Publicité
Publicité
Format du document : text/x-log
Prévisualisation
RogueKiller V9.2.8.0 (x64) [Jul 11 2014] par Adlice Software
Mail : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com
Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarrage : Mode normal
Utilisateur : Djud [Droits d'admin]
Mode : Recherche -- Date : 08/23/2014 12:41:30
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrées de registre : 10 ¤¤¤
[ZeroAccess] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\?etadpug -> TROUVÉ
[ZeroAccess] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\?etadpug -> TROUVÉ
[ZeroAccess] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\?etadpug -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{560C2E76-AA0B-4472-8854-A29426B2F3D5} | DhcpNameServer : 172.20.10.1 -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{560C2E76-AA0B-4472-8854-A29426B2F3D5} | DhcpNameServer : 172.20.10.1 -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{560C2E76-AA0B-4472-8854-A29426B2F3D5} | DhcpNameServer : 172.20.10.1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
¤¤¤ Tâches planifiées : 0 ¤¤¤
¤¤¤ Fichiers : 2 ¤¤¤
[ZeroAccess][Repertoire] Install -- C:\Users\Djud\AppData\Local\Google\Desktop\Install -> TROUVÉ
[ZeroAccess][Repertoire] Install -- C:\Program Files (x86)\Google\Desktop\Install -> TROUVÉ
¤¤¤ Fichier HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 1 (Driver: CHARGE) ¤¤¤
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
¤¤¤ Navigateurs web : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] lkbv6dxo.default : user_pref("browser.startup.homepage", "https://www.google.fr/"); -> TROUVÉ
¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: WDC WD10EZEX-60ZF5A0 ATA Device +++++
--- User ---
[MBR] 5816d9527acb9ea5485a60e3e9aca623
[BSP] 3b46135143c871227c35f6400d1fd9d0 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: WDC WD5000AAJS-22YFA0 ATA Device +++++
--- User ---
[MBR] 442e8cfe3c24f2457b7792bef1e33b14
[BSP] b7bfd45619ba4e7b5a04f1e219a6b4cd : Acer MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 66 | Size: 476937 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive2: WD Elements 1042 USB Device +++++
--- User ---
[MBR] 86e86500f391fe82a7853ff8afcab95d
[BSP] c1cd6b56c8dc06e05e299708dc67314b : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 476937 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )
Mail : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com
Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarrage : Mode normal
Utilisateur : Djud [Droits d'admin]
Mode : Recherche -- Date : 08/23/2014 12:41:30
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrées de registre : 10 ¤¤¤
[ZeroAccess] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\?etadpug -> TROUVÉ
[ZeroAccess] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\?etadpug -> TROUVÉ
[ZeroAccess] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\?etadpug -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{560C2E76-AA0B-4472-8854-A29426B2F3D5} | DhcpNameServer : 172.20.10.1 -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{560C2E76-AA0B-4472-8854-A29426B2F3D5} | DhcpNameServer : 172.20.10.1 -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{560C2E76-AA0B-4472-8854-A29426B2F3D5} | DhcpNameServer : 172.20.10.1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
¤¤¤ Tâches planifiées : 0 ¤¤¤
¤¤¤ Fichiers : 2 ¤¤¤
[ZeroAccess][Repertoire] Install -- C:\Users\Djud\AppData\Local\Google\Desktop\Install -> TROUVÉ
[ZeroAccess][Repertoire] Install -- C:\Program Files (x86)\Google\Desktop\Install -> TROUVÉ
¤¤¤ Fichier HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 1 (Driver: CHARGE) ¤¤¤
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
¤¤¤ Navigateurs web : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] lkbv6dxo.default : user_pref("browser.startup.homepage", "https://www.google.fr/"); -> TROUVÉ
¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: WDC WD10EZEX-60ZF5A0 ATA Device +++++
--- User ---
[MBR] 5816d9527acb9ea5485a60e3e9aca623
[BSP] 3b46135143c871227c35f6400d1fd9d0 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 953767 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: WDC WD5000AAJS-22YFA0 ATA Device +++++
--- User ---
[MBR] 442e8cfe3c24f2457b7792bef1e33b14
[BSP] b7bfd45619ba4e7b5a04f1e219a6b4cd : Acer MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 66 | Size: 476937 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive2: WD Elements 1042 USB Device +++++
--- User ---
[MBR] 86e86500f391fe82a7853ff8afcab95d
[BSP] c1cd6b56c8dc06e05e299708dc67314b : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 476937 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )