RogueKiller V9.2.8.0 [Jul 11 2014] par Adlice Software
Mail : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Démarrage : Mode normal
Utilisateur : utilisateur [Droits d'admin]
Mode : Suppression -- Date : 08/23/2014  07:07:21

¤¤¤ Processus malicieux : 1 ¤¤¤
[Proc.Svchost] svchost.exe -- [x] -> TUÉ [TermThr]

¤¤¤ Entrées de registre : 6 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\mbr -> SUPPRIMÉ
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\mbr -> SUPPRIMÉ
[PUM.StartMenu] HKEY_USERS\S-1-5-21-4105504371-693162205-3391040533-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> REMPLACÉ (1)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> REMPLACÉ (0)
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> REMPLACÉ (0)
[PUM.HomePage] HKEY_USERS\S-1-5-21-4105504371-693162205-3391040533-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://googole.ca/  -> REMPLACÉ (http://go.microsoft.com/fwlink/p/?LinkId=255141)

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier HOSTS : 0 [Too big!] ¤¤¤

¤¤¤ Antirootkit : 1 (Driver: CHARGE) ¤¤¤
[Filter(Kernel.Filter)] \Driver\atapi @ \Device\CdRom0 : \Driver\GEARAspiWDM @ Unknown (\SystemRoot\system32\DRIVERS\fdc.sys)

¤¤¤ Navigateurs web : 9 ¤¤¤
[FIREFX:Addon] 6krr9c64.default-1408721399352 : Mozilla Firefox hotfix [firefox-hotfix@mozilla.org] -> SUPPRIMÉ
[FIREFX:Addon] 6krr9c64.default-1408721399352 : Adblock Plus [{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] -> SUPPRIMÉ
[CHROME:Addon] Default : Google Drive [apdfllckaahabafndbhieahigkjlhalf] -> SUPPRIMÉ
[CHROME:Addon] Default : YouTube [blpcfgokakmgnkcojhhkbfbldkacnbeo] -> ERROR [2]
[CHROME:Addon] Default : Google Search [coobgpohoikkiipiblmjeljniedjpjpf] -> ERROR [2]
[CHROME:Addon] Default : Dark Vibe [dkckeanhmkjaechlhllmapjaaglgpcbj] -> ERROR [2]
[CHROME:Addon] Default : AdBlock [gighmmpiobklfepjocnamgkkbiglidom] -> ERROR [2]
[CHROME:Addon] Default : Google Wallet [nmmhkkegccagdldgiimedpiccmgmieda] -> ERROR [2]
[CHROME:Addon] Default : Gmail [pjkljhegncpnkpknbcohdijeoejaedia] -> ERROR [2]

¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: WDC WD5000AAKX-22ERMA0 ATA Device +++++
--- User ---
[MBR] 7414a28d5b9f06bf0b0981dee8989647
[BSP] da359a1c000fb7da0f9c1cda88b0ddd6 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 868 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1779712 | Size: 476070 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: SanDisk Cruzer Pattern USB Device +++++
--- User ---
[MBR] 71f5d6402e17e19c8a44c8eb40ff513f
[BSP] 788470fe12ec57aabe933cfdd9c84885 : Legit.Unknown MBR Code
Partition table:
0 - [XXXXXX] FAT16 (0x6) [VISIBLE] Offset (sectors): 129 | Size: 955 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )

+++++ PhysicalDrive2: Staples Relay UFD USB Device +++++
--- User ---
[MBR] 448e6004cd954c9e240f5cdd9ab917e6
[BSP] 35c983a059084f27992aeb1280e9d74f : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0xb) [VISIBLE] Offset (sectors): 32 | Size: 7633 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )


============================================
RKreport_SCN_08232014_070413.log