Publicité
Publicité
Format du document : text/plain
Prévisualisation
RogueKiller V8.7.2 [Oct 3 2013] par Tigzy
mail : tigzyRKgmailcom
Remontees : http://www.adlice.com/forum/
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur : Koenigsegg [Droits d'admin]
Mode : Recherche -- Date : 10/15/2013 11:30:59
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
¤¤¤ Tâches planifiées : 0 ¤¤¤
¤¤¤ Entrées Startup : 0 ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver : [CHARGE] ¤¤¤
[Inline] EAT @explorer.exe (??_7FillLayout@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x5DD7AB86)
[Inline] EAT @explorer.exe (??_7FillLayout@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x5DD7AB86)
[Inline] EAT @firefox.exe (LdrUnloadDll) : ntdll.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044A630)
[Inline] EAT @firefox.exe (SetWinEventHook) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x70451400)
[Inline] EAT @firefox.exe (SetWindowsHookExA) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x704516D0)
[Inline] EAT @firefox.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x704518A0)
[Inline] EAT @firefox.exe (UnhookWinEvent) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x704515A0)
[Inline] EAT @firefox.exe (UnhookWindowsHookEx) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x70451A70)
[Inline] EAT @firefox.exe (ChangeServiceConfig2A) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044C370)
[Inline] EAT @firefox.exe (ChangeServiceConfig2W) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044C5C0)
[Inline] EAT @firefox.exe (ChangeServiceConfigA) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044BB20)
[Inline] EAT @firefox.exe (ChangeServiceConfigW) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044BF90)
[Inline] EAT @firefox.exe (CreateServiceA) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044ACD0)
[Inline] EAT @firefox.exe (CreateServiceW) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044B1A0)
[Inline] EAT @firefox.exe (DeleteService) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044B8B0)
[Inline] EAT @firefox.exe (SetServiceObjectSecurity) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044E980)
[Inline] EAT @firefox.exe (?Evaluate@JS@@YA_NPAUJSContext@@V?$Handle@PAVJSObject@@@1@UCompileOptions@1@PB_WIPAVValue@1@@Z) : mozjs.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\aswJsFlt.dll @ 0x70994F70)
[Inline] EAT @firefox.exe (??_7FillLayout@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x5DD7AB86)
¤¤¤ Ruches Externes: ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Lecteurs de disque standard) - FUJITSU MJA2500BH G2 ATA Device +++++
--- User ---
[MBR] 661bd7217922c64b894261ff8deadf38
[BSP] f161cd67835d32ab40ea137c709f1e1d : Linux MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 350573 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 717976980 | Size: 94520 Mo
2 - [XXXXXX] LINUX (0x83) [VISIBLE] Offset (sectors): 911560230 | Size: 15997 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 954564608 | Size: 10841 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) (Lecteurs de disque standard) - ST350083 0A USB Device +++++
--- User ---
[MBR] 65c179e8d0117789d70d826d117ae4aa
[BSP] 2ef25d58c541a90a6da406cfcbfa6be4 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) (Lecteurs de disque standard) - Seagate Backup+ BK USB Device +++++
--- User ---
[MBR] a2577b47778088f06b3133d1571cd198
[BSP] f6e8b28a27ad096ad53e59e70e0c1dd9 : Empty MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953867 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[0]_S_10152013_113059.txt >>
mail : tigzyRK
Remontees : http://www.adlice.com/forum/
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Demarrage : Mode normal
Utilisateur : Koenigsegg [Droits d'admin]
Mode : Recherche -- Date : 10/15/2013 11:30:59
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
¤¤¤ Tâches planifiées : 0 ¤¤¤
¤¤¤ Entrées Startup : 0 ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver : [CHARGE] ¤¤¤
[Inline] EAT @explorer.exe (??_7FillLayout@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x5DD7AB86)
[Inline] EAT @explorer.exe (??_7FillLayout@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x5DD7AB86)
[Inline] EAT @firefox.exe (LdrUnloadDll) : ntdll.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044A630)
[Inline] EAT @firefox.exe (SetWinEventHook) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x70451400)
[Inline] EAT @firefox.exe (SetWindowsHookExA) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x704516D0)
[Inline] EAT @firefox.exe (SetWindowsHookExW) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x704518A0)
[Inline] EAT @firefox.exe (UnhookWinEvent) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x704515A0)
[Inline] EAT @firefox.exe (UnhookWindowsHookEx) : USER32.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x70451A70)
[Inline] EAT @firefox.exe (ChangeServiceConfig2A) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044C370)
[Inline] EAT @firefox.exe (ChangeServiceConfig2W) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044C5C0)
[Inline] EAT @firefox.exe (ChangeServiceConfigA) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044BB20)
[Inline] EAT @firefox.exe (ChangeServiceConfigW) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044BF90)
[Inline] EAT @firefox.exe (CreateServiceA) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044ACD0)
[Inline] EAT @firefox.exe (CreateServiceW) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044B1A0)
[Inline] EAT @firefox.exe (DeleteService) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044B8B0)
[Inline] EAT @firefox.exe (SetServiceObjectSecurity) : sechost.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\snxhk.dll @ 0x7044E980)
[Inline] EAT @firefox.exe (?Evaluate@JS@@YA_NPAUJSContext@@V?$Handle@PAVJSObject@@@1@UCompileOptions@1@PB_WIPAVValue@1@@Z) : mozjs.dll -> HOOKED (C:\Program Files\Alwil Software\Avast5\aswJsFlt.dll @ 0x70994F70)
[Inline] EAT @firefox.exe (??_7FillLayout@DirectUI@@6B@) : DUI70.dll -> HOOKED (Unknown @ 0x5DD7AB86)
¤¤¤ Ruches Externes: ¤¤¤
¤¤¤ Infection : ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) (Lecteurs de disque standard) - FUJITSU MJA2500BH G2 ATA Device +++++
--- User ---
[MBR] 661bd7217922c64b894261ff8deadf38
[BSP] f161cd67835d32ab40ea137c709f1e1d : Linux MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 350573 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 717976980 | Size: 94520 Mo
2 - [XXXXXX] LINUX (0x83) [VISIBLE] Offset (sectors): 911560230 | Size: 15997 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 954564608 | Size: 10841 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) (Lecteurs de disque standard) - ST350083 0A USB Device +++++
--- User ---
[MBR] 65c179e8d0117789d70d826d117ae4aa
[BSP] 2ef25d58c541a90a6da406cfcbfa6be4 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) (Lecteurs de disque standard) - Seagate Backup+ BK USB Device +++++
--- User ---
[MBR] a2577b47778088f06b3133d1571cd198
[BSP] f6e8b28a27ad096ad53e59e70e0c1dd9 : Empty MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953867 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[0]_S_10152013_113059.txt >>