cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

RogueKiller V12.3.7.0 [Jul 4 2016] (Premium) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.10586) 64 bits version
Started in : Normal mode
User : omar [Administrator]
Started from : C:\Users\omar\Downloads\RogueKiller.exe
Mode : Scan -- Date : 07/09/2016 14:22:17

¤¤¤ Processes : 4 ¤¤¤
[VT.PUP.Optional.MyPCBackup] BackupStack.exe(292) -- C:\Program Files (x86)\MyPC Backup\BackupStack.exe[x] -> Found
[VT.Gen:Variant.Adware.Mikey.5653] Client.exe(5724) -- C:\Program Files (x86)\Search Extensions\Client.exe[x] -> Found
[VT.PUP.Optional.MyPCBackup] MyPC Backup.exe(6776) -- C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe[x] -> Found
[PUP|VT.PUP.Optional.MyPCBackup] (SVC) BackupStack -- C:\Program Files (x86)\MyPC Backup\BackupStack.exe[x] -> Found

¤¤¤ Registry : 13 ¤¤¤
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\RocketTab -> Found
[PUP|VT.PUP.Optional.MyPCBackup] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\BackupStack (C:\Program Files (x86)\MyPC Backup\BackupStack.exe) -> Found
[PUP|VT.PUP.Optional.MyPCBackup] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\BackupStack (C:\Program Files (x86)\MyPC Backup\BackupStack.exe) -> Found
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1285541057-3919334504-1782167506-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Found
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1285541057-3919334504-1782167506-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Found
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1285541057-3919334504-1782167506-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:49711;https=127.0.0.1:49711 -> Found
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1285541057-3919334504-1782167506-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:49711;https=127.0.0.1:49711 -> Found
[PUM.Proxy] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NlaSvc\Parameters\Internet\ManualProxies | (default) : 1http=127.0.0.1:49711;https=127.0.0.1:49711 -> Found
[PUM.Proxy] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NlaSvc\Parameters\Internet\ManualProxies | (default) : 1http=127.0.0.1:49711;https=127.0.0.1:49711 -> Found
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1285541057-3919334504-1782167506-1002\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus13.msn.com/?pc=ASJB -> Found
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1285541057-3919334504-1782167506-1002\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus13.msn.com/?pc=ASJB -> Found
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1285541057-3919334504-1782167506-1002\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://toshiba13.msn.com/?pc=TEJB -> Found
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1285541057-3919334504-1782167506-1002\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://toshiba13.msn.com/?pc=TEJB -> Found

¤¤¤ Tasks : 1 ¤¤¤
[Suspicious.Path|VT.PUP.Optional.IBryte] \RunTool -- C:\Users\omar\AppData\Local\43f1d735-792f-4457-a07e-bb91dcd6cc08\sysad.exe -> Found

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MQ01ABD100 +++++
--- User ---
[MBR] a84dd93b5b19931ceaddbccc47850486
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 1024 MB
1 - [MAN-MOUNT] Basic data partition | Offset (sectors): 2099200 | Size: 100 MB
2 - [MAN-MOUNT] Basic data partition | Offset (sectors): 2304000 | Size: 128 MB
3 - Basic data partition | Offset (sectors): 2566144 | Size: 941393 MB
4 - [SYSTEM][MAN-MOUNT] | Offset (sectors): 1930541056 | Size: 851 MB
5 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1932283904 | Size: 10371 MB
User = LL1 ... OK
User = LL2 ... OK


Publicité


Signaler le contenu de ce document

Publicité