cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V10.10.7.0 [Sep 28 2015] par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 8 (6.2.9200) 64 bits version
Démarré en : Mode normal
Utilisateur : imad eddine [Administrateur]
Démarré depuis : D:\Programs\RogueKiller.exe
Mode : Suppression -- Date : 10/01/2015 22:00:12

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 15 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 0.0.0.0 ([(Private Address) (XX)]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 0.0.0.0 ([(Private Address) (XX)]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{1C678E9F-FE7B-45CE-A01E-3DED1D694401} | DhcpNameServer : 0.0.0.0 ([(Private Address) (XX)]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{274145F2-8664-4227-80F0-62FB0955C84A} | NameServer : 213.177.160.2 8.8.8.8 ([BELGIUM (BE)][-]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{3B924D75-F33E-42ED-9946-F6BB3B8C0D11} | NameServer : 213.177.160.2 8.8.8.8 ([BELGIUM (BE)][-]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5E04A554-3527-4D5C-9506-A435BED6E43D} | NameServer : 213.177.160.2 8.8.8.8 ([BELGIUM (BE)][-]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B9A2444D-6C8D-4D53-9E43-39CE09630AB2} | NameServer : 213.177.160.2 8.8.8.8 ([BELGIUM (BE)][-]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{1C678E9F-FE7B-45CE-A01E-3DED1D694401} | DhcpNameServer : 0.0.0.0 ([(Private Address) (XX)]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{274145F2-8664-4227-80F0-62FB0955C84A} | NameServer : 213.177.160.2 8.8.8.8 ([BELGIUM (BE)][-]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{3B924D75-F33E-42ED-9946-F6BB3B8C0D11} | NameServer : 213.177.160.2 8.8.8.8 ([BELGIUM (BE)][-]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{5E04A554-3527-4D5C-9506-A435BED6E43D} | NameServer : 213.177.160.2 8.8.8.8 ([X][-]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{B9A2444D-6C8D-4D53-9E43-39CE09630AB2} | NameServer : 213.177.160.2 8.8.8.8 ([BELGIUM (BE)][-]) -> Remplacé(e) ()
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Remplacé(e) (2)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Remplacé(e) (2)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs : C:\ProgramData\Zonelam\SumRemsoft.dll [x] -> Remplacé(e) ()

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 1 (Driver: Non chargé [0xc000036b]) ¤¤¤
[IAT:Inl(Hook.IEAT)] (firefox.exe @ USER32.dll) ntdll.dll - NlsAnsiCodePage : Unknown @ 0xffffffffb60ba019 (call 0x3f000009)

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD20EZRX-00D8PB0 ATA Device +++++
--- User ---
[MBR] 6c50779fb07f81937a57efd17a82617c
[BSP] e27802de37cd47ffef334ff3cfc7d625 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 16065 | Size: 1907718 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: WDC WD10EARX-00N0YB0 ATA Device +++++
--- User ---
[MBR] 551eb21e57dc1f7ef43836462de75084
[BSP] ec5d164758e20ff0521d4205eac1b94c : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 350 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 718848 | Size: 953517 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


Publicité


Signaler le contenu de ce document

Publicité