RogueKiller V10.0.6.0 (x64) [Nov 13 2014] par Adlice Software email : http://www.adlice.com/contact/ Remontées : http://forum.adlice.com Site web : http://www.adlice.com/fr/logiciels/roguekiller/ Blog : http://www.adlice.com Système d'exploitation : Windows 8.1 (6.3.9200 ) 64 bits version Démarré en : Mode normal Utilisateur : Serge [Administrateur] Mode : Suppression -- Date : 11/19/2014 16:59:50 ¤¤¤ Processus : 3 ¤¤¤ [Suspicious.Path] DefaultDLCInteractive.exe -- C:\Users\Serge\AppData\Local\DefaultDLCInteractive\DefaultDLCInteractive.exe[-] -> Tué(e) [TermProc] [Suspicious.Path] DebugOSText.exe -- C:\Users\Serge\AppData\Local\DefaultDLCInteractive\DebugOSText.exe[-] -> Tué(e) [TermProc] [Suspicious.Path] (SVC) DefaultDLCInteractive.exe -- C:\Users\Serge\AppData\Local\DefaultDLCInteractive\DefaultDLCInteractive.exe[-] -> ERROR [41c] ¤¤¤ Registre : 6 ¤¤¤ [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DefaultDLCInteractive.exe -> Supprimé(e) [Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DefaultDLCInteractive.exe -> Supprimé(e) [PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1264832004-2453320898-2615020690-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Remplacé(e) (0) [PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1264832004-2453320898-2615020690-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Remplacé(e) (0) [PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-1264832004-2453320898-2615020690-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:32240 -> Supprimé(e) [PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-1264832004-2453320898-2615020690-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:32240 -> ERROR [2] ¤¤¤ Tâches : 0 ¤¤¤ ¤¤¤ Fichiers : 0 ¤¤¤ ¤¤¤ Fichier Hosts : 0 [Too big!] ¤¤¤ ¤¤¤ Antirootkit : 2 (Driver: Chargé) ¤¤¤ [IAT:Addr] (explorer.exe @ SHELL32.dll) ext-ms-win-domainjoin-netjoin-l1-1-0.dll - NetpDomainJoinLicensingCheck : C:\Windows\SYSTEM32\netjoin.dll @ 0x7fffb9fa39c0 [IAT:Addr] (iexplore.exe @ USERENV.dll) ext-ms-win-profile-userenv-l1-1-0.dll - GetAppContainerRegistryLocationWorker : C:\Windows\SYSTEM32\profext.dll @ 0x7fffa4ee4f10 ¤¤¤ Navigateurs web : 0 ¤¤¤ ¤¤¤ Vérification MBR : ¤¤¤ +++++ PhysicalDrive0: ST2000DM001-1CH164 +++++ --- User --- [MBR] 0764a01cb13dc825be9ef5c2b8739767 [BSP] 1eb2cc36cc063ed8923469ccc7465c22 : Empty MBR Code Partition table: 0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB User = LL1 ... OK User = LL2 ... OK +++++ PhysicalDrive1: Seagate IEEE 1394 Disk IEEE 1394 SBP2 Device +++++ --- User --- [MBR] fc13f0a800d54973b3dc9620e084c757 [BSP] 784427a4dfece4beec51d26300ef8eff : Windows Vista/7/8 MBR Code Partition table: 0 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 2048 | Size: 32768 MB 1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 67119570 | Size: 154264 MB 2 - [XXXXXX] FAT32 (0xb) [VISIBLE] Offset (sectors): 383053923 | Size: 494 MB 3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 384065955 | Size: 3246 MB User = LL1 ... OK Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive2: Generic- SD/MMC USB Device +++++ Error reading User MBR! ([15] Le périphérique n?est pas prêt. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive3: Generic- Compact Flash USB Device +++++ Error reading User MBR! ([15] Le périphérique n?est pas prêt. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive4: Generic- SM/xD-Picture USB Device +++++ Error reading User MBR! ([15] Le périphérique n?est pas prêt. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) +++++ PhysicalDrive5: Generic- MS/MS-Pro USB Device +++++ Error reading User MBR! ([15] Le périphérique n?est pas prêt. ) Error reading LL1 MBR! NOT VALID! Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. ) ============================================ RKreport_DEL_10162014_181409.log - RKreport_SCN_10162014_181110.log - RKreport_SCN_10182014_142601.log - RKreport_SCN_11192014_165528.log