cjoint

Publicité


Publicité

Format du document : text/x-log

Prévisualisation

RogueKiller V9.1.0.0 [Jun 23 2014] par Adlice Software
Mail : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Démarrage : Mode normal
Utilisateur : hababa [Droits d'admin]
Mode : Recherche -- Date : 06/26/2014 15:42:22

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrées de registre : 3 ¤¤¤
[PUM.StartMenu] HKEY_USERS\S-1-5-21-3869524706-2959878483-253728295-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> TROUVÉ
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 42 ¤¤¤
[SSDT:Addr] NtAlertResumeThread[13] : Unknown @ 0x861c92c0
[SSDT:Addr] NtAlertThread[14] : Unknown @ 0x861c9358
[SSDT:Addr] NtAllocateVirtualMemory[19] : Unknown @ 0x861c8008
[SSDT:Addr] NtAlpcConnectPort[22] : Unknown @ 0x8612b618
[SSDT:Addr] NtAssignProcessToJobObject[43] : Unknown @ 0x861c9cf0
[SSDT:Addr] NtCreateMutant[74] : Unknown @ 0x861c90e8
[SSDT:Addr] NtCreateSymbolicLinkObject[86] : Unknown @ 0x861c9ae8
[SSDT:Addr] NtCreateThread[87] : Unknown @ 0x85ed5a30
[SSDT:Addr] NtCreateThreadEx[88] : Unknown @ 0x861c9b90
[SSDT:Addr] NtDebugActiveProcess[96] : Unknown @ 0x861c9d88
[SSDT:Addr] NtDuplicateObject[111] : Unknown @ 0x8628a320
[SSDT:Addr] NtFreeVirtualMemory[131] : Unknown @ 0x861c8320
[SSDT:Addr] NtImpersonateAnonymousToken[145] : Unknown @ 0x861c9190
[SSDT:Addr] NtImpersonateThread[147] : Unknown @ 0x861c9228
[SSDT:Addr] NtLoadDriver[155] : Unknown @ 0x86131670
[SSDT:Addr] NtMapViewOfSection[168] : Unknown @ 0x861c8268
[SSDT:Addr] NtOpenEvent[177] : Unknown @ 0x861c9050
[SSDT:Addr] NtOpenProcess[190] : Unknown @ 0x85e6ded8
[SSDT:Addr] NtOpenProcessToken[191] : Unknown @ 0x8628a2a8
[SSDT:Addr] NtOpenSection[194] : Unknown @ 0x861c9ed8
[SSDT:Addr] NtOpenThread[198] : Unknown @ 0x85e6de50
[SSDT:Addr] NtProtectVirtualMemory[215] : Unknown @ 0x861c9c48
[SSDT:Addr] NtResumeThread[304] : Unknown @ 0x861c93f0
[SSDT:Addr] NtSetContextThread[316] : Unknown @ 0x861c8090
[SSDT:Addr] NtSetInformationProcess[333] : Unknown @ 0x861c8128
[SSDT:Addr] NtSetSystemInformation[350] : Unknown @ 0x861c9e20
[SSDT:Addr] NtSuspendProcess[366] : Unknown @ 0x861c9f70
[SSDT:Addr] NtSuspendThread[367] : Unknown @ 0x861c9488
[SSDT:Addr] NtTerminateProcess[370] : Unknown @ 0x85eb3bf8
[SSDT:Addr] NtTerminateThread[371] : Unknown @ 0x861c9500
[SSDT:Addr] NtUnmapViewOfSection[385] : Unknown @ 0x861c81d0
[SSDT:Addr] NtWriteVirtualMemory[399] : Unknown @ 0x861c83c8
[ShwSSDT:Addr] NtUserAttachThreadInput[318] : Unknown @ 0x860b3be0
[ShwSSDT:Addr] NtUserGetAsyncKeyState[402] : Unknown @ 0x851cc650
[ShwSSDT:Addr] NtUserGetKeyboardState[434] : Unknown @ 0x87b1c0c0
[ShwSSDT:Addr] NtUserGetKeyState[436] : Unknown @ 0x87f49300
[ShwSSDT:Addr] NtUserGetRawInputData[448] : Unknown @ 0x860cd6e8
[ShwSSDT:Addr] NtUserMessageCall[490] : Unknown @ 0x851ac0b0
[ShwSSDT:Addr] NtUserPostMessage[508] : Unknown @ 0x87dcc0b8
[ShwSSDT:Addr] NtUserPostThreadMessage[509] : Unknown @ 0x87b1e800
[ShwSSDT:Addr] NtUserSetWindowsHookEx[585] : Unknown @ 0x87b18990
[ShwSSDT:Addr] NtUserSetWinEventHook[588] : Unknown @ 0x851b0778

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: ST96812AS ATA Device +++++
--- User ---
[MBR] 73641751ab5fa30529306a528803a201
[BSP] 8eb42cff71b62952d24b333bd9c3d248 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 16065 | Size: 32757 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 67106816 | Size: 24463 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: USBest USB2FlashStorage USB Device +++++
--- User ---
[MBR] 1db84d15794ca896efc1b77721d63399
[BSP] c1055d79cde09c135398ce83d8b18375 : Unknown MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1679830642 | Size: 962094 MB
1 - [XXXXXX] LYNX (0x50) [VISIBLE] Offset (sectors): 544892275 | Size: 265389 MB
2 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 544372079 | Size: 1068172 MB
3 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): -1409286144 | Size: 26 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )


Publicité


Signaler le contenu de ce document

Publicité