RogueKiller V8.5.2 [Feb 23 2013] par Tigzy mail : tigzyRKgmailcom Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html Site Web : http://www.sur-la-toile.com/RogueKiller/ Blog : http://tigzyrk.blogspot.com/ Systeme d'exploitation : Windows Vista (6.0.6002 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur : immordino [Droits d'admin] Mode : Recherche -- Date : 23/02/2013 13:44:02 | ARK || FAK || MBR | ¤¤¤ Processus malicieux : 1 ¤¤¤ [Tst.HjT] HijackThis.exe -- C:\Program Files\HijackThis\HijackThis.exe [-] -> TUÉ [TermProc] ¤¤¤ Entrees de registre : 6 ¤¤¤ [HJ SMENU] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> TROUVÉ [HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> TROUVÉ [HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> TROUVÉ [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ [SCREENSV][SUSP PATH] HKCU\[...]\Desktop (C:\Windows\Acer.scr) [-] -> TROUVÉ ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ ¤¤¤ Driver : [CHARGE] ¤¤¤ ¤¤¤ Infection : Tst.HjT ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ¤¤¤ MBR Verif: ¤¤¤ +++++ PhysicalDrive0: Hitachi HTS541680J9SA00 ATA Device +++++ --- User --- [MBR] 8fadcd1117ff81855095e5f19eba02fd [BSP] a63b6f3628ae549f878a522f6626c1f9 : Acer MBR Code Partition table: 0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 63 | Size: 6997 Mo 1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 14329980 | Size: 50054 Mo 2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 116840745 | Size: 19265 Mo User = LL1 ... OK! User = LL2 ... OK! Termine : << RKreport[1]_S_23022013_134402.txt >> RKreport[1]_S_23022013_134402.txt