roguekiller.txt

Document joint : HBjtUaRCGkL_roguekiller.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

RogueKiller V12.12.3.0 (x64) [Feb 5 2018] (Gratuit) par Adlice Software
email : http://www.adlice.com/fr/contact/
Remontées : https://forum.adlice.com
Site web : http://www.adlice.com/fr/download/roguekiller/
Blog : http://www.adlice.com/fr/

Système d'exploitation : Windows 10 (10.0.16299) 64 bits version
Démarré en : Mode normal
Utilisateur : Raymond [Administrateur]
Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 02/09/2018 19:14:03 (Durée : 00:54:12)

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 4 ¤¤¤
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-976551006-3039632739-1132508307-1001\Software\Microsoft\Internet Explorer\Main | Start Page : https://r.orange.fr/r/Oodc_oi_promoUpdate?ref=O_OI_defaultPage_IEe64_w10e64_promoUpdate -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-976551006-3039632739-1132508307-1001\Software\Microsoft\Internet Explorer\Main | Start Page : https://r.orange.fr/r/Oodc_oi_promoUpdate?ref=O_OI_defaultPage_IEe64_w10e64_promoUpdate -> Trouvé(e)
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Trouvé(e)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Trouvé(e)

¤¤¤ Tâches : 2 ¤¤¤
[Hj.Shortcut] \{3C8B9B8C-A66C-4A2D-A805-1D38BA5886AE} -- "c:\program files (x86)\google\chrome\application\chrome.exe" (http://ui.skype.com/ui/0/6.10.0.104/fr/abandoninstall?page=tsPlugin) -> Trouvé(e)
[Hj.Shortcut] \{DC74A359-6782-47C0-9AAF-FBFAD3AA2C1B} -- "c:\program files (x86)\google\chrome\application\chrome.exe" (http://www.skype.com/go/downloading?source=lightinstaller&ver=6.14.0.104&LastError=404) -> Trouvé(e)

¤¤¤ Fichiers : 10 ¤¤¤
[Hj.Shortcut][Fichier] C:\Users\Public\Desktop\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\Users\Public\Desktop\Mozilla Firefox.lnk [LNK@] C:\PROGRA~1\MOZILL~1\firefox.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\Users\Raymond\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\Users\Raymond\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [LNK@] C:\PROGRA~1\INTERN~1\iexplore.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_IEe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\Users\Raymond\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\Users\Raymond\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk [LNK@] C:\PROGRA~2\MOZILL~1\firefox.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [LNK@] C:\PROGRA~1\MOZILL~1\firefox.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\Users\Public\Desktop\Google Chrome.lnk [LNK@] C:\PROGRA~2\Google\Chrome\APPLIC~1\chrome.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_promoUpdate_shortcut -> Trouvé(e)
[Hj.Shortcut][Fichier] C:\Users\Public\Desktop\Mozilla Firefox.lnk [LNK@] C:\PROGRA~1\MOZILL~1\firefox.exe https://r.orange.fr/r/Oodc_oi_promoUpdate_shortcut?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate_shortcut -> Trouvé(e)

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 2 ¤¤¤
[PUM.HomePage][Firefox:Config] arzsw02y.default-1506669055859 : user_pref("browser.startup.homepage", "https://r.orange.fr/r/Oodc_oi_promoUpdate?ref=O_OI_defaultPage_FFe64_w10e64_promoUpdate"); -> Trouvé(e)
[PUM.SearchPage][Chrome:Config] Default [SecurePrefs] : default_search_provider_data.template_url_data.keyword [google.fr] -> Trouvé(e)

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: ST500DM002-1BD142 +++++
--- User ---
[MBR] 7ebeb3c7b9ee797159dfa80e9ee1781e
[BSP] f8ff042afcd584a8b72b1abf507226ab : Compressed BootMgr|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1968384884 | Size: 265806 MB [Error reading VBR! ([1] Fonction incorrecte. )]
1 - [XXXXXX] UNKNOWN (0x20) [VISIBLE] Offset (sectors): 1918987650 | Size: 110156 MB
2 - [XXXXXX] UNKNOWN (0x72) [VISIBLE] Offset (sectors): 225735265 | Size: 0 MB
3 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 2558525440 | Size: 23 MB
User != LL1 ... KO!
--- LL1 ---
[MBR] 7ebeb3c7b9ee797159dfa80e9ee1781e
[BSP] f8ff042afcd584a8b72b1abf507226ab : Compressed BootMgr|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1968384884 | Size: 265806 MB [Error reading VBR! ([45d] Impossible de satisfaire à la demande en raison d?une erreur de périphérique d?E/S. )]
1 - [XXXXXX] UNKNOWN (0x20) [VISIBLE] Offset (sectors): 1918987650 | Size: 110156 MB
2 - [XXXXXX] UNKNOWN (0x72) [VISIBLE] Offset (sectors): 225735265 | Size: 0 MB
3 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 2558525440 | Size: 23 MB
User != LL2 ... KO!
--- LL2 ---
[MBR] 7ebeb3c7b9ee797159dfa80e9ee1781e
[BSP] f8ff042afcd584a8b72b1abf507226ab : Compressed BootMgr|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1968384884 | Size: 265806 MB[Invalid]
1 - [XXXXXX] UNKNOWN (0x20) [VISIBLE] Offset (sectors): 1918987650 | Size: 110156 MB
2 - [XXXXXX] UNKNOWN (0x72) [VISIBLE] Offset (sectors): 225735265 | Size: 0 MB
3 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 2558525440 | Size: 23 MB

+++++ PhysicalDrive1: WDC WD5003AZEX-00MK2A0 +++++
--- User ---
[MBR] 03978f9abd1e6f30b2e2d23005634755
[BSP] b311e9ff1f2c1e1ca5f752e8137056c9 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 350 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 718848 | Size: 198786 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 407834624 | Size: 862 MB
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 409600000 | Size: 206919 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: SanDisk Cruzer Slice USB Device +++++
--- User ---
[MBR] 7e4df6c2c6c876d51074f42ec7d778ea
[BSP] e82c3869941bbae21df9386f516ded2e : Empty|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0xb) [VISIBLE] Offset (sectors): 32 | Size: 7633 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

Signaler le contenu de ce document