RogueKiller V8.8.15 _x64_ [Mar 27 2014] par Adlice Software
mail : http://www.adlice.com/contact/
Remontees : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Systeme d'exploitation : Windows 8.1 (6.3.9200 ) 64 bits version
Demarrage : Mode normal
Utilisateur : asus [Droits d'admin]
Mode : Recherche -- Date : 04/03/2014 20:20:50
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 0 ¤¤¤

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Addons navigateur : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤
[Address] IAT @explorer.exe (NtSetSystemInformation) : ntdll.dll -> HOOKED (Unknown @ 0x34790000)
[Address] IAT @explorer.exe (DeleteDC) : GDI32.dll -> HOOKED (Unknown @ 0x338D0000)
[Address] EAT @firefox.exe (DllMain) : Secur32.dll -> HOOKED (C:\WINDOWS\SysWOW64\napinsp.dll @ 0x73891B4C)
[Address] EAT @firefox.exe (NSPStartup) : Secur32.dll -> HOOKED (C:\WINDOWS\SysWOW64\napinsp.dll @ 0x73891675)
[Address] IAT @explorer.exe (NtSetSystemInformation) : ntdll.dll -> HOOKED (Unknown @ 0x34790000)
[Address] IAT @explorer.exe (DeleteDC) : GDI32.dll -> HOOKED (Unknown @ 0x338D0000)
[Address] IAT @explorer.exe (NtSetSystemInformation) : ntdll.dll -> HOOKED (Unknown @ 0x34790000)
[Address] IAT @explorer.exe (DeleteDC) : GDI32.dll -> HOOKED (Unknown @ 0x338D0000)
[Address] IAT @explorer.exe (NtSetSystemInformation) : ntdll.dll -> HOOKED (Unknown @ 0x34790000)
[Address] IAT @explorer.exe (DeleteDC) : GDI32.dll -> HOOKED (Unknown @ 0x338D0000)

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

File too big!

¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] 74dec987ca56517407a93f7235236403
[BSP] 387e503a3a0716500845246d3caf6514 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) SanDisk SSD U100 24GB +++++
--- User ---
[MBR] 9f4dba8b07e11e4b204c4beee8bb6f74
[BSP] 9bb19a8366c0a9e52dd258e54698bb3e : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_S_04032014_202049.txt >>
RKreport[0]_S_04022014_104224.txt;RKreport[0]_S_04022014_222049.txt;RKreport[0]_S_04032014_105856.txt
RKreport[0]_S_04032014_123637.txt;RKreport[0]_S_04032014_125349.txt;RKreport[0]_S_04032014_200819.txt