Publicité
Publicité
Format du document : text/x-log
Prévisualisation
RogueKiller V10.0.6.0 [Nov 13 2014] par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com
Système d'exploitation : Windows Vista (6.0.6002 Service Pack 2) 64 bits version
Démarré en : Mode normal
Utilisateur : clément [Administrateur]
Mode : Suppression -- Date : 11/19/2014 10:19:56
¤¤¤ Processus : 0 ¤¤¤
¤¤¤ Registre : 10 ¤¤¤
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://go.microsoft.com/fwlink/p/?LinkId=255141 -> Remplacé(e) (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://go.microsoft.com/fwlink/p/?LinkId=255141 -> Remplacé(e) (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Remplacé(e) (0)
¤¤¤ Tâches : 0 ¤¤¤
¤¤¤ Fichiers : 0 ¤¤¤
¤¤¤ Fichier Hosts : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost -> Supprimé(e)
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost -> Supprimé(e)
¤¤¤ Antirootkit : 9 (Driver: Non chargé [0xc000036b]) ¤¤¤
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - HttpQueryInfoW : Unknown @ 0xc900d0
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - HttpQueryInfoA : Unknown @ 0xc900b0
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetSetStatusCallbackA : Unknown @ 0xc90030
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetConnectW : Unknown @ 0xc90050
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetQueryDataAvailable : Unknown @ 0xc900f0
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetReadFile : Unknown @ 0xc90110
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetReadFileExW : Unknown @ 0xc90130
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - HttpOpenRequestW : Unknown @ 0xc90070
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - HttpSendRequestW : Unknown @ 0xc90090
¤¤¤ Navigateurs web : 1 ¤¤¤
[IE:Addon] System : Google Toolbar [{2318C2B1-4965-11d4-9B18-009027A5CD4F}] -> Supprimé(e)
¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 37160bac3441f3243f077d8903404e68
[BSP] 6162b3fd43f169525198718ccbb89946 : HP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 465071 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 952467456 | Size: 11866 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Fonction incorrecte. )
============================================
RKreport_DEL_10232014_141233.log - RKreport_SCN_10232014_132311.log - RKreport_SCN_11192014_101020.log - RKreport_DEL_11192014_101934.log
RKreport_DEL_11192014_101941.log - RKreport_DEL_11192014_101944.log - RKreport_DEL_11192014_101951.log
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com
Système d'exploitation : Windows Vista (6.0.6002 Service Pack 2) 64 bits version
Démarré en : Mode normal
Utilisateur : clément [Administrateur]
Mode : Suppression -- Date : 11/19/2014 10:19:56
¤¤¤ Processus : 0 ¤¤¤
¤¤¤ Registre : 10 ¤¤¤
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://go.microsoft.com/fwlink/p/?LinkId=255141 -> Remplacé(e) (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://go.microsoft.com/fwlink/p/?LinkId=255141 -> Remplacé(e) (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031A47-3F72-44A7-89C5-5595FE6B30EE} : 0 -> Remplacé(e) (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3403674075-4135805699-3295731709-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0 -> Remplacé(e) (0)
¤¤¤ Tâches : 0 ¤¤¤
¤¤¤ Fichiers : 0 ¤¤¤
¤¤¤ Fichier Hosts : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost -> Supprimé(e)
[C:\Windows\System32\drivers\etc\hosts] ::1 localhost -> Supprimé(e)
¤¤¤ Antirootkit : 9 (Driver: Non chargé [0xc000036b]) ¤¤¤
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - HttpQueryInfoW : Unknown @ 0xc900d0
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - HttpQueryInfoA : Unknown @ 0xc900b0
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetSetStatusCallbackA : Unknown @ 0xc90030
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetConnectW : Unknown @ 0xc90050
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetQueryDataAvailable : Unknown @ 0xc900f0
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetReadFile : Unknown @ 0xc90110
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - InternetReadFileExW : Unknown @ 0xc90130
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - HttpOpenRequestW : Unknown @ 0xc90070
[IAT:Addr] (iexplore.exe @ urlmon.dll) WININET.dll - HttpSendRequestW : Unknown @ 0xc90090
¤¤¤ Navigateurs web : 1 ¤¤¤
[IE:Addon] System : Google Toolbar [{2318C2B1-4965-11d4-9B18-009027A5CD4F}] -> Supprimé(e)
¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 37160bac3441f3243f077d8903404e68
[BSP] 6162b3fd43f169525198718ccbb89946 : HP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 465071 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 952467456 | Size: 11866 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Fonction incorrecte. )
============================================
RKreport_DEL_10232014_141233.log - RKreport_SCN_10232014_132311.log - RKreport_SCN_11192014_101020.log - RKreport_DEL_11192014_101934.log
RKreport_DEL_11192014_101941.log - RKreport_DEL_11192014_101944.log - RKreport_DEL_11192014_101951.log