cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþRogueKiller V11.0.8.0 [Jan 19 2016] (Gratuit) par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 10 (10.0.10586) 32 bits version
Démarré en : Mode normal
Utilisateur : bLrS_FcB [Administrateur]
Démarré depuis : C:\Users\bLrS_FcB\Desktop\RogueKiller.exe
Mode : Scan -- Date : 01/23/2016 20:58:55

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 0 ¤¤¤

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 [Too big!] ¤¤¤

¤¤¤ Antirootkit : 41 (Driver: Chargé) ¤¤¤
[SSDT:Inl(Hook.SSDT)] ZwThawTransactions[32] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86482052 (jmp dword [0x824972b8])
[SSDT:Inl(Hook.SSDT)] ZwSinglePhaseReject[44] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e6a6 (jmp dword [0x824972f8])
[SSDT:Inl(Hook.SSDT)] ZwSetInformationTransactionManager[73] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86482d24 (jmp dword [0x824972fc])
[SSDT:Inl(Hook.SSDT)] ZwSetInformationTransaction[74] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86481d12 (jmp dword [0x824972bc])
[SSDT:Inl(Hook.SSDT)] ZwSetInformationResourceManager[77] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647f0a6 (jmp dword [0x824972c0])
[SSDT:Inl(Hook.SSDT)] ZwSetInformationEnlistment[83] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647dfb8 (jmp dword [0x824972c4])
[SSDT:Inl(Hook.SSDT)] ZwRollforwardTransactionManager[104] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8648269a (jmp dword [0x82497310])
[SSDT:Inl(Hook.SSDT)] ZwRollbackTransaction[105] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86481ca8 (jmp dword [0x824972c8])
[SSDT:Inl(Hook.SSDT)] ZwRollbackEnlistment[106] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e3c6 (jmp dword [0x824972cc])
[SSDT:Inl(Hook.SSDT)] ZwRollbackComplete[107] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e812 (jmp dword [0x824972d0])
[SSDT:Inl(Hook.SSDT)] ZwRenameTransactionManager[122] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86482532 (jmp dword [0x82497314])
[SSDT:Inl(Hook.SSDT)] ZwRegisterProtocolAddressInformation[132] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86482e62 (jmp dword [0x82497318])
[SSDT:Inl(Hook.SSDT)] ZwRecoverTransactionManager[133] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86482752 (jmp dword [0x824972d4])
[SSDT:Inl(Hook.SSDT)] ZwRecoverResourceManager[134] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647ed32 (jmp dword [0x824972d8])
[SSDT:Inl(Hook.SSDT)] ZwRecoverEnlistment[135] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647dcfe (jmp dword [0x824972dc])
[SSDT:Inl(Hook.SSDT)] ZwReadOnlyEnlistment[138] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e75c (jmp dword [0x82497334])
[SSDT:Inl(Hook.SSDT)] ZwQueryInformationTransactionManager[176] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff864827ae (jmp dword [0x82497338])
[SSDT:Inl(Hook.SSDT)] ZwQueryInformationTransaction[177] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86481470 (jmp dword [0x8249733c])
[SSDT:Inl(Hook.SSDT)] ZwQueryInformationResourceManager[180] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647ee98 (jmp dword [0x82497340])
[SSDT:Inl(Hook.SSDT)] ZwQueryInformationEnlistment[185] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647dd5a (jmp dword [0x82497344])
[SSDT:Inl(Hook.SSDT)] ZwPropagationFailed[201] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff864830f0 (jmp dword [0x82497348])
[SSDT:Inl(Hook.SSDT)] ZwPropagationComplete[202] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86483026 (jmp dword [0x8249734c])
[SSDT:Inl(Hook.SSDT)] ZwPrePrepareEnlistment[207] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e256 (jmp dword [0x82497358])
[SSDT:Inl(Hook.SSDT)] ZwPrePrepareComplete[208] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e536 (jmp dword [0x8249735c])
[SSDT:Inl(Hook.SSDT)] ZwPrepareEnlistment[209] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e19e (jmp dword [0x82497350])
[SSDT:Inl(Hook.SSDT)] ZwPrepareComplete[210] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e47e (jmp dword [0x82497354])
[SSDT:Inl(Hook.SSDT)] ZwOpenTransactionManager[213] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff864822c0 (jmp dword [0x82497360])
[SSDT:Inl(Hook.SSDT)] ZwOpenTransaction[214] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86481272 (jmp dword [0x82497364])
[SSDT:Inl(Hook.SSDT)] ZwOpenResourceManager[223] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647eb7e (jmp dword [0x82497368])
[SSDT:Inl(Hook.SSDT)] ZwOpenEnlistment[241] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647db5a (jmp dword [0x8249736c])
[SSDT:Inl(Hook.SSDT)] ZwGetNotificationResourceManager[277] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647ed8c (jmp dword [0x82497370])
[SSDT:Inl(Hook.SSDT)] ZwFreezeTransactions[289] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86481f7a (jmp dword [0x82497374])
[SSDT:Inl(Hook.SSDT)] ZwFlushWriteBuffer[293] : C:\Windows\System32\halmacpi.dll @ 0xffffffff8222ad46 (call dword [0x82497134])
[SSDT:Inl(Hook.SSDT)] ZwEnumerateTransactionObject[307] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86481a30 (jmp dword [0x82497330])
[SSDT:Inl(Hook.SSDT)] ZwCreateTransactionManager[338] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff864820a8 (jmp dword [0x8249732c])
[SSDT:Inl(Hook.SSDT)] ZwCreateTransaction[339] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86480f56 (jmp dword [0x82497328])
[SSDT:Inl(Hook.SSDT)] ZwCreateResourceManager[349] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e8c8 (jmp dword [0x82497324])
[SSDT:Inl(Hook.SSDT)] ZwCreateEnlistment[371] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647d958 (jmp dword [0x824972f4])
[SSDT:Inl(Hook.SSDT)] ZwCommitTransaction[383] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff86481c3e (jmp dword [0x824972f0])
[SSDT:Inl(Hook.SSDT)] ZwCommitEnlistment[384] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e30e (jmp dword [0x824972ec])
[SSDT:Inl(Hook.SSDT)] ZwCommitComplete[385] : C:\Windows\System32\drivers\tm.sys @ 0xffffffff8647e5ee (jmp dword [0x824972e8])

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA DT01ACA050 ATA Device +++++
--- User ---
[MBR] 2c08f407ae185cfd03b1b4477e33b49c
[BSP] 38b072a0518e7513f7fe69ff50226b12 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 1026048 | Size: 79499 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 163840000 | Size: 70000 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 307200000 | Size: 150000 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 614400000 | Size: 176939 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


Publicité


Signaler le contenu de ce document

Publicité