cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

RogueKiller V12.3.8.0 (x64) [Jul 11 2016] (Premium) par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/download/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarré en : Mode normal
Utilisateur : user [Administrateur]
Démarré depuis : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Suppression -- Date : 07/15/2016 16:12:05

¤¤¤ Processus : 5 ¤¤¤
[Proc.Svchost] svchost.exe(3796) -- C:\Windows\SysWOW64\svchost.exe[7] -> Tué(e) [TermProc]
[Suspicious.Path] rzcefrenderprocess.exe(3480) -- C:\Users\user\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\RzCefRenderProcess.exe[7] -> Tué(e) [TermProc]
[Suspicious.Path] rzcefrenderprocess.exe(4732) -- C:\Users\user\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\RzCefRenderProcess.exe[7] -> Tué(e) [TermProc]
[Suspicious.Path] rzcefrenderprocess.exe(4892) -- C:\Users\user\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\RzCefRenderProcess.exe[7] -> Tué(e) [TermProc]
[Suspicious.Path] rzcefrenderprocess.exe(4380) -- C:\Users\user\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\RzCefRenderProcess.exe[7] -> Tué(e) [TermProc]

¤¤¤ Registre : 38 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\SmartPCFixer -> Supprimé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Elex-tech -> Supprimé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\SmartPCFixer -> Supprimé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} (C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll) -> Supprimé(e)
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> Supprimé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\ISAFESERVICE -> Supprimé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LiveUpdateSvc (C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe) -> Supprimé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ISAFESERVICE -> Supprimé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\LiveUpdateSvc (C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe) -> Supprimé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\iSafeService -> Supprimé(e)
[PUP] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\LiveUpdateSvc (C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe) -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\00-04-ed-9b-24-aa -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\62-f6-85-dd-ba-f5 -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\c4-6e-1f-79-c0-7e -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\e4-f8-ef-cc-b8-2d -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{6470BC2F-02E2-4539-B990-C341EC1143A5} -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{6470BC2F-02E2-4539-B990-C341EC1143A5}_{C14D34FD-C006-470E-A28F-A5D907B6F59D} -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{6F021540-7EEB-4FA1-B9D5-F82A3D5B5873} -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{A11A3BB1-0A1D-4721-BCBF-1D17C5AC5E64} -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{A4707085-3A6B-406A-980A-17DFCB438BF0} -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{AD610B38-F059-4581-A26D-8FEA24094563} -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{BE2C54FD-ADD9-4F97-AE1E-8C4BECC77C59} -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\00-04-ed-9b-24-aa -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\62-f6-85-dd-ba-f5 -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\c4-6e-1f-79-c0-7e -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\e4-f8-ef-cc-b8-2d -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{6470BC2F-02E2-4539-B990-C341EC1143A5} -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{6470BC2F-02E2-4539-B990-C341EC1143A5}_{C14D34FD-C006-470E-A28F-A5D907B6F59D} -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{6F021540-7EEB-4FA1-B9D5-F82A3D5B5873} -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{A11A3BB1-0A1D-4721-BCBF-1D17C5AC5E64} -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{A4707085-3A6B-406A-980A-17DFCB438BF0} -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{AD610B38-F059-4581-A26D-8FEA24094563} -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{BE2C54FD-ADD9-4F97-AE1E-8C4BECC77C59} -> Supprimé(e)
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad | WpadLastNetwork : {6470BC2F-02E2-4539-B990-C341EC1143A5} -> Supprimé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1730516790-1945992075-1385482835-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad | WpadLastNetwork : {6470BC2F-02E2-4539-B990-C341EC1143A5} -> ERROR [2]
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{3168E5E9-A48A-47B3-A510-4699E1EE42C4} | NameServer : 62.251.230.241 212.217.0.1 ([Morocco][Morocco]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{3168E5E9-A48A-47B3-A510-4699E1EE42C4} | NameServer : 62.251.230.241 212.217.0.1 ([Morocco][Morocco]) -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{3168E5E9-A48A-47B3-A510-4699E1EE42C4} | NameServer : 62.251.230.241 212.217.0.1 ([Morocco][Morocco]) -> Remplacé(e) ()

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 1 ¤¤¤
[PUP][Répertoire] C:\Program Files (x86)\Elex-tech -> Supprimé(e)

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: HGST HTS545050A7E380 ATA Device +++++
--- User ---
[MBR] d4f420fb336606d37dc42ed62836f260
[BSP] cfa381e896717000e65b48cf3392af09 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 383 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 787192 | Size: 226555 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 464775168 | Size: 249998 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: ZTE MMC Storage USB Device +++++
Error reading User MBR! ([15] Le périphérique n?est pas prêt. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )


Publicité


Signaler le contenu de ce document

Publicité