cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

RogueKiller V10.7.0.0 (x64) [May 25 2015] par Adlice Software
email : http://www.adlice.com/contact/
Remont�es : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Syst�me d'exploitation : Windows 8 (6.2.9200 ) 64 bits version
D�marr� en : Mode sans �chec prise en charge r�seau
Utilisateur : domi [Administrateur]
D�marr� depuis : C:\Users\domi\Downloads\RogueKillerX64.exe
Mode : Suppression -- Date : 05/29/2015 18:37:07

��� Processus : 0 ���

��� Registre : 24 ���
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Supprim�(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Supprim�(e)
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1 | (default) : {F241C880-6982-4CE5-8CF7-7085BA96DA5A} -> Supprim�(e)
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2 | (default) : {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} -> Supprim�(e)
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3 | (default) : {BBACC218-34EA-4666-9D7A-C78F2274A524} -> Supprim�(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1 | (default) : {F241C880-6982-4CE5-8CF7-7085BA96DA5A} -> Supprim�(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2 | (default) : {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} -> Supprim�(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3 | (default) : {BBACC218-34EA-4666-9D7A-C78F2274A524} -> Supprim�(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06E08260-0695-4EC1-A74B-1310D8899D93} -> Supprim�(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> Supprim�(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7a38e53c-e000-41e4-9b5a-47447db81c2b} -> Supprim�(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {2DFF3579-5AA7-45B9-9328-1D38EA230861} : -> Supprim�(e)
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-3954963208-1153058796-2399277519-1001\SOFTWARE\Microsoft\Internet Explorer\Extensions\{2F56DCAA-153B-4479-B4E2-547405B34FB9} | CLSID : ->
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-3954963208-1153058796-2399277519-1001\SOFTWARE\Microsoft\Internet Explorer\Extensions\{2F56DCAA-153B-4479-B4E2-547405B34FB9} | CLSID : -> ERROR [2]
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3954963208-1153058796-2399277519-1001\Software\Microsoft\Windows\CurrentVersion\Run | GoogleChromeAutoLaunch_6754D6C9BE33547C03562DEA2F19F68B : "C:\Users\domi\AppData\Local\Chromium\Application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" [-][x][x] -> Supprim�(e)
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3954963208-1153058796-2399277519-1001\Software\Microsoft\Windows\CurrentVersion\Run | GoogleChromeAutoLaunch_6754D6C9BE33547C03562DEA2F19F68B : "C:\Users\domi\AppData\Local\Chromium\Application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" [-][x][x] -> ERROR [2]
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Service Mgr SaleCharger ("C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugincontainer.exe") -> Supprim�(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Service Mgr SaleCharger ("C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugincontainer.exe") -> Supprim�(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3954963208-1153058796-2399277519-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Remplac�(e) (http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3954963208-1153058796-2399277519-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://asus13.msn.com -> Remplac�(e) (http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Remplac�(e) (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Remplac�(e) (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Remplac�(e) (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Remplac�(e) (0)

��� T�ches : 2 ���
[Suspicious.Path] Chromium.job -- C:\Users\domi\AppData\Local\Chromium\APPLIC~1\450240~1.0\INSTAL~1\UNINST~1.EXE (/Check) -> Supprim�(e)
[Suspicious.Path] UpdaterEX.job -- C:\Users\domi\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE (/Check) -> Supprim�(e)

��� Fichiers : 0 ���

��� Fichier Hosts : 0 ���

��� Antirootkit : 0 (Driver: Non charg� [0xc000035f]) ���

��� Navigateurs web : 0 ���

��� V�rification MBR : ���
+++++ PhysicalDrive0: Hitachi HTS545050A7E380 +++++
--- User ---
[MBR] 74dec987ca56517407a93f7235236403
[BSP] 387e503a3a0716500845246d3caf6514 : Empty MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 300 MB
1 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 616448 | Size: 900 MB
2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 2459648 | Size: 128 MB
3 - Basic data partition | Offset (sectors): 2721792 | Size: 190326 MB
4 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 392509440 | Size: 450 MB
5 - Basic data partition | Offset (sectors): 393431040 | Size: 264345 MB
6 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 934809600 | Size: 20490 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: SanDisk SSD i100 24GB +++++
--- User ---
[MBR] 373b0582d57271d30721413e43b215da
[BSP] 811b1ba3da1b1c86e8a37a2c005f1bf8 : Empty MBR Code
Partition table:
0 - HFS | Offset (sectors): 8392704 | Size: 18804 MB
1 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 4096 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_05292015_171706.log - RKreport_SCN_05292015_183426.log

Publicité


Signaler le contenu de ce document

Publicité