RogueKiller V8.5.4 [Mar 18 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur : Aurore [Droits d'admin]
Mode : Recherche -- Date : 04/06/2013 13:25:34
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 6 ¤¤¤
[RUN][Rans.Gendarm] HKCU\[...]\Run : SonyAgent (C:\Windows\Temp\temp02.exe) [-] -> TROUVÉ
[RUN][Rans.Gendarm] HKUS\S-1-5-21-163449437-3782054321-3498351294-1001[...]\Run : SonyAgent (C:\Windows\Temp\temp02.exe) [-] -> TROUVÉ
[RUN][Rogue.AntiSpy-ST] HKCU\[...]\RunOnce : 42C6BE11C9DA4091000042C67B514689 (C:\ProgramData\42C6BE11C9DA4091000042C67B514689\42C6BE11C9DA4091000042C67B514689.exe) [-] -> TROUVÉ
[RUN][Rogue.AntiSpy-ST] HKUS\S-1-5-21-163449437-3782054321-3498351294-1001[...]\RunOnce : 42C6BE11C9DA4091000042C67B514689 (C:\ProgramData\42C6BE11C9DA4091000042C67B514689\42C6BE11C9DA4091000042C67B514689.exe) [-] -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [NON CHARGE] ¤¤¤

¤¤¤ Infection : Rans.Gendarm ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: WDC WD6400BEVT-22A0RT0 +++++
--- User ---
[MBR] 88d21a11ccb56ef364f9b7c169264b6f
[BSP] ab7aaabb46dfc6914a4a0ffb5948767d : MBR Code unknown
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 63 | Size: 14849 Mo
1 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 30411045 | Size: 3584 Mo
2 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 37752750 | Size: 101 Mo
3 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 37961595 | Size: 591941 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[1]_S_04062013_132534.txt >>
RKreport[1]_S_04062013_132534.txt