RogueKiller V9.2.8.0 [Jul 11 2014] par Adlice Software
Mail : http://www.adlice.com/contact/
Remontées : http://forum.adlice.com
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : http://www.adlice.com

Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Démarrage : Mode normal
Utilisateur : yacine [Droits d'admin]
Mode : Suppression -- Date : 08/18/2014  00:06:13

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrées de registre : 10 ¤¤¤
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-801545435-2821037434-1774077556-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0  -> NON SELECTIONNÉ
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-801545435-2821037434-1774077556-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0  -> NON SELECTIONNÉ
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0  -> NON SELECTIONNÉ
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | EnableLUA : 0  -> NON SELECTIONNÉ
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> NON SELECTIONNÉ
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> NON SELECTIONNÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> NON SELECTIONNÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> NON SELECTIONNÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> NON SELECTIONNÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> NON SELECTIONNÉ

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier HOSTS : 11 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1tonec.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 www.tonec.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 registeridm.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 www.registeridm.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 secure.registeridm.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 internetdownloadmanager.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 www.internetdownloadmanager.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 secure.internetdownloadmanager.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 mirror.internetdownloadmanager.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 mirror2.internetdownloadmanager.com
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 mirror3.internetdownloadmanager.com

¤¤¤ Antirootkit : 2 (Driver: NON CHARGE [0xc000036b]) ¤¤¤
[EAT:Addr] (firefox.exe) DUI70.dll - GetLoaderInterface : C:\Program Files (x86)\TeamViewer\Version9\tv_w32.dll @ 0x6e1474a0
[EAT:Addr] (firefox.exe) DUI70.dll - GetTeamViewerInterface : C:\Program Files (x86)\TeamViewer\Version9\tv_w32.dll @ 0x6e1474b0

¤¤¤ Navigateurs web : 3 ¤¤¤
[PUP][FIREFX:Addon] 38p34wt3.default : PriceGong - Automatic Price Comparison Addon for Firefox. [{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}] -> SUPPRIMÉ
[PUP][FIREFX:Addon] 38p34wt3.default : DealScout [dealscout@deal-scout.net] -> SUPPRIMÉ
[PUM.HomePage][FIREFX:Config] 38p34wt3.default : user_pref("browser.startup.homepage", "www.google.fr"); -> REMPLACÉ (about:home)

¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MK5065GSX ATA Device +++++
--- User ---
[MBR] cdebf9c53c82d8c3066a7b0bebba986d
[BSP] aef5c71881b9d14c155fa8757aa979e8 : Unknown MBR Code
Partition table:
0 - [ACTIVE] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 2048 | Size: 199 MB
1 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 409600 | Size: 230811 MB
2 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 941410304 | Size: 17163 MB
3 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 976560128 | Size: 103 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_08182014_000328.log