Hooks Iat rogue killer

Aide à la désinfection pour supprimer les virus, adwares, ransomwares, trojans.

Modérateurs : Mods Windows, Helper

Raever

Hooks Iat rogue killer

par Raever »

Bonjour,

Rogue killer détecte un bon nombre d' Hook Iat sur mon PC. Je ne sais pas si tous sont vraiment virulent ou comment les supprimer...
Voici le rapportde rogue killer:
RogueKiller V10.9.3.0 (x64) [Jul 21 2015] par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarré en : Mode normal
Utilisateur : Alexis [Administrateur]
Démarré depuis : C:\Users\Alexis\Downloads\RogueKillerX64(2).exe
Mode : Scan -- Date : 07/21/2015 11:41:35

¤¤¤ Processus : 0 ¤¤¤

¤¤¤ Registre : 0 ¤¤¤

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 84 (Driver: Chargé) ¤¤¤
[IAT:Inl(Hook.IEAT)] (explorer.exe) ADVAPI32.dll - RegCreateKeyW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) kernel32.dll - DelayLoadFailureHook : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) GDI32.dll - GetRgnBox : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) USER32.dll - CopyRect : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) msvcrt.dll - iswalpha : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) ntdll.dll - WinSqmSetString : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) SHLWAPI.dll - StrStrIW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) SHELL32.dll - SHCreateDataObject : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) ole32.dll - CoInitializeEx : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) UxTheme.dll - GetThemeBackgroundExtent : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) POWRPROF.dll - CallNtPowerInformation : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) dwmapi.dll - DwmEnableBlurBehindWindow : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) slc.dll - SLGetWindowsInformationDWORD : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) gdiplus.dll - GdipSetInterpolationMode : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) Secur32.dll - GetUserNameExW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) RPCRT4.dll - NdrClientCall3 : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe) PROPSYS.dll - PSCreateMemoryPropertyStore : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) KERNELBASE.dll - BaseReleaseProcessExePath : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ GDI32.dll) LPK.dll - LpkGetCharacterPlacement : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ LPK.dll) USP10.dll - ScriptRecordDigitSubstitution : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ EXPLORERFRAME.dll) DUser.dll - GetGadgetFocus : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ EXPLORERFRAME.dll) DUI70.dll - FlushThemeHandles : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ EXPLORERFRAME.dll) IMM32.dll - ImmReleaseContext : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ IMM32.dll) MSCTF.dll - CtfImeProcessCicHotkey : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ POWRPROF.dll) SETUPAPI.dll - SetupDiGetClassDevsW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ SETUPAPI.dll) CFGMGR32.dll - CM_Get_Class_Property_ExW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ SETUPAPI.dll) DEVOBJ.dll - DevObjOpenDeviceInterface : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ PROPSYS.dll) OLEAUT32.dll - BSTR_UserSize64 : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ DropboxExt64.26.dll) VERSION.dll - VerQueryValueW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ SndVolSSO.DLL) HID.DLL - HidP_GetUsages : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ timedate.cpl) comctl32.dll - InitCommonControlsEx : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ gameux.dll) xmllite.dll - CreateXmlReader : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ gameux.dll) CRYPT32.dll - CertCloseStore : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ gameux.dll) wer.dll - WerReportSubmit : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ CRYPT32.dll) MSASN1.dll - ASN1BEREncEndOfContents : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ Wpc.dll) USERENV.dll - LeaveCriticalPolicySection : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ Wpc.dll) wevtapi.dll - EvtClose : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ authui.dll) CRYPTUI.dll - CryptUIDlgViewCertificateW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ urlmon.dll) api-ms-win-downlevel-ole32-l1-1-0.dll - CLSIDFromString : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ urlmon.dll) api-ms-win-downlevel-shlwapi-l1-1-0.dll - PathGetDriveNumberW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ urlmon.dll) api-ms-win-downlevel-advapi32-l1-1-0.dll - RegSetValueExW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ urlmon.dll) api-ms-win-downlevel-user32-l1-1-0.dll - CharPrevA : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ urlmon.dll) api-ms-win-downlevel-version-l1-1-0.dll - GetFileVersionInfoExW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ urlmon.dll) api-ms-win-downlevel-normaliz-l1-1-0.dll - IdnToAscii : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ urlmon.dll) iertutil.dll - IsStringProperty : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ urlmon.dll) WININET.dll - HttpSendRequestW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ wdmaud.drv) WINMM.dll - waveOutClose : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ wdmaud.drv) ksuser.dll - KsCreatePin : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ wdmaud.drv) AVRT.dll - AvSetMmThreadPriority : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ msacm32.drv) MSACM32.dll - acmStreamSize : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ stobject.dll) BatMeter.dll - IsBatteryLevelLow : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ prnfldr.dll) WINSPOOL.DRV - GetPrinterDataW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ dxp.dll) urlmon.dll - CoInternetParseUrl : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ dxp.dll) shdocvw.dll - DllRegisterWindowClasses : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ netshell.dll) IPHLPAPI.DLL - GetAdaptersAddresses : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ netshell.dll) nlaapi.dll - NlaCloseQuery : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ IPHLPAPI.DLL) NSI.dll - NsiSetParameter : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ IPHLPAPI.DLL) WINNSI.DLL - NsiRpcDeregisterChangeNotification : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ pnidui.dll) QUtil.dll - FreeIsolationInfo : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ fxsst.dll) FXSAPI.dll - FaxAccessCheckEx : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ Wlanapi.dll) wlanutil.dll - WlanStringToSsid : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ wwanapi.dll) wwapi.dll - WwanRegister : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ QAgent.dll) WS2_32.dll - GetNameInfoW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ wscinterop.dll) WSCAPI.dll - WscRegisterForChanges : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ werconcpl.dll) wercplsupport.dll - WerComGetAdminStores : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ framedynos.dll) SSPICLI.DLL - GetUserNameExW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ framedynos.dll) WTSAPI32.dll - WTSUnRegisterSessionNotification : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ ieproxy.dll) api-ms-win-downlevel-shlwapi-l2-1-0.dll - IUnknown_QueryService : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ thumbcache.dll) PSAPI.DLL - QueryWorkingSetEx : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ RasMM.dll) RASAPI32.dll - RasGetEntryPropertiesW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ RASAPI32.dll) rasman.dll - RasGetUnicodeDeviceName : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ WlanMM.dll) wlanhlp.dll - WlanPrivateGetAvailableNetworkList : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ wlanhlp.dll) Wlanapi.dll - WlanSetSecuritySettings : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ wlanhlp.dll) OneX.DLL - OneXCreateDefaultProfile : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ wlanhlp.dll) eappcfg.dll - EapHostPeerConfigBlob2Xml : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ OneX.DLL) eappprxy.dll - EapHostPeerGetResponseAttributes : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ bcryptprimitives.dll) bcrypt.dll - BCryptFinishHash : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ ieframe.dll) api-ms-win-downlevel-shell32-l1-1-0.dll - SetCurrentProcessExplicitAppUserModelID : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ FolderViewImpl.dll) OLEACC.dll - AccessibleObjectFromWindow : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ FolderViewImpl.dll) bthprops.cpl - BluetoothFindRadioClose : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ FolderViewImpl.dll) COMDLG32.dll - GetOpenFileNameW : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ athr_debug.dll) MSVCR100.dll - vsprintf_s : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ RstrtMgr.DLL) ncrypt.dll - BCryptFinishHash : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ mf.dll) MFPlat.DLL - MFCreateAlignedMemoryBuffer : Unknown @ 0xffffffffed5d0217 (call 0xffffffffeb2f0216)

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS547575A9E384 SCSI Disk Device +++++
--- User ---
[MBR] f8cb6d41857151d96c83fd1db7031311
[BSP] 6999a457c453a9ecd767a271bcda63c6 : Kiwi MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 690257 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 1413853184 | Size: 25046 MB
User = LL1 ... OK
Error reading LL2 MBR! ([18] Le programme a émis une commande de longueur incorrecte. )
Haut
Malekal_morte
Messages : 113189
Inscription : 10 sept. 2005 13:57

Re: Hooks Iat rogue killer

par Malekal_morte »

Salut,

Non pas malicieux.
Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus
Windows 11 : Compatibilité, Configuration minimale requise, télécharger ISO et installer Windows 11

Comment demander de l'aide sur le forum
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.
Haut
Raever

Re: Hooks Iat rogue killer

par Raever »

Ok, merci
Haut

Revenir à « Supprimer/Desinfecter les virus (Trojan, Adwares, Ransomwares, Backdoor, Spywares) »