RogueKiller V9.2.8.0 (x64) [Jul 11 2014] par Adlice Software
Mail : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarrage : Mode normal
Utilisateur : Alexis [Droits d'admin]
Mode : Recherche -- Date : 08/18/2014 14:30:11

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrées de registre : 13 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\ALSysIO -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_C_E6EC\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\RK_Software_ON_C_E6EC\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_C_E6EC\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\RK_Software_ON_C_E6EC\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.HomePage] (X64) HKEY_USERS\RK_Administrator_ON_C_06D7\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus13.msn.com -> TROUVÉ
[PUM.HomePage] (X86) HKEY_USERS\RK_Administrator_ON_C_06D7\Software\Microsoft\Internet Explorer\Main | Start Page : http://asus13.msn.com -> TROUVÉ
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2034139014-1166752581-2123607077-1000\Software\Microsoft\Internet Explorer\Main | Start Page : -> TROUVÉ
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2034139014-1166752581-2123607077-1000\Software\Microsoft\Internet Explorer\Main | Start Page : -> TROUVÉ

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier HOSTS : 1 ¤¤¤
[E:\Windows\System32\drivers\etc\hosts] 5.79.79.150 pagead2.googlesyndication.com

¤¤¤ Antirootkit : 2 (Driver: CHARGE) ¤¤¤
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
[Filter(Kernel.Filter)] \Driver\atapi @ \Device\Ide\IdeDeviceP0T0L0-0 : \Driver\ACPI @ Unknown (\SystemRoot\system32\CLFS.SYS)

¤¤¤ Navigateurs web : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] t6ia62m0.default : user_pref("browser.startup.homepage", "https://www.google.fr/"); -> TROUVÉ

¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: WDC WD10EZEX-22RKKA0 ATA Device +++++
--- User ---
[MBR] ae3c26e3cc490ae286e86a2a24fe42b0
[BSP] 3745255b98d05bbca727bab1278d0a3a : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 953869 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: SanDisk Cruzer Blade USB Device +++++
--- User ---
[MBR] 434b907ec528ca9398e933fd003ad211
[BSP] 24030e2aa5d3812d17543853c96582ab : Unknown MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0xb) [VISIBLE] Offset (sectors): 63 | Size: 7632 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Cette demande n?est pas prise en charge. )