RogueKiller V9.2.11.0 [Sep  9 2014] par Adlice Software
Mail : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site Web : https://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Démarrage : Mode normal
Utilisateur : utilisateur [Droits d'admin]
Mode : Suppression -- Date : 09/20/2014  04:07:58

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrées de registre : 7 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\mbr -> SUPPRIMÉ
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\mbr -> SUPPRIMÉ
[PUM.DesktopIcons] HKEY_USERS\S-1-5-21-1054803036-270390378-4222297027-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> REMPLACÉ (0)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> REMPLACÉ (0)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> REMPLACÉ (0)
[PUM.DesktopIcons] HKEY_USERS\S-1-5-21-1054803036-270390378-4222297027-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> REMPLACÉ (0)
[PUM.HomePage] HKEY_USERS\S-1-5-21-1054803036-270390378-4222297027-1000\Software\Microsoft\Internet Explorer\Main | Start Page : www.google.com  -> REMPLACÉ (http://go.microsoft.com/fwlink/p/?LinkId=255141)

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 1 (Driver: CHARGE) ¤¤¤
[IAT:Addr] (firefox.exe) KERNEL32.dll - CreateFileW : C:\Windows\AppPatch\AcGenral.DLL @ 0x664831a9

¤¤¤ Navigateurs web : 10 ¤¤¤
[FIREFX:Addon] 3omutzwl.default : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> TROUVÉ
[FIREFX:Addon] 3omutzwl.default : Flashblock [{3d7eb24f-2740-49df-8937-200b1cc08f8a}] -> SUPPRIMÉ
[FIREFX:Addon] 3omutzwl.default : avast! Online Security [wrc@avast.com] -> SUPPRIMÉ
[CHROME:Addon] Default : Google Docs [aohghmighlieiainnegkcijnfilokake] -> SUPPRIMÉ
[CHROME:Addon] Default : Google Drive [apdfllckaahabafndbhieahigkjlhalf] -> ERROR [2]
[CHROME:Addon] Default : YouTube [blpcfgokakmgnkcojhhkbfbldkacnbeo] -> ERROR [2]
[CHROME:Addon] Default : Google Search [coobgpohoikkiipiblmjeljniedjpjpf] -> ERROR [2]
[CHROME:Addon] Default : avast! Online Security [gomekmidlodglbbmalcneegieacbdmki] -> ERROR [2]
[CHROME:Addon] Default : Google Wallet [nmmhkkegccagdldgiimedpiccmgmieda] -> ERROR [2]
[CHROME:Addon] Default : Gmail [pjkljhegncpnkpknbcohdijeoejaedia] -> ERROR [2]

¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0:  +++++
--- User ---
[MBR] f36daa096ec62cd87ec2bd3b4d07c486
[BSP] 7360197d8a70ef9ef1fa21ea896c8be0 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 610477 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1:  +++++
--- User ---
[MBR] 448e6004cd954c9e240f5cdd9ab917e6
[BSP] 35c983a059084f27992aeb1280e9d74f : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0xb) [VISIBLE] Offset (sectors): 32 | Size: 7633 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )


============================================
RKreport_SCN_09202014_040458.log