cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V12.10.8.0 (x64) [May 8 2017] (Gratuit) par Adlice Software
email : http://www.adlice.com/contact/
Remontées : https://forum.adlice.com
Site web : http://www.adlice.com/fr/download/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarré en : Mode normal
Utilisateur : Joran [Administrateur]
Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 05/14/2017 15:19:45 (Durée : 00:40:19)

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 138 ¤¤¤
[Suspicious.Path] (X64) HKEY_CLASSES_ROOT\CLSID\{592611D5-B806-0CF1-3F30-B6090A07A90A} (C:\ProgramData\Isaveor\8DM5O.x64.dll) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_CLASSES_ROOT\CLSID\{A134A36C-DA6F-DD1C-9D71-86EECE14E384} (C:\ProgramData\GreatSave4Ua\kVoWr.x64.dll) -> Trouvé(e)
[PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115} (C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll) -> Trouvé(e)
[PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87} (C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll) -> Trouvé(e)
[PUP.Gen0] (X64) HKEY_CLASSES_ROOT\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515} (C:\PROGRA~2\SEARCH~1\Datamngr\x64\DnsBHO.dll) -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\DataMngr -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Tarma Installer -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Babylon -> Trouvé(e)
[PUP.Conduit|PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Conduit -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\DataMngr -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Iminent -> Trouvé(e)
[PUP.SearchProtect|PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SearchProtect -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SearchquMediabarTb -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SoftwareUpdater -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SP Global -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SPPDCOM -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SProtector -> Trouvé(e)
[PUP.SweetIM|PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\SweetIM -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Vittalia -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\{77D46E27-0E41-4478-87A6-AABE6FBCF252} -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\.DEFAULT\Software\DealPly -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\.DEFAULT\Software\DealPly -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\1ClickDownload -> Trouvé(e)
[PUP.Conduit|PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Conduit -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Cr_Installer -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\DataMngr -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\DataMngr_Toolbar -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Gameo -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\IM -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Iminent -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\InstallCore -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\InstalledBrowserExtensions -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\ProductSetup -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Softonic -> Trouvé(e)
[PUP.SweetIM|PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\SweetIM -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\TeleCharger -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\1ClickDownload -> Trouvé(e)
[PUP.Conduit|PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Conduit -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Cr_Installer -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\DataMngr -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\DataMngr_Toolbar -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Gameo -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\IM -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Iminent -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\InstallCore -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\InstalledBrowserExtensions -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\ProductSetup -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Softonic -> Trouvé(e)
[PUP.SweetIM|PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\SweetIM -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\TeleCharger -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-18\Software\DealPly -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-18\Software\DealPly -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-19\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-19\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-20\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-20\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1000\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1000\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\SProtector -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\SProtector -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-18\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-18\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} -> Trouvé(e)
[PUP.Conduit|PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\Conduit -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\ConduitSearchScopes -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\Crossrider -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\Giant Savings -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\PriceGong -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\searchqutoolbar -> Trouvé(e)
[PUP.Conduit|PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\Conduit -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\ConduitSearchScopes -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\Crossrider -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\Giant Savings -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\PriceGong -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\AppDataLow\Software\searchqutoolbar -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4BD8E034-E0F4-4509-A753-467A8E854CD8} -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\FileParade bundle uninstaller -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Giant Savings -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP -> Trouvé(e)
[PUP.SearchProtect|PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu Toolbar -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vittalia -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4BD8E034-E0F4-4509-A753-467A8E854CD8} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{83AA2913-C123-4146-85BD-AD8F93971D39} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3} -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F1422DAA-0829-09A1-7536-73936CAB8FFA} -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly -> Trouvé(e)
[PUP.Gen0] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0} -> Trouvé(e)
[PUP.Gen0] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7} -> Trouvé(e)
[PUP.Gen0] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0} -> Trouvé(e)
[PUP.Gen0] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {977AE9CC-AF83-45E8-9E03-E2798216E2D5} : -> Trouvé(e)
[PUP.Gen0] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {977AE9CC-AF83-45E8-9E03-E2798216E2D5} : -> Trouvé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | DATAMNGR : C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE [x] -> Trouvé(e)
[PUM.Proxy] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Trouvé(e)
[PUM.Proxy] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Trouvé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Trouvé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Trouvé(e)
[PUM.Proxy] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:49313;https=127.0.0.1:49313 -> Trouvé(e)
[PUM.Proxy] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:49313;https=127.0.0.1:49313 -> Trouvé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:49313;https=127.0.0.1:49313 -> Trouvé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:49313;https=127.0.0.1:49313 -> Trouvé(e)
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://search.gboxapp.com/ -> Trouvé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://search.gboxapp.com/ -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus.msn.com -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus.msn.com -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com/?pc=COSP&ptag=D090116-A8D15A5DDE3&form=CONMHP&conlogo=CT3335578 -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com/?pc=COSP&ptag=D090116-A8D15A5DDE3&form=CONMHP&conlogo=CT3335578 -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1000\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus.msn.com -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1000\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus.msn.com -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus.msn.com -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-252542620-3142575623-1769399689-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus.msn.com -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{1E49E31E-9E46-4B7B-8DB1-21FA02D8474C} | DhcpNameServer : 172.20.10.1 ([]) -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{1E49E31E-9E46-4B7B-8DB1-21FA02D8474C} | DhcpNameServer : 172.20.10.1 ([]) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {05C6C1CE-BDBF-43F3-A5D2-5F731AC3DF25} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Users\Joran\AppData\Local\Temp\nsj63B1.tmp\BundleSweetIMSetup.exe|Name=MiniMe| [x] -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {F11859C8-864F-4779-9B49-0F52D82D2B82} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Users\Joran\AppData\Local\Temp\nsj63B1.tmp\BundleSweetIMSetup.exe|Name=MiniMe| [x] -> Trouvé(e)
[Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{A2500736-D034-44E6-AEC8-B6A80271DFA8}C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe|Name=popcorn time.exe|Desc=popcorn time.exe|Defer=User| [x] -> Trouvé(e)
[Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{EFF1140C-02F1-4F90-9508-D5C7DCBF10EF}C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe|Name=popcorn time.exe|Desc=popcorn time.exe|Defer=User| [x] -> Trouvé(e)
[Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{0B5D1D72-F973-4F5D-9C7A-BFCD4E1CA7EE}C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe|Name=popcorn time.exe|Desc=popcorn time.exe|Defer=User| [x] -> Trouvé(e)
[Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{0B343319-DB2C-47AC-A4A8-517E192D8C01}C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe|Name=popcorn time.exe|Desc=popcorn time.exe|Defer=User| [x] -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {05C6C1CE-BDBF-43F3-A5D2-5F731AC3DF25} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Users\Joran\AppData\Local\Temp\nsj63B1.tmp\BundleSweetIMSetup.exe|Name=MiniMe| [x] -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {F11859C8-864F-4779-9B49-0F52D82D2B82} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Users\Joran\AppData\Local\Temp\nsj63B1.tmp\BundleSweetIMSetup.exe|Name=MiniMe| [x] -> Trouvé(e)
[Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{A2500736-D034-44E6-AEC8-B6A80271DFA8}C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe|Name=popcorn time.exe|Desc=popcorn time.exe|Defer=User| [x] -> Trouvé(e)
[Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{EFF1140C-02F1-4F90-9508-D5C7DCBF10EF}C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe|Name=popcorn time.exe|Desc=popcorn time.exe|Defer=User| [x] -> Trouvé(e)
[Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{0B5D1D72-F973-4F5D-9C7A-BFCD4E1CA7EE}C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe|Name=popcorn time.exe|Desc=popcorn time.exe|Defer=User| [x] -> Trouvé(e)
[Suspicious.Path|PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{0B343319-DB2C-47AC-A4A8-517E192D8C01}C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\joran\appdata\local\popcorn time\node-webkit\popcorn time.exe|Name=popcorn time.exe|Desc=popcorn time.exe|Defer=User| [x] -> Trouvé(e)

¤¤¤ Tâches : 1 ¤¤¤
[Suspicious.Path|PUP.Gen1] \DealPly -- C:\Users\Joran\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE (/Check) -> Trouvé(e)

¤¤¤ Fichiers : 39 ¤¤¤
[PUP.Gen1][Répertoire] C:\ProgramData\APN -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Babylon -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Content Accelerator -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Lavasoft\Web Companion -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\StarApp -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Tarma Installer -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\hdvidcodec.com -> Trouvé(e)
[Root.ZeroAccess][Répertoire] C:\Windows\Installer\{3c42eb88-3e76-c42f-e757-e3ec8d556822}\L -> Trouvé(e)
[Root.ZeroAccess][Répertoire] C:\Windows\Installer\{3c42eb88-3e76-c42f-e757-e3ec8d556822}\U -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Roaming\Babylon -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Roaming\Gameo -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Roaming\Lavasoft\Web Companion -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Roaming\NCdownloader -> Trouvé(e)
[PUP.Conduit|PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Local\Conduit -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Local\Gameo -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Local\Giant Savings -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Local\Ilivid Player -> Trouvé(e)
[PUP.SearchProtect|PUP.Gen0|PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Local\SearchProtect -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\APN -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Babylon -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Content Accelerator -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Lavasoft\Web Companion -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileParade bundle uninstaller -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\StarApp -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Tarma Installer -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\1ClickDownload -> Trouvé(e)
[PUP.Conduit|PUP.Gen1][Répertoire] C:\Program Files (x86)\Conduit -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\ContinueToSave -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\Giant Savings -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\hdvidcodec.com -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\IMinent Toolbar -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\Lavasoft\Web Companion -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\Popcorn Time -> Trouvé(e)
[PUP.SearchProtect|PUP.Gen0|PUP.Gen1][Répertoire] C:\Program Files (x86)\SearchProtect -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\Searchqu Toolbar -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\Vittalia -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files (x86)\Yontoo -> Trouvé(e)
[PUP.Gen3][Fichier] C:\Users\Joran\AppData\Roaming\Mozilla\Firefox\Profiles\qbpqjxxk.default\searchplugins\bing-lavasoft.xml -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\Joran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\hdvidcodec.com -> Trouvé(e)

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 5 ¤¤¤
[PUM.Proxy][Firefox:Config] qbpqjxxk.default : user_pref("network.proxy.type", 5); -> Trouvé(e)
[PUM.HomePage][Firefox:Config] qbpqjxxk.default : user_pref("browser.startup.homepage", "http://www.bing.com/?pc=COSP&ptag=D090116-A8D15A5DDE3&form=CONMHP&conlogo=CT3335578"); -> Trouvé(e)
[PUM.NewTab][Firefox:Config] qbpqjxxk.default : user_pref("browser.newtab.url", "http://www.bing.com/?pc=COSP&ptag=D090116-A8D15A5DDE3&form=CONMHP&conlogo=CT3335578"); -> Trouvé(e)
[PUM.SearchEngine][Firefox:Config] qbpqjxxk.default : user_pref("browser.search.selectedEngine", "Bing®"); -> Trouvé(e)
[PUM.SearchEngine][Firefox:Config] qbpqjxxk.default : user_pref("browser.search.defaultenginename", "Bing®"); -> Trouvé(e)

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS547575A9E384 +++++
--- User ---
[MBR] 132408b2b25a3db063cd1ae8cd1c941b
[BSP] 6038da5abdb86a32e945c2c6aa172f56 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0x1c) [HIDDEN!] Offset (sectors): 2048 | Size: 25600 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 52430848 | Size: 286161 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 638488576 | Size: 403641 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: General USB Flash Disk USB Device +++++
--- User ---
[MBR] 735a1b1b751152b1728bddc726b90c7b
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0xb) [VISIBLE] Offset (sectors): 32 | Size: 7650 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )


Publicité


Signaler le contenu de ce document

Publicité