Bonsoir,
Novice en la matière et comme proposé sur la page post installation du logiciel, je souhaitais savoir si, comme je le pense, il n'y a rien de grave sur le scan ou si j'ai tout faux dans mon analyse...
Merci par avance...
RogueKiller V10.0.4.0 (x64) [Oct 29 2014] par Adlice Software
email :
http://www.adlice.com/contact/Remontées :
http://forum.adlice.comSite web :
https://www.surlatoile.org/RogueKiller/Blog :
http://www.adlice.comSystème d'exploitation : Windows 8.1 (6.3.9200 ) 64 bits version
Démarré en : Mode normal
Utilisateur : Utilisateur [Administrateur]
Mode : Scan -- Date : 11/07/2014 23:21:16
¤¤¤ Processus : 0 ¤¤¤
¤¤¤ Registre : 6 ¤¤¤
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-608320656-3350116116-3623963176-1002\Software\Microsoft\Internet Explorer\Main | Start Page :
http://asus13.msn.com -> Trouvé(e)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-608320656-3350116116-3623963176-1002\Software\Microsoft\Internet Explorer\Main | Start Page :
http://asus13.msn.com -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Trouvé(e)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Trouvé(e)
¤¤¤ Tâches : 0 ¤¤¤
¤¤¤ Fichiers : 0 ¤¤¤
¤¤¤ Fichier Hosts : 0 ¤¤¤
¤¤¤ Antirootkit : 42 (Driver: Chargé) ¤¤¤
[IAT:Addr] (explorer.exe @ KERNELBASE.dll) ext-ms-win-mrmcorer-resmanager-l1-1-0.dll - ResourceManagerQueueGetString : C:\Windows\System32\MrmCoreR.dll @ 0x7ffb714f9cf0
[IAT:Addr] (explorer.exe @ KERNELBASE.dll) ext-ms-win-mrmcorer-resmanager-l1-1-0.dll - ResourceManagerQueueIsResourceReference : C:\Windows\System32\MrmCoreR.dll @ 0x7ffb714fa190
[IAT:Addr] (explorer.exe @ KERNELBASE.dll) ext-ms-win-gpapi-grouppolicy-l1-1-0.dll - RegisterGPNotificationInternalWorker : C:\WINDOWS\SYSTEM32\gpapi.dll @ 0x7ffb77e31540
[IAT:Addr] (explorer.exe @ combase.dll) ext-ms-win-com-clbcatq-l1-1-0.dll - GetCatalogObject2 : C:\WINDOWS\SYSTEM32\clbcatq.dll @ 0x7ffb791724b0
[IAT:Addr] (explorer.exe @ combase.dll) ext-ms-win-com-clbcatq-l1-1-0.dll - GetCatalogObject : C:\WINDOWS\SYSTEM32\clbcatq.dll @ 0x7ffb791723c0
[IAT:Addr] (explorer.exe @ twinui.appcore.dll) ext-ms-win-session-wtsapi32-l1-1-0.dll - WTSRegisterSessionNotification : C:\WINDOWS\SYSTEM32\WTSAPI32.dll @ 0x7ffb775b1be0
[IAT:Addr] (explorer.exe @ twinui.appcore.dll) ext-ms-win-session-wtsapi32-l1-1-0.dll - WTSFreeMemory : C:\WINDOWS\SYSTEM32\WTSAPI32.dll @ 0x7ffb775b1330
[IAT:Addr] (explorer.exe @ twinui.appcore.dll) ext-ms-win-session-wtsapi32-l1-1-0.dll - WTSQuerySessionInformationW : C:\WINDOWS\SYSTEM32\WTSAPI32.dll @ 0x7ffb775b16a0
[IAT:Addr] (explorer.exe @ wpncore.dll) ext-ms-win-session-wtsapi32-l1-1-0.dll - WTSQuerySessionInformationW : C:\WINDOWS\SYSTEM32\WTSAPI32.dll @ 0x7ffb775b16a0
[IAT:Addr] (explorer.exe @ wpncore.dll) ext-ms-win-session-wtsapi32-l1-1-0.dll - WTSRegisterSessionNotification : C:\WINDOWS\SYSTEM32\WTSAPI32.dll @ 0x7ffb775b1be0
[IAT:Addr] (explorer.exe @ wpncore.dll) ext-ms-win-session-wtsapi32-l1-1-0.dll - WTSFreeMemory : C:\WINDOWS\SYSTEM32\WTSAPI32.dll @ 0x7ffb775b1330
[IAT:Addr] (explorer.exe @ wpncore.dll) ext-ms-win-session-winsta-l1-1-0.dll - WinStationQueryInformationW : C:\WINDOWS\SYSTEM32\WINSTA.dll @ 0x7ffb78981160
[IAT:Addr] (explorer.exe @ SettingSyncCore.dll) ext-ms-win-shell-settingsync-l1-1-0.dll - SettingSync_IsAllowedByGroupPolicy : C:\WINDOWS\SYSTEM32\SETTINGSYNCPOLICY.dll @ 0x7ffb68032e44
[IAT:Addr] (explorer.exe @ PackageStateRoaming.dll) ext-ms-win-shell-settingsync-l1-1-0.dll - SettingSync_IsAppDataBackupRestoreEnabled : C:\WINDOWS\SYSTEM32\SETTINGSYNCPOLICY.dll @ 0x7ffb6803204c
[IAT:Addr] (firefox.exe @ KERNELBASE.dll) ext-ms-win-gpapi-grouppolicy-l1-1-0.dll - RegisterGPNotificationInternalWorker : C:\WINDOWS\SysWOW64\gpapi.dll @ 0x72c21dae
[IAT:Inl] (firefox.exe @ IMM32.DLL) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ MSCTF.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Addr] (firefox.exe @ combase.dll) ext-ms-win-com-clbcatq-l1-1-0.dll - GetCatalogObject2 : C:\WINDOWS\SysWOW64\clbcatq.dll @ 0x76043206
[IAT:Addr] (firefox.exe @ combase.dll) ext-ms-win-com-clbcatq-l1-1-0.dll - GetCatalogObject : C:\WINDOWS\SysWOW64\clbcatq.dll @ 0x7604278d
[IAT:Inl] (firefox.exe @ xul.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ xul.dll) USER32.dll - EnumDisplayDevicesW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7140b (jmp 0xfffffffff454bb4e)
[IAT:Inl] (firefox.exe @ SHELL32.dll) USER32.dll - DisplayConfigGetDeviceInfo : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf715c8 (jmp 0xfffffffff454be6f)
[IAT:Inl] (firefox.exe @ SHELL32.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ SHELL32.dll) USER32.dll - EnumDisplayDevicesW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7140b (jmp 0xfffffffff454bb4e)
[IAT:Inl] (firefox.exe @ SHLWAPI.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ UxTheme.dll) USER32.dll - EnumDisplayDevicesW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7140b (jmp 0xfffffffff454bb4e)
[IAT:Addr] (firefox.exe @ clbcatq.dll) ext-ms-win-gpapi-grouppolicy-l1-1-0.dll - RegisterGPNotificationInternalWorker : C:\WINDOWS\SysWOW64\gpapi.dll @ 0x72c21dae
[IAT:Inl] (firefox.exe @ Wpc.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ dxgi.dll) USER32.dll - DisplayConfigGetDeviceInfo : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf715c8 (jmp 0xfffffffff454be6f)
[IAT:Inl] (firefox.exe @ dxgi.dll) USER32.dll - EnumDisplayDevicesW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7140b (jmp 0xfffffffff454bb4e)
[IAT:Inl] (firefox.exe @ nvumdshim.dll) USER32.dll - EnumDisplayDevicesW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7140b (jmp 0xfffffffff454bb4e)
[IAT:Inl] (firefox.exe @ nvumdshim.dll) USER32.dll - DisplayConfigGetDeviceInfo : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf715c8 (jmp 0xfffffffff454be6f)
[IAT:Inl] (firefox.exe @ nvumdshim.dll) USER32.dll - EnumDisplayDevicesA : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf710a0 (jmp 0xfffffffff4544d75)
[IAT:Inl] (firefox.exe @ nvinit.dll) USER32.dll - EnumDisplayDevicesA : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf710a0 (jmp 0xfffffffff4544d75)
[IAT:Inl] (firefox.exe @ igd10iumd32.dll) USER32.dll - EnumDisplayDevicesA : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf710a0 (jmp 0xfffffffff4544d75)
[IAT:Inl] (firefox.exe @ d3d10_1.dll) dxgi.dll - CreateDXGIFactory : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dll @ 0x6bea1041 (jmp 0xfffffffffe8a9b1c)
[IAT:Inl] (firefox.exe @ explorerframe.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ DUI70.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ comctl32.dll) USER32.dll - EnumDisplayDevicesW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7140b (jmp 0xfffffffff454bb4e)
[IAT:Inl] (firefox.exe @ comctl32.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ ntshrui.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
[IAT:Inl] (firefox.exe @ SHDOCVW.dll) USER32.dll - CreateWindowExW : C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll @ 0x6bf7171c (jmp 0xfffffffff454fdf1)
¤¤¤ Navigateurs web : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] ts6z77zn.default : user_pref("browser.startup.homepage", "
www.orange.fr"); -> Trouvé(e)
¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MQ01ABD100 +++++
--- User ---
[MBR] 2fcceb8386be3a1c6a351bad777dd455
[BSP] 07ff70eed4a6a23ed0acddb9550ff3ef : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK
Topic: Need some help to read the scan of RogueKiller (Read 3930 times)
