cjoint

Publicité

Cliquez pour partager vos propres fichiers

Publicité

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V12.12.19.0 [May 28 2018] (Gratuit) par Adlice Software
email : http://www.adlice.com/fr/contact/
Remontées : https://forum.adlice.com
Site web : http://www.adlice.com/fr/download/roguekiller/
Blog : http://www.adlice.com/fr/

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Démarré en : Mode normal
Utilisateur : DUBREUCQ [Administrateur]
Démarré depuis : C:\Program Files\RogueKiller\RogueKiller.exe
Mode : Scan -- Date : 05/28/2018 17:11:58 (Durée : 00:40:23)

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 56 ¤¤¤
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8} ("C:\Program Files\Delta\delta\1.8.21.5\deltasrv.exe") -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE} (C:\Program Files\Delta\delta\1.8.21.5\bh\delta.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36} (C:\Program Files\MyFree Codec\1.0b beta\AC-3\ac3dx.ax) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{75F3F7EC-B2ED-4851-ABF1-9F1F29D1818E} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B} (C:\Program Files\Delta\delta\1.8.21.5\deltaEng.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A007937E-38DE-45E3-BF37-D03862DA4CDB} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A1D7020E-4EB0-4E0D-8A8E-DAA3BB2F033A} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A37C2155-D129-4489-BB43-AF7B51CEA603} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A3FC8865-E5C6-492D-8044-CBF135C63F61} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{A47BD9D5-25E5-46F9-A3C2-120BE6CA31E4} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AB1DBBC8-CAF8-4FEE-BF54-60E249E3395A} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AB6D2735-3392-47E1-83D6-6ED93BD71D54} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{ABC300F7-DC0D-4640-BFBF-F6458815C205} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AD0796F7-CC0A-4353-A385-628CEAB598EB} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{ADFA580A-3B17-4614-876C-8A425AAF60DD} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AE9FDA25-5E40-466B-81E2-53D1C1979BBE} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AF152690-A6BF-4BAA-8E76-D52954B21275} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9} (%SystemRoot%\System32\shdocvw.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AF68E6DC-0B1A-4169-9966-C06D8F2DE3D3} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{AF8259A6-AB6D-46E1-AF8D-9CD2AC821AC4} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2} -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} (C:\Program Files\Delta\delta\1.8.21.5\bh\delta.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208} (%SystemRoot%\system32\windowscodecs.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{E104B9E4-01BA-4AAF-9957-6A525CC5451A} -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{E72F452B-0034-4DCB-8648-91697629961B} (C:\ProgramData\Soda PDF 8\Installation\Statistics.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26} (C:\Program Files\Delta\delta\1.8.21.5\deltaApp.dll) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{EB93AADE-9884-47F0-AA9D-0920E1D1203F} ("C:\Program Files\Speed Analysis 2\BackgroundHost.exe") -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544} -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8} -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC} -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{FB99D700-18B9-11D0-A4CF-00A024C91936} (C:\Users\dubreucq\AppData\Local\Temp\is-EHMO1.tmp\IDSQL32.DLL) -> Trouvé(e)
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{FB99D710-18B9-11D0-A4CF-00A024C91936} (C:\Users\dubreucq\AppData\Local\Temp\is-EHMO1.tmp\IDAPI32.DLL) -> Trouvé(e)
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105} ("C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe") -> Trouvé(e)
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\AIM Toolbar -> Trouvé(e)
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\Myfree Codec -> Trouvé(e)
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\{12A61307-94CD-4F8E-94BC-918E511FAA81} -> Trouvé(e)
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} -> Trouvé(e)
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9} -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\S-1-5-21-672792915-924011294-569397357-1111\Software\Myfree Codec -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\S-1-5-21-672792915-924011294-569397357-1111\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9} -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\S-1-5-18\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA} -> Trouvé(e)
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8E8C2E2D-7F21-2CF5-0ADB-64935121ECF0} -> Trouvé(e)
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F1422DAA-0829-09A1-7536-73936CAB8FFA} -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\S-1-5-21-672792915-924011294-569397357-1111\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec -> Trouvé(e)
[PUM.HomePage] HKEY_USERS\S-1-5-21-672792915-924011294-569397357-1111\Software\Microsoft\Internet Explorer\Main | Start Page : https://search.lilo.org/ -> Trouvé(e)
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{56DA82B9-6735-4161-9CF9-A47A6BA88B96} | DhcpNameServer : 10.31.12.70 ([]) -> Trouvé(e)
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{56DA82B9-6735-4161-9CF9-A47A6BA88B96} | DhcpNameServer : 10.31.12.70 ([]) -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\S-1-5-21-672792915-924011294-569397357-1111\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Trouvé(e)

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 7 ¤¤¤
[PUP.Gen1][Répertoire] C:\ProgramData\Ads Remover -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Users\dubreucq\AppData\Roaming\AdvertismentImages -> Trouvé(e)
[PUP.Gen0][Répertoire] C:\Users\dubreucq\AppData\Roaming\StPrsSW -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Ads Remover -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files\MyFree Codec -> Trouvé(e)
[PUP.Gen1][Répertoire] C:\Program Files\PragmaInstance -> Trouvé(e)

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD3200AAKX-221CA1 ATA Device +++++
--- User ---
[MBR] 124b4963dac5b3ba97d4a2fc31d046d1
[BSP] 0b146670d1e4d26f3b561df2f14e10c0 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 305243 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: SAMSUNG HD154UI USB Device +++++
--- User ---
[MBR] 020d8ef68f3bf9f0363177287eec6feb
[BSP] 4c10282b46e37e8674d052ad10761ece : Windows XP|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 63 | Size: 1430796 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

Publicité

Signaler le contenu de ce document

Publicité