cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

RogueKiller V10.10.5.0 [Sep 14 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : MouRaD [Administrator]
Started from : C:\Users\MouRaD\Desktop\RogueKiller.exe
Mode : Scan -- Date : 09/15/2015 11:04:11

¤¤¤ Processes : 10 ¤¤¤
[Suspicious.Path] plugincontainer.exe(1860) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe[7] -> Killed [TermProc]
[Suspicious.Path] Plugin.exe(3936) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10\Plugin.exe[7] -> Killed [TermThr]
[PUP] Plugin.exe(1776) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\Plugin.exe[7] -> Killed [TermThr]
[Suspicious.Path] Plugin.exe(7304) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\Plugin.exe[7] -> Killed [TermThr]
[PUP] Plugin.exe(1164) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\8\Plugin.exe[7] -> Killed [TermThr]
[PUP] Plugin.exe(6976) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5\Plugin.exe[7] -> Killed [TermThr]
[PUP] Plugin.exe(2256) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe[7] -> Killed [TermThr]
[PUP] Plugin.exe(1804) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\7\Plugin.exe[7] -> Killed [TermThr]
[Suspicious.Path] Plugin.exe(6496) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\12\Plugin.exe[7] -> Killed [TermThr]
[PUP] Plugin.exe(6940) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe[7] -> Killed [TermThr]

¤¤¤ Registry : 12 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Service Mgr GreatFind ("C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe") -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Service Mgr GreatFind ("C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe") -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Service Mgr GreatFind ("C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe") -> Found
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-2988065644-2016269040-228604876-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : 192.168.1.247:3129 -> Found
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-2988065644-2016269040-228604876-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : 192.168.1.247:3129 -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{DF1C121C-91E6-415A-A5F1-032506FFE290} | DhcpNameServer : 10.10.2.1 4.2.2.2 212.77.192.59 8.8.8.8 ([X][-][X][-]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{DF1C121C-91E6-415A-A5F1-032506FFE290} | DhcpNameServer : 10.10.2.1 4.2.2.2 212.77.192.59 8.8.8.8 ([X][-][X][-]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{DF1C121C-91E6-415A-A5F1-032506FFE290} | DhcpNameServer : 10.10.2.1 4.2.2.2 212.77.192.59 8.8.8.8 ([X][-][X][-]) -> Found
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Found
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Found
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-2988065644-2016269040-228604876-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-2988065644-2016269040-228604876-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 5 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST9500325AS ATA Device +++++
--- User ---
[MBR] 795aa2fb693d3f8dec2b2e7165111a9e
[BSP] 8d311fbfd39dfbd3fd449bf69d81cb0b : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 276837 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 567171072 | Size: 117280 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] EXTEN (0x5) [VISIBLE] Offset (sectors): 807362558 | Size: 82719 MB
User = LL1 ... OK
User = LL2 ... OK


Publicité


Signaler le contenu de ce document

Publicité