rk-AFD5.tmp.txt

Document joint : GKvrag7EIOO_rk-AFD5.tmp.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V12.11.25.0 [Nov 20 2017] (Premium) par Adlice Software
email : http://www.adlice.com/fr/contact/
Remontées : https://forum.adlice.com
Site web : http://www.adlice.com/fr/download/roguekiller/
Blog : http://www.adlice.com/fr/

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Démarré en : Mode normal
Utilisateur : stephe [Administrateur]
Démarré depuis : C:\Program Files\RogueKiller\RogueKiller.exe
Mode : Scan -- Date : 11/20/2017 20:02:57 (Durée : 00:56:56)
Commutateurs : -refid

¤¤¤ Processus : 2 ¤¤¤
[PUP.Gen0|PUP.Gen1|VT.Detected] SuiteService.exe(320) -- C:\Program Files\Solvusoft\SuiteService.exe[7] -> Trouvé(e)
[PUP.Gen0|PUP.Gen1|VT.Detected] (SVC) Solvusoft Suite Service -- C:\Program Files\Solvusoft\SuiteService.exe[7] -> Trouvé(e)

¤¤¤ Registre : 70 ¤¤¤
[Suspicious.Path] HKEY_CLASSES_ROOT\CLSID\{EDC36783-A47E-96E2-7238-E6D793B9090D} (C:\Windows\ucrtbase.dll) -> Trouvé(e)
[PUP.Gen0|PUP.Gen1] HKEY_LOCAL_MACHINE\Software\Solvusoft -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\App Lid -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Crossrider -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\csastats -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\DriverToolkit -> Trouvé(e)
[PUP.ModGoog|PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\globalUpdate -> Trouvé(e)
[Adw.Hola] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Hola -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\InstallCore -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\InstalledBrowserExtensions -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Linkey -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Myfree Codec -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\ProductSetup -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\SmdmF -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Softonic -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Somoto -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\TeleCharger -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\UpdateStar -> Trouvé(e)
[PUP.Gen0|PUP.Gen1] HKEY_USERS\S-1-5-21-1106457653-1768712824-3140693704-1000\Software\Solvusoft -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AppsHat Mobile Apps -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Linkey -> Trouvé(e)
[PUP.Gen1] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec -> Trouvé(e)
[Suspicious.Path] HKEY_LOCAL_MACHINE\RK_Software_ON_D_11F8\Microsoft\Internet Explorer\Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} | Exec : %windir%\Network Diagnostic\xpnetdiag.exe [x] -> Trouvé(e)
[PUP.Gen0|PUP.SettingsManager|PUP.Gen1|VT.Detected] HKEY_LOCAL_MACHINE\RK_System_ON_D_B1DA\ControlSet001\Services\SmdmFService (C:\Program Files\Assets Manager\smdmf\SmdmFService.exe) -> Trouvé(e)
[PUP.Gen0|PUP.Gen1|VT.Detected] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Solvusoft Suite Service (C:\Program Files\Solvusoft\SuiteService.exe) -> Trouvé(e)
[PUP.Gen0|PUP.SettingsManager|PUP.Gen1|VT.Detected] HKEY_LOCAL_MACHINE\RK_System_ON_D_B1DA\ControlSet002\Services\SmdmFService (C:\Program Files\Assets Manager\smdmf\SmdmFService.exe) -> Trouvé(e)
[PUP.Gen0|PUP.Gen1|VT.Detected] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Solvusoft Suite Service (C:\Program Files\Solvusoft\SuiteService.exe) -> Trouvé(e)
[PUM.HomePage] HKEY_LOCAL_MACHINE\RK_Software_ON_D_11F8\Microsoft\Internet Explorer\Main | Start Page : https://search.avast.com/AV772/ -> Trouvé(e)
[PUM.HomePage] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Internet Explorer\Main | Start Page : https://search.avast.com/AV772/ -> Trouvé(e)
[PUM.SearchPage] HKEY_LOCAL_MACHINE\RK_Software_ON_D_11F8\Microsoft\Internet Explorer\Main | Search Page : https://search.avast.com/AV772/search/web?q={searchTerms} -> Trouvé(e)
[PUM.SearchPage] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Internet Explorer\Main | Search Page : https://search.avast.com/AV772/search/web?q={searchTerms} -> Trouvé(e)
[PUM.SearchPage] HKEY_LOCAL_MACHINE\RK_Software_ON_D_11F8\Microsoft\Internet Explorer\Main | Search Bar : https://search.avast.com/AV772/ -> Trouvé(e)
[PUM.SearchPage] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Internet Explorer\Main | Search Bar : https://search.avast.com/AV772/ -> Trouvé(e)
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{590D967C-9FA1-4D88-9E3F-3B792871A8E6} | DhcpNameServer : 0.0.0.0 ([]) -> Trouvé(e)
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{590D967C-9FA1-4D88-9E3F-3B792871A8E6} | DhcpNameServer : 0.0.0.0 ([]) -> Trouvé(e)
[PUM.SecurityCenter] HKEY_LOCAL_MACHINE\RK_Software_ON_D_11F8\Microsoft\Security Center | AntiVirusDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_LOCAL_MACHINE\RK_Software_ON_D_11F8\Microsoft\Security Center | FirewallDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_LOCAL_MACHINE\RK_Software_ON_D_11F8\Microsoft\Security Center | UpdatesDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Security Center | AntiVirusDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Security Center | FirewallDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Security Center | UpdatesDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_Default User_ON_D_98AF\Software\Microsoft\Security Center | AntiVirusDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_Default User_ON_D_98AF\Software\Microsoft\Security Center | FirewallDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_Default User_ON_D_98AF\Software\Microsoft\Security Center | UpdatesDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_LocalService_ON_D_BB2E\Software\Microsoft\Security Center | AntiVirusDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_LocalService_ON_D_BB2E\Software\Microsoft\Security Center | FirewallDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_LocalService_ON_D_BB2E\Software\Microsoft\Security Center | UpdatesDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_NetworkService_ON_D_137C\Software\Microsoft\Security Center | AntiVirusDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_NetworkService_ON_D_137C\Software\Microsoft\Security Center | FirewallDisableNotify : 1 -> Trouvé(e)
[PUM.SecurityCenter] HKEY_USERS\RK_NetworkService_ON_D_137C\Software\Microsoft\Security Center | UpdatesDisableNotify : 1 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyMusic : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyPics : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_Administrateur_ON_D_AD91\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRecentDocs : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_Default User_ON_D_98AF\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_Default User_ON_D_98AF\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyMusic : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_Default User_ON_D_98AF\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyPics : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_Default User_ON_D_98AF\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRecentDocs : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_LocalService_ON_D_BB2E\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_LocalService_ON_D_BB2E\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyMusic : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_LocalService_ON_D_BB2E\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyPics : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_LocalService_ON_D_BB2E\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRecentDocs : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_NetworkService_ON_D_137C\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowHelp : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_NetworkService_ON_D_137C\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyMusic : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_NetworkService_ON_D_137C\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyPics : 0 -> Trouvé(e)
[PUM.StartMenu] HKEY_USERS\RK_NetworkService_ON_D_137C\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRecentDocs : 0 -> Trouvé(e)
[Suspicious.Path] HKEY_LOCAL_MACHINE\RK_Software_ON_D_11F8\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs : C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\Linkey\IEEXTE~1\iedll.dll [x] -> Trouvé(e)

¤¤¤ Tâches : 2 ¤¤¤
[PUP.Gen0|PUP.Gen1|VT.Detected] %WINDIR%\Tasks\DriverDoc Auto Start.job -- C:\Program Files\Solvusoft\DriverDoc\DriverDoc.exe (/scheduled) -> Trouvé(e)
[PUP.Gen0|PUP.Gen1|VT.Detected] \DriverDoc Auto Start -- C:\Program Files\Solvusoft\DriverDoc\DriverDoc.exe (/scheduled) -> Trouvé(e)

¤¤¤ Fichiers : 7 ¤¤¤
[PUP.Gen0|PUP.Gen1][Répertoire] C:\ProgramData\Solvusoft -> Trouvé(e)
[PUP.Gen0|PUP.Gen1][Fichier] C:\Users\Public\Desktop\DriverDoc.lnk [LNK@] C:\PROGRA~1\SOLVUS~1\DRIVER~1\DRIVER~1.EXE -> Trouvé(e)
[PUP.Gen0|PUP.Gen1][Répertoire] C:\Users\stephe\AppData\Roaming\Solvusoft -> Trouvé(e)
[PUP.Gen0|PUP.Gen1][Répertoire] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft -> Trouvé(e)
[PUP.Gen0|PUP.Gen1][Répertoire] C:\ProgramData\Solvusoft -> Trouvé(e)
[PUP.Gen0|PUP.Gen1][Répertoire] C:\Program Files\Solvusoft -> Trouvé(e)
[PUP.Gen0|PUP.Gen1][Fichier] C:\Users\Public\Desktop\DriverDoc.lnk [LNK@] C:\PROGRA~1\SOLVUS~1\DRIVER~1\DRIVER~1.EXE -> Trouvé(e)

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 2 ¤¤¤
[PUP.ChromeSearchToday][Chrome:Addon] Default : Easy Timer [hljlcojjbmffoecdmhomhgfjhkllhknp] -> Trouvé(e)
[PUP.ChromeSearchWin][Chrome:Addon] Default : Spirals - New Tab [ikaooahnheaoeceaipjcmnamnoleeblk] -> Trouvé(e)

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: ST9250410AS ATA Device +++++
--- User ---
[MBR] 39558d4764f73d45f28e2e922cf55156
[BSP] 38028d60a39a985cbfefcebfe59b8bea : Windows XP|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 99998 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 204796620 | Size: 138466 MB
User = LL1 ... OK
User = LL2 ... OK

Signaler le contenu de ce document