RogueKiller V8.5.1 [Feb 12 2013] par Tigzy mail : tigzyRKgmailcom Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html Site Web : http://www.sur-la-toile.com/RogueKiller/ Blog : http://tigzyrk.blogspot.com/ Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version Demarrage : Mode normal Utilisateur : Système [Droits d'admin] Mode : Suppression -- Date : 05/05/2013 21:11:01 | ARK || FAK || MBR | ¤¤¤ Processus malicieux : 0 ¤¤¤ ¤¤¤ Entrees de registre : 15 ¤¤¤ [HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyDocs (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowUser (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyPics (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowDownloads (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowVideos (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowHelp (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> REMPLACÉ (1) [HJ SMENU] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> REMPLACÉ (1) [HJ DESK] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0) [HJ DESK] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0) [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0) [RUN][BLACKLISTDLL] [ON_C:Blinker]HKCU[...]\Run : ctfmon.exe (C:\PROGRA~2\rundll32.exe c:\progra~2\hj10.dat,FG00) -> SUPPRIMÉ [STARTUP][BLACKLISTDLL] msconfig.lnk @Blinker : X:\Windows\System32\rundll32.exe|c:\progra~2\hj10.dat,FG00 -> SUPPRIMÉ ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ ¤¤¤ Driver : [CHARGE] ¤¤¤ ¤¤¤ Ruches Externes: ¤¤¤ -> C:\windows\system32\config\SOFTWARE -> C:\windows\system32\config\SYSTEM -> C:\Users\Blinker\NTUSER.DAT -> C:\Users\Default\NTUSER.DAT -> C:\Users\Default User\NTUSER.DAT -> C:\Documents and Settings\Blinker\NTUSER.DAT -> C:\Documents and Settings\Default\NTUSER.DAT -> C:\Documents and Settings\Default User\NTUSER.DAT ¤¤¤ Fichier HOSTS: ¤¤¤ --> X:\windows\system32\drivers\etc\hosts ¤¤¤ MBR Verif: ¤¤¤ +++++ PhysicalDrive0: +++++ --- User --- [MBR] dbca25990f2a3adf4bd350e6ec4abb11 [BSP] e6e3578f832847cbb33312607d27d352 : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 142435 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 291708928 | Size: 10188 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive2: +++++ --- User --- [MBR] c8fb2f8f752b2c8eb758038c934ab5a3 [BSP] ed1724557878681a83d3c3e89954b0dc : Windows Vista MBR Code Partition table: 0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 896 | Size: 3859 Mo User = LL1 ... OK! Error reading LL2 MBR! Termine : << RKreport[2]_D_05052013_211101.txt >> RKreport[1]_S_05052013_211048.txt ; RKreport[2]_D_05052013_211101.txt