cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

RogueKiller V11.0.9.0 [Jan 24 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : FLORIANE [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller.exe
Mode : Delete -- Date : 02/01/2016 10:23:38

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 9 ¤¤¤
[PUP] HKEY_LOCAL_MACHINE\Software\ASK -> Deleted
[PUP] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\QQSysMon -> Deleted
[PUP] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\TSCPM -> Deleted
[PUP] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\QQSysMon -> Deleted
[PUP] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\TSCPM -> Deleted
[PUP] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\QQSysMon -> Deleted
[PUP] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\TSCPM -> Deleted
[PUM.Proxy] HKEY_USERS\S-1-5-21-1871111397-3539990770-1974983793-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : localhost:8080 -> Deleted
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Replaced (2)

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 [Too big!] ¤¤¤

¤¤¤ Antirootkit : 2 (Driver: Loaded) ¤¤¤
[SSDT:Inl(Hook.SSDT)] ZwDeleteAtom[99] : C:\Windows\System32\win32k.sys @ 0xffffffff988e7e12 (call dword [0x83169d14])
[SSDT:Inl(Hook.SSDT)] ZwFlushWriteBuffer[129] : C:\Windows\System32\halmacpi.dll @ 0xffffffff8301c468 (call dword [0x830480b4])

¤¤¤ Web browsers : 13 ¤¤¤
[FIREFX:Addon] 1y84wov5.default : WOT - Naviguez sans risque [{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] -> Deleted
[FIREFX:Addon] 1y84wov5.default : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> Deleted
[FIREFX:Addon] 1y84wov5.default : Ghostery [firefox@ghostery.com] -> Deleted
[FIREFX:Addon] 1y84wov5.default : Linkificator [linkificator@markapola] -> Deleted
[FIREFX:Addon] 41A66E7E5EE1 : WOT - Naviguez sans risque [{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] -> Deleted
[FIREFX:Addon] 41A66E7E5EE1 : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> Deleted
[FIREFX:Addon] 41A66E7E5EE1 : Ghostery [firefox@ghostery.com] -> Deleted
[FIREFX:Addon] 41A66E7E5EE1 : Linkificator [linkificator@markapola] -> Deleted
[FIREFX:Addon] CCACCBF1-7AB4-4CF5-B32D-668C686A539F : WOT - Naviguez sans risque [{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] -> Deleted
[FIREFX:Addon] CCACCBF1-7AB4-4CF5-B32D-668C686A539F : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> Deleted
[FIREFX:Addon] CCACCBF1-7AB4-4CF5-B32D-668C686A539F : Ghostery [firefox@ghostery.com] -> Deleted
[FIREFX:Addon] CCACCBF1-7AB4-4CF5-B32D-668C686A539F : Linkificator [linkificator@markapola] -> Deleted
[PUM.HomePage][FIREFX:Config] 1y84wov5.default : user_pref("browser.startup.homepage", "http://www.orange.fr/portail"); -> Replaced (about:home)

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22ZCT0 +++++
--- User ---
[MBR] 941c8ddc59b4869f27b53c14c5f4360b
[BSP] bb229e2cd843aacb7bdeb310f3dc6aed : Kiwi MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 15360 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 31459328 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 31664128 | Size: 52160 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 138487808 | Size: 225743 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


Publicité


Signaler le contenu de ce document

Publicité