rk-D608.tmp.txt

Document joint : GIkrGsWVkHv_rk-D608.tmp.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V12.11.13.0 [Sep 4 2017] (Premium) (H'37) (1F'E, Adlice
'D(1J/ 'D%DC*1HFJ : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
'DEHB9 : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

F8'E 'D*4:JD : Windows 7 (6.1.7600) 32 bits version
J(/# AJ : 'DH69 'D7(J9J
'DE3*./E : PCki [E3$HD]
Started from : C:\Program Files\RogueKiller\RogueKiller.exe
'DH69 : -0A -- 'DJHE : 09/10/2017 17:59:40 (Duration : 00:20:58)
'DEA'*J- : -refid

¤¤¤ 'D9EDJ) : 0 ¤¤¤

¤¤¤ 'DE3,D : 2 ¤¤¤
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{4E120188-0CAC-468C-B2D9-9D1F079EBC25} (C:\Users\PCki\AppData\Local\Temp\HYD10F.tmp.1483466019\HTA\3rdparty\FS.ocx) -> ?????
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> ??????? (2)

¤¤¤ 'DEG'E : 0 ¤¤¤

¤¤¤ 'DEDA'* : 7 ¤¤¤
[Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.4.9_42973\utorrentie.exe -> ?????
[Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.4.9_43085\utorrentie.exe -> ?????
[Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.4.9_43295\utorrentie.exe -> ?????
[Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe -> ?????
[Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe -> ?????
[Tr.Gen0][EDA] C:\Users\PCki\AppData\Roaming\uTorrent\updates\3.5.0_43916\utorrentie.exe -> ?????
[PUP.Ghokswa][EDA] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox -> ?????
[PUP.Ghokswa][EDA] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox\Firefox.lnk -> ?????

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ EDA 'DGH3* : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: E-ED) ¤¤¤

¤¤¤ 'DE*5A- : 1 ¤¤¤
[PUP.Gen2][Firefox:Addon] zd10fdzz.default-1485434394478 : Freemake Video Converter Plugin [fmconverter@gmail.com] -> ?????

¤¤¤ A-5 'D MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HDS721050CLA362 ATA Device +++++
--- User ---
[MBR] be80b6792b1db84779b85d14d9383754
[BSP] 65871fa74f4cc42430169de39c57e543 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 149997 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 307194930 | Size: 326932 MB
User = LL1 ... OK
User = LL2 ... OK

Signaler le contenu de ce document