RogueKiller V12.11.24.0 (x64) [Nov 13 2017] (Gratuit) par Adlice Software email : http://www.adlice.com/fr/contact/ Remontées : https://forum.adlice.com Site web : http://www.adlice.com/fr/download/roguekiller/ Blog : http://www.adlice.com/fr/ Système d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Démarré en : Mode normal Utilisateur : philippe [Administrateur] Démarré depuis : C:\Users\philippe\Downloads\RogueKiller_portable64.exe Mode : Suppression -- Date : 11/18/2017 21:10:55 (Durée : 00:47:27) ¤¤¤ Processus : 3 ¤¤¤ [VT.Unknown] UsageMonitor.WindowsService.exe(2040) -- C:\Program Files\mc_plus\UsageMonitor.WindowsService.exe[7] -> Tué(e) [TermProc] [VT.Unknown] UsageMonitor.UI.App.exe(4320) -- C:\Program Files\mc_plus\UsageMonitor.UI.App.exe[7] -> Tué(e) [TermProc] [VT.Unknown] UsageMonitor.HealthCheck.exe(4436) -- C:\Program Files\mc_plus\UsageMonitor.HealthCheck.exe[7] -> Tué(e) [TermProc] ¤¤¤ Registre : 4 ¤¤¤ [PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-3678015658-1535024606-787214864-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Remplacé(e) (0) [PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-3678015658-1535024606-787214864-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyEnable : 1 -> Remplacé(e) (0) [PUM.Proxy] (X64) HKEY_USERS\S-1-5-21-3678015658-1535024606-787214864-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:49182;https=127.0.0.1:49182 -> Supprimé(e) [PUM.Proxy] (X86) HKEY_USERS\S-1-5-21-3678015658-1535024606-787214864-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=127.0.0.1:49182;https=127.0.0.1:49182 -> ERROR [2] ¤¤¤ Tâches : 0 ¤¤¤ ¤¤¤ Fichiers : 2 ¤¤¤ [Hj.Shortcut][Fichier] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support\Contact.lnk [LNK@] C:\PROGRA~1\INTERN~1\iexplore.exe http://go.packardbell.com/?id=9660 -> Raccourci nettoyé [PUP.AutoIt.Gen][Fichier] C:\Users\philippe\Desktop\SFTGC.exe -> Supprimé(e) ¤¤¤ WMI : 0 ¤¤¤ ¤¤¤ Fichier Hosts : 0 ¤¤¤ ¤¤¤ Antirootkit : 0 (Driver: Chargé) ¤¤¤ ¤¤¤ Navigateurs web : 1 ¤¤¤ [PUP.Gen2][Firefox:Addon] 36q5y8k7.default-1448095414472 : Search and New Tab by Yahoo [jid1-16aeif9OQIRKxA@jetpack] -> Supprimé(e) ¤¤¤ Vérification MBR : ¤¤¤ +++++ PhysicalDrive0: Hitachi HTS547575A9E384 +++++ --- User --- [MBR] 78964fa1f9775547d78e216e1828a27d [BSP] 9f51b66ec3ba32688ecd9eceabbfe944 : Windows Vista/7/8|VT.Unknown MBR Code Partition table: 0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 19000 MB 1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 38914048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 39118848 | Size: 348023 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] 3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 751869952 | Size: 348279 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader] User = LL1 ... OK User = LL2 ... OK