Publicité
Publicité
Format du document : text/x-log
Prévisualisation
RogueKiller V10.1.0.0 [Dec 11 2014] par Adlice Software
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com
Système d'exploitation : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Démarré en : Mode normal
Utilisateur : cass [Administrateur]
Mode : Suppression -- Date : 12/14/2014 22:00:35
¤¤¤ Processus : 0 ¤¤¤
¤¤¤ Registre : 3 ¤¤¤
[PUM.SearchPage] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> Non sélectionné
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Non sélectionné
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1801674531-1004336348-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRecentDocs : 2 -> Non sélectionné
¤¤¤ Tâches : 0 ¤¤¤
¤¤¤ Fichiers : 0 ¤¤¤
¤¤¤ Fichier Hosts : 35 ¤¤¤
[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 localhost -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 media.opencandy.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.opencandy.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 tracking.opencandy.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 api.opencandy.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 installer.betterinstaller.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 installer.filebulldog.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 inno.bisrv.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 nsis.bisrv.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.file2desktop.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.goateastcach.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.guttastatdk.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.inskinmedia.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.insta.oibundles2.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.insta.playbryte.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.llogetfastcach.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.montiera.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.msdwnld.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.mypcbackup.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.ppdownload.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.riceateastcach.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.shyapotato.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.solimba.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.tuto4pc.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.appround.biz -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.bigspeedpro.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.bispd.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.bisrv.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.cdndp.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.download.sweetpacks.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.dpdownload.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.visualbee.net -> ERROR [5]
¤¤¤ Antirootkit : 2 (Driver: Chargé) ¤¤¤
[ShwSSDT:Addr(Hook.Shadow)] NtUserSetWindowsHookEx[549] : Unknown @ 0xba7c09de
[ShwSSDT:Addr(Hook.Shadow)] NtUserSetWinEventHook[552] : Unknown @ 0xba7c09e3
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD250HJ +++++
--- User ---
[MBR] b0f74fb403ae116e8bc548d60d4cea0a
[BSP] 23906a95f66c33b7dd9b751e61733cab : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 70001 MB
1 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 143364060 | Size: 61059 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 268414020 | Size: 107411 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_DEL_09222014_213106.log - RKreport_DEL_09242014_091818.log - RKreport_SCN_09222014_113414.log - RKreport_SCN_09222014_115919.log
RKreport_SCN_09222014_124046.log - RKreport_SCN_09242014_085111.log - RKreport_SCN_12142014_133907.log - RKreport_SCN_12142014_213203.log
email : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site web : http://www.adlice.com/fr/logiciels/roguekiller/
Blog : http://www.adlice.com
Système d'exploitation : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Démarré en : Mode normal
Utilisateur : cass [Administrateur]
Mode : Suppression -- Date : 12/14/2014 22:00:35
¤¤¤ Processus : 0 ¤¤¤
¤¤¤ Registre : 3 ¤¤¤
[PUM.SearchPage] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> Non sélectionné
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Non sélectionné
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1801674531-1004336348-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRecentDocs : 2 -> Non sélectionné
¤¤¤ Tâches : 0 ¤¤¤
¤¤¤ Fichiers : 0 ¤¤¤
¤¤¤ Fichier Hosts : 35 ¤¤¤
[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 localhost -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 media.opencandy.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.opencandy.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 tracking.opencandy.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 api.opencandy.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 installer.betterinstaller.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 installer.filebulldog.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 inno.bisrv.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 nsis.bisrv.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.file2desktop.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.goateastcach.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.guttastatdk.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.inskinmedia.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.insta.oibundles2.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.insta.playbryte.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.llogetfastcach.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.montiera.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.msdwnld.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.mypcbackup.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.ppdownload.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.riceateastcach.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.shyapotato.us -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.solimba.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.tuto4pc.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.appround.biz -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.bigspeedpro.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.bispd.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.bisrv.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.cdndp.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.download.sweetpacks.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.dpdownload.com -> ERROR [5]
[C:\WINDOWS\System32\drivers\etc\hosts] 0.0.0.0 cdn.visualbee.net -> ERROR [5]
¤¤¤ Antirootkit : 2 (Driver: Chargé) ¤¤¤
[ShwSSDT:Addr(Hook.Shadow)] NtUserSetWindowsHookEx[549] : Unknown @ 0xba7c09de
[ShwSSDT:Addr(Hook.Shadow)] NtUserSetWinEventHook[552] : Unknown @ 0xba7c09e3
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ Vérification MBR : ¤¤¤
+++++ PhysicalDrive0: SAMSUNG HD250HJ +++++
--- User ---
[MBR] b0f74fb403ae116e8bc548d60d4cea0a
[BSP] 23906a95f66c33b7dd9b751e61733cab : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 70001 MB
1 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 143364060 | Size: 61059 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 268414020 | Size: 107411 MB
User = LL1 ... OK
User = LL2 ... OK
============================================
RKreport_DEL_09222014_213106.log - RKreport_DEL_09242014_091818.log - RKreport_SCN_09222014_113414.log - RKreport_SCN_09222014_115919.log
RKreport_SCN_09222014_124046.log - RKreport_SCN_09242014_085111.log - RKreport_SCN_12142014_133907.log - RKreport_SCN_12142014_213203.log