cjoint

Publicité


Publicité

Format du document : text/x-log

Prévisualisation

RogueKiller V10.5.0.0 (x64) [Mar 2 2015] par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarré en : Mode normal
Utilisateur : 1 [Administrateur]
Mode : Suppression -- Date : 03/02/2015 23:16:39

¤¤¤ Processus : 2 ¤¤¤
[Suspicious.Path] JDownloader2.exe(4416) -- C:\Users\padre1\AppData\Local\JDownloader 2.0\JDownloader2.exe[7] -> Tué(e) [TermThr]
[Suspicious.Path] javaw.exe(10168) -- c:\users\padre1\appdata\local\jdownloader 2.0\jre\bin\javaw.exe[7] -> Tué(e) [TermThr]

¤¤¤ Registre : 6 ¤¤¤
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Non sélectionné
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Non sélectionné
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Non sélectionné

¤¤¤ Tâches : 4 ¤¤¤
[Suspicious.Path] \\4754 -- wscript.exe (C:\Users\1\AppData\Local\Temp\launchie.vbs //B) -> ERROR [0]
[Suspicious.Path] \\KMS Activation for Office -- C:\Windows\KMSAct.exe -> ERROR [0]
[Suspicious.Path] \\{3A726DE3-BB4E-4F51-BAB7-4AB01860B828} -- C:\Users\1\Desktop\AC1874\AudioConverter.exe -> ERROR [0]
[Suspicious.Path] \\{7D1E1061-1136-4DE9-A9C3-E9F9B6FD6926} -- C:\Users\1\Desktop\AC1874\AudioConverter.exe -> ERROR [0]

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD20EZRX-00DC0B0 ATA Device +++++
--- User ---
[MBR] 83c4fde1f425471e752db0d1f734391b
[BSP] 1ed559ab3ea1223dd50a79f1dcdcf5b4 : Standard MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 265128 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2800373760 | Size: 540357 MB [Error reading VBR! ([83] Tentative de déplacement du pointeur de fichier avant le début du fichier. )]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 543205841 | Size: 1102132 MB
User != LL1 ... KO!
--- LL1 ---
[MBR] 83c4fde1f425471e752db0d1f734391b
[BSP] 1ed559ab3ea1223dd50a79f1dcdcf5b4 : Standard MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 265128 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2800373760 | Size: 540357 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 543205841 | Size: 1102132 MB
User != LL2 ... KO!
--- LL2 ---
[MBR] 83c4fde1f425471e752db0d1f734391b
[BSP] 1ed559ab3ea1223dd50a79f1dcdcf5b4 : Standard MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 265128 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2800373760 | Size: 540357 MB[Invalid]
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 543205841 | Size: 1102132 MB


============================================
RKreport_SCN_03022015_224707.log - RKreport_DEL_03022015_231634.log - RKreport_DEL_03022015_231638.log

Publicité


Signaler le contenu de ce document

Publicité