remplacé(e) (1)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Remplacé(e) (0)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Remplacé(e) (0)

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 17 ¤¤¤
[ZeroAccess][Répertoire] Install -- C:\Users\Fabio\AppData\Local\Google\Desktop\Install -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] {68d51afc-81f9-043c-c299-9124f21ee9e9} -- C:\Users\Fabio\AppData\Local\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9}\❤≸⋙\Ⱒ☠⍨\?ﯹ๛\{68d51afc-81f9-043c-c299-9124f21ee9e9} -> ERROR [5]
[ZeroAccess][Répertoire] ?ﯹ๛ -- C:\Users\Fabio\AppData\Local\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9}\❤≸⋙\Ⱒ☠⍨\?ﯹ๛ -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] Ⱒ☠⍨ -- C:\Users\Fabio\AppData\Local\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9}\❤≸⋙\Ⱒ☠⍨ -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] ❤≸⋙ -- C:\Users\Fabio\AppData\Local\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9}\❤≸⋙ -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] {68d51afc-81f9-043c-c299-9124f21ee9e9} -- C:\Users\Fabio\AppData\Local\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9} -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] Install -- C:\Program Files\Google\Desktop\Install -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] {68d51afc-81f9-043c-c299-9124f21ee9e9} -- C:\Program Files\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9}\ \...\?ﯹ๛\{68d51afc-81f9-043c-c299-9124f21ee9e9} -> ERROR [5]
[ZeroAccess][Répertoire] ?ﯹ๛ -- C:\Program Files\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9}\ \...\?ﯹ๛ -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] -- C:\Program Files\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9}\ \ -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] -- C:\Program Files\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9}\ -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Répertoire] {68d51afc-81f9-043c-c299-9124f21ee9e9} -- C:\Program Files\Google\Desktop\Install\{68d51afc-81f9-043c-c299-9124f21ee9e9} -> Supprimé(e) au redémarrage [91]
[ZeroAccess][Jonction] fr-FR -- C:\Program Files\Windows Defender\fr-FR [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpAsDesc.dll -- C:\Program Files\Windows Defender\MpAsDesc.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpClient.dll -- C:\Program Files\Windows Defender\MpClient.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpCmdRun.exe -- C:\Program Files\Windows Defender\MpCmdRun.exe [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpEvMsg.dll -- C:\Program Files\Windows Defender\MpEvMsg.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpOAV.dll -- C:\Program Files\Windows Defender\MpOAV.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpRtMon.dll -- C:\Program Files\Windows Defender\MpRtMon.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpRtPlug.dll -- C:\Program Files\Windows Defender\MpRtPlug.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpSigDwn.dll -- C:\Program Files\Windows Defender\MpSigDwn.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpSoftEx.dll -- C:\Program Files\Windows Defender\MpSoftEx.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MpSvc.dll -- C:\Program Files\Windows Defender\MpSvc.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MSASCui.exe -- C:\Program Files\Windows Defender\MSASCui.exe [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MsMpCom.dll -- C:\Program Files\Windows Defender\MsMpCom.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MsMpLics.dll -- C:\Program Files\Windows Defender\MsMpLics.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)
[ZeroAccess][Jonction] MsMpRes.dll -- C:\Program Files\Windows Defender\MsMpRes.dll [JUNCTION@ a000000c] >> \systemroot\system32\config -> Jonction Supprimé(e)

¤¤¤ Fichier Hosts : 0 [Too big!] ¤¤¤

¤¤¤ Antirootkit : 12 (Driver: Chargé) ¤¤¤
[IRP:Addr(Hook.IRP)] \SystemRoot\system32\drivers\iastorv.sys - IRP_MJ_CREATE[0] : Unknown @ 0x863381f8
[IRP:Addr(Hook.IRP)] \SystemRoot\system32\drivers\iastorv.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x863381f8
[IRP:Addr(Hook.IRP)] \SystemRoot\system32\drivers\iastorv.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x863381f8
[IRP:Addr(Hook.IRP)] \SystemRoot\system32\drivers\iastorv.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x863381f8
[IRP:Addr(Hook.IRP)] \SystemRoot\system32\drivers\iastorv.sys - IRP_MJ_POWER[22] : Unknown @ 0x863381f8
[IRP:Addr(Hook.IRP)] \SystemRoot\system32\drivers\iastorv.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x863381f8
[IRP:Addr(Hook.IRP)] \SystemRoot\system32\drivers\iastorv.sys - IRP_MJ_PNP[27] : Unknown @ 0x863381f8
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\PxHelp20 @ Unknown (\SystemRoot\system32\drivers\ulsata.sys)
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\bcmwl6.sys)
[Filter(Kernel.Filter)] \Driver\atapi @ \Device\Harddisk0\DR0 : \Driver\partmgr @ Unknown (\SystemRoot\system32\drivers\isapnp.sys)
[Filter(Kernel.Filter)] \Driver\disk @ \Device\Harddisk1\DR11 : \Driver\partmgr @ Unknown (\SystemRoot\system32\drivers\isapnp.sys)
[Filter(Kernel.Filter)] \Driver\disk @ \Device\Harddisk0\DR0 : \Driver\partmgr @ Unknown (\SystemRoot\system32\drivers\isapnp.sys)

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 772e472dbd974c9d1ef003a1736e6b31
[BSP] 6161b3acb7a144bbc1f2e09ed5fe5786 : HP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 152625 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: USB DISK 2.0 USB Device +++++
--- User ---
[MBR] 99d48cd2dc43d0c103b84c68a934a9fa
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 8064 | Size: 15284 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n'est pas prise en charge. )


============================================
RKreport_SCN_03092015_115108.log - RKreport_SCN_03092015_161348.log

Publicité


Signaler le contenu de ce document

Publicité