cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

RogueKiller V11.0.4.0 (x64) [Dec 20 2015] (Gratuit) par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 8.1 (6.3.9600) 64 bits version
Démarré en : Mode normal
Utilisateur : Nassim [Administrateur]
Démarré depuis : C:\Users\Nassim\Downloads\Programs\RogueKillerX64.exe
Mode : Scan -- Date : 12/25/2015 01:59:02

¤¤¤ Processus : 12 ¤¤¤
[PUP] iSafeSvc.exe(1052) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe[-] -> Tué(e) [DrvNtTerm]
[PUP] iSafeSvc2.exe(1224) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe[-] -> Tué(e) [DrvNtTerm]
[PUP] picexasvc.exe(2044) -- C:\Program Files (x86)\Picexa\PicexaSvc.exe[-] -> Tué(e) [TermProc]
[PUP] winzipersvc.exe(2124) -- C:\Program Files (x86)\WinZipper\winzipersvc.exe[7] -> Tué(e) [TermProc]
[PUP] iSafeTray.exe(2356) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe[-] -> Tué(e) [DrvNtTerm]
[PUP] uninstaller.exe(2900) -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe[7] -> Tué(e) [TermProc]
[PUP] healthcheck.exe(3180) -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe[7] -> Tué(e) [TermProc]
[PUP] iDskDllPatch64.dll(1908) -- C:\Program Files (x86)\Elex-tech\YAC\iDskDllPatch64.dll[x] -> Trouvé(e)
[PUP] (SVC) iSafeKrnl -- \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys[-] -> Arrêté(e)
[PUP] (SVC) iSafeKrnlKit -- \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys[-] -> Arrêté(e)
[PUP] (SVC) iSafeKrnlR3 -- \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys[-] -> Arrêté(e)
[PUP] (SVC) iSafeNetFilter -- system32\DRIVERS\iSafeNetFilter.sys[x] -> Arrêté(e)

¤¤¤ Registre : 62 ¤¤¤
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\AskTBar -> Trouvé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Elex-tech -> Trouvé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Innovative Solutions -> Trouvé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\V9 -> Trouvé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CB65201-89C4-402c-BA80-02D8C59F9B1D} -> Trouvé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C} -> Trouvé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {FE063DB9-4EC0-403e-8DD8-394C54984B2C} : -> Trouvé(e)
[PUP] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {FE063DB9-4EC0-403E-8DD8-394C54984B2C} : -> Trouvé(e)
[PUP] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {FE063DB9-4EC0-403E-8DD8-394C54984B2C} : -> Trouvé(e)
[PUP] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {FE063DB9-4EC0-403E-8DD8-394C54984B2C} : -> Trouvé(e)
[PUP] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {FE063DB9-4EC0-403E-8DD8-394C54984B2C} : -> Trouvé(e)
[PUP] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks | {9CB65206-89C4-402c-BA80-02D8C59F9B1D} : -> Trouvé(e)
[PUP] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks | {9CB65206-89C4-402c-BA80-02D8C59F9B1D} : -> Trouvé(e)
[PUP] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks | {9CB65206-89C4-402c-BA80-02D8C59F9B1D} : -> Trouvé(e)
[PUP] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks | {9CB65206-89C4-402c-BA80-02D8C59F9B1D} : -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\Software\Microsoft\Windows\CurrentVersion\Run | uTorrent : "C:\Users\Nassim\AppData\Roaming\uTorrent\updates\3.4.5_41372.exe" /MINIMIZED [x][x] -> Trouvé(e)
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\Software\Microsoft\Windows\CurrentVersion\Run | uTorrent : "C:\Users\Nassim\AppData\Roaming\uTorrent\updates\3.4.5_41372.exe" /MINIMIZED [x][x] -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Run | uTorrent : "C:\Users\Nassim\AppData\Roaming\uTorrent\updates\3.4.5_41372.exe" /MINIMIZED [x][x] -> Trouvé(e)
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Run | uTorrent : "C:\Users\Nassim\AppData\Roaming\uTorrent\updates\3.4.5_41372.exe" /MINIMIZED [x][x] -> Trouvé(e)
[Hidden.From.SCM] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\hggay (System32\drivers\mwxpa.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iSafeKrnl (\??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iSafeKrnlBoot (system32\DRIVERS\iSafeKrnlBoot.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iSafeKrnlKit (\??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iSafeKrnlR3 (\??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iSafeNetFilter (system32\DRIVERS\iSafeNetFilter.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\iSafeService (C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\WiFiPasswordService (C:\Users\Nassim\AppData\Local\Temp\WiFiPasswordService.exe) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\winzipersvc (C:\Program Files (x86)\WinZipper\winzipersvc.exe) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\iSafeKrnl (\??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\iSafeKrnlBoot (system32\DRIVERS\iSafeKrnlBoot.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\iSafeKrnlKit (\??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\iSafeKrnlR3 (\??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\iSafeNetFilter (system32\DRIVERS\iSafeNetFilter.sys) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\iSafeService (C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe) -> Trouvé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\WiFiPasswordService (C:\Users\Nassim\AppData\Local\Temp\WiFiPasswordService.exe) -> Trouvé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\winzipersvc (C:\Program Files (x86)\WinZipper\winzipersvc.exe) -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3474835121-1151276637-3384207607-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://v9.com/?type=hp&ts=1450287639&from=mych123&uid=st1000lm024xhn-m101mbb_s314j90f735437735437&z=1401e9c03707dcb75d493eegcz1wbe4o0b2m5qac0t -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{700AD7E0-3AD9-46A0-BD42-9B1BB5519AD0} | NameServer : 10.29.0.10 ([X]) -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{700AD7E0-3AD9-46A0-BD42-9B1BB5519AD0} | NameServer : 10.29.0.10 ([X]) -> Trouvé(e)

¤¤¤ Tâches : 11 ¤¤¤
[Suspicious.Path] %WINDIR%\Tasks\FacebookUpdateTaskUserS-1-5-21-3474835121-1151276637-3384207607-1001UA.job -- C:\Users\Nassim\AppData\Local\Facebook\Update\FacebookUpdate.exe (/ua /installsource scheduler) -> Trouvé(e)
[Suspicious.Path] %WINDIR%\Tasks\GoogleUpdateTaskMachineUA.job -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (/ua /installsource scheduler) -> Trouvé(e)
[PUP] %WINDIR%\Tasks\Health-Check-auto.job -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe (-startup) -> Trouvé(e)
[PUP] %WINDIR%\Tasks\Health-Check-deep.job -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe (-deepscan) -> Trouvé(e)
[PUP] %WINDIR%\Tasks\Health-Check.job -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe (-scan) -> Trouvé(e)
[Suspicious.Path] \FacebookUpdateTaskUserS-1-5-21-3474835121-1151276637-3384207607-1001UA -- C:\Users\Nassim\AppData\Local\Facebook\Update\FacebookUpdate.exe (/ua /installsource scheduler) -> Trouvé(e)
[Suspicious.Path] \GoogleUpdateTaskMachineUA -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (/ua /installsource scheduler) -> Trouvé(e)
[PUP] \Health-Check -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe (-scan) -> Trouvé(e)
[PUP] \Health-Check-auto -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe (-startup) -> Trouvé(e)
[PUP] \Health-Check-deep -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe (-deepscan) -> Trouvé(e)
[PUP] \UninstallMonitor -- C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe (-AUSCAN) -> Trouvé(e)

¤¤¤ Fichiers : 11 ¤¤¤
[Hidden.ADS][[[ADS]]] C:\Users\Nassim\AppData\Roaming:NT -> Trouvé(e)
[Hidden.ADS][[[ADS]]] C:\Users\Nassim\AppData\Roaming:NT2 -> Trouvé(e)
[PUP][Fichier] C:\Users\Nassim\AppData\Local\Innovative Solutions\Advanced Uninstaller PRO\AU PRO.lnk [LNK@] C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe -> Trouvé(e)
[Hidden.ADS][[[ADS]]] C:\ProgramData:NT -> Trouvé(e)
[Hidden.ADS][[[ADS]]] C:\ProgramData:NT2 -> Trouvé(e)
[PUP][Répertoire] C:\Program Files (x86)\AskTBar -> Trouvé(e)
[PUP][Répertoire] C:\Program Files (x86)\Elex-tech -> Trouvé(e)
[PUP][Répertoire] C:\Program Files (x86)\Innovative Solutions -> Trouvé(e)
[PUP][Répertoire] C:\Program Files (x86)\Picexa -> Trouvé(e)
[PUP][Répertoire] C:\Program Files (x86)\SFK -> Trouvé(e)
[PUP][Répertoire] C:\Program Files (x86)\WinZipper -> Trouvé(e)

¤¤¤ Fichier Hosts : 0 [Too big!] ¤¤¤

¤¤¤ Antirootkit : 10 (Driver: Chargé) ¤¤¤
[IAT:Inl(Hook.IEAT)] (chrome.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0x5403fc (jmp 0x8907342c|jmp 0x6d56d334)
[IAT:Inl(Hook.IEAT|VT.Unknown)] (chrome.exe @ ieframe.dll) shell32!SHFileOperationW : C:\Program Files (x86)\Elex-tech\YAC\iSafeMon.dll @ 0x6d671090 (jmp dword [0x71aa001e]|jmp 0xf|jmp 0xfbbc1051)
[IAT:Inl(Hook.IEAT)] (chrome.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0x9f03fc (jmp 0x8952342c|jmp 0x6d0bd334)
[IAT:Inl(Hook.IEAT)] (chrome.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0x8803fc (jmp 0x893b342c|jmp 0x6d22d334)
[IAT:Inl(Hook.IEAT)] (chrome.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0x6d03fc (jmp 0x8920342c|jmp 0x6d3dd334)
[IAT:Inl(Hook.IEAT)] (chrome.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0xdf03fc (jmp 0x8992342c|jmp 0x6ccbd334)
[IAT:Inl(Hook.IEAT)] (chrome.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0x7703fc (jmp 0x892a342c|jmp 0x6d33d334)
[IAT:Inl(Hook.IEAT)] (chrome.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0xc303fc (jmp 0x8976342c|jmp 0x6ce7d334)
[IAT:Inl(Hook.IEAT)] (chrome.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0xd103fc (jmp 0x8984342c|jmp 0x6cd9d334)
[IAT:Inl(Hook.IEAT)] (firefox.exe @ kernel32.dll) ntdll!LdrUnloadDll : Unknown @ 0x5d03fc (jmp 0x8910342c|jmp 0x6d4dd334)

¤¤¤ Navigateurs web : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] gixei79c.default : user_pref("browser.startup.homepage", "http://www.yoursites123.com/?type=hp&ts=1449803255&z=d89d5cbc2e39e1b3e4b54dagbzczctbb9eccao8wao&from=ient07021&uid=ST1000LM024XHN-M101MBB_S314J90F735437735437"); -> Trouvé(e)

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] 3242655036d2db45e9751b0d78593028
[BSP] aa6e0ce9e21bf6504c86b77711d93396 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 63 | Size: 0 MB
1 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 350 MB
2 - [ACTIVE] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 7010304 | Size: 350 MB
3 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 7727104 | Size: 300095 MB
User = LL1 ... OK
User = LL2 ... OK


Publicité


Signaler le contenu de ce document

Publicité