Bonjour et désolé si je me fais du soucis pour rien mais je pense que, suite à l'erreur d'installer un logiciel téléchargé non pas sur le site du provider habituel mais sur un site moins recommendable, d'avoir installé ou ouvert la porte à d'autres loiciels.
J'ai en effet depuis l'impression que ma connection internet rame plus que de coutume et ai donc décidé de lancer un report RogueKiller. Etant plutôt novice, je me demandais si qqun pouvait jeter un coup d'oeil et me dire ce qu'il en penssait?
Merci d'avance et désolé si mes craintes sont infondées.
Mode : Scan -- Date : 05/28/2015 23:57:30
¤¤¤ Processus : 0 ¤¤¤
¤¤¤ Registre : 34 ¤¤¤
[PUM.Orphan] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | WebCheck : {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub) | (default) : {99FD978C-D287-4F50-827F-B2C658EDA8E7} -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub) | (default) : {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) | (default) : {920E6DB1-9907-4370-B3A0-BAFC03D81399} -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder) | (default) : {16F3DD56-1AF5-4347-846D-7C10C4192619} -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark) | (default) : {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Trouvé(e)
[PUM.Orphan] (X64) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> Trouvé(e)
[PUM.Orphan] (X86) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser | {2318C2B1-4965-11D4-9B18-009027A5CD4F} : -> Trouvé(e)
[Suspicious.Path] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | CitrixReceiver : "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk"
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Windows\CurrentVersion\Run | Google+ Auto Backup : "C:\Users\GMRD\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Windows\CurrentVersion\Run | Google+ Auto Backup : "C:\Users\GMRD\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
[PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : 87.98.184.7:3128 -> Trouvé(e)
[PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : 87.98.184.7:3128 -> Trouvé(e)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Internet Explorer\Main | Start Page :
https://tier2.mydesk.morganstanley.com/vpn/mydesk.html#/login -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Internet Explorer\Main | Start Page :
https://tier2.mydesk.morganstanley.com/vpn/mydesk.html#/login -> Trouvé(e)
[PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Internet Explorer\Main | Search Bar : Preserve -> Trouvé(e)
[PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Internet Explorer\Main | Search Bar : Preserve -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5B5E13E3-C0AD-463A-99C1-25BA472CE491} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{934525EC-4A39-4D97-ABC4-02FAAD385440} | DhcpNameServer : 172.16.255.254 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B3B1E8F9-AA66-465C-8898-A10EACBFF5B0} | NameServer : 217.171.135.1 217.171.132.1 [UNITED KINGDOM (GB)][UNITED KINGDOM (GB)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{5B5E13E3-C0AD-463A-99C1-25BA472CE491} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{934525EC-4A39-4D97-ABC4-02FAAD385440} | DhcpNameServer : 172.16.255.254 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{B3B1E8F9-AA66-465C-8898-A10EACBFF5B0} | NameServer : 217.171.135.1 217.171.132.1 [UNITED KINGDOM (GB)][UNITED KINGDOM (GB)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{5B5E13E3-C0AD-463A-99C1-25BA472CE491} | DhcpNameServer : 172.20.10.1 [(Private Address) (XX)] -> Trouvé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{B3B1E8F9-AA66-465C-8898-A10EACBFF5B0} | NameServer : 172.31.139.17 172.30.139.17 [(Private Address) (XX)][(Private Address) (XX)] -> Trouvé(e)
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Trouvé(e)
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-2554689620-3585357971-565241234-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Trouvé(e)
¤¤¤ Tâches : 0 ¤¤¤
¤¤¤ Fichiers : 0 ¤¤¤
¤¤¤ Fichier Hosts : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 activate.adobe.com
¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
Topic: Installed a software from an unsafe source - Report (Read 4256 times)
