cjoint

Publicité


Publicité

Format du document : text/x-log

Prévisualisation

RogueKiller V10.5.8.0 (x64) [Mar 30 2015] par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 8.1 (6.3.9200 ) 64 bits version
Démarré en : Mode normal
Utilisateur : alexandre [Administrateur]
Démarré depuis : C:\Users\alexandre\Downloads\RogueKillerX64.exe
Mode : Suppression -- Date : 04/02/2015 16:30:44

¤¤¤ Processus : 3 ¤¤¤
[Proc.Svchost] svchost.exe(4432) -- C:\Windows\system32\svchost.exe[7] -> Tué(e) [TermProc]
[Proc.Svchost] svchost.exe(2056) -- C:\Windows\system32\svchost.exe[7] -> Tué(e) [TermProc]
[Proc.Svchost] svchost.exe(5036) -- C:\Windows\system32\svchost.exe[7] -> Tué(e) [TermProc]

¤¤¤ Registre : 10 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\kwldrpog -> Supprimé(e)
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\kwldrpog -> Supprimé(e)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 80.67.169.12 80.67.169.40 [FRANCE (FR)][FRANCE (FR)] -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 80.67.169.12 80.67.169.40 [FRANCE (FR)][FRANCE (FR)] -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{BB6E720B-AD81-476D-86A0-0F9CE2697609} | DhcpNameServer : 80.67.169.12 80.67.169.40 [FRANCE (FR)][FRANCE (FR)] -> Remplacé(e) ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{BB6E720B-AD81-476D-86A0-0F9CE2697609} | DhcpNameServer : 80.67.169.12 80.67.169.40 [FRANCE (FR)][FRANCE (FR)] -> Remplacé(e) ()
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Remplacé(e) (0)

¤¤¤ Tâches : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier Hosts : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] 92e6f3407b833fbe6b3e62194d77c439
[BSP] 21d3197474484cc96ff28071a4bcdc25 : Empty MBR Code
Partition table:
0 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 2048 | Size: 300 MB
1 - [MAN-MOUNT] EFI system partition | Offset (sectors): 616448 | Size: 100 MB
2 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 821248 | Size: 128 MB
3 - Basic data partition | Offset (sectors): 1083392 | Size: 953340 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: SanDisk SSD U100 24GB +++++
--- User ---
[MBR] 424c4c4c219cd60401046155836340c0
[BSP] ca32b49bfcbf533c323b488a35d74ef6 : Empty MBR Code
Partition table:
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: SanDisk Cruzer Fit USB Device +++++
--- User ---
[MBR] e82e4aabd9c3776de1c7a7c5773b2374
[BSP] c721ad050b025d3ad69569bb587c8479 : Empty MBR Code
Partition table:
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )


============================================
RKreport_SCN_04022015_162417.log

Publicité


Signaler le contenu de ce document

Publicité