RogueKiller V8.6.12 _x64_ [Sep 18 2013] par Tigzy mail : tigzyRKgmailcom Remontees : http://www.adlice.com/forum/ Site Web : http://www.sur-la-toile.com/RogueKiller/ Blog : http://tigzyrk.blogspot.com/ Systeme d'exploitation : Windows 8 (6.2.9200 ) 64 bits version Demarrage : Mode normal Utilisateur : Zarechi [Droits d'admin] Mode : Suppression -- Date : 09/30/2013 20:09:50 | ARK || FAK || MBR | ¤¤¤ Processus malicieux : 0 ¤¤¤ ¤¤¤ Entrees de registre : 4 ¤¤¤ [RUN][SUSP PATH] HKCU\[...]\Run : Adobe Flash Player v10 (C:\Users\Zarechi\AppData\Local\Temp\flashplayer.exe [x]) -> SUPPRIMÉ [RUN][SUSP PATH] HKUS\S-1-5-21-4154473169-124205256-1281812686-1002\[...]\Run : Adobe Flash Player v10 (C:\Users\Zarechi\AppData\Local\Temp\flashplayer.exe [x]) -> [0x2] Le fichier spécifié est introuvable. [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0) [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0) ¤¤¤ Tâches planifiées : 5 ¤¤¤ [V1][ROGUE ST] Plus-HD-2.2-firefoxinstaller.job : C:\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-firefoxinstaller.exe - /installxpi /agentregpath='Plus-HD-2.2' /extensionfilepath='C:\Program Files (x86)\Plus-HD-2.2\33036.xpi' /appid=33036 /srcid='000124' /subid='0' /zdata='0' /bic=47BAFCF5717141CE83A278F05D12E551IE /verifier=5abe6a0cb2daba949c7c4e59fd56589e /installerversion=1_27_153 /installerfullversion=1.27.153.6 /installationtime=1372068570 /statsdomain=hxxp://stats.myserverstat.com /errorsdomain=hxxp://errors.myserverstat.com /waitforbrowser=300 /extensionid=4fdacf00-e9c4-4ad5-b4cf-bf9800f184f6@36857116-74e0-4973-936f-860cd2a102a9.com /extensionversion=0.91 /prefsbranch=a4fdacf00e9c44ad5b4cfbf9800f184f63685711674e04973936f860cd2a102a9com33036 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/33036.rdf /allusers /allprofiles /externallog='' [7][x][x][x][x][x][x][x][x] -> SUPPRIMÉ [V1][ROGUE ST] Plus-HD-2.2-chromeinstaller.job : C:\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-chromeinstaller.exe - /installcrx /agentregpath='Plus-HD-2.2' /extensionfilepath='C:\Program Files (x86)\Plus-HD-2.2\33036.crx' /appid=33036 /srcid='000124' /subid='0' /zdata='0' /bic=47BAFCF5717141CE83A278F05D12E551IE /verifier=5abe6a0cb2daba949c7c4e59fd56589e /installerversion=1_27_153 /installerfullversion=1.27.153.6 /installationtime=1372068570 /statsdomain=hxxp://stats.myserverstat.com /errorsdomain=hxxp://errors.myserverstat.com /waitforbrowser=300 /extensionid=kfakeonomonapccoamcmdgpoaicnpnoo /extensionversion=1.23.11 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDS9drj+ED7r3Qa2m4C4xLVmOH4LSwSso/VpVefBKvScjDwGQVgwoz2MZ5ffDEmH1ujsoGLwof5lvp3SLBa9j0Su8P+0bxlu/NcSCcCmNhLYrWh//WPGPxJveP4kfQdSH+X0U8hb2ZbiNaemVrNv+VjM1edjaCvnM2DAPO+omgYEwIDAQAB /allusers /allprofiles /externallog='' [7][x][x][x][x][x][x] -> SUPPRIMÉ [V2][SUSP PATH] EPUpdater : C:\Users\Zarechi\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [7] -> SUPPRIMÉ [V2][ROGUE ST] Plus-HD-2.2-chromeinstaller : C:\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-chromeinstaller.exe - /installcrx /agentregpath='Plus-HD-2.2' /extensionfilepath='C:\Program Files (x86)\Plus-HD-2.2\33036.crx' /appid=33036 /srcid='000124' /subid='0' /zdata='0' /bic=47BAFCF5717141CE83A278F05D12E551IE /verifier=5abe6a0cb2daba949c7c4e59fd56589e /installerversion=1_27_153 /installerfullversion=1.27.153.6 /installationtime=1372068570 /statsdomain=hxxp://stats.myserverstat.com /errorsdomain=hxxp://errors.myserverstat.com /waitforbrowser=300 /extensionid=kfakeonomonapccoamcmdgpoaicnpnoo /extensionversion=1.23.11 /extensionpublickey=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDS9drj+ED7r3Qa2m4C4xLVmOH4LSwSso/VpVefBKvScjDwGQVgwoz2MZ5ffDEmH1ujsoGLwof5lvp3SLBa9j0Su8P+0bxlu/NcSCcCmNhLYrWh//WPGPxJveP4kfQdSH+X0U8hb2ZbiNaemVrNv+VjM1edjaCvnM2DAPO+omgYEwIDAQAB /allusers /allprofiles /externallog='' [7][x][x][x][x][x][x] -> SUPPRIMÉ [V2][ROGUE ST] Plus-HD-2.2-firefoxinstaller : C:\Program Files (x86)\Plus-HD-2.2\Plus-HD-2.2-firefoxinstaller.exe - /installxpi /agentregpath='Plus-HD-2.2' /extensionfilepath='C:\Program Files (x86)\Plus-HD-2.2\33036.xpi' /appid=33036 /srcid='000124' /subid='0' /zdata='0' /bic=47BAFCF5717141CE83A278F05D12E551IE /verifier=5abe6a0cb2daba949c7c4e59fd56589e /installerversion=1_27_153 /installerfullversion=1.27.153.6 /installationtime=1372068570 /statsdomain=hxxp://stats.myserverstat.com /errorsdomain=hxxp://errors.myserverstat.com /waitforbrowser=300 /extensionid=4fdacf00-e9c4-4ad5-b4cf-bf9800f184f6@36857116-74e0-4973-936f-860cd2a102a9.com /extensionversion=0.91 /prefsbranch=a4fdacf00e9c44ad5b4cfbf9800f184f63685711674e04973936f860cd2a102a9com33036 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/33036.rdf /allusers /allprofiles /externallog='' [7][x][x][x][x][x][x][x][x] -> SUPPRIMÉ ¤¤¤ Entrées Startup : 0 ¤¤¤ ¤¤¤ Navigateurs web : 1 ¤¤¤ ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ ¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤ ¤¤¤ Ruches Externes: ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ --> %SystemRoot%\System32\drivers\etc\hosts ¤¤¤ MBR Verif: ¤¤¤ +++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Lecteurs de disque standard) - ST750LM022 HN-M750MBB +++++ --- User --- [MBR] 376354a5f1fea24eecbf5881810ed65e [BSP] 36cd65d2c5dae24661a4f793aca37976 : Empty MBR Code Partition table: 0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) (Lecteurs de disque standard) - KINGSTON SMSM150S324G +++++ --- User --- [MBR] a14a86d018915e17661f5e85f60f5a5b [BSP] 879c6a7260d1b24b2e008f4fbc421c36 : Empty MBR Code Partition table: 0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) (Lecteurs de disque standard) - Seagate FreeAgent GoFlex USB Device +++++ --- User --- [MBR] 26fc4804324d4bc3471c609e3c6692ce [BSP] 87384f5556088f65aec5c408c9f3dfa0 : Empty MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 953867 Mo User = LL1 ... OK! Error reading LL2 MBR! Termine : << RKreport[0]_D_09302013_200950.txt >> RKreport[0]_S_09292013_121339.txt;RKreport[0]_S_09302013_200933.txt