Aide rapport scan RogueKiller
Résolu
0plus0
Messages postés
8
Date d'inscription
Statut
Membre
Dernière intervention
-
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Bonjour,
J'ai dû nettoyer mon pc, à présent Ccleaner, Malwarebytes Anti-Malware, adwcleaner et Junkware Removal Tool ne trouvent plus rien. Pour être sûre j'ai tout de même fait un scan avec RogueKiller, il signale un certain nombre de problèmes mais je ne sais pas si c'est grave et surtout si je dois supprimer. Si quelqu'un connaît bien ce programme et peut m'aider, merci d'avance.
Voici le rapport :
RogueKiller V9.2.10.0 [Jul 11 2014] by Adlice Software
mail : https://www.adlice.com/contact/
Feedback : https://forum.adlice.com/
Website : https://www.adlice.com/roguekiller/
Blog : https://www.adlice.com/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : tb [Admin rights]
Mode : Scan -- Date : 09/15/2014 10:38:14
¤¤¤ Bad processes : 0 ¤¤¤
¤¤¤ Registry Entries : 17 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SASDIFSV (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SASKUTIL (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SASDIFSV (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SASKUTIL (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SASDIFSV (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SASKUTIL (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS) -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{31D7A807-52E3-4234-ACBA-4BC0615CA22C} | NameServer : 88.214.182.2 88.214.178.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{999E0BF2-713D-41EA-9CD3-C9E01FBE3743} | NameServer : 88.214.178.2 88.214.182.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{31D7A807-52E3-4234-ACBA-4BC0615CA22C} | NameServer : 88.214.182.2 88.214.178.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{999E0BF2-713D-41EA-9CD3-C9E01FBE3743} | NameServer : 88.214.178.2 88.214.182.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{31D7A807-52E3-4234-ACBA-4BC0615CA22C} | NameServer : 88.214.182.2 88.214.178.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{999E0BF2-713D-41EA-9CD3-C9E01FBE3743} | NameServer : 88.214.178.2 88.214.182.1 -> FOUND
[PUM.Policies] HKEY_USERS\S-1-5-21-1875245085-1929451832-3491376918-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> FOUND
[PUM.Policies] HKEY_USERS\S-1-5-21-1875245085-1929451832-3491376918-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> FOUND
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> FOUND
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> FOUND
[PUM.HomePage] HKEY_USERS\S-1-5-21-1875245085-1929451832-3491376918-1000\Software\Microsoft\Internet Explorer\Main | Start Page : www.google.com -> FOUND
¤¤¤ Scheduled tasks : 0 ¤¤¤
¤¤¤ Files : 0 ¤¤¤
¤¤¤ HOSTS File : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
¤¤¤ Antirootkit : 0 (Driver: LOADED) ¤¤¤
¤¤¤ Web browsers : 0 ¤¤¤
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD7500BPVT-22HXZT1 +++++
--- User ---
[MBR] c2fc56cc3eefdddfd6992defa5c5973d
[BSP] 72fea653c60038a93aa253eec1e34424 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 365382 MB
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 748509184 | Size: 349920 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_SCN_09082014_172050.log
J'ai dû nettoyer mon pc, à présent Ccleaner, Malwarebytes Anti-Malware, adwcleaner et Junkware Removal Tool ne trouvent plus rien. Pour être sûre j'ai tout de même fait un scan avec RogueKiller, il signale un certain nombre de problèmes mais je ne sais pas si c'est grave et surtout si je dois supprimer. Si quelqu'un connaît bien ce programme et peut m'aider, merci d'avance.
Voici le rapport :
RogueKiller V9.2.10.0 [Jul 11 2014] by Adlice Software
mail : https://www.adlice.com/contact/
Feedback : https://forum.adlice.com/
Website : https://www.adlice.com/roguekiller/
Blog : https://www.adlice.com/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : tb [Admin rights]
Mode : Scan -- Date : 09/15/2014 10:38:14
¤¤¤ Bad processes : 0 ¤¤¤
¤¤¤ Registry Entries : 17 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SASDIFSV (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SASKUTIL (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SASDIFSV (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SASKUTIL (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SASDIFSV (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS) -> FOUND
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SASKUTIL (\??\C:\Users\tb\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS) -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{31D7A807-52E3-4234-ACBA-4BC0615CA22C} | NameServer : 88.214.182.2 88.214.178.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{999E0BF2-713D-41EA-9CD3-C9E01FBE3743} | NameServer : 88.214.178.2 88.214.182.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{31D7A807-52E3-4234-ACBA-4BC0615CA22C} | NameServer : 88.214.182.2 88.214.178.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{999E0BF2-713D-41EA-9CD3-C9E01FBE3743} | NameServer : 88.214.178.2 88.214.182.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{31D7A807-52E3-4234-ACBA-4BC0615CA22C} | NameServer : 88.214.182.2 88.214.178.1 -> FOUND
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{999E0BF2-713D-41EA-9CD3-C9E01FBE3743} | NameServer : 88.214.178.2 88.214.182.1 -> FOUND
[PUM.Policies] HKEY_USERS\S-1-5-21-1875245085-1929451832-3491376918-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> FOUND
[PUM.Policies] HKEY_USERS\S-1-5-21-1875245085-1929451832-3491376918-1000\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> FOUND
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> FOUND
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> FOUND
[PUM.HomePage] HKEY_USERS\S-1-5-21-1875245085-1929451832-3491376918-1000\Software\Microsoft\Internet Explorer\Main | Start Page : www.google.com -> FOUND
¤¤¤ Scheduled tasks : 0 ¤¤¤
¤¤¤ Files : 0 ¤¤¤
¤¤¤ HOSTS File : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
¤¤¤ Antirootkit : 0 (Driver: LOADED) ¤¤¤
¤¤¤ Web browsers : 0 ¤¤¤
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD7500BPVT-22HXZT1 +++++
--- User ---
[MBR] c2fc56cc3eefdddfd6992defa5c5973d
[BSP] 72fea653c60038a93aa253eec1e34424 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 365382 MB
2 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 748509184 | Size: 349920 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_SCN_09082014_172050.log
A voir également:
- Aide rapport scan RogueKiller
- Roguekiller - Télécharger - Antivirus & Antimalwares
- Scan qr code pc - Guide
- Scan now - Guide
- Plan rapport de stage - Guide
- Scan spotify - Guide
