cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

RogueKiller V11.0.14.0 [Feb 29 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Khalidou [Administrator]
Started from : C:\Users\Khalidou\Desktop\RogueKiller.exe
Mode : Scan -- Date : 03/01/2016 14:54:20

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 26 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Linkey -> Found
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\GlobalUpdate -> Found
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\SmdmF -> Found
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Systweak -> Found
[Suspicious.Path] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | PD-Proxy : C:\Users\Khalidou\AppData\Local\Temp\Rar$EXa0.307\PD-Proxy_2.2.0\PD-Launcher.exe [x] -> Found
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SmdmFService (C:\Program Files (x86)\Assets Manager\smdmf\SmdmFService.exe) -> Found
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SmdmFService (C:\Program Files (x86)\Assets Manager\smdmf\SmdmFService.exe) -> Found
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SmdmFService (C:\Program Files (x86)\Assets Manager\smdmf\SmdmFService.exe) -> Found
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-625942383-847743001-245719562-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.default-search.net?sid=498&aid=160&itype=n&ver=16064&tm=723&src=hmp -> Found
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-625942383-847743001-245719562-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.default-search.net?sid=498&aid=160&itype=n&ver=16064&tm=723&src=hmp -> Found
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-625942383-847743001-245719562-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.default-search.net?sid=498&aid=160&itype=n&ver=16064&tm=723&src=hmp -> Found
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-625942383-847743001-245719562-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.default-search.net?sid=498&aid=160&itype=n&ver=16064&tm=723&src=hmp -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{418C580D-2D91-4D94-A8CA-99124C03B713} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C801161A-9C70-4C8B-A639-5017AE38DD39} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{CD22CAF7-5584-4922-ABCD-6C8910B8DE24} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{418C580D-2D91-4D94-A8CA-99124C03B713} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{C801161A-9C70-4C8B-A639-5017AE38DD39} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{CD22CAF7-5584-4922-ABCD-6C8910B8DE24} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{418C580D-2D91-4D94-A8CA-99124C03B713} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{C801161A-9C70-4C8B-A639-5017AE38DD39} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{CD22CAF7-5584-4922-ABCD-6C8910B8DE24} | NameServer : 172.24.111.1 172.24.111.2 ([X][X]) -> Found
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-625942383-847743001-245719562-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-625942383-847743001-245719562-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-625942383-847743001-245719562-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-625942383-847743001-245719562-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found
[HJ.FileAsso] (X64) HKEY_CLASSES_ROOT\pezfile\shell\open\command | (default) : "C:\Program Files (x86)\Prezi\Prezi.exe" "%1" -> Found

¤¤¤ Tasks : 1 ¤¤¤
[PUP] \ASP -- "C:\Program Files (x86)\RCP\systweakasp.exe" (/verysilent) -> Found

¤¤¤ Files : 1 ¤¤¤
[PUP][Folder] C:\Program Files (x86)\globalUpdate -> Found

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0x0]) ¤¤¤

¤¤¤ Web browsers : 1 ¤¤¤
[PUM.Proxy][FIREFX:Config] ucuungvx.default : user_pref("network.proxy.type", 4); -> Found

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 4ec5628b20fb01334833be8bab7c018f
[BSP] 1e6fb89cd003db4a9a4041352eacd725 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 100000 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 205006848 | Size: 200000 MB [Unknown Bootstrap | Unknown Bootloader]
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 614606848 | Size: 176838 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


Publicité


Signaler le contenu de ce document

Publicité