التنظيف.txt

Document joint : GIlxprYMOaC_التنظيف.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V12.11.14.0 [Sep 11 2017] (Free) (H'37) (1F'E, Adlice
'D(1J/ 'D%DC*1HFJ : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
'DEHB9 : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

F8'E 'D*4:JD : Windows 7 (6.1.7600) 32 bits version
J(/# AJ : 'DH69 'D7(J9J
'DE3*./E : Admin [E3$HD]
Started from : C:\Program Files\RogueKiller\RogueKiller.exe
'DH69 : -0A -- 'DJHE : 09/11/2017 23:42:56 (Duration : 00:25:12)
'DEA'*J- : -refid

¤¤¤ 'D9EDJ) : 0 ¤¤¤

¤¤¤ 'DE3,D : 27 ¤¤¤
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{09C4B9DD-73AD-459D-934A-25EC1D0B2300} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> ?????
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> ?????
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> ?????
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96} (C:\PROGRA~1\COMMON~1\WONDER~1\WONDER~1\WSHelper.exe) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{75F3F7EC-B2ED-4851-ABF1-9F1F29D18100} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> ?????
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A007937E-38DE-45E3-BF37-D03862DA4C00} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A1D7020E-4EB0-4E0D-8A8E-DAA3BB2F0300} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A37C2155-D129-4489-BB43-AF7B51CEA600} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A3FC8865-E5C6-492D-8044-CBF135C63F00} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A47BD9D5-25E5-46F9-A3C2-120BE6CA3100} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AB1DBBC8-CAF8-4FEE-BF54-60E249E33900} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AB6D2735-3392-47E1-83D6-6ED93BD71D00} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{ABC300F7-DC0D-4640-BFBF-F6458815C200} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AD0796F7-CC0A-4353-A385-628CEAB59800} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{ADFA580A-3B17-4614-876C-8A425AAF6000} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AE9FDA25-5E40-466B-81E2-53D1C1979B00} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AF152690-A6BF-4BAA-8E76-D52954B21200} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AF68E6DC-0B1A-4169-9966-C06D8F2DE300} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AF8259A6-AB6D-46E1-AF8D-9CD2AC821A00} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> ?????
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{E72F452B-0034-4DCB-8648-916976299600} (C:\ProgramData\Soda PDF Desktop\Installation\Statistics.dll) -> ?????
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> ?????
[PUM.StartMenu] HKEY_USERS\S-1-5-21-85213751-3370129170-3191285278-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> ??????? (1)

¤¤¤ 'DEG'E : 0 ¤¤¤

¤¤¤ 'DEDA'* : 0 ¤¤¤

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ EDA 'DGH3* : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: E-ED) ¤¤¤

¤¤¤ 'DE*5A- : 0 ¤¤¤

¤¤¤ A-5 'D MBR : ¤¤¤
+++++ PhysicalDrive0: ST3320311CS ATA Device +++++
--- User ---
[MBR] 254456d7eeebaf55619b9aeba4271c36
[BSP] 619e372eef93206e99c93c099e2b98f7 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 305143 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Hitachi HDS721616PLA380 ATA Device +++++
--- User ---
[MBR] 284cdfead1ca4cc45ba9f7386a39df00
[BSP] 2559c9d9e54972a6f63adf3e61fa3926 : Windows XP|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 45002 MB [Windows XP Bootstrap | Windows XP Bootloader]
1 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 92164905 | Size: 107615 MB
User = LL1 ... OK
User = LL2 ... OK

Signaler le contenu de ce document