rk-CACB.tmp.txt

Document joint : HEbo07RCYMK_rk-CACB.tmp.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V12.12.15.0 (x64) [Apr 30 2018] (Gratuit) par Adlice Software
email : http://www.adlice.com/fr/contact/
Remontées : https://forum.adlice.com
Site web : http://www.adlice.com/fr/download/roguekiller/
Blog : http://www.adlice.com/fr/

Système d'exploitation : Windows 10 (10.0.16299) 64 bits version
Démarré en : Mode normal
Utilisateur : jean- [Administrateur]
Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Suppression -- Date : 04/30/2018 15:34:26 (Durée : 12:45:26)

¤¤¤ Processus : 1 ¤¤¤
[Proc.Injected] ltr.exe(4856) -- C:\Program Files\Loaris Trojan Remover\ltr.exe[7] -> Tué(e) [TermProc]

¤¤¤ Registre : 3 ¤¤¤
[PUP.Gen1] (X64) HKEY_LOCAL_MACHINE\Software\Description -> Supprimé(e)
[PUP.Gen1] (X86) HKEY_LOCAL_MACHINE\Software\Description -> Supprimé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ardrv (\??\C:\Users\jean-\AppData\Local\Temp\ardrv.sys) -> Supprimé(e)

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 11 ¤¤¤
[Hj.Shortcut][Fichier] C:\Users\jean-\Desktop\AdsFix_Donate.lnk [LNK@] C:\PROGRA~2\INTERN~1\iexplore.exe https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=S3AQ8V3XRWWYN -> Raccourci nettoyé
[Hj.Shortcut][Fichier] C:\Users\jean-\Desktop\Pre_Scan_Donate.lnk [LNK@] C:\PROGRA~2\INTERN~1\iexplore.exe https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=S3AQ8V3XRWWYN -> Raccourci nettoyé
[PUP.AutoIt.Gen][Fichier] C:\Users\jean-\AppData\Roaming\microsoft\Windows\Start Menu\Programs\7z SFX Builder\7z SFX Builder.lnk [LNK@] C:\PROGRA~2\7z SFX Builder\7z SFX Builder.exe -> Supprimé(e)
[PUP.OpenCandy][Répertoire] C:\Program Files\Reason\Security\Protection -> Supprimé(e)
[PUP.OpenCandy][Fichier] C:\Program Files\Reason\Security\Protection\rscp\bin\inject.dll -> Supprimé(e)
[PUP.OpenCandy][Fichier] C:\Program Files\Reason\Security\Protection\rscp\bin\inject_x64.dll -> Supprimé(e)
[PUP.OpenCandy][Fichier] C:\Program Files\Reason\Security\Protection\rscp\bin\rscp_bg.exe -> Supprimé(e)
[PUP.OpenCandy][Fichier] C:\Program Files\Reason\Security\Protection\rscp\bin\rscp_svc.exe -> Supprimé(e)
[PUP.OpenCandy][Répertoire] C:\Program Files\Reason\Security\Protection\rscp\bin -> Supprimé(e)
[PUP.OpenCandy][Fichier] C:\Program Files\Reason\Security\Protection\rscp\uninstall.dat -> Supprimé(e)
[PUP.OpenCandy][Fichier] C:\Program Files\Reason\Security\Protection\rscp\uninstall.exe -> Supprimé(e)
[PUP.OpenCandy][Répertoire] C:\Program Files\Reason\Security\Protection\rscp -> Supprimé(e)
[PUP.AutoIt.Gen][Fichier] C:\Program Files (x86)\7z SFX Builder\7z SFX Builder.exe -> Supprimé(e)
[PShell.Gen][Fichier] C:\Program Files (x86)\Google Software Removal Tool\chrome_cleanup_tool.exe -> Supprimé(e)
[Hj.Shortcut][Fichier] C:\Users\jean-\Desktop\AdsFix_Donate.lnk [LNK@] C:\PROGRA~2\INTERN~1\iexplore.exe https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=S3AQ8V3XRWWYN -> Raccourci nettoyé
[Hj.Shortcut][Fichier] C:\Users\jean-\Desktop\Pre_Scan_Donate.lnk [LNK@] C:\PROGRA~2\INTERN~1\iexplore.exe https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=S3AQ8V3XRWWYN -> Raccourci nettoyé
[PUP.AutoIt.Gen][Fichier] C:\Users\jean-\Desktop\SFTGC.exe -> Supprimé(e)
[Tr.Gen0][Fichier] C:\Users\jean-\Pictures\ausdiskdefragportable.exe -> Supprimé(e)
[Tr.Gen0][Fichier] C:\Users\jean-\Pictures\PatchMyPC.exe -> Supprimé(e)

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD10EZEX-60ZF5A0 +++++
--- User ---
[MBR] ebb0f4b1365cd6798e4ba89c19824ec4
[BSP] 7dc99dafd0f21ba4828870d4b64b4b9f : Empty MBR Code
Partition table:
0 - [MAN-MOUNT] EFI | Offset (sectors): 2048 | Size: 360 MB
1 - [MAN-MOUNT] Micr | Offset (sectors): 739328 | Size: 128 MB
2 - | Offset (sectors): 1001472 | Size: 210817 MB
3 - Basic data partition | Offset (sectors): 432754688 | Size: 427752 MB
4 - [MAN-MOUNT] Basi | Offset (sectors): 1308790784 | Size: 314809 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Seagate BUP BL SCSI Disk Device +++++
--- User ---
[MBR] 84a9968e2defb5a37d3eacc52ffea756
[BSP] 6fa83a167226619bc72a9c4f878d0c99 : Empty|VT.Unknown MBR Code
Partition table:
0 - Microsoft reserved partition | Offset (sectors): 34 | Size: 128 MB
1 - Basic data partition | Offset (sectors): 264192 | Size: 4769178 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Fonction incorrecte. )

+++++ PhysicalDrive2: WD My Passport 0827 USB Device +++++
Error reading User MBR! ([57] Paramètre incorrect. )
Error reading LL1 MBR! ([79] Le délai de temporisation de sémaphore a expiré. )
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive3: WD Elements 10A8 USB Device +++++
--- User ---
[MBR] 3ca72d93bbd8cbacc3c34ecdce6cba4f
[BSP] 7c1dc59b57c4df2f610b9763fedc4f0e : Empty MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 360 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 739328 | Size: 128 MB
2 - Basic data partition | Offset (sectors): 1001472 | Size: 951722 MB
3 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 1950130176 | Size: 864 MB
4 - [MAN-MOUNT] Basic data partition | Offset (sectors): 1951901696 | Size: 759 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive4: SDXC Card +++++
--- User ---
[MBR] 619efbaf84273bc75e40bcd71b05105d
[BSP] 65d7362c438f1d139c2eb929f2fdd3d2 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 60926 MB[Invalid]
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive5: Verbatim STORE N GO USB Device +++++
--- User ---
[MBR] dcaccbbe010311f740e4ce0e2719b7d8
[BSP] 7623d75a5f4240828a0c465b0f1b4f2a : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 59043 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive6: Samsung Flash Drive FIT USB Device +++++
--- User ---
[MBR] 183b95ed9ed9644592a0399bbd16d939
[BSP] 816c75816c939bcd51431e884c1c37b0 : Empty|VT.Unknown MBR Code
Partition table:
0 - Microsoft Basic Data | Offset (sectors): 2048 | Size: 122366 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive7: Seagate BUP RD SCSI Disk Device +++++
--- User ---
[MBR] fc571bd5b1c0b2d2b699bb9e41521178
[BSP] efe916cf66d92d3b6ff4ffe0ea1a3a5a : Empty|VT.Unknown MBR Code
Partition table:
0 - Microsoft reserved partition | Offset (sectors): 34 | Size: 128 MB
1 - Basic data partition | Offset (sectors): 264192 | Size: 4769178 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Fonction incorrecte. )

+++++ PhysicalDrive8: SDHC Card +++++
--- User ---
[MBR] 5f9b6fee4d1ee6dcc25eea2d6635c04a
[BSP] bcaa92c161b474ae73f1b332ee33b640 : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 8192 | Size: 14756 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive9: SMI USB DISK USB Device +++++
--- User ---
[MBR] 0c113f8501242f4c4159a6a217719146
[BSP] 833dacabdf0638de59fd5c40a37bf9f9 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 128 | Size: 3840 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive10: General USB Flash Disk USB Device +++++
--- User ---
[MBR] 5861e7c0bc2cb95b5f1b1d8cff85abb6
[BSP] e96e23981513c996bd2a91dce106b097 : Unknown|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 3823 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

Signaler le contenu de ce document