cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V12.4.2.0 [Aug 1 2016] (Premium) par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/download/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7100) 32 bits version
Démarré en : Mode normal
Utilisateur : Said [Administrateur]
Démarré depuis : C:\Users\Said\Desktop\RogueKiller.exe
Mode : Scan -- Date : 08/01/2016 12:51:41

¤¤¤ Processus : 3 ¤¤¤
[VT.Trojan/Win32.Xema.N56094216] naofsvc.exe(1568) -- C:\Program Files\rnamfler\naofsvc.exe[-] -> Trouvé(e)
[VT.PUP.Optional.AudioToAudioToolBar] dvbarsvc.exe(2528) -- C:\Program Files\TestiNetSpeed_dv\bar\1.bin\dvbarsvc.exe[7] -> Trouvé(e)
[VT.PUP.Optional.MindSpark] AppIntegrator.exe(4276) -- C:\Program Files\TestiNetSpeed_dv\bar\1.bin\AppIntegrator.exe[7] -> Trouvé(e)

¤¤¤ Registre : 167 ¤¤¤
[PUP] HKEY_CLASSES_ROOT\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} (C:\Program Files\Ask.com\GenericAskToolbar.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344} (C:\Users\Said\AppData\Local\Google\Update\1.3.21.135\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{0ED2C1F5-0D52-3528-8D19-2B3810844C64} (mscoree.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401} (C:\Program Files\Yontoo\YontooIEClient.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448} (C:\Users\Said\AppData\Local\Google\Update\1.3.27.5\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1} (C:\Program Files\Conduit\Community Alerts\Alert.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237} (C:\Program Files\Common Files\AVG Secure Search\RewardsInstaller\17.0.12\AVGRewardsWorker.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{48791EE8-18B0-3225-94A7-2E912681434F} (mscoree.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} (C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.9.0\ViProtocol.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C} -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856} (C:\Users\Said\AppData\Local\Google\Update\1.3.30.3\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateBroker.exe") -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B} (C:\Users\Said\AppData\Local\Google\Update\1.3.21.123\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateOnDemand.exe") -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5} (C:\Users\Said\AppData\Local\Google\Update\1.3.21.153\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateOnDemand.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B} -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{724FE766-71C2-4E6E-8379-CD0EF5E51BDD} (C:\Users\Said\AppData\Local\Google\Update\1.3.28.17\psuser.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247} (C:\Users\Said\AppData\Local\Google\Update\1.3.29.5\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateOnDemand.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateOnDemand.exe") -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8} (C:\Users\Said\AppData\Local\Google\Update\1.3.24.15\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} ("C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\18.9.0\ScriptHelper.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{99066096-8989-4612-841F-621A01D54AD7} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{9AFB8248-617F-460d-9366-D71CDEDA3179} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052} -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61} (C:\Users\Said\AppData\Local\Google\Update\1.3.22.3\psuser.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A54D478D-4F70-4F72-9A74-17C9986E35AB} (C:\Users\Said\AppData\Local\Google\Update\1.3.21.165\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateBroker.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} (mscoree.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9} (%SystemRoot%\System32\NaturalLanguage6.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{af6ac4f2-9825-4fb6-a600-92bc5361f209} (C:\PROGRA~1\SEARCH~2\Datamngr\ToolBar\searchcoredtx.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A} ("C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\18.9.0\ScriptHelper.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} (C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.9.0\ViProtocol.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{C0525F65-37A6-3CB1-B930-D0AD83655FCD} (mscoree.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{C339D489-FABC-41DD-B39D-276101667C70} -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A} (C:\Users\Said\AppData\Local\Google\Update\1.3.26.9\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615} ("C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\18.9.0\ScriptHelper.exe") -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2} (C:\Users\Said\AppData\Local\Google\Update\1.3.29.1\psuser.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9} (C:\Users\Said\AppData\Local\Google\Update\1.3.25.11\psuser.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF} (C:\Users\Said\AppData\Local\Google\Update\1.3.28.15\psuser.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} (C:\Program Files\Ask.com\GenericAskToolbar.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} (C:\Program Files\Yontoo\YontooIEClient.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateBroker.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{F149A3F1-9BED-3E8D-886C-AC801394E432} (mscoree.dll) -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} ("C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\18.1.7\ScriptHelper.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateOnDemand.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78} ("C:\Program Files\globalUpdate\Update\1.3.25.0\globalupdateBroker.exe") -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\CLSID\{FE9271F2-6EFD-44b0-A826-84C829536E93} -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\ComObject.DeskbarEnabler -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\driverscanner -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\Prod.cap -> Trouvé(e)
[PUP] HKEY_CLASSES_ROOT\speedupmypc -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\AIM Toolbar -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\APN -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\AskToolbar -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\AVG Secure Search -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Babylon -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\BrowserCompanion -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Conduit -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Delta -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\eSafeSecControl -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\GlobalUpdate -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\GoforFiles -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\iLividSRTB -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\InstalledBrowserExtensions -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\SearchcoreMediabarTb -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\SearchProtect -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\SearchquMediabarTb -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\SereneScreen -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\SP Global -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\SpeedBit -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Systweak -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Tarma Installer -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Uniblue -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Vittalia -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\YourFileDownloader -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Yuna Software -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\{12A61307-94CD-4F8E-94BC-918E511FAA81} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9} -> Trouvé(e)
[PUP] HKEY_USERS\.DEFAULT\Software\AVG Secure Search -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\APN -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\APN PIP -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Ask.com -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\AVG Secure Search -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\BabSolution -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Bitberry -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\BrowserCompanion -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Cain -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Conduit -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Delta -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\DSNR Labs -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\globalUpdate -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\GoforFiles -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Headlight -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\iLivid -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\ilividtoolbarguid -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\IM -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\InstalledBrowserExtensions -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Kromtech -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Linkey -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Linkury -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\MediaFinder -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\SereneScreen -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\SimplyTech -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Smart PC Solutions -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Softonic -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Systweak -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\VNT -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\WebApp -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\YourFileDownloader -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Yuna Software -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-18\Software\AVG Secure Search -> Trouvé(e)
[PUP] HKEY_USERS\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\AppDataLow\Toolbar -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9} -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-18\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} -> Trouvé(e)
[PUP] HKEY_USERS\.DEFAULT\Software\AppDataLow\Software\mediabarbs -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\AppDataLow\Software\adawarebp -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\AppDataLow\Software\AskToolbar -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-18\Software\AppDataLow\Software\mediabarbs -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\ilividtoolbarguid -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1 -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Windows Searchcore Toolbar -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA} -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0} -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{af6ac4f2-9825-4fb6-a600-92bc5361f209} (C:\PROGRA~1\SEARCH~2\Datamngr\ToolBar\searchcoredtx.dll) -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} (C:\Program Files\Ask.com\GenericAskToolbar.dll) -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {D4027C7F-154A-4066-A1AD-4243D8127440} : (C:\Program Files\Ask.com\GenericAskToolbar.dll) -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {af6ac4f2-9825-4fb6-a600-92bc5361f209} : Searchcore Toolbar (C:\PROGRA~1\SEARCH~2\Datamngr\ToolBar\searchcoredtx.dll) -> Trouvé(e)
[PUP] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {95B7759C-8C7F-4BF1-B163-73684A933233} : -> Trouvé(e)
[PUP] HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks | {9CB65206-89C4-402c-BA80-02D8C59F9B1D} : -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks | {00000000-6E41-4FD3-8538-502F5495E5FC} : (C:\Program Files\Ask.com\GenericAskToolbar.dll) -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks | {6c97a91e-4524-4019-86af-2aa2d567bf5c} : -> Trouvé(e)
[PUP] HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks | {9CB65206-89C4-402c-BA80-02D8C59F9B1D} : -> Trouvé(e)
[VT.PUP.Optional.MindSpark] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | Test iNet Speed EPM Support : "C:\PROGRA~1\TESTIN~1\bar\1.bin\dvmedint.exe" t8EPMSup.dll,S [7][x] -> Trouvé(e)
[PUM.SearchPage] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus -> Trouvé(e)
[PUM.SearchPage] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Microsoft\Internet Explorer\Main | Search Bar : http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus -> Trouvé(e)
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-4096608755-3057487701-1417227335-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Trouvé(e)

¤¤¤ Tâches : 1 ¤¤¤
[Suspicious.Path|VT.not-a-virus:WebToolbar.Win32.Agent.bzk] \tcbackup -- C:\Users\Said\AppData\Local\tcbackup\mysp.exe (/upd) -> Trouvé(e)

¤¤¤ Fichiers : 47 ¤¤¤
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\Babylon -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\Blekko -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\DriverFinder -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\DVDVideoSoftIEHelpers -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\eType -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\GoforFiles -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\Media Finder -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\PerformerSoft -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\SimpleFiles -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\Systweak -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\Uniblue -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\Webplayer -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\wp_update -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Roaming\YourFileDownloader -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\AVG Secure Search -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\Conduit -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\delta -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\globalUpdate -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\Ilivid Player -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\Linkury -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\PackageAware -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\RtbSync -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\ShdUpdate -> Trouvé(e)
[PUP][Répertoire] C:\Users\Said\AppData\Local\VNT -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\APN -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\AVG Secure Search -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Babylon -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\BrowserDefender -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Driver Whiz -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\dtdata -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\eSafe -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cain -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SereneScreen -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Optimizer -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\QuickSet -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Tarma Installer -> Trouvé(e)
[PUP][Répertoire] C:\ProgramData\Uniblue -> Trouvé(e)
[PUP][Répertoire] C:\Program Files\Crawler -> Trouvé(e)
[PUP][Répertoire] C:\Program Files\globalUpdate -> Trouvé(e)
[PUP][Répertoire] C:\Program Files\rnamfler -> Trouvé(e)
[PUP][Répertoire] C:\Program Files\Search Results Toolbar -> Trouvé(e)
[PUP][Répertoire] C:\Program Files\Searchcore Toolbar -> Trouvé(e)
[PUP][Répertoire] C:\Program Files\Yuna Software -> Trouvé(e)

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 2 ¤¤¤
[PUP][CHROME:Addon] Default : AVG Security Toolbar [ndibdjnfmopecpmkdieinmbadjfpblof] -> Trouvé(e)
[PUM.HomePage][FIREFX:Config] 0 : user_pref("browser.startup.homepage", "https://www.malwarebytes.org/restorebrowser//?pid=20046&r=2015/06/17&hid=610674630304864112&lg=EN&cc=DZ&unqvl=90"); -> Trouvé(e)

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545016B9A300 ATA Device +++++
--- User ---
[MBR] 19017dec2205b411720ac9d150bf75d1
[BSP] 6fec4db8699410d2858886defa72f778 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 63 | Size: 12291 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 25173855 | Size: 101 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 25382700 | Size: 140232 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


Publicité


Signaler le contenu de ce document

Publicité